$ rpki-client -vvf rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/3829F376174D11F19A004491173D8C67.roa File: 3829F376174D11F19A004491173D8C67.roa (raw, json) Hash identifier: 0k0rXsYRdBQmrsruCwfnV2JmIIADeibhHxkfkqZPiGk= Subject key identifier: E6:7C:BC:F5:09:E4:13:59:E4:C4:1F:9F:5C:32:69:FB:35:06:68:0C Certificate issuer: /CN=A918D9E8/serialNumber=06621581EA6356A9B8B5B0BDB36EA2A342817225 Certificate serial: 04 Authority key identifier: 06:62:15:81:EA:63:56:A9:B8:B5:B0:BD:B3:6E:A2:A3:42:81:72:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmIVgepjVqm4tbC9s26io0KBciU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/3829F376174D11F19A004491173D8C67.roa Signing time: Tue 03 Mar 2026 22:06:25 +0000 ROA not before: Tue 03 Mar 2026 22:06:25 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4764 IP address blocks: 203.2.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/BmIVgepjVqm4tbC9s26io0KBciU.crl rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/BmIVgepjVqm4tbC9s26io0KBciU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmIVgepjVqm4tbC9s26io0KBciU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 08:25:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D9E8, serialNumber=06621581EA6356A9B8B5B0BDB36EA2A342817225 Validity Not Before: Mar 3 22:06:25 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a75b61-65b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:2e:12:bc:bd:91:c3:16:b1:ae:25:be:a9:18: d1:ba:68:73:34:3a:ec:91:65:b5:45:2c:a4:9e:80: d7:1e:15:09:40:e9:3e:7b:39:c9:db:d0:6d:5e:15: ec:64:c6:35:bd:82:9c:58:14:bf:1b:08:9e:60:c1: 58:3b:be:bb:fe:18:9e:46:c2:f4:12:44:d1:f9:ef: 8e:d7:99:08:b3:68:5f:03:c5:17:be:7d:c8:2c:e1: 2e:68:83:f3:ed:1a:05:57:2b:d8:80:fb:64:35:ea: 2f:aa:1e:bb:e4:c9:4f:45:a1:ae:6b:04:9b:b5:59: c9:ec:50:a5:69:e6:c7:b9:32:e3:bc:1d:e0:44:38: 55:41:c8:21:61:85:40:5a:bd:62:da:8b:95:e5:05: 4c:ed:b1:08:1e:c1:bb:d0:77:92:45:8f:96:06:9a: 3e:8e:42:0b:c5:b2:03:b8:b9:e8:fd:fd:69:e6:e6: 6a:da:35:31:ea:8b:b9:ad:ea:94:cd:9a:af:75:72: 1f:81:ab:52:89:1d:e3:76:aa:3f:60:73:f7:6a:90: a5:8d:5c:8b:e5:09:31:78:bd:83:76:98:4a:0d:b6: c3:1a:ae:0e:36:27:6e:13:f0:71:e5:1e:66:ff:0a: 95:e5:c8:65:30:ee:fa:d6:1b:c3:07:c7:5a:97:d6: 4f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7C:BC:F5:09:E4:13:59:E4:C4:1F:9F:5C:32:69:FB:35:06:68:0C X509v3 Authority Key Identifier: keyid:06:62:15:81:EA:63:56:A9:B8:B5:B0:BD:B3:6E:A2:A3:42:81:72:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/BmIVgepjVqm4tbC9s26io0KBciU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmIVgepjVqm4tbC9s26io0KBciU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/3829F376174D11F19A004491173D8C67.roa sbgp-ipAddrBlock: critical IPv4: 203.2.217.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:95:71:b2:bd:05:9e:1e:42:c6:26:ac:50:19:59:08:b7:87: 33:fb:77:6a:5e:a2:1d:1a:e1:1f:0b:5c:fb:b2:52:cd:15:83: a1:41:77:4d:e5:68:45:c3:df:87:29:1b:1c:92:52:b8:9f:3d: e2:a6:2e:01:ab:14:b4:1d:b4:51:98:2e:7a:7c:4c:a7:40:8b: 59:9e:a6:01:36:77:93:55:99:d8:66:81:03:01:c3:11:b6:8d: b7:ff:1b:26:65:ee:8c:1f:ce:31:9b:15:2c:b9:93:72:f5:32: 9e:71:fd:76:96:29:47:c9:ba:df:a9:52:7f:c2:51:6e:da:0b: 2e:e0:73:ab:39:28:cc:74:c7:72:8a:af:00:6d:a6:f1:84:7d: ba:f5:9d:dc:21:b5:17:6e:e0:e1:52:c8:f8:d8:6b:b0:c1:3e: 9c:df:2c:f4:c7:45:bb:23:d0:f7:83:57:1d:10:22:e1:70:7f: fb:64:9f:d4:4a:2d:55:c3:a5:93:84:9c:96:7e:da:81:b6:89: 34:32:9f:be:20:0a:31:ab:45:73:bf:46:4e:0b:f3:b7:55:d8: 79:e5:04:e4:86:54:36:d4:15:88:30:f4:37:b9:f3:86:06:ef: 40:ad:0c:99:0d:f9:6f:39:a3:2f:1d:94:57:9c:13:92:29:29: 9a:31:1f:13 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDlFODExMC8GA1UEBRMoMDY2MjE1ODFFQTYzNTZBOUI4QjVCMEJEQjM2RUEyQTM0 MjgxNzIyNTAeFw0yNjAzMDMyMjA2MjVaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTc1YjYxLTY1YjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCALhK8vZHDFrGuJb6pGNG6aHM0OuyRZbVFLKSegNceFQlA6T57Ocnb0G1eFexk xjW9gpxYFL8bCJ5gwVg7vrv+GJ5GwvQSRNH5747XmQizaF8DxRe+fcgs4S5og/Pt GgVXK9iA+2Q16i+qHrvkyU9Foa5rBJu1WcnsUKVp5se5MuO8HeBEOFVByCFhhUBa vWLai5XlBUztsQgewbvQd5JFj5YGmj6OQgvFsgO4uej9/Wnm5mraNTHqi7mt6pTN mq91ch+Bq1KJHeN2qj9gc/dqkKWNXIvlCTF4vYN2mEoNtsMarg42J24T8HHlHmb/ CpXlyGUw7vrWG8MHx1qX1k+LAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU5ny89Qnk E1nkxB+fXDJp+zUGaAwwHwYDVR0jBBgwFoAUBmIVgepjVqm4tbC9s26io0KBciUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEOUU4L0RBQTQ3N0U0MTc0 QzExRjFBMTE5RjREODE2M0Q4QzY3L0JtSVZnZXBqVnFtNHRiQzlzMjZpbzBLQmNp VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQm1JVmdlcGpWcW00dGJDOXMyNmlvMEtCY2lVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDlFOC9EQUE0NzdFNDE3NEMxMUYxQTExOUY0RDgxNjNEOEM2Ny8zODI5RjM3NjE3 NEQxMUYxOUEwMDQ0OTExNzNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADLAtkwDQYJKoZIhvcNAQELBQADggEBAC2VcbK9BZ4eQsYmrFAZWQi3 hzP7d2peoh0a4R8LXPuyUs0Vg6FBd03laEXD34cpGxySUrifPeKmLgGrFLQdtFGY Lnp8TKdAi1mepgE2d5NVmdhmgQMBwxG2jbf/GyZl7owfzjGbFSy5k3L1Mp5x/XaW KUfJut+pUn/CUW7aCy7gc6s5KMx0x3KKrwBtpvGEfbr1ndwhtRdu4OFSyPjYa7DB PpzfLPTHRbsj0PeDVx0QIuFwf/tkn9RKLVXDpZOEnJZ+2oG2iTQyn74gCjGrRXO/ Rk4L87dV2HnlBOSGVDbUFYgw9De584YG70CtDJkN+W85oy8dlFecE5IpKZoxHxM= -----END CERTIFICATE-----Generated at Sat Mar 7 23:59:49 2026 by rpki-client