$ rpki-client -vvf rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/ED3D0F9E48C911F0B59FB71DC4F9AE02.roa File: ED3D0F9E48C911F0B59FB71DC4F9AE02.roa (raw, json) Hash identifier: 3GDgDAyytAqGw1QJu48r4HFjWRXZvVa4Wmp9uyTwi6I= Subject key identifier: 1D:EE:2C:99:3B:69:F1:EE:8F:66:0B:58:43:1A:E8:7E:8C:AD:10:CE Certificate issuer: /CN=A91249C2/serialNumber=74DCEAA8506A2B327F87A42D0741AC36EEDEEB49 Certificate serial: 94 Authority key identifier: 74:DC:EA:A8:50:6A:2B:32:7F:87:A4:2D:07:41:AC:36:EE:DE:EB:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dNzqqFBqKzJ_h6QtB0GsNu7e60k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/ED3D0F9E48C911F0B59FB71DC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:32:29 +0000 ROA not before: Mon 03 Nov 2025 07:22:08 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55785 IP address blocks: 202.36.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/dNzqqFBqKzJ_h6QtB0GsNu7e60k.crl rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/dNzqqFBqKzJ_h6QtB0GsNu7e60k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dNzqqFBqKzJ_h6QtB0GsNu7e60k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91249C2, serialNumber=74DCEAA8506A2B327F87A42D0741AC36EEDEEB49 Validity Not Before: Nov 3 07:22:08 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5835d-f739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:30:d2:cd:9c:aa:65:77:33:e9:7b:ff:fa:d2: fa:20:fa:12:61:0f:41:05:0b:85:18:10:5e:d2:da: 41:39:b8:84:4a:33:02:6c:5c:49:28:31:d1:82:b6: d0:b4:5a:e9:d8:39:a0:d1:7b:71:cb:af:6c:dc:96: c4:42:e9:09:02:5a:5d:46:ce:e8:1e:73:9f:91:4e: e5:dd:7f:a2:e5:07:68:04:e0:af:35:08:df:c0:bd: 94:00:51:05:42:d8:a0:56:be:98:b8:36:2a:43:44: 6b:e6:33:c1:46:9d:18:89:ae:9f:ff:58:81:f0:d3: 6b:bd:3e:b3:d9:42:41:58:2e:a6:85:a0:36:aa:cb: f4:c7:ad:31:fd:51:d1:5a:53:b7:11:df:c5:b8:cf: fa:d0:bc:03:06:70:56:4a:a3:9e:bb:67:dd:9f:c0: 33:45:bf:7e:b0:c7:59:ef:fd:77:7d:3a:61:5b:28: 38:92:06:39:f7:c3:fd:e3:8d:a3:8a:82:60:80:64: 61:c9:cb:31:6d:07:02:c9:78:8c:f8:90:04:a8:88: 74:7a:07:44:70:0b:ae:b7:19:a8:22:a5:79:71:61: 3e:d0:e7:56:78:69:94:8d:7c:71:28:e8:b8:ad:ce: 32:cb:2e:2b:b9:50:04:d2:31:15:be:c1:11:05:22: b7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:EE:2C:99:3B:69:F1:EE:8F:66:0B:58:43:1A:E8:7E:8C:AD:10:CE X509v3 Authority Key Identifier: keyid:74:DC:EA:A8:50:6A:2B:32:7F:87:A4:2D:07:41:AC:36:EE:DE:EB:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/dNzqqFBqKzJ_h6QtB0GsNu7e60k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dNzqqFBqKzJ_h6QtB0GsNu7e60k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/ED3D0F9E48C911F0B59FB71DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.36.227.0/24 Signature Algorithm: sha256WithRSAEncryption 00:14:2d:6c:0f:4d:7f:df:a3:fc:ee:67:5e:4b:35:c4:ff:88: c9:10:42:13:c7:73:31:f9:9d:71:a8:2e:64:10:14:53:67:5d: 27:bc:71:f3:6c:42:a0:89:9c:70:57:22:ef:ad:b1:7a:53:19: 58:20:68:5f:10:e2:57:92:6a:f1:57:27:61:b9:ac:81:00:3e: 3d:4d:a0:c3:4b:88:9b:4f:f8:4f:5d:4b:49:93:1d:8f:8c:b9: cf:29:96:8a:0e:a1:d8:1d:18:79:30:8c:ba:04:6d:71:c0:8d: f8:60:75:51:04:ff:6b:d3:90:65:0a:42:c9:b7:a1:15:a2:0c: 28:56:12:3d:ea:af:84:00:eb:a3:f5:cb:73:15:91:d3:b0:0d: 09:00:6c:2a:cd:89:3c:ab:1e:eb:18:7a:a2:f4:45:99:7e:c9: 4f:a6:6e:ae:7c:3f:4b:2c:78:78:62:92:da:0e:84:ab:80:54: 38:50:73:30:54:4a:d9:0b:de:1b:3e:8d:9f:ab:3a:c0:39:f5: 18:31:77:3e:db:6c:4e:a2:03:ef:ac:73:cf:b3:bd:3c:5e:da: b0:00:4f:22:9f:dd:3d:da:5d:76:57:45:21:83:5c:78:13:be: ba:7f:4c:e5:69:de:2a:b2:8b:14:02:47:5f:a1:ba:34:5e:b9: 51:e4:82:89 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5QzIxMTAvBgNVBAUTKDc0RENFQUE4NTA2QTJCMzI3Rjg3QTQyRDA3NDFBQzM2 RUVERUVCNDkwHhcNMjUxMTAzMDcyMjA4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODM1ZC1mNzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjDSzZyqZXcz6Xv/+tL6IPoSYQ9BBQuFGBBe0tpBObiESjMCbFxJKDHRgrbQ tFrp2Dmg0Xtxy69s3JbEQukJAlpdRs7oHnOfkU7l3X+i5QdoBOCvNQjfwL2UAFEF QtigVr6YuDYqQ0Rr5jPBRp0Yia6f/1iB8NNrvT6z2UJBWC6mhaA2qsv0x60x/VHR WlO3Ed/FuM/60LwDBnBWSqOeu2fdn8AzRb9+sMdZ7/13fTphWyg4kgY598P9442j ioJggGRhycsxbQcCyXiM+JAEqIh0egdEcAuutxmoIqV5cWE+0OdWeGmUjXxxKOi4 rc4yyy4ruVAE0jEVvsERBSK3uwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB3uLJk7 afHuj2YLWEMa6H6MrRDOMB8GA1UdIwQYMBaAFHTc6qhQaisyf4ekLQdBrDbu3utJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDlDMi9FM0EzREVFNjQ4 QzgxMUYwQjk1NzI2MUNDNEY5QUUwMi9kTnpxcUZCcUt6Sl9oNlF0QjBHc051N2U2 MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ROenFxRkJxS3pKX2g2UXRCMEdzTnU3ZTYway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ5QzIvRTNBM0RFRTY0OEM4MTFGMEI5NTcyNjFDQzRGOUFFMDIvRUQzRDBGOUU0 OEM5MTFGMEI1OUZCNzFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyiTjMA0GCSqGSIb3DQEBCwUAA4IBAQAAFC1sD01/36P87mdeSzXE /4jJEEITx3Mx+Z1xqC5kEBRTZ10nvHHzbEKgiZxwVyLvrbF6UxlYIGhfEOJXkmrx VydhuayBAD49TaDDS4ibT/hPXUtJkx2PjLnPKZaKDqHYHRh5MIy6BG1xwI34YHVR BP9r05BlCkLJt6EVogwoVhI96q+EAOuj9ctzFZHTsA0JAGwqzYk8qx7rGHqi9EWZ fslPpm6ufD9LLHh4YpLaDoSrgFQ4UHMwVErZC94bPo2fqzrAOfUYMXc+22xOogPv rHPPs708XtqwAE8in9092l12V0Uhg1x4E766f0zlad4qsosUAkdfobo0XrlR5IKJ -----END CERTIFICATE-----Generated at Thu Mar 26 04:18:46 2026 by rpki-client