$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/A2E40A5C3AA511EFA73B8885C4F9AE02.roa File: A2E40A5C3AA511EFA73B8885C4F9AE02.roa (raw, json) Hash identifier: DaeBEFTJL32vTa699+7D7vaWOxRfCnyy87ugEKL3B7g= Subject key identifier: 69:DF:42:29:10:8D:AD:01:45:71:25:4B:FE:AE:D9:06:F4:6A:0E:83 Certificate issuer: /CN=A915DA76/serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Certificate serial: 353A Authority key identifier: 4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/A2E40A5C3AA511EFA73B8885C4F9AE02.roa Signing time: Tue 24 Mar 2026 15:12:59 +0000 ROA not before: Tue 24 Mar 2026 15:12:59 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 19905 IP address blocks: 202.78.16.0/20 maxlen: 20 202.78.24.0/24 maxlen: 24 202.78.27.0/24 maxlen: 24 202.78.28.0/23 maxlen: 23 2405:d980::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13626 (0x353a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA76, serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Validity Not Before: Mar 24 15:12:59 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c2a9fb-71af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:77:46:72:11:fe:8c:da:f2:3f:47:db:f2:71: d3:b5:03:b0:c5:96:07:58:95:be:12:fd:a6:bb:1f: 6c:21:b5:21:b1:5c:79:20:93:79:16:f2:ac:68:9d: a0:c2:e3:92:11:9c:eb:a9:45:3f:af:96:35:70:db: 34:51:86:b3:d8:7e:a9:ba:97:d2:bf:ec:80:fe:39: da:8e:47:cb:07:40:48:46:f3:d6:1d:2e:51:12:57: 16:b7:ea:a8:e6:21:b0:11:37:00:c1:f9:d7:b2:ef: 6c:c0:10:01:70:c4:9a:0e:02:85:dc:5e:7b:32:89: b4:e3:74:f5:44:c0:94:77:65:c7:fc:ad:3a:c6:0b: c0:05:70:17:4b:26:af:a8:f2:0f:a3:af:3b:f3:3e: e4:b1:6b:0b:1c:4e:bd:b8:fc:b0:70:54:b3:02:62: 92:08:bd:26:f1:d4:45:e2:62:bc:10:cc:9c:39:8e: 55:2f:4d:bb:64:aa:8b:83:07:2d:c7:61:fd:f8:f1: ac:79:54:3f:6b:4b:fd:31:09:28:6b:a6:dd:94:8c: 07:61:92:7f:d3:c3:97:10:2b:fa:77:66:f4:5a:a2: 0c:25:86:00:28:c8:ad:71:1c:15:7a:4e:6e:cc:8b: e5:9b:e6:ec:45:06:05:a2:20:c9:d9:3d:f8:e9:79: 70:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DF:42:29:10:8D:AD:01:45:71:25:4B:FE:AE:D9:06:F4:6A:0E:83 X509v3 Authority Key Identifier: keyid:4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/A2E40A5C3AA511EFA73B8885C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.78.16.0/20 IPv6: 2405:d980::/32 Signature Algorithm: sha256WithRSAEncryption 25:4c:5c:12:ff:65:c9:54:79:99:74:40:ee:07:a0:af:4d:25: 5d:50:81:35:a1:11:9c:a4:86:37:e6:d2:ce:d6:05:3f:e7:f7: 6c:91:a2:f1:1c:e9:1a:8c:18:07:62:8a:89:01:bb:3e:f3:cf: bf:d4:06:90:7f:9a:88:58:cd:8c:14:fb:a8:8e:75:ff:ba:ee: 20:43:4c:b0:2b:7e:73:c6:e9:97:4d:c1:f5:44:24:83:fc:ca: f6:2a:47:ec:7c:7b:81:50:43:12:f3:2c:53:22:ac:f6:dd:ea: f8:2b:73:52:31:ba:88:1e:b0:19:4e:98:14:b5:66:36:07:3c: 3f:74:ac:ca:ea:8a:b5:b4:28:ed:d3:c8:cc:1e:ad:3b:cd:55: 71:8e:ce:44:d1:9e:c7:5b:73:6a:6e:cf:19:a5:bf:db:59:7a: 41:b8:00:a3:76:9e:6a:49:db:99:06:a5:4a:77:7c:96:11:ae: 83:2f:cc:07:db:54:1a:60:19:e1:65:1f:e3:74:cf:56:3d:1d: 17:7f:c9:7a:78:2f:ca:56:b4:7c:bc:9b:ef:cf:f9:85:e5:dd: 73:5d:29:b6:d8:ae:d0:4e:1f:8a:6e:68:64:a3:be:de:94:b3: 76:08:ae:99:9d:0c:ae:84:89:ae:eb:0d:dd:f4:b2:36:be:0c: 29:d4:17:0d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICNTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNzYxMTAvBgNVBAUTKDRERUJCOEUxMjIyQkUwRTNGMjNBRURCNzUyNDVFMEY5 N0I4N0M3NEQwHhcNMjYwMzI0MTUxMjU5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWMyYTlmYi03MWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiHdGchH+jNryP0fb8nHTtQOwxZYHWJW+Ev2mux9sIbUhsVx5IJN5FvKsaJ2g wuOSEZzrqUU/r5Y1cNs0UYaz2H6pupfSv+yA/jnajkfLB0BIRvPWHS5RElcWt+qo 5iGwETcAwfnXsu9swBABcMSaDgKF3F57Mom043T1RMCUd2XH/K06xgvABXAXSyav qPIPo6878z7ksWsLHE69uPywcFSzAmKSCL0m8dRF4mK8EMycOY5VL027ZKqLgwct x2H9+PGseVQ/a0v9MQkoa6bdlIwHYZJ/08OXECv6d2b0WqIMJYYAKMitcRwVek5u zIvlm+bsRQYFoiDJ2T346XlwZwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGnfQikQ ja0BRXElS/6u2Qb0ag6DMB8GA1UdIwQYMBaAFE3ruOEiK+Dj8jrtt1JF4Pl7h8dN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE3Ni9BQUJBMzQ5ODFE OEIxMUUyQUE3NTZBRTYwOEIwMkNEMi9UZXU0NFNJcjRPUHlPdTIzVWtYZy1YdUh4 MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RldTQ0U0lyNE9QeU91MjNVa1hnLVh1SHgwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBNzYvQUFCQTM0OTgxRDhCMTFFMkFBNzU2QUU2MDhCMDJDRDIvQTJFNDBBNUMz QUE1MTFFRkE3M0I4ODg1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQEyk4QMA0EAgACMAcDBQAkBdmAMA0GCSqGSIb3DQEBCwUAA4IBAQAl TFwS/2XJVHmZdEDuB6CvTSVdUIE1oRGcpIY35tLO1gU/5/dskaLxHOkajBgHYoqJ Abs+88+/1AaQf5qIWM2MFPuojnX/uu4gQ0ywK35zxumXTcH1RCSD/Mr2KkfsfHuB UEMS8yxTIqz23er4K3NSMbqIHrAZTpgUtWY2Bzw/dKzK6oq1tCjt08jMHq07zVVx js5E0Z7HW3Nqbs8Zpb/bWXpBuACjdp5qSduZBqVKd3yWEa6DL8wH21QaYBnhZR/j dM9WPR0Xf8l6eC/KVrR8vJvvz/mF5d1zXSm22K7QTh+Kbmhko77elLN2CK6ZnQyu hImu6w3d9LI2vgwp1BcN -----END CERTIFICATE-----Generated at Thu Mar 26 07:13:40 2026 by rpki-client