$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/23852F72273711F1B6AB5B98AD833773.roa File: 23852F72273711F1B6AB5B98AD833773.roa (raw, json) Hash identifier: P31b2FKpx48VcLnsu7CI9st3Wk7Nus+neDGiJjmbJZg= Subject key identifier: 8C:37:76:B6:95:EB:C1:65:46:25:2C:8A:C5:B1:D9:28:B7:38:63:E5 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 02A1 Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/23852F72273711F1B6AB5B98AD833773.roa Signing time: Tue 24 Mar 2026 04:08:40 +0000 ROA not before: Tue 24 Mar 2026 04:08:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 64079 IP address blocks: 101.47.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Mar 24 04:08:40 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69c20e48-28f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b7:16:cd:26:24:6a:90:07:10:4b:81:ad:59: b1:00:db:b6:f6:68:43:7a:d2:bf:ae:4c:68:94:1a: 7d:84:f2:83:cc:af:eb:98:0f:05:e7:b6:26:a4:b0: ea:b3:01:22:1d:21:b5:be:5c:3a:73:3a:2d:1b:f0: 34:08:20:07:da:f1:88:75:93:78:f0:7e:94:e1:4a: 9f:c2:7a:2a:1c:ba:cf:5e:2a:3e:5a:38:e6:1b:cf: df:ab:08:02:ed:7d:09:d1:d1:0f:3c:69:8d:61:42: df:e5:5d:eb:1a:18:56:42:ed:90:ca:4d:86:ec:7a: e7:13:b6:31:4f:89:c2:82:6d:c0:09:15:87:de:62: c0:bd:f8:05:2f:23:ec:78:19:ab:fd:4c:12:13:9b: a0:b3:c4:06:0c:2c:f6:07:1b:f8:f9:16:2b:67:e1: d6:ff:da:6d:f2:41:90:c6:51:dc:59:22:95:62:17: 38:3e:32:71:8b:3a:b2:64:e6:1c:32:8b:cc:42:b2: ec:d8:2d:d6:cc:39:07:7a:14:d2:46:44:3c:92:b7: a9:74:56:3b:2e:e7:a6:cf:8d:f2:76:ef:45:87:bc: 3e:aa:b8:5a:1d:30:57:e4:85:49:99:2b:0d:7f:dd: 81:fc:42:5f:71:65:13:ba:bf:45:7c:0a:76:2d:7b: df:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:37:76:B6:95:EB:C1:65:46:25:2C:8A:C5:B1:D9:28:B7:38:63:E5 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/23852F72273711F1B6AB5B98AD833773.roa sbgp-ipAddrBlock: critical IPv4: 101.47.189.0/24 Signature Algorithm: sha256WithRSAEncryption 97:04:6b:75:43:97:b8:2a:be:c5:c3:e9:2c:41:53:26:37:a3: 57:ef:a2:49:3a:1d:18:fc:4a:0f:44:2c:63:b2:a9:e3:68:04: bb:98:6f:2a:1a:b4:9e:a8:1e:92:3c:55:c8:a8:43:26:67:8d: d8:1e:40:81:8f:67:9f:8b:48:09:47:52:f0:71:15:12:aa:e9: 92:4c:55:0f:02:e5:03:bc:ea:bd:30:58:bc:4c:f3:83:45:9a: 93:91:8b:dc:e9:0e:13:68:0b:ee:eb:38:c8:8b:ae:2c:43:23: 76:96:35:c8:ab:97:ba:73:23:02:70:e6:3e:67:a6:7d:24:c4: 45:3c:7d:e6:a9:25:bd:17:95:0e:e1:aa:2e:30:64:46:78:fc: 99:4c:ca:68:d0:1b:87:0c:f4:73:79:7c:78:39:15:ec:c7:d6: be:7d:d0:e7:00:58:51:74:29:63:5a:83:da:a3:72:f3:c0:c5: 94:3b:5c:25:bf:54:a0:d1:f0:21:e9:13:8c:78:7c:c5:a8:0a: a6:4e:18:0a:3a:83:18:8e:d5:87:02:ec:65:d0:67:aa:75:b8: 57:58:5f:02:cc:fc:03:34:eb:eb:26:5d:6d:02:a6:ce:1f:2e: ea:8c:36:77:35:2e:fd:c4:6d:67:b4:67:a5:21:bb:fc:af:bb: bd:12:af:75 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjYwMzI0MDQwODQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWMyMGU0OC0yOGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7cWzSYkapAHEEuBrVmxANu29mhDetK/rkxolBp9hPKDzK/rmA8F57YmpLDq swEiHSG1vlw6czotG/A0CCAH2vGIdZN48H6U4UqfwnoqHLrPXio+WjjmG8/fqwgC 7X0J0dEPPGmNYULf5V3rGhhWQu2Qyk2G7HrnE7YxT4nCgm3ACRWH3mLAvfgFLyPs eBmr/UwSE5ugs8QGDCz2Bxv4+RYrZ+HW/9pt8kGQxlHcWSKVYhc4PjJxizqyZOYc MovMQrLs2C3WzDkHehTSRkQ8krepdFY7Luemz43ydu9Fh7w+qrhaHTBX5IVJmSsN f92B/EJfcWUTur9FfAp2LXvfCQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIw3draV 68FlRiUsisWx2Si3OGPlMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvMTYxRDRDMEFFNENBMTFFREE0MTRFMjU5QzRGOUFFMDIvMjM4NTJGNzIy NzM3MTFGMUI2QUI1Qjk4QUQ4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZS+9MA0GCSqGSIb3DQEBCwUAA4IBAQCXBGt1Q5e4Kr7Fw+ksQVMm N6NX76JJOh0Y/EoPRCxjsqnjaAS7mG8qGrSeqB6SPFXIqEMmZ43YHkCBj2efi0gJ R1LwcRUSqumSTFUPAuUDvOq9MFi8TPODRZqTkYvc6Q4TaAvu6zjIi64sQyN2ljXI q5e6cyMCcOY+Z6Z9JMRFPH3mqSW9F5UO4aouMGRGePyZTMpo0BuHDPRzeXx4ORXs x9a+fdDnAFhRdCljWoPao3LzwMWUO1wlv1Sg0fAh6ROMeHzFqAqmThgKOoMYjtWH Auxl0GeqdbhXWF8CzPwDNOvrJl1tAqbOHy7qjDZ3NS79xG1ntGelIbv8r7u9Eq91 -----END CERTIFICATE-----Generated at Thu Mar 26 13:33:10 2026 by rpki-client