$ rpki-client -vvf rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa File: 2D58477CEC7A11EEBAE5E319C4F9AE02.roa (raw, json) Hash identifier: a8UAQgdr5YefPf6e/FxqB3qO2kRWk0And4FOBUzigKo= Subject key identifier: 2B:50:FF:21:13:AB:6C:14:02:16:DA:10:96:85:40:8D:03:E1:DD:28 Certificate issuer: /CN=A91683D2/serialNumber=B1ACFB85149B86A11015D601810E314F6948C1CF Certificate serial: 3529 Authority key identifier: B1:AC:FB:85:14:9B:86:A1:10:15:D6:01:81:0E:31:4F:69:48:C1:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:25:51 +0000 ROA not before: Sat 18 Oct 2025 14:50:43 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 209242 IP address blocks: 202.37.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.crl rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13609 (0x3529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91683D2, serialNumber=B1ACFB85149B86A11015D601810E314F6948C1CF Validity Not Before: Oct 18 14:50:43 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45a7f-871e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bb:b0:62:1c:20:64:1d:c8:ec:c9:6a:b4:9b: 61:69:5c:d5:b1:d1:8d:63:08:fc:db:31:9c:37:5b: e4:79:65:7e:77:65:68:60:56:66:dd:2f:de:6d:5d: 03:23:4e:7c:b1:2c:fb:c4:c7:27:05:5a:18:d1:36: 74:fe:d3:57:4a:16:d6:bc:80:4e:f2:57:72:f7:5d: ca:1d:81:da:6a:a6:86:0d:24:23:87:d2:0f:92:75: 12:53:a7:f7:d8:d0:ff:b7:f3:13:3d:9b:2a:81:b5: 71:ee:a4:48:c2:75:5f:93:a2:10:b7:c0:c3:f1:7d: 91:e0:96:20:04:61:fd:14:09:72:8a:26:ac:e1:2d: 14:b0:11:5d:15:71:40:f3:28:b7:6e:9a:91:a0:91: e4:cd:4f:12:1c:a6:78:ac:f7:f0:4b:b1:4e:20:23: 60:fb:96:ea:a7:ad:99:11:61:12:d2:af:39:11:bf: ce:6d:12:74:be:d1:41:60:9a:b9:21:33:84:62:a8: b6:9f:bb:f7:f9:8f:88:4f:58:74:34:1a:47:97:64: 69:d0:80:36:64:94:06:fd:94:a2:00:23:39:0a:f1: 1c:5d:fa:9d:da:01:ec:4c:10:b0:12:cb:40:79:1f: 77:83:88:82:7a:3b:2f:a6:71:07:01:d9:86:da:a5: e6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:50:FF:21:13:AB:6C:14:02:16:DA:10:96:85:40:8D:03:E1:DD:28 X509v3 Authority Key Identifier: keyid:B1:AC:FB:85:14:9B:86:A1:10:15:D6:01:81:0E:31:4F:69:48:C1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.37.197.0/24 Signature Algorithm: sha256WithRSAEncryption 99:1c:aa:b5:ab:f3:35:2e:57:26:65:5b:c1:d5:ba:b5:04:ce: ef:78:ef:09:70:01:72:18:26:21:c8:1d:be:4c:5d:87:db:a6: 35:10:f6:7a:23:97:7f:2b:cb:e9:4a:20:61:0a:c4:16:5b:08: 91:91:db:9a:89:b6:e8:0b:c2:2b:56:aa:79:d3:02:d5:2d:35: f6:96:ce:3e:8e:40:d8:ce:58:0b:b5:c9:8f:f5:7b:c2:06:b3: 6a:b9:48:cc:88:90:e9:6c:ba:16:0d:b2:9e:a9:fe:f4:c9:79: 6d:09:c5:1a:1c:63:e5:09:d3:98:a3:dd:65:a4:a5:46:31:21: f7:c8:96:85:ff:d6:2a:1e:72:aa:d6:5f:fe:61:4a:87:7c:57: 54:50:c8:80:c2:85:2c:8d:34:e7:77:9e:a5:d9:c4:79:3b:41: fb:b9:b3:ea:a6:89:49:65:c2:ed:fe:3d:6f:3a:0a:d5:87:d7: 9e:5c:36:ca:63:18:27:6f:5c:e3:89:2e:63:a0:97:86:86:20: c4:32:fa:24:4c:c6:14:41:4d:22:45:e9:1c:28:8f:1b:7a:59: 24:c5:5b:6a:57:c2:26:77:de:19:35:91:1b:5e:2d:b3:15:2e: f0:69:3b:40:15:fc:79:1d:43:d6:e0:05:d0:88:ba:ff:94:01: e1:a2:5a:04 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgzRDIxMTAvBgNVBAUTKEIxQUNGQjg1MTQ5Qjg2QTExMDE1RDYwMTgxMEUzMTRG Njk0OEMxQ0YwHhcNMjUxMDE4MTQ1MDQzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWE3Zi04NzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoruwYhwgZB3I7MlqtJthaVzVsdGNYwj82zGcN1vkeWV+d2VoYFZm3S/ebV0D I058sSz7xMcnBVoY0TZ0/tNXShbWvIBO8ldy913KHYHaaqaGDSQjh9IPknUSU6f3 2ND/t/MTPZsqgbVx7qRIwnVfk6IQt8DD8X2R4JYgBGH9FAlyiias4S0UsBFdFXFA 8yi3bpqRoJHkzU8SHKZ4rPfwS7FOICNg+5bqp62ZEWES0q85Eb/ObRJ0vtFBYJq5 ITOEYqi2n7v3+Y+IT1h0NBpHl2Rp0IA2ZJQG/ZSiACM5CvEcXfqd2gHsTBCwEstA eR93g4iCejsvpnEHAdmG2qXmNwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCtQ/yET q2wUAhbaEJaFQI0D4d0oMB8GA1UdIwQYMBaAFLGs+4UUm4ahEBXWAYEOMU9pSMHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODNEMi8xOUM1NUY2QzFE OEIxMUUyOTBDNTc4RTUwOEIwMkNEMi9zYXo3aFJTYmhxRVFGZFlCZ1E0eFQybEl3 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhejdoUlNiaHFFUUZkWUJnUTR4VDJsSXdjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgzRDIvMTlDNTVGNkMxRDhCMTFFMjkwQzU3OEU1MDhCMDJDRDIvMkQ1ODQ3N0NF QzdBMTFFRUJBRTVFMzE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyiXFMA0GCSqGSIb3DQEBCwUAA4IBAQCZHKq1q/M1LlcmZVvB1bq1 BM7veO8JcAFyGCYhyB2+TF2H26Y1EPZ6I5d/K8vpSiBhCsQWWwiRkduaibboC8Ir Vqp50wLVLTX2ls4+jkDYzlgLtcmP9XvCBrNquUjMiJDpbLoWDbKeqf70yXltCcUa HGPlCdOYo91lpKVGMSH3yJaF/9YqHnKq1l/+YUqHfFdUUMiAwoUsjTTnd56l2cR5 O0H7ubPqpolJZcLt/j1vOgrVh9eeXDbKYxgnb1zjiS5joJeGhiDEMvokTMYUQU0i RekcKI8belkkxVtqV8Imd94ZNZEbXi2zFS7waTtAFfx5HUPW4AXQiLr/lAHholoE -----END CERTIFICATE-----Generated at Sat Mar 28 10:44:14 2026 by rpki-client