$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8E2676DC17DC11EE959DE671C4F9AE02.roa File: 8E2676DC17DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: eh/7xK3jzeTfsbyM/J4kfcM/+VwQ8Z7/19vJJZdyK1Y= Subject key identifier: 4B:84:E3:4E:5B:09:4B:8C:52:33:53:41:7F:28:DD:A8:F4:2F:36:5C Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0DC3 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8E2676DC17DC11EE959DE671C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:42:18 +0000 ROA not before: Sun 02 Nov 2025 19:08:19 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 65077 IP address blocks: 1.9.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3523 (0xdc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 2 19:08:19 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4888a-ca5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b4:27:5c:75:05:16:de:da:b2:5b:0a:a4:24: d7:6e:09:7d:92:d8:e4:fc:71:c1:d1:c9:92:ae:10: f0:14:43:33:c3:42:29:9d:aa:75:92:94:2f:77:a3: 24:c7:ab:5b:47:30:a0:27:c3:35:94:48:45:15:8e: 1e:42:ef:dc:b6:7b:b6:31:20:68:c4:81:57:5e:a1: 9c:64:6a:9b:db:ca:98:58:7c:23:4d:a1:e2:db:01: 35:59:c8:ac:9f:68:d8:95:d1:12:8e:28:68:9b:3c: fa:9b:85:4c:2d:aa:aa:74:05:83:52:81:d4:52:56: 8e:41:97:88:5c:c6:50:2f:fa:34:c6:ac:22:7b:86: 40:d2:9d:1a:ca:cf:2a:7d:81:13:17:58:56:14:35: fe:00:ea:7a:97:93:c0:21:76:70:f4:f9:c6:e8:59: 22:f0:4b:96:b5:d3:08:5f:39:0d:e1:57:41:cb:93: 90:a4:15:91:3a:83:75:1d:e8:5d:56:2a:84:d2:49: da:bc:2d:16:9b:5a:de:a8:30:ba:be:45:a9:02:91: 35:86:5f:b9:1d:92:14:1f:40:9c:f1:b1:e9:18:d5: 10:ac:7a:68:91:73:26:dc:87:d9:16:20:99:39:a6: b5:a7:2a:ea:b4:c5:34:95:0f:3a:6e:90:6d:61:af: 74:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:84:E3:4E:5B:09:4B:8C:52:33:53:41:7F:28:DD:A8:F4:2F:36:5C X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8E2676DC17DC11EE959DE671C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 1.9.31.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:4e:f8:5c:e2:77:80:23:65:3f:c3:07:31:25:0a:0a:ab:b3: 4f:4a:65:7f:02:92:a8:94:ad:4e:1b:3d:33:45:26:e4:91:a3: 4f:07:ff:49:bc:3d:0c:97:66:e8:77:4d:58:eb:7c:8b:0f:66: 42:9d:a7:b1:77:65:79:b2:aa:d8:37:f2:ab:50:3d:5f:28:91: c0:23:7f:f2:a7:0d:40:0f:03:c6:3e:0b:f9:59:b9:9d:16:d1: 50:cb:7e:1d:f8:d4:a5:fa:ed:92:1f:a7:9d:1e:6d:54:8a:e0: 3b:70:d5:ed:48:f0:0b:00:9a:9d:74:62:5e:bf:f0:60:38:ef: 4a:73:90:29:ce:71:9d:5d:11:51:46:c6:cb:7e:60:f6:5f:31: c3:d3:c7:e0:8f:ca:ad:d7:46:2b:b2:22:b0:20:28:24:24:e6: a5:15:99:d9:29:67:51:1c:13:b1:05:38:c2:5c:b9:eb:53:80: 03:e1:99:12:5c:73:4d:43:cc:3e:f6:ac:e8:59:92:e0:6b:79: 94:d8:0d:b8:57:34:6f:32:01:df:c3:f7:fe:b2:f5:65:b4:4c: 0b:4c:bb:b3:b4:99:cd:0f:fe:0f:79:84:5f:76:1c:4e:0d:68: 7b:a7:18:2e:8a:02:df:d2:48:85:28:54:08:ab:71:ee:e8:54: fe:57:08:e0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTAyMTkwODE5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODg4YS1jYTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rQnXHUFFt7aslsKpCTXbgl9ktjk/HHB0cmSrhDwFEMzw0Ipnap1kpQvd6Mk x6tbRzCgJ8M1lEhFFY4eQu/ctnu2MSBoxIFXXqGcZGqb28qYWHwjTaHi2wE1Wcis n2jYldESjihomzz6m4VMLaqqdAWDUoHUUlaOQZeIXMZQL/o0xqwie4ZA0p0ays8q fYETF1hWFDX+AOp6l5PAIXZw9PnG6Fki8EuWtdMIXzkN4VdBy5OQpBWROoN1Hehd ViqE0knavC0Wm1reqDC6vkWpApE1hl+5HZIUH0Cc8bHpGNUQrHpokXMm3IfZFiCZ Oaa1pyrqtMU0lQ86bpBtYa90VwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEuE405b CUuMUjNTQX8o3aj0LzZcMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEUyNjc2REMx N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAAQkfMA0GCSqGSIb3DQEBCwUAA4IBAQAdTvhc4neAI2U/wwcxJQoK q7NPSmV/ApKolK1OGz0zRSbkkaNPB/9JvD0Ml2bod01Y63yLD2ZCnaexd2V5sqrY N/KrUD1fKJHAI3/ypw1ADwPGPgv5WbmdFtFQy34d+NSl+u2SH6edHm1UiuA7cNXt SPALAJqddGJev/BgOO9Kc5ApznGdXRFRRsbLfmD2XzHD08fgj8qt10YrsiKwICgk JOalFZnZKWdRHBOxBTjCXLnrU4AD4ZkSXHNNQ8w+9qzoWZLga3mU2A24VzRvMgHf w/f+svVltEwLTLuztJnND/4PeYRfdhxODWh7pxguigLf0kiFKFQIq3Hu6FT+Vwjg -----END CERTIFICATE-----Generated at Thu Mar 26 16:03:45 2026 by rpki-client