$ rpki-client -vvf rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/807EEE68281011ED9C81C50DC4F9AE02.roa File: 807EEE68281011ED9C81C50DC4F9AE02.roa (raw, json) Hash identifier: Hqy1LRVKHy8Ftub7eFKosjYqL2kysNH4BmXhj25dFeY= Subject key identifier: 2F:9A:50:B7:5B:B7:1E:73:EB:71:D6:D1:F3:27:57:55:B9:D4:C3:46 Certificate issuer: /CN=A9155AE4/serialNumber=3CF91608226819C3E9DA84D1195B5326F9249FBD Certificate serial: 035B Authority key identifier: 3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/807EEE68281011ED9C81C50DC4F9AE02.roa Signing time: Sun 15 Mar 2026 00:34:25 +0000 ROA not before: Sun 15 Mar 2026 00:34:25 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 9716 IP address blocks: 203.18.236.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 859 (0x35b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155AE4, serialNumber=3CF91608226819C3E9DA84D1195B5326F9249FBD Validity Not Before: Mar 15 00:34:25 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b5fe91-ddcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:51:05:ab:86:fb:bd:53:81:d3:b2:9b:8b:89: 0d:b5:48:75:e8:a2:47:64:fc:bb:db:1a:1c:38:ab: 34:6a:ba:fd:bf:72:81:37:1f:20:22:82:2d:3e:5a: 28:b6:57:c1:ad:46:16:61:a2:e0:75:cd:11:c6:78: 8a:79:23:17:16:f3:45:fd:ac:a1:ae:7f:96:d8:40: b9:aa:28:48:65:38:f6:69:00:9f:c2:df:d9:a0:ed: 1c:ad:59:0d:db:07:a8:f8:6a:17:f2:3d:e5:42:80: 38:53:5c:8c:44:20:e6:41:21:8c:d9:69:29:10:d0: 99:ee:45:2a:f6:04:d2:51:02:1a:33:ba:0a:96:ea: 6e:00:ea:91:07:18:65:92:1a:1f:db:9a:1b:66:28: b0:f5:7b:2a:e9:55:17:2b:e1:2c:db:38:f7:82:cc: f9:44:6e:81:13:cb:13:a5:70:fb:cf:97:1b:8e:60: 70:3d:7d:d4:ea:5e:73:ca:5e:1d:09:c1:1c:6c:ce: 54:18:68:ed:26:d7:4c:f7:f8:bc:57:c1:2f:12:f3: 27:da:3d:7e:36:e3:4b:17:ce:48:a6:0a:8c:81:80: 99:8a:b4:e8:83:cf:a4:c4:aa:35:c1:c4:4d:85:22: 91:c8:9c:c4:f9:3c:f8:71:d7:62:1b:53:32:77:83: 82:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:9A:50:B7:5B:B7:1E:73:EB:71:D6:D1:F3:27:57:55:B9:D4:C3:46 X509v3 Authority Key Identifier: keyid:3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/807EEE68281011ED9C81C50DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.18.236.0/24 Signature Algorithm: sha256WithRSAEncryption 28:1e:16:1c:17:cf:d7:96:99:0f:57:7a:e6:18:ca:0d:e5:b1: ba:a9:cc:34:2b:8b:82:f6:b8:39:e9:01:76:3f:fe:69:50:14: 22:5b:39:db:c9:ab:8d:bd:cb:0d:29:8a:a0:6d:ce:be:0b:ed: 6c:78:e2:9a:4c:ea:63:84:da:15:a6:93:6c:05:91:ff:a4:1f: 48:a4:a7:b3:57:48:a3:99:7a:93:3e:93:92:ed:34:d0:07:af: 31:61:da:da:22:52:db:85:2f:3d:97:16:84:59:20:1f:21:50: 95:95:b8:69:eb:8f:2a:9f:e9:9f:d3:8d:5b:12:e4:ee:e8:f1: 33:0f:39:e3:5e:e1:57:98:45:68:f1:a2:89:b7:cb:73:4f:7a: 6a:64:ce:21:a5:dd:e6:ac:c1:20:98:7b:7a:9c:0a:34:4f:ad: 8d:19:28:6d:12:8a:77:92:c7:2e:50:a0:40:c3:89:2c:65:9d: 29:cd:b5:af:58:22:30:75:bb:69:ef:f2:f2:74:3c:41:c4:ad: 15:19:9e:01:22:e6:46:cd:ba:05:1c:7f:8c:e2:72:56:3b:97: 65:89:da:09:05:91:41:19:fa:83:33:5c:6c:80:91:46:76:f9: 7a:86:c7:3c:ab:f7:5a:ff:94:01:e1:50:90:c6:9a:c9:43:bc: 43:50:4d:8a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVBRTQxMTAvBgNVBAUTKDNDRjkxNjA4MjI2ODE5QzNFOURBODREMTE5NUI1MzI2 RjkyNDlGQkQwHhcNMjYwMzE1MDAzNDI1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI1ZmU5MS1kZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lEFq4b7vVOB07Kbi4kNtUh16KJHZPy72xocOKs0arr9v3KBNx8gIoItPloo tlfBrUYWYaLgdc0RxniKeSMXFvNF/ayhrn+W2EC5qihIZTj2aQCfwt/ZoO0crVkN 2weo+GoX8j3lQoA4U1yMRCDmQSGM2WkpENCZ7kUq9gTSUQIaM7oKlupuAOqRBxhl khof25obZiiw9Xsq6VUXK+Es2zj3gsz5RG6BE8sTpXD7z5cbjmBwPX3U6l5zyl4d CcEcbM5UGGjtJtdM9/i8V8EvEvMn2j1+NuNLF85IpgqMgYCZirTog8+kxKo1wcRN hSKRyJzE+Tz4cddiG1Myd4OCNwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC+aULdb tx5z63HW0fMnV1W51MNGMB8GA1UdIwQYMBaAFDz5FggiaBnD6dqE0RlbUyb5JJ+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUFFNC9FNUQ2RDBBQzA2 NTMxMUVEODI3QkVGNTRDNEY5QUUwMi9QUGtXQ0NKb0djUHAyb1RSR1Z0VEp2a2tu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQa1dDQ0pvR2NQcDJvVFJHVnRUSnZra243MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTVBRTQvRTVENkQwQUMwNjUzMTFFRDgyN0JFRjU0QzRGOUFFMDIvODA3RUVFNjgy ODEwMTFFRDlDODFDNTBEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxLsMA0GCSqGSIb3DQEBCwUAA4IBAQAoHhYcF8/XlpkPV3rmGMoN 5bG6qcw0K4uC9rg56QF2P/5pUBQiWznbyauNvcsNKYqgbc6+C+1seOKaTOpjhNoV ppNsBZH/pB9IpKezV0ijmXqTPpOS7TTQB68xYdraIlLbhS89lxaEWSAfIVCVlbhp 648qn+mf041bEuTu6PEzDznjXuFXmEVo8aKJt8tzT3pqZM4hpd3mrMEgmHt6nAo0 T62NGShtEop3kscuUKBAw4ksZZ0pzbWvWCIwdbtp7/LydDxBxK0VGZ4BIuZGzboF HH+M4nJWO5dlidoJBZFBGfqDM1xsgJFGdvl6hsc8q/da/5QB4VCQxprJQ7xDUE2K -----END CERTIFICATE-----Generated at Thu Mar 26 20:59:21 2026 by rpki-client