$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/2C24CB26CECC11EEAFCD520AC4F9AE02.roa File: 2C24CB26CECC11EEAFCD520AC4F9AE02.roa (raw, json) Hash identifier: /7z7IB560Zyid1gAT+cg8GKzeif1WiKdRUALH0UbtFc= Subject key identifier: 6B:04:11:55:0B:90:6E:7C:1D:EA:5B:F6:6D:D1:3E:A3:31:26:5C:22 Certificate issuer: /CN=A917AC3B/serialNumber=008F2CC864241DE8635E93A57440F9C2EB258BB3 Certificate serial: 0181 Authority key identifier: 00:8F:2C:C8:64:24:1D:E8:63:5E:93:A5:74:40:F9:C2:EB:25:8B:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/2C24CB26CECC11EEAFCD520AC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:04:27 +0000 ROA not before: Mon 09 Feb 2026 04:23:41 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 4049 IP address blocks: 202.49.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.crl rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 03:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC3B, serialNumber=008F2CC864241DE8635E93A57440F9C2EB258BB3 Validity Not Before: Feb 9 04:23:41 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a41d3a-d73c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:31:ed:26:06:b9:1d:95:66:17:0c:99:1f:f8: 63:9d:62:82:19:7b:ba:2e:91:af:31:97:73:3e:72: 68:fb:c5:ff:a9:53:e5:78:db:e2:f5:11:2b:b1:8f: e6:37:e5:47:7f:ad:a3:b9:b8:f5:19:01:8a:d5:fe: a8:b9:ca:9a:07:f3:e8:dd:45:07:22:82:34:3f:04: 19:05:17:99:45:c8:3d:32:74:26:af:bf:14:6e:65: 61:61:00:a2:d0:1c:12:3c:3c:6d:98:27:bd:44:03: aa:4b:cb:53:f7:44:9d:08:9f:e0:b0:52:fb:43:65: 42:09:be:91:24:b8:9a:b2:86:ca:cf:76:ef:a8:d7: 01:8d:a2:27:8f:05:a9:1b:b6:5a:02:81:99:19:35: 5c:05:74:4d:5d:e3:a0:0c:ab:4b:4f:10:86:65:0d: eb:ef:e1:eb:05:ac:b0:6c:d6:f3:cd:d6:ef:b8:0f: f1:95:08:6f:2f:41:90:69:db:bd:b0:83:2e:52:f0: ec:60:db:34:13:e0:8b:7a:59:3a:24:b9:b3:0b:49: ef:b9:7e:b9:da:34:82:66:49:0d:5c:42:f5:f3:ab: 86:10:92:98:c5:35:4d:34:50:83:6f:7e:a5:41:a5: 64:d8:88:33:b9:1e:60:14:e0:a6:78:bf:1a:4b:91: a3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:04:11:55:0B:90:6E:7C:1D:EA:5B:F6:6D:D1:3E:A3:31:26:5C:22 X509v3 Authority Key Identifier: keyid:00:8F:2C:C8:64:24:1D:E8:63:5E:93:A5:74:40:F9:C2:EB:25:8B:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/2C24CB26CECC11EEAFCD520AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.49.112.0/23 Signature Algorithm: sha256WithRSAEncryption b6:d8:ef:c3:76:dc:0f:7a:d2:4b:aa:6a:5b:71:e3:6d:e9:a0: 7c:24:c4:b7:d0:78:83:75:bf:fa:62:76:8f:a5:36:9e:77:d0: 29:54:8e:0d:d0:18:39:66:f2:86:8c:6a:e2:77:ee:98:38:61: b8:a4:7c:e6:d6:87:db:20:98:43:20:83:47:c3:d1:b2:ed:ae: 2c:a2:c5:09:de:f3:63:4a:5c:84:3d:df:4f:9a:9e:0e:59:18: 29:66:8c:7e:b0:c5:98:f2:24:81:a5:cb:4f:8e:6e:d9:73:27: a1:8d:e8:21:2d:3b:7a:32:8f:c0:27:54:31:5e:fc:b0:bc:c6: 5b:59:38:3f:91:b3:6d:1a:c9:20:67:09:b6:ee:6d:82:82:9c: 70:5c:3a:04:bb:8d:98:43:c4:e3:a3:ce:eb:19:59:2e:2d:db: 5a:3d:e9:37:bb:8a:ca:10:1f:c6:91:28:ad:30:1d:4a:1a:d8: 34:52:be:c7:e2:c9:fd:29:5b:68:5a:80:5b:b2:46:96:d3:ad: 05:e8:71:94:a6:97:ed:0a:d7:f1:38:fa:e8:fe:2d:c9:20:ce: aa:13:70:00:93:57:2c:90:2e:a1:9a:cb:16:dd:14:1e:d6:bd: dd:51:ca:ad:c2:89:6d:71:1a:5e:5b:13:2a:e1:4e:53:ef:93: c5:5b:de:87 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDM0IxMTAvBgNVBAUTKDAwOEYyQ0M4NjQyNDFERTg2MzVFOTNBNTc0NDBGOUMy RUIyNThCQjMwHhcNMjYwMjA5MDQyMzQxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWQzYS1kNzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DHtJga5HZVmFwyZH/hjnWKCGXu6LpGvMZdzPnJo+8X/qVPleNvi9RErsY/m N+VHf62jubj1GQGK1f6oucqaB/Po3UUHIoI0PwQZBReZRcg9MnQmr78UbmVhYQCi 0BwSPDxtmCe9RAOqS8tT90SdCJ/gsFL7Q2VCCb6RJLiasobKz3bvqNcBjaInjwWp G7ZaAoGZGTVcBXRNXeOgDKtLTxCGZQ3r7+HrBaywbNbzzdbvuA/xlQhvL0GQadu9 sIMuUvDsYNs0E+CLelk6JLmzC0nvuX652jSCZkkNXEL186uGEJKYxTVNNFCDb36l QaVk2IgzuR5gFOCmeL8aS5GjoQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGsEEVUL kG58Hepb9m3RPqMxJlwiMB8GA1UdIwQYMBaAFACPLMhkJB3oY16TpXRA+cLrJYuz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzQi85NTdCMjQ0MENF Q0IxMUVFQjAzMDU1ODdDNEY5QUUwMi9BSThzeUdRa0hlaGpYcE9sZEVENXd1c2xp N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJOHN5R1FrSGVoalhwT2xkRUQ1d3VzbGk3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FDM0IvOTU3QjI0NDBDRUNCMTFFRUIwMzA1NTg3QzRGOUFFMDIvMkMyNENCMjZD RUNDMTFFRUFGQ0Q1MjBBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByjFwMA0GCSqGSIb3DQEBCwUAA4IBAQC22O/DdtwPetJLqmpbceNt 6aB8JMS30HiDdb/6YnaPpTaed9ApVI4N0Bg5ZvKGjGrid+6YOGG4pHzm1ofbIJhD IINHw9Gy7a4sosUJ3vNjSlyEPd9Pmp4OWRgpZox+sMWY8iSBpctPjm7Zcyehjegh LTt6Mo/AJ1QxXvywvMZbWTg/kbNtGskgZwm27m2CgpxwXDoEu42YQ8Tjo87rGVku LdtaPek3u4rKEB/GkSitMB1KGtg0Ur7H4sn9KVtoWoBbskaW060F6HGUppftCtfx OPro/i3JIM6qE3AAk1cskC6hmssW3RQe1r3dUcqtwoltcRpeWxMq4U5T75PFW96H -----END CERTIFICATE-----Generated at Fri Mar 13 04:15:31 2026 by rpki-client