$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/77C416DE993E11F08259193FC4F9AE02.roa File: 77C416DE993E11F08259193FC4F9AE02.roa (raw, json) Hash identifier: vLiujIAl3625QEgMQ2x0fcgGqmCdnrEZJs4kOhcyLP0= Subject key identifier: 03:DE:D4:6F:F8:A9:08:C7:3C:1B:01:66:EE:DD:7A:9C:FA:5C:58:54 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DA21 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/77C416DE993E11F08259193FC4F9AE02.roa Signing time: Sun 01 Mar 2026 23:02:38 +0000 ROA not before: Wed 24 Sep 2025 12:03:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134026 IP address blocks: 45.115.104.0/22 maxlen: 24 103.55.88.0/22 maxlen: 24 103.70.200.0/22 maxlen: 24 103.92.112.0/24 maxlen: 24 103.131.27.0/24 maxlen: 24 103.140.219.0/24 maxlen: 24 103.177.174.0/24 maxlen: 24 103.184.70.0/23 maxlen: 24 2405:5c0::/32 maxlen: 32 2405:80c0::/32 maxlen: 32 2407:c8c0::/32 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55841 (0xda21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 24 12:03:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c58e-d2f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:68:1a:ec:33:18:d4:31:b6:39:6d:ff:47:14: 7b:97:0b:71:7d:a0:5f:85:55:71:05:79:a1:c3:26: 16:47:c5:8b:27:9d:59:ed:41:b8:ca:ab:5f:a6:3e: 51:9e:a5:58:ec:06:62:c0:e1:71:11:c8:30:46:d8: ab:f5:45:f8:4c:b0:70:fb:09:fa:fd:c0:a3:31:be: 4e:45:4f:c8:b3:3b:72:80:1b:c0:5d:2b:3a:b3:03: 21:53:db:f2:05:42:2e:35:04:cc:01:49:22:e1:72: a3:00:5d:a5:f9:81:8a:83:cc:8d:73:bb:97:3d:08: 96:a9:3b:7b:e8:97:13:23:76:67:0b:6d:be:da:f7: 11:21:f4:87:73:02:e0:61:a9:34:03:33:ff:93:6d: b9:ab:1a:05:86:5e:7a:d4:9b:4a:42:41:59:be:49: b5:af:6a:ef:ea:cf:fc:ad:22:a7:18:f2:53:38:55: c0:e4:b0:24:f6:ed:64:02:ac:69:4e:cb:34:7b:b3: 60:c7:83:52:5c:84:13:5f:2d:b8:93:74:4b:f4:a8: a3:94:11:c4:ff:0d:0c:fe:70:9a:f3:5b:1a:5e:6b: 30:22:36:21:c8:f0:73:cf:69:a8:fd:6a:0d:97:91: f7:f5:71:6e:cc:c2:40:d8:0d:1c:23:cd:66:76:23: 99:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:DE:D4:6F:F8:A9:08:C7:3C:1B:01:66:EE:DD:7A:9C:FA:5C:58:54 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/77C416DE993E11F08259193FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.115.104.0/22 103.55.88.0/22 103.70.200.0/22 103.92.112.0/24 103.131.27.0/24 103.140.219.0/24 103.177.174.0/24 103.184.70.0/23 IPv6: 2405:5c0::/32 2405:80c0::/32 2407:c8c0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:d0:6f:12:7e:d6:91:19:60:a7:5c:bb:61:d2:1c:b5:17:b1: 63:84:65:ca:ba:8c:78:24:76:31:31:f2:fc:8b:7d:05:6e:15: 83:52:76:f1:c0:73:bd:45:f6:5f:78:85:c9:7e:08:de:d7:be: 68:8d:1d:46:92:85:ad:e3:6e:4c:e8:a3:af:71:4b:da:3e:3c: 55:95:d3:f4:11:02:ad:71:3d:0c:66:73:23:43:e8:3c:9c:61: a3:29:7d:ea:b9:31:ab:b4:4c:71:7f:71:32:ff:8d:97:22:36: 3d:48:0c:16:5b:d3:c0:e2:aa:b2:3c:e2:0e:f9:ce:b6:b6:cc: 2c:a8:e7:c5:31:b6:07:79:f3:86:5f:a3:d2:5f:fa:24:9c:99: 5b:02:f4:ad:5f:dd:dc:66:07:f5:fd:b8:03:5a:e4:44:7c:93: cd:7f:ce:50:f6:1a:32:48:86:c4:3e:6e:0f:97:5e:53:ca:46: 2e:15:48:a3:ad:57:e9:c8:33:f8:0c:0b:6f:fe:a8:b9:76:b0: f4:c5:05:67:34:d5:52:a5:b3:40:38:be:2d:34:14:bf:25:07: 8f:0f:d7:84:5f:e3:cc:b3:1f:d0:46:ce:a1:89:67:63:50:72: 9c:5a:2e:2b:86:fe:f8:c9:84:47:08:7d:14:18:c6:fb:0d:45: b0:0c:74:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIDANohMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkyNDEyMDMyM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM1OGUtZDJmNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdoGuwzGNQxtjlt/0cUe5cLcX2gX4VVcQV5ocMmFkfFiyedWe1BuMqrX6Y+ UZ6lWOwGYsDhcRHIMEbYq/VF+EywcPsJ+v3AozG+TkVPyLM7coAbwF0rOrMDIVPb 8gVCLjUEzAFJIuFyowBdpfmBioPMjXO7lz0Ilqk7e+iXEyN2Zwttvtr3ESH0h3MC 4GGpNAMz/5NtuasaBYZeetSbSkJBWb5Jta9q7+rP/K0ipxjyUzhVwOSwJPbtZAKs aU7LNHuzYMeDUlyEE18tuJN0S/Soo5QRxP8NDP5wmvNbGl5rMCI2Icjwc89pqP1q DZeR9/VxbszCQNgNHCPNZnYjmSsCAwEAAaOCAqcwggKjMB0GA1UdDgQWBBQD3tRv +KkIxzwbAWbu3Xqc+lxYVDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc3QzQxNkRF OTkzRTExRjA4MjU5MTkzRkM0RjlBRTAyLnJvYTBmBggrBgEFBQcBBwEB/wRXMFUw NgQCAAEwMAMEAi1zaAMEAmc3WAMEAmdGyAMEAGdccAMEAGeDGwMEAGeM2wMEAGex rgMEAWe4RjAbBAIAAjAVAwUAJAUFwAMFACQFgMADBQAkB8jAMA0GCSqGSIb3DQEB CwUAA4IBAQBK0G8SftaRGWCnXLth0hy1F7FjhGXKuox4JHYxMfL8i30FbhWDUnbx wHO9RfZfeIXJfgje175ojR1GkoWt425M6KOvcUvaPjxVldP0EQKtcT0MZnMjQ+g8 nGGjKX3quTGrtExxf3Ey/42XIjY9SAwWW9PA4qqyPOIO+c62tswsqOfFMbYHefOG X6PSX/oknJlbAvStX93cZgf1/bgDWuREfJPNf85Q9hoySIbEPm4Pl15TykYuFUij rVfpyDP4DAtv/qi5drD0xQVnNNVSpbNAOL4tNBS/JQePD9eEX+PMsx/QRs6hiWdj UHKcWi4rhv74yYRHCH0UGMb7DUWwDHSJ -----END CERTIFICATE-----Generated at Mon Mar 2 12:24:12 2026 by rpki-client