$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/67AFCD36F73911EE8BEC0A76C4F9AE02.roa File: 67AFCD36F73911EE8BEC0A76C4F9AE02.roa (raw, json) Hash identifier: /vKLt2v8pCNdrhUjrfi5xRSAmeCzYRAG9WHocNuI0T8= Subject key identifier: 03:68:30:C6:F5:FD:9F:B2:1D:35:12:3D:D5:CD:F6:16:73:E1:37:E9 Certificate issuer: /CN=A915DA76/serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Certificate serial: 353B Authority key identifier: 4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/67AFCD36F73911EE8BEC0A76C4F9AE02.roa Signing time: Tue 24 Mar 2026 15:13:01 +0000 ROA not before: Tue 24 Mar 2026 15:13:01 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 23703 IP address blocks: 202.78.16.0/20 maxlen: 20 202.78.31.0/24 maxlen: 24 2405:d980::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13627 (0x353b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA76, serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Validity Not Before: Mar 24 15:13:01 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c2a9fc-6fbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:89:13:7c:60:d4:a9:b6:8e:87:a0:05:b5:55: a7:e3:a1:e2:16:86:78:a4:96:83:9e:c0:6c:b3:53: b4:18:61:ab:dd:4f:47:57:2a:a1:f4:06:e4:30:a1: f5:0e:f1:c9:59:5c:09:31:f1:37:e0:ba:d0:f6:40: 66:a3:c8:62:e2:22:e6:5e:a5:be:fc:8a:d0:f9:ab: 00:fb:2d:e8:80:7b:86:3a:99:94:05:ce:2d:25:e2: e5:71:38:6b:35:6b:42:a7:fa:2c:cd:05:b0:c9:44: 62:88:59:73:52:73:f2:1d:26:8e:3d:c7:25:9f:16: a1:03:3c:00:6c:21:31:20:3f:4d:1e:8a:81:c1:b1: 37:23:64:f2:ec:2d:19:a4:55:01:1d:e1:e6:ce:c8: 2e:87:8f:61:e9:01:6c:f0:e3:8c:74:2c:cf:f8:03: 9f:a4:06:5e:9b:b7:67:c0:bf:43:37:45:da:23:bf: ad:20:4d:8d:53:1b:5d:be:ce:e6:82:83:01:dd:6a: a6:6f:b5:11:20:f0:e1:7e:c8:ed:25:1f:d5:6f:42: 83:79:91:33:63:11:d4:4e:76:75:9e:ad:41:b0:be: 47:62:7a:fe:09:79:f9:cd:78:8d:2f:4b:c3:02:0a: 63:9a:4e:08:58:2b:47:26:f5:6a:54:eb:eb:08:49: 78:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:68:30:C6:F5:FD:9F:B2:1D:35:12:3D:D5:CD:F6:16:73:E1:37:E9 X509v3 Authority Key Identifier: keyid:4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/67AFCD36F73911EE8BEC0A76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.78.16.0/20 IPv6: 2405:d980::/32 Signature Algorithm: sha256WithRSAEncryption 24:57:58:cf:eb:f8:fe:ea:82:a4:ce:ec:9d:08:2c:04:24:da: 14:92:fe:e3:54:5e:43:fa:09:24:8a:80:d2:89:95:2a:e2:c5: 8a:a1:32:95:a2:51:94:f4:55:b6:8b:e7:54:51:68:73:80:a5: 13:da:6c:63:5c:8b:c1:de:06:05:e6:c2:31:68:2e:a8:4e:58: ec:97:17:48:18:ba:d5:1d:0e:d9:88:68:5c:d2:1f:e9:ac:01: 9b:9e:61:b7:6c:e6:e5:dc:f6:86:e8:06:50:a2:6b:62:57:f1: 09:d6:56:b6:10:3f:64:19:3c:10:a4:94:40:42:79:9a:08:98: 5d:60:74:9b:36:d4:fd:96:ce:f8:40:23:d8:32:20:66:70:0a: 64:d3:93:e4:a6:e7:5e:03:f4:b8:52:e5:8b:e2:80:9c:51:0c: de:bc:e8:28:49:e7:2d:bf:c8:6f:98:21:b7:a2:48:7b:02:90: 3b:cb:49:03:ff:d0:aa:3c:db:36:0f:9e:d1:dd:0d:ef:b5:b4: 72:95:07:44:f6:34:37:75:be:98:c1:df:7d:33:06:14:b9:40: e5:19:27:bf:5e:ee:74:a6:8a:40:2f:d6:1a:a6:dc:1a:9c:63: 31:38:e3:e7:f2:67:3d:9e:72:aa:9e:16:77:bd:00:3a:1a:b1: fd:a9:e8:b2 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICNTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNzYxMTAvBgNVBAUTKDRERUJCOEUxMjIyQkUwRTNGMjNBRURCNzUyNDVFMEY5 N0I4N0M3NEQwHhcNMjYwMzI0MTUxMzAxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWMyYTlmYy02ZmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4kTfGDUqbaOh6AFtVWn46HiFoZ4pJaDnsBss1O0GGGr3U9HVyqh9AbkMKH1 DvHJWVwJMfE34LrQ9kBmo8hi4iLmXqW+/IrQ+asA+y3ogHuGOpmUBc4tJeLlcThr NWtCp/oszQWwyURiiFlzUnPyHSaOPcclnxahAzwAbCExID9NHoqBwbE3I2Ty7C0Z pFUBHeHmzsguh49h6QFs8OOMdCzP+AOfpAZem7dnwL9DN0XaI7+tIE2NUxtdvs7m goMB3Wqmb7URIPDhfsjtJR/Vb0KDeZEzYxHUTnZ1nq1BsL5HYnr+CXn5zXiNL0vD Agpjmk4IWCtHJvVqVOvrCEl4TwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFANoMMb1 /Z+yHTUSPdXN9hZz4TfpMB8GA1UdIwQYMBaAFE3ruOEiK+Dj8jrtt1JF4Pl7h8dN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE3Ni9BQUJBMzQ5ODFE OEIxMUUyQUE3NTZBRTYwOEIwMkNEMi9UZXU0NFNJcjRPUHlPdTIzVWtYZy1YdUh4 MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RldTQ0U0lyNE9QeU91MjNVa1hnLVh1SHgwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBNzYvQUFCQTM0OTgxRDhCMTFFMkFBNzU2QUU2MDhCMDJDRDIvNjdBRkNEMzZG NzM5MTFFRThCRUMwQTc2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQEyk4QMA0EAgACMAcDBQAkBdmAMA0GCSqGSIb3DQEBCwUAA4IBAQAk V1jP6/j+6oKkzuydCCwEJNoUkv7jVF5D+gkkioDSiZUq4sWKoTKVolGU9FW2i+dU UWhzgKUT2mxjXIvB3gYF5sIxaC6oTljslxdIGLrVHQ7ZiGhc0h/prAGbnmG3bObl 3PaG6AZQomtiV/EJ1la2ED9kGTwQpJRAQnmaCJhdYHSbNtT9ls74QCPYMiBmcApk 05PkpudeA/S4UuWL4oCcUQzevOgoSectv8hvmCG3okh7ApA7y0kD/9CqPNs2D57R 3Q3vtbRylQdE9jQ3db6Ywd99MwYUuUDlGSe/Xu50popAL9YaptwanGMxOOPn8mc9 nnKqnhZ3vQA6GrH9qeiy -----END CERTIFICATE-----Generated at Thu Mar 26 20:23:14 2026 by rpki-client