$ rpki-client -vvf rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/FD6286EA22B611EFBF5D3960C4F9AE02.roa File: FD6286EA22B611EFBF5D3960C4F9AE02.roa (raw, json) Hash identifier: Y/Om0EuE4DxLCw/qgrFqWJHVkuUt8pRbj21WLvoBDpA= Subject key identifier: B3:94:7F:B2:D1:57:2F:76:A8:0F:0C:49:B5:61:4F:AA:42:A7:54:F7 Certificate issuer: /CN=A915B8D0/serialNumber=254EAF6490754F507DB81CE90DDB629B622F4660 Certificate serial: 017D Authority key identifier: 25:4E:AF:64:90:75:4F:50:7D:B8:1C:E9:0D:DB:62:9B:62:2F:46:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JU6vZJB1T1B9uBzpDdtim2IvRmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/FD6286EA22B611EFBF5D3960C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:08:42 +0000 ROA not before: Mon 09 Feb 2026 04:23:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29802 IP address blocks: 203.26.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/JU6vZJB1T1B9uBzpDdtim2IvRmA.crl rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/JU6vZJB1T1B9uBzpDdtim2IvRmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JU6vZJB1T1B9uBzpDdtim2IvRmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B8D0, serialNumber=254EAF6490754F507DB81CE90DDB629B622F4660 Validity Not Before: Feb 9 04:23:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69a43a5a-a662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:1b:f5:38:e4:eb:99:2c:25:fe:d8:d2:1d: d2:d0:1c:5a:f2:21:64:d2:71:b6:78:5e:46:e1:5c: fa:18:5a:4d:ee:72:57:bd:ab:62:2c:af:1e:11:17: 52:94:a3:bf:d2:36:01:a7:38:ec:44:1c:8f:f2:c0: dd:ae:c4:e4:a0:97:12:25:65:ec:dd:ee:43:48:a0: ca:e7:33:a7:8d:49:ab:3f:f4:94:02:cf:b6:e7:bb: d5:41:ad:e5:d1:79:3b:c1:d8:30:ef:0a:86:67:3b: f0:d5:20:1e:eb:06:85:c7:70:0d:4f:d9:34:a2:99: 39:97:2f:84:68:4f:52:a4:c7:23:73:63:f5:b3:8e: 3b:1f:f0:3b:29:73:b6:c6:5d:bf:60:6d:25:23:c2: 41:af:62:40:c5:7f:43:0e:88:5c:fa:55:d2:b8:3d: de:14:47:45:12:53:d6:24:20:6d:f4:df:c2:62:6d: d3:8e:6d:8b:a4:63:4c:35:df:1a:18:64:ec:fd:42: eb:9b:86:a2:41:2c:42:4b:b8:04:7e:b2:8d:eb:cf: ce:84:a1:73:77:8f:91:fb:ad:7f:ff:95:19:51:3f: 69:91:53:ba:d7:6b:8e:57:30:8d:10:57:6c:03:0a: c9:6b:e8:a2:b3:13:b2:00:55:2b:cd:75:90:b8:ba: 0f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:94:7F:B2:D1:57:2F:76:A8:0F:0C:49:B5:61:4F:AA:42:A7:54:F7 X509v3 Authority Key Identifier: keyid:25:4E:AF:64:90:75:4F:50:7D:B8:1C:E9:0D:DB:62:9B:62:2F:46:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/JU6vZJB1T1B9uBzpDdtim2IvRmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JU6vZJB1T1B9uBzpDdtim2IvRmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/FD6286EA22B611EFBF5D3960C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.26.150.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:38:4b:af:0d:2d:a9:a4:ba:3f:3b:cb:ab:d3:d1:9e:00:82: a5:64:18:39:f6:63:1c:d0:8a:4d:95:fa:b3:b9:50:da:e4:83: 2d:64:2a:fd:9a:32:d5:cd:b1:43:3b:b3:6a:74:67:58:e6:f5: e1:61:d4:08:c4:ab:91:26:be:f2:5d:50:92:e5:87:07:4c:ed: 94:c2:e5:8a:78:12:0a:27:c6:a2:d7:ef:1a:fe:9c:de:4a:7e: 7d:87:ae:d8:d1:99:ec:b0:08:9b:54:b1:7d:65:36:4f:12:b7: c6:63:5b:ba:2d:f3:1b:5b:fa:52:b1:2e:e9:07:52:3d:cd:f9: 1a:6a:0f:37:69:cd:91:4d:c4:db:89:6e:3b:f7:b2:c5:4c:eb: 14:4d:51:31:f9:13:b3:2b:56:21:c2:4f:79:98:e5:a2:a7:76: d3:f0:73:2f:96:0b:04:0a:ee:44:7e:89:37:e2:85:2e:55:6a: 66:e1:d2:d6:b5:50:04:78:70:11:b0:2a:7e:13:14:a6:ff:b8: 88:0b:21:16:a7:94:1a:bf:20:b0:75:fe:05:db:7a:8f:9e:3e: bd:c7:67:bc:2b:1a:d5:26:19:36:2a:5c:88:61:bf:1d:0d:38: b4:0b:98:fd:f7:36:02:02:ce:8b:25:c3:f4:0c:5a:3d:33:ce: 48:2a:6e:70 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI4RDAxMTAvBgNVBAUTKDI1NEVBRjY0OTA3NTRGNTA3REI4MUNFOTBEREI2MjlC NjIyRjQ2NjAwHhcNMjYwMjA5MDQyMzU3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2E1YS1hNjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKkb9Tjk65ksJf7Y0h3S0Bxa8iFk0nG2eF5G4Vz6GFpN7nJXvatiLK8eERdS lKO/0jYBpzjsRByP8sDdrsTkoJcSJWXs3e5DSKDK5zOnjUmrP/SUAs+257vVQa3l 0Xk7wdgw7wqGZzvw1SAe6waFx3ANT9k0opk5ly+EaE9SpMcjc2P1s447H/A7KXO2 xl2/YG0lI8JBr2JAxX9DDohc+lXSuD3eFEdFElPWJCBt9N/CYm3Tjm2LpGNMNd8a GGTs/ULrm4aiQSxCS7gEfrKN68/OhKFzd4+R+61//5UZUT9pkVO612uOVzCNEFds AwrJa+iisxOyAFUrzXWQuLoPKQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLOUf7LR Vy92qA8MSbVhT6pCp1T3MB8GA1UdIwQYMBaAFCVOr2SQdU9Qfbgc6Q3bYptiL0Zg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjhEMC80MUUyQkUyOEVC NkUxMUVFODNFM0FFNTFDNEY5QUUwMi9KVTZ2WkpCMVQxQjl1QnpwRGR0aW0ySXZS bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pVNnZaSkIxVDFCOXVCenBEZHRpbTJJdlJtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI4RDAvNDFFMkJFMjhFQjZFMTFFRTgzRTNBRTUxQzRGOUFFMDIvRkQ2Mjg2RUEy MkI2MTFFRkJGNUQzOTYwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxqWMA0GCSqGSIb3DQEBCwUAA4IBAQCdOEuvDS2ppLo/O8ur09Ge AIKlZBg59mMc0IpNlfqzuVDa5IMtZCr9mjLVzbFDO7NqdGdY5vXhYdQIxKuRJr7y XVCS5YcHTO2UwuWKeBIKJ8ai1+8a/pzeSn59h67Y0ZnssAibVLF9ZTZPErfGY1u6 LfMbW/pSsS7pB1I9zfkaag83ac2RTcTbiW4797LFTOsUTVEx+ROzK1Yhwk95mOWi p3bT8HMvlgsECu5Efok34oUuVWpm4dLWtVAEeHARsCp+ExSm/7iICyEWp5QavyCw df4F23qPnj69x2e8KxrVJhk2KlyIYb8dDTi0C5j99zYCAs6LJcP0DFo9M85IKm5w -----END CERTIFICATE-----Generated at Thu Mar 26 12:19:24 2026 by rpki-client