$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/77C9E89A3CDC11EEBFA0475EC4F9AE02.roa File: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (raw, json) Hash identifier: UMXvkv7lMBhThxZyIQzwCdA4VPiMvF4PRU8CMRsnFCE= Subject key identifier: B8:7D:96:72:5B:0E:7A:77:4F:BF:6F:0E:84:3D:59:D5:E6:B9:B9:25 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 351C Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/77C9E89A3CDC11EEBFA0475EC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:59:24 +0000 ROA not before: Thu 24 Apr 2025 15:11:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45246 IP address blocks: 114.198.232.0/24 maxlen: 24 114.198.233.0/24 maxlen: 24 114.198.234.0/24 maxlen: 24 114.198.235.0/24 maxlen: 24 114.198.236.0/24 maxlen: 24 114.198.237.0/24 maxlen: 24 114.198.238.0/24 maxlen: 24 114.198.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13596 (0x351c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Apr 24 15:11:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42a1c-44ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0d:62:43:5a:f7:57:a4:fd:40:d4:a9:91:37: 48:cd:1e:cd:cc:dd:76:9d:7a:4b:29:a5:f9:6f:7d: 02:f9:4d:7d:97:ee:db:8c:a7:65:89:f6:2f:a1:c7: 68:fb:d6:06:9c:81:0f:15:28:a5:36:e2:02:3b:9c: 28:3b:b0:4e:11:89:a4:b9:62:90:2f:e8:66:37:f0: d2:b3:6f:d3:5e:74:45:e4:88:23:b1:6f:99:8d:50: 95:93:68:b8:2a:e8:71:41:d7:c0:95:56:0e:c8:02: b4:0c:b6:95:ae:c3:b9:8b:9e:8b:2f:6c:01:7e:c4: 9a:f0:95:46:f2:10:30:a4:b4:4c:51:73:29:fb:c0: a2:58:f2:93:bc:84:fd:6c:5f:9b:59:46:c1:81:eb: c0:e0:ae:f7:16:e0:5b:a9:3e:a2:23:aa:2a:0d:42: 24:b0:22:17:38:1e:98:7b:7d:3c:27:76:9a:ae:e1: 61:92:8b:5f:22:0e:b4:31:ce:01:53:05:c6:9a:4e: 2b:ac:7d:b9:12:d7:25:dc:d7:38:66:2a:1a:71:5a: ae:18:32:c8:5a:a1:c5:f5:23:ea:14:37:2e:06:7b: 37:a8:d1:dd:da:1c:3c:14:47:40:50:9a:4a:c9:f8: 8f:d9:28:70:c3:34:ea:ae:5f:6e:bf:06:91:7d:1d: 6a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:7D:96:72:5B:0E:7A:77:4F:BF:6F:0E:84:3D:59:D5:E6:B9:B9:25 X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/77C9E89A3CDC11EEBFA0475EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 114.198.232.0/21 Signature Algorithm: sha256WithRSAEncryption 32:fb:02:12:a6:a8:e3:43:bd:4b:31:3d:19:df:db:f9:27:1f: 27:ad:56:01:17:a1:33:3d:bf:42:4e:38:2f:58:8c:24:22:1a: d3:03:92:f4:71:54:15:85:e0:a1:bf:5b:3b:7a:05:5f:3e:fb: f6:e4:40:42:ff:95:05:5a:a0:91:24:6b:7d:d7:ae:49:15:2c: 69:d7:72:6d:db:a1:5b:bd:3e:b5:8c:ad:d1:43:d0:4a:97:86: bb:f6:fe:04:6f:98:ff:78:b8:b6:36:b5:ac:4d:76:ee:17:c3: fd:d8:83:ca:e7:5a:e6:7e:9f:e4:79:d8:37:5e:0d:f1:67:3e: 2d:14:34:ed:ad:17:e1:96:e0:4f:22:9d:23:8d:f3:92:b2:f8: b4:cb:38:43:e9:04:43:a7:e9:2e:e1:de:e4:9d:6a:e6:d9:12: 31:cd:cd:d2:e8:87:1b:2a:c2:5f:07:31:f8:5e:1c:35:ad:d6: 17:b5:fd:17:12:a5:68:65:04:3a:de:52:cb:ea:fe:4e:0a:20: 62:9c:b4:e5:a0:ee:d6:e2:0d:bb:e3:7e:48:31:be:d0:24:c0: 73:5c:99:ff:f3:c8:44:b4:81:d0:c5:a9:b9:97:dc:3d:30:ed: 89:d0:39:f5:9d:31:70:3d:5b:4d:0f:ea:3a:e2:e4:49:7b:6d: 23:ce:a4:ec -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUwNDI0MTUxMTAzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmExYy00NGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA1iQ1r3V6T9QNSpkTdIzR7NzN12nXpLKaX5b30C+U19l+7bjKdlifYvocdo +9YGnIEPFSilNuICO5woO7BOEYmkuWKQL+hmN/DSs2/TXnRF5IgjsW+ZjVCVk2i4 KuhxQdfAlVYOyAK0DLaVrsO5i56LL2wBfsSa8JVG8hAwpLRMUXMp+8CiWPKTvIT9 bF+bWUbBgevA4K73FuBbqT6iI6oqDUIksCIXOB6Ye308J3aaruFhkotfIg60Mc4B UwXGmk4rrH25Etcl3Nc4ZioacVquGDLIWqHF9SPqFDcuBns3qNHd2hw8FEdAUJpK yfiP2ShwwzTqrl9uvwaRfR1q0wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLh9lnJb Dnp3T79vDoQ9WdXmubklMB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAyNjcvMTkwRUFCNUMxRDk4MTFFMjlFNjVGRjgxMDhCMDJDRDIvNzdDOUU4OUEz Q0RDMTFFRUJGQTA0NzVFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDcsboMA0GCSqGSIb3DQEBCwUAA4IBAQAy+wISpqjjQ71LMT0Z39v5 Jx8nrVYBF6EzPb9CTjgvWIwkIhrTA5L0cVQVheChv1s7egVfPvv25EBC/5UFWqCR JGt9165JFSxp13Jt26FbvT61jK3RQ9BKl4a79v4Eb5j/eLi2NrWsTXbuF8P92IPK 51rmfp/kedg3Xg3xZz4tFDTtrRfhluBPIp0jjfOSsvi0yzhD6QRDp+ku4d7knWrm 2RIxzc3S6IcbKsJfBzH4Xhw1rdYXtf0XEqVoZQQ63lLL6v5OCiBinLTloO7W4g27 435IMb7QJMBzXJn/88hEtIHQxam5l9w9MO2J0Dn1nTFwPVtND+o64uRJe20jzqTs -----END CERTIFICATE-----Generated at Mon Mar 2 06:49:51 2026 by rpki-client