$ rpki-client -vvf rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/7BAB9AF01B3D11EE903BB536C4F9AE02.roa File: 7BAB9AF01B3D11EE903BB536C4F9AE02.roa (raw, json) Hash identifier: 1jBi7AFnVCtlT74K0SmC0UKxzEEwhVrbK9WIUjseLKs= Subject key identifier: FC:67:ED:3E:FB:B6:AF:F0:42:79:0A:A6:F1:7B:43:E5:6E:D3:66:93 Certificate issuer: /CN=A919EE77/serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Certificate serial: 083C Authority key identifier: B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/7BAB9AF01B3D11EE903BB536C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:52:21 +0000 ROA not before: Fri 04 Jul 2025 22:02:20 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133448 IP address blocks: 119.42.33.0/24 maxlen: 24 119.42.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2108 (0x83c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EE77, serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Validity Not Before: Jul 4 22:02:20 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a452a5-02c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:34:56:60:b2:4c:1a:55:d7:ce:47:9e:6b:f2: 57:da:22:c3:5d:41:24:1f:4d:dd:5b:4f:ab:02:d3: c9:04:07:41:7e:90:4b:90:d4:ea:ed:0b:98:c0:28: 0e:1d:80:ea:e1:26:83:0c:72:df:15:b7:44:a0:8e: 84:44:7e:3f:6d:df:21:b1:36:60:34:1e:01:64:eb: 96:25:f6:f3:c1:18:83:47:04:ee:8b:c5:3a:99:7c: 4a:d4:0f:f7:c3:f7:d0:fe:a2:ce:07:37:68:a9:68: eb:43:06:7c:41:b4:cc:1b:b7:ed:0f:90:dd:15:7c: 87:49:18:fa:7c:23:c0:09:cd:d1:d1:0b:60:4d:2b: 42:42:c4:00:28:8f:1e:f9:f5:98:a1:61:1e:d0:0e: 18:32:a3:2d:a9:6c:71:bd:3e:a6:7c:51:3b:85:4f: f1:d6:c3:ea:31:fa:4a:e8:dd:b5:7e:fe:e2:bd:98: a2:e1:8b:9c:3d:67:da:64:c0:96:9c:f3:66:68:c4: 29:c8:5d:15:f0:39:fa:68:74:31:cd:d7:ee:81:9d: 9f:27:74:6a:e7:67:64:01:57:3e:d0:de:e1:a5:54: 47:8e:cd:b2:06:3f:dc:09:ec:b7:24:bd:09:3c:ab: c9:36:f6:23:f2:1b:2d:37:81:68:98:0f:c4:4a:8e: 38:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:67:ED:3E:FB:B6:AF:F0:42:79:0A:A6:F1:7B:43:E5:6E:D3:66:93 X509v3 Authority Key Identifier: keyid:B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/7BAB9AF01B3D11EE903BB536C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.42.33.0/24 119.42.35.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:e2:c5:21:83:9f:ca:ef:64:a6:df:f8:21:83:54:6f:e4:d0: a9:77:28:44:72:88:e8:42:5b:dd:9e:ed:78:5e:07:9d:53:fc: b6:a2:10:1a:e5:ca:32:c8:07:79:5f:2f:e9:95:1e:84:ae:1a: 57:a9:62:72:5e:dc:f9:60:0f:bc:ad:23:c6:15:ae:2b:56:d2: 37:eb:8e:ef:c1:25:bf:8d:d7:42:eb:86:50:bb:73:9c:0d:33: d0:ba:95:1d:82:9e:6a:88:94:72:85:9b:af:51:40:90:c2:e9: 5d:9a:c9:82:70:c4:f7:e8:01:a4:75:8f:ae:17:b0:9a:54:15: 6d:fd:2f:79:ea:18:52:84:40:15:07:56:19:9e:7e:7c:8d:ba: bd:31:24:f2:e2:e9:c8:dc:26:7d:0a:fb:f0:b1:69:a5:9b:be: 3c:56:87:ba:c9:64:37:5e:2a:78:df:05:27:67:3d:b2:29:63: e1:0b:35:85:17:bc:54:c5:99:56:9b:d3:5c:a2:62:ed:39:85: af:c5:98:41:d5:63:15:31:56:a9:2c:b3:5d:ae:22:02:2d:b6: 88:25:69:e7:fb:8f:5b:35:d9:f2:2e:50:bf:ea:bb:6a:99:70: 40:b2:92:73:0a:70:fa:11:b7:88:d3:02:65:2a:3b:c2:33:62: aa:92:9e:2b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVFNzcxMTAvBgNVBAUTKEI3ODFBMkU3RDkxRURDQThCMDMwREUzRUE4OUZBNEZB RjE3OTFGMjEwHhcNMjUwNzA0MjIwMjIwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTJhNS0wMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjRWYLJMGlXXzkeea/JX2iLDXUEkH03dW0+rAtPJBAdBfpBLkNTq7QuYwCgO HYDq4SaDDHLfFbdEoI6ERH4/bd8hsTZgNB4BZOuWJfbzwRiDRwTui8U6mXxK1A/3 w/fQ/qLOBzdoqWjrQwZ8QbTMG7ftD5DdFXyHSRj6fCPACc3R0QtgTStCQsQAKI8e +fWYoWEe0A4YMqMtqWxxvT6mfFE7hU/x1sPqMfpK6N21fv7ivZii4YucPWfaZMCW nPNmaMQpyF0V8Dn6aHQxzdfugZ2fJ3Rq52dkAVc+0N7hpVRHjs2yBj/cCey3JL0J PKvJNvYj8hstN4FomA/ESo44zQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPxn7T77 tq/wQnkKpvF7Q+Vu02aTMB8GA1UdIwQYMBaAFLeBoufZHtyosDDePqifpPrxeR8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUU3Ny9EOUJFMDdCQTBD RUQxMUVCQTdGMTExNUJDNEY5QUUwMi90NEdpNTlrZTNLaXdNTjQtcUotay12RjVI eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q0R2k1OWtlM0tpd01ONC1xSi1rLXZGNUh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVFNzcvRDlCRTA3QkEwQ0VEMTFFQkE3RjExMTVCQzRGOUFFMDIvN0JBQjlBRjAx QjNEMTFFRTkwM0JCNTM2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAdyohAwQAdyojMA0GCSqGSIb3DQEBCwUAA4IBAQBL4sUhg5/K72Sm 3/ghg1Rv5NCpdyhEcojoQlvdnu14XgedU/y2ohAa5coyyAd5Xy/plR6ErhpXqWJy Xtz5YA+8rSPGFa4rVtI3647vwSW/jddC64ZQu3OcDTPQupUdgp5qiJRyhZuvUUCQ wuldmsmCcMT36AGkdY+uF7CaVBVt/S956hhShEAVB1YZnn58jbq9MSTy4unI3CZ9 CvvwsWmlm748Voe6yWQ3Xip43wUnZz2yKWPhCzWFF7xUxZlWm9NcomLtOYWvxZhB 1WMVMVapLLNdriICLbaIJWnn+49bNdnyLlC/6rtqmXBAspJzCnD6EbeI0wJlKjvC M2Kqkp4r -----END CERTIFICATE-----Generated at Mon Mar 2 10:52:39 2026 by rpki-client