$ rpki-client -vvf rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/4664F7042B7411EF9E28ED19C4F9AE02.roa File: 4664F7042B7411EF9E28ED19C4F9AE02.roa (raw, json) Hash identifier: YRe4dhrAYbqhxJ+2f8KQ9ibzjn7cIMA1n6tPyhea2m4= Subject key identifier: FA:03:5F:70:C7:96:F5:F7:21:D5:D6:29:33:F6:C8:F2:28:E5:42:87 Certificate issuer: /CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Certificate serial: 1F12 Authority key identifier: 94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/4664F7042B7411EF9E28ED19C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:14:16 +0000 ROA not before: Sun 04 May 2025 16:23:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9297 IP address blocks: 43.248.44.0/22 maxlen: 22 119.252.0.0/19 maxlen: 19 2401:1400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7954 (0x1f12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C77D, serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Validity Not Before: May 4 16:23:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42d97-ff16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ff:fa:d0:4e:17:34:92:28:d9:03:e0:b7:f2: d5:63:79:3a:0f:e6:dd:26:25:63:12:f4:c7:fa:9b: b1:e5:8e:f3:ce:11:e8:bc:d5:a8:ce:c0:34:df:a0: 77:6a:44:94:70:24:5f:26:68:45:40:ca:bc:33:b0: 42:80:05:68:bb:62:76:99:98:01:df:00:8a:61:d6: f8:6f:68:fb:2c:3b:74:85:91:93:1d:ef:bb:2a:32: 3b:87:7b:20:d7:95:d9:f5:4c:44:ca:f5:90:ef:6b: 0e:78:da:0a:91:31:dd:f3:bd:ec:b4:f2:c8:90:2a: ff:1a:68:7a:c4:0a:6b:73:e9:54:3e:0d:95:e8:26: 12:1a:a4:6c:07:36:6d:b3:94:55:d3:9b:bf:55:74: d4:43:d7:3b:f2:5b:8d:22:4d:30:5a:a2:f5:7c:3f: d1:cd:bf:2a:4f:f1:1e:3a:0e:c3:6b:e9:82:d6:69: 99:bf:f9:b1:39:2a:16:d6:24:34:9c:10:6c:c3:3c: 3c:87:31:49:96:02:b9:7d:b2:bf:f2:44:e3:5d:ef: 2d:53:e1:f4:f6:6b:75:f6:ee:f3:29:77:13:8c:60: 3f:0f:34:73:2b:95:96:24:ca:22:e0:fc:df:7e:4f: 32:16:62:69:87:77:a3:79:5d:31:9d:db:ec:87:c8: a9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:03:5F:70:C7:96:F5:F7:21:D5:D6:29:33:F6:C8:F2:28:E5:42:87 X509v3 Authority Key Identifier: keyid:94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/4664F7042B7411EF9E28ED19C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.44.0/22 119.252.0.0/19 IPv6: 2401:1400::/32 Signature Algorithm: sha256WithRSAEncryption 63:90:45:37:5a:1b:1f:3e:86:b5:6f:a2:22:1f:08:93:b5:04: 02:cb:71:8b:04:cc:59:8c:99:35:ba:89:90:2e:80:f2:a6:e5: 61:ab:2a:ad:0f:0e:74:69:91:1d:d2:ce:fe:74:82:d7:89:f2: 40:a5:d3:bd:93:41:8d:30:bd:17:ef:80:b5:c9:66:8a:d4:22: e7:48:37:c6:34:8c:8b:43:0a:84:30:08:28:95:cf:c9:66:15: db:2d:97:28:c3:47:bc:52:56:80:9f:9a:7a:e9:a9:3f:74:a3: 8e:f0:c8:0d:c2:4e:88:db:bf:7e:af:d5:c0:90:36:e4:93:ad: a2:01:a9:98:2c:95:5e:ab:94:fd:a3:aa:6b:c5:4f:04:c6:80: ca:ea:db:80:20:d8:6d:74:f6:27:86:40:85:b0:d4:56:d4:b3: 59:00:bd:fe:27:dd:4b:32:b3:28:0b:23:02:dd:b5:1b:ca:c2: 35:13:96:09:75:ef:a3:c7:d2:83:9d:f3:42:ca:35:ff:57:42: 20:4e:52:47:b6:43:e0:d0:73:b6:c6:35:21:44:dd:98:06:dd: fd:5a:a8:30:59:c3:24:d2:5f:67:b9:6e:8a:5b:e8:87:65:e2: ed:78:e5:1e:4d:bc:76:73:74:85:fe:5b:09:f5:d2:f8:83:17: 87:54:b6:5d -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICHxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3N0QxMTAvBgNVBAUTKDk0MDk4MDhDOEEzMkM1ODQ5NERBRTU3NEQwNUQ2QkIy MjI3MkMzNUEwHhcNMjUwNTA0MTYyMzU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmQ5Ny1mZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwv/60E4XNJIo2QPgt/LVY3k6D+bdJiVjEvTH+pux5Y7zzhHovNWozsA036B3 akSUcCRfJmhFQMq8M7BCgAVou2J2mZgB3wCKYdb4b2j7LDt0hZGTHe+7KjI7h3sg 15XZ9UxEyvWQ72sOeNoKkTHd873stPLIkCr/Gmh6xAprc+lUPg2V6CYSGqRsBzZt s5RV05u/VXTUQ9c78luNIk0wWqL1fD/Rzb8qT/EeOg7Da+mC1mmZv/mxOSoW1iQ0 nBBswzw8hzFJlgK5fbK/8kTjXe8tU+H09mt19u7zKXcTjGA/DzRzK5WWJMoi4Pzf fk8yFmJph3ejeV0xndvsh8ipqwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFPoDX3DH lvX3IdXWKTP2yPIo5UKHMB8GA1UdIwQYMBaAFJQJgIyKMsWElNrldNBda7IicsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3RC83RDRCRkUwNjc0 OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZU1UydVYwMEYxcnNpSnl3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBbUFqSW95eFlTVTJ1VjAwRjFyc2lKeXcxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM3N0QvN0Q0QkZFMDY3NDk5MTFFNkIwMjUyQjg0QzRGOUFFMDIvNDY2NEY3MDQy Qjc0MTFFRjlFMjhFRDE5QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK/gsAwQFd/wAMA0EAgACMAcDBQAkARQAMA0GCSqGSIb3DQEBCwUA A4IBAQBjkEU3WhsfPoa1b6IiHwiTtQQCy3GLBMxZjJk1uomQLoDypuVhqyqtDw50 aZEd0s7+dILXifJApdO9k0GNML0X74C1yWaK1CLnSDfGNIyLQwqEMAgolc/JZhXb LZcow0e8UlaAn5p66ak/dKOO8MgNwk6I279+r9XAkDbkk62iAamYLJVeq5T9o6pr xU8ExoDK6tuAINhtdPYnhkCFsNRW1LNZAL3+J91LMrMoCyMC3bUbysI1E5YJde+j x9KDnfNCyjX/V0IgTlJHtkPg0HO2xjUhRN2YBt39WqgwWcMk0l9nuW6KW+iHZeLt eOUeTbx2c3SF/lsJ9dL4gxeHVLZd -----END CERTIFICATE-----Generated at Mon Mar 2 07:47:56 2026 by rpki-client