$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/F0FCC9ECABF411F0B9E4F837C4F9AE02.roa File: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (raw, json) Hash identifier: yjLxdwzIuckVEpvjPtBFZMr56OhqZEN8C8fQw3Xhxos= Subject key identifier: 21:37:45:50:E1:4F:F6:C7:30:D8:D6:63:A1:62:A8:D4:DE:98:2F:F0 Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 0140 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/F0FCC9ECABF411F0B9E4F837C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:17:37 +0000 ROA not before: Fri 05 Dec 2025 03:43:30 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 26658 IP address blocks: 202.88.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Dec 5 03:43:30 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a58df0-f1c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2f:36:0b:a0:94:0c:34:75:7b:1a:8a:8c:bc: 97:ad:ae:10:72:21:c2:4a:c0:40:71:05:63:cb:ba: 61:ce:ed:f8:32:0e:0e:be:02:73:ba:96:43:1d:8f: a3:08:d7:f9:85:25:ac:c7:a8:bc:44:a8:de:b4:a5: 79:23:b9:74:ba:7f:09:ac:31:f3:8f:7c:57:09:88: cb:47:5c:96:04:5c:59:3c:cc:39:67:bd:85:ea:91: bd:97:f9:76:d3:04:f1:fd:29:d0:4d:97:a2:65:6e: 5c:1e:3d:d0:0b:b0:10:33:d8:39:42:f9:15:b2:0a: 9f:7b:0e:ea:ad:52:93:3f:7f:c3:30:e7:a2:2f:ea: 7d:80:60:73:b4:e3:b9:b7:30:db:ed:b1:fc:07:62: e4:f5:c5:6e:1d:fb:72:36:aa:3b:71:6e:1b:4b:f3: 80:0a:23:30:0c:ae:0d:84:9d:42:e9:09:57:23:49: 9a:5c:aa:27:3a:78:08:41:a8:2b:43:0c:1a:f5:43: 0c:c9:1e:b9:dd:a9:4e:2c:b4:c6:da:62:96:19:6f: 48:e9:5f:d9:9b:35:66:22:a4:1a:cf:28:db:07:aa: 06:e7:e9:86:41:57:11:0e:5e:a4:6b:cc:38:07:72: 60:96:56:ea:60:95:f8:42:4b:8d:e7:6b:e3:f4:e4: dd:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:37:45:50:E1:4F:F6:C7:30:D8:D6:63:A1:62:A8:D4:DE:98:2F:F0 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/F0FCC9ECABF411F0B9E4F837C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.88.36.0/22 Signature Algorithm: sha256WithRSAEncryption 15:e7:21:57:04:4d:b7:31:3d:d1:c1:27:06:4b:6b:63:53:1e: 30:b3:62:b1:c5:c7:e2:2f:ba:2f:62:51:c9:27:b9:25:81:18: b1:5f:e1:a1:2f:bc:1a:72:40:ea:64:eb:70:e2:99:50:02:f4: 18:96:d8:1e:37:47:32:5c:17:31:50:7a:1a:29:dc:36:c6:42: 68:75:e0:ea:73:45:a3:f4:89:b6:16:0f:93:24:e4:e0:40:40: 0a:af:03:e8:98:9b:06:97:d0:1f:77:45:60:f2:ef:3d:71:4e: cb:4d:40:2f:5a:1c:63:30:b9:b7:82:a2:72:4a:e9:ed:2f:82: 99:a5:f5:d4:25:68:d3:88:8f:3e:f8:e0:27:8c:df:df:df:9e: e4:3d:36:dc:08:c2:5e:9c:fb:04:e4:e0:26:49:cc:79:7d:08: 8f:75:77:e2:df:88:aa:c8:fb:e1:36:c7:4d:27:de:df:6e:44: 70:1d:46:f7:35:14:4d:d0:56:a3:69:68:02:be:35:82:b2:b4: d0:21:d0:3e:83:d1:ce:df:23:b5:b6:da:8f:2e:c4:48:7e:02: 13:b7:56:fe:d5:40:9a:3c:1d:b4:d3:8f:d3:a7:d7:b7:6c:99: 62:70:76:6e:33:76:78:ea:e5:37:02:b1:80:23:e1:d8:a9:06: df:cd:0a:51 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUxMjA1MDM0MzMwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGRmMC1mMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvy82C6CUDDR1exqKjLyXra4QciHCSsBAcQVjy7phzu34Mg4OvgJzupZDHY+j CNf5hSWsx6i8RKjetKV5I7l0un8JrDHzj3xXCYjLR1yWBFxZPMw5Z72F6pG9l/l2 0wTx/SnQTZeiZW5cHj3QC7AQM9g5QvkVsgqfew7qrVKTP3/DMOeiL+p9gGBztOO5 tzDb7bH8B2Lk9cVuHftyNqo7cW4bS/OACiMwDK4NhJ1C6QlXI0maXKonOngIQagr Qwwa9UMMyR653alOLLTG2mKWGW9I6V/ZmzVmIqQazyjbB6oG5+mGQVcRDl6ka8w4 B3JgllbqYJX4QkuN52vj9OTdJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCE3RVDh T/bHMNjWY6FiqNTemC/wMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgyNEEvNEFERjMzRkM1QjlBMTFFRjgzMDdGNTQwQzRGOUFFMDIvRjBGQ0M5RUNB QkY0MTFGMEI5RTRGODM3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCylgkMA0GCSqGSIb3DQEBCwUAA4IBAQAV5yFXBE23MT3RwScGS2tj Ux4ws2KxxcfiL7ovYlHJJ7klgRixX+GhL7wackDqZOtw4plQAvQYltgeN0cyXBcx UHoaKdw2xkJodeDqc0Wj9Im2Fg+TJOTgQEAKrwPomJsGl9Afd0Vg8u89cU7LTUAv WhxjMLm3gqJySuntL4KZpfXUJWjTiI8++OAnjN/f357kPTbcCMJenPsE5OAmScx5 fQiPdXfi34iqyPvhNsdNJ97fbkRwHUb3NRRN0FajaWgCvjWCsrTQIdA+g9HO3yO1 ttqPLsRIfgITt1b+1UCaPB2004/Tp9e3bJlicHZuM3Z46uU3ArGAI+HYqQbfzQpR -----END CERTIFICATE-----Generated at Sat Mar 21 22:26:53 2026 by rpki-client