$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/C85D80CE43F611EF84151D6FC4F9AE02.roa File: C85D80CE43F611EF84151D6FC4F9AE02.roa (raw, json) Hash identifier: DT8F2vSiTnDZ92tEugXg46ga5AYrQXf1PZTpjRK3m7c= Subject key identifier: E6:FB:73:96:51:EB:8F:2E:29:0A:47:C5:79:7B:01:C1:7B:99:C9:59 Certificate issuer: /CN=A91C0D37/serialNumber=CF41CDAF41C5700129064CEF284003BEF0B9BFC2 Certificate serial: 01F5 Authority key identifier: CF:41:CD:AF:41:C5:70:01:29:06:4C:EF:28:40:03:BE:F0:B9:BF:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/C85D80CE43F611EF84151D6FC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:57:00 +0000 ROA not before: Fri 09 Jan 2026 03:22:24 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 18119 IP address blocks: 202.36.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.crl rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 02:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0D37, serialNumber=CF41CDAF41C5700129064CEF284003BEF0B9BFC2 Validity Not Before: Jan 9 03:22:24 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5972c-72ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0e:8c:55:c7:cf:2f:97:b5:d5:8f:a1:7b:71: 4a:b2:85:47:9e:8b:05:2e:ab:14:25:dd:25:3a:88: bc:aa:3e:98:57:38:41:12:88:de:82:de:87:38:1d: d1:71:4b:0f:5a:8c:71:d5:5a:aa:50:e4:d5:ba:eb: 90:75:5a:45:1d:fd:09:b8:c7:13:5a:e4:41:14:4d: be:01:80:87:51:19:b5:39:64:15:87:c4:30:58:ae: 85:6b:9a:cf:5f:ce:28:d9:76:bc:06:6a:8e:95:16: dc:e2:24:0c:22:f6:f7:e5:d0:3f:01:3e:1a:8c:9f: be:59:66:61:68:39:90:20:25:11:e8:5b:6a:0e:43: eb:fa:03:d3:e4:b0:9b:8c:4d:36:4e:a8:09:11:0e: 1c:0c:62:db:9d:42:8d:11:90:4e:53:87:6e:5e:05: 7c:53:68:d8:60:34:e3:20:c5:15:95:8e:f5:87:fa: 11:7a:f5:a9:d5:53:62:45:6e:e4:5e:79:cd:07:fa: ae:bc:fe:74:65:39:9a:80:ea:7b:68:29:f5:46:e2: 76:ed:fb:37:99:86:4b:72:40:85:e5:38:4d:ec:bc: e4:77:5e:13:0e:fb:fa:38:d5:9b:0d:81:3c:7b:9b: da:64:4d:01:95:7e:15:ad:9a:75:9e:a3:43:5c:e9: cb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:FB:73:96:51:EB:8F:2E:29:0A:47:C5:79:7B:01:C1:7B:99:C9:59 X509v3 Authority Key Identifier: keyid:CF:41:CD:AF:41:C5:70:01:29:06:4C:EF:28:40:03:BE:F0:B9:BF:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/C85D80CE43F611EF84151D6FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.36.44.0/24 Signature Algorithm: sha256WithRSAEncryption 44:bc:70:a6:23:56:0e:ff:72:ca:b0:71:48:01:bb:ff:7b:26: a3:19:ae:9b:84:1d:ca:4b:d9:d0:64:48:34:1a:77:db:22:63: fb:e6:9e:89:6f:4a:fb:e4:44:a9:65:ee:5f:55:59:1b:20:87: 2a:89:89:c4:3d:36:65:3c:2a:d9:d0:25:5f:c3:48:c2:00:2c: c0:6f:42:8a:bc:7a:a9:38:a3:92:59:fa:a9:f7:d7:de:40:88: 9a:4d:8d:80:98:b9:dd:73:88:a1:24:a0:73:ac:fd:b8:14:68: 53:3f:52:10:21:1e:d2:50:ae:71:40:54:27:43:60:38:0b:d4: 1b:ea:7e:02:12:83:b2:6a:da:d1:07:2b:fb:1c:a5:87:43:41: 2f:aa:d0:05:22:3c:7e:88:6f:ec:1d:4f:2d:d7:be:ae:03:d5: 90:14:fd:b6:ca:b6:e9:f5:f7:a2:4b:1a:25:03:36:f4:6b:cc: 32:a0:30:69:b9:d2:77:04:61:11:25:b0:f6:a7:06:fe:19:61: fd:0e:4e:2f:a4:7e:92:ef:0a:e6:fe:cd:c8:d6:72:ad:e0:b0: e6:05:3b:4d:5e:d6:e8:c1:e2:52:e6:7c:5e:9e:62:ea:46:f5: f0:11:48:de:eb:01:14:7b:f1:a0:ff:b2:95:72:79:57:73:4b: 5b:c0:2a:26 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBEMzcxMTAvBgNVBAUTKENGNDFDREFGNDFDNTcwMDEyOTA2NENFRjI4NDAwM0JF RjBCOUJGQzIwHhcNMjYwMTA5MDMyMjI0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTcyYy03MmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArw6MVcfPL5e11Y+he3FKsoVHnosFLqsUJd0lOoi8qj6YVzhBEojegt6HOB3R cUsPWoxx1VqqUOTVuuuQdVpFHf0JuMcTWuRBFE2+AYCHURm1OWQVh8QwWK6Fa5rP X84o2Xa8BmqOlRbc4iQMIvb35dA/AT4ajJ++WWZhaDmQICUR6FtqDkPr+gPT5LCb jE02TqgJEQ4cDGLbnUKNEZBOU4duXgV8U2jYYDTjIMUVlY71h/oRevWp1VNiRW7k XnnNB/quvP50ZTmagOp7aCn1RuJ27fs3mYZLckCF5ThN7Lzkd14TDvv6ONWbDYE8 e5vaZE0BlX4VrZp1nqNDXOnLqwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOb7c5ZR 648uKQpHxXl7AcF7mclZMB8GA1UdIwQYMBaAFM9Bza9BxXABKQZM7yhAA77wub/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEQzNy8wRThCQ0IzODUz NUIxMUVFOUJGMjBBNkJDNEY5QUUwMi96MEhOcjBIRmNBRXBCa3p2S0VBRHZ2QzV2 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3owSE5yMEhGY0FFcEJrenZLRUFEdnZDNXY4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBEMzcvMEU4QkNCMzg1MzVCMTFFRTlCRjIwQTZCQzRGOUFFMDIvQzg1RDgwQ0U0 M0Y2MTFFRjg0MTUxRDZGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyiQsMA0GCSqGSIb3DQEBCwUAA4IBAQBEvHCmI1YO/3LKsHFIAbv/ eyajGa6bhB3KS9nQZEg0GnfbImP75p6Jb0r75ESpZe5fVVkbIIcqiYnEPTZlPCrZ 0CVfw0jCACzAb0KKvHqpOKOSWfqp99feQIiaTY2AmLndc4ihJKBzrP24FGhTP1IQ IR7SUK5xQFQnQ2A4C9Qb6n4CEoOyatrRByv7HKWHQ0EvqtAFIjx+iG/sHU8t176u A9WQFP22yrbp9feiSxolAzb0a8wyoDBpudJ3BGERJbD2pwb+GWH9Dk4vpH6S7wrm /s3I1nKt4LDmBTtNXtboweJS5nxenmLqRvXwEUje6wEUe/Gg/7KVcnlXc0tbwCom -----END CERTIFICATE-----Generated at Fri Mar 13 13:52:10 2026 by rpki-client