$ rpki-client -vvf rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/2E8796D201D811F1B1EB0BE0366F56BC.roa File: 2E8796D201D811F1B1EB0BE0366F56BC.roa (raw, json) Hash identifier: rCc2LJ3SHarCzukGEVF7yiv4Jot6jNEMODiytpZTHFI= Subject key identifier: ED:12:44:A9:E0:5D:B9:79:F3:77:FF:4B:40:F2:24:96:D2:11:DB:42 Certificate issuer: /CN=A917C4E7/serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Certificate serial: 03C8 Authority key identifier: A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/2E8796D201D811F1B1EB0BE0366F56BC.roa Signing time: Wed 25 Mar 2026 00:34:31 +0000 ROA not before: Wed 25 Mar 2026 00:34:31 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 205759 IP address blocks: 36.255.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 968 (0x3c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C4E7, serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Validity Not Before: Mar 25 00:34:31 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c32d97-d112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:18:c3:4b:a6:1a:b1:64:f4:5c:b3:55:57:c3: 23:ac:73:42:56:f5:01:c2:46:5f:56:0f:d7:45:9a: 80:db:5f:7a:2a:c6:e9:ef:bd:ab:ba:13:59:eb:7b: 7a:48:74:9d:d6:60:d7:59:d8:6f:6b:1b:f6:f6:ea: 55:6e:41:38:46:b5:8b:cc:d2:c0:32:65:8b:37:5c: 6e:8f:02:39:1f:d2:c3:ca:65:60:b3:ad:f1:3a:7c: de:9a:a1:e1:c2:30:d3:3a:03:38:f3:87:c3:84:81: 06:20:c4:fc:2b:a4:f9:18:8c:86:8d:10:88:3b:5a: a9:eb:fe:3a:58:21:a1:71:e2:66:bb:a5:76:45:db: 80:43:91:a0:46:b3:48:c4:89:66:0e:52:14:04:ce: a5:28:24:9c:b4:2a:48:41:50:c9:4a:23:91:97:c9: a1:57:1a:53:e8:6c:77:89:fc:f0:ee:5c:15:5d:7e: 2c:d1:4a:69:21:aa:95:58:8a:56:ef:de:e6:a8:bb: 35:db:87:7b:cd:25:99:72:ff:66:56:b8:8c:74:cb: 6d:9f:c0:48:68:94:46:4a:79:e7:ab:a7:19:e2:d3: 3f:d5:5d:8f:55:30:ce:83:aa:a4:2f:18:6c:d6:e1: 5e:0c:c1:fc:a0:f2:42:df:7a:d7:f7:90:62:df:b4: b3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:12:44:A9:E0:5D:B9:79:F3:77:FF:4B:40:F2:24:96:D2:11:DB:42 X509v3 Authority Key Identifier: keyid:A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/2E8796D201D811F1B1EB0BE0366F56BC.roa sbgp-ipAddrBlock: critical IPv4: 36.255.97.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:a8:63:f0:53:6b:fb:cb:a3:85:b1:93:ff:9d:d2:4a:fe:34: 46:34:5b:40:b9:45:11:87:8d:a9:2c:5c:21:1e:5b:a1:0e:17: 81:b3:64:bb:20:d6:8d:6b:1d:6d:45:f6:20:dd:7a:35:8f:34: 2a:a2:9f:9a:84:02:e9:c0:a3:e5:ac:e2:4f:d1:bb:a4:45:4d: 2f:1d:2b:5b:8c:ac:86:ed:6a:a6:56:91:61:c7:99:41:3c:b2: 47:b2:e3:b9:bf:cc:26:9e:d2:32:43:a3:26:c3:13:71:fb:c0: c5:ba:97:7d:68:bb:7a:09:4b:ce:69:fc:46:33:33:9c:aa:9b: 04:27:4a:8b:df:33:bf:f9:44:b4:74:68:dd:d9:1a:60:10:55: 12:5c:fb:bb:50:df:12:89:4e:e8:31:80:2b:af:2b:fb:f6:a2: 81:da:62:72:c2:84:7c:72:6c:70:be:6c:05:b8:09:8c:2f:66: 04:83:85:2e:1b:dc:44:46:6b:d1:c7:cf:e9:3d:3c:65:99:42: aa:8f:52:9f:a8:1c:ed:03:ba:14:40:cc:53:01:c6:a8:db:06: 48:6b:b8:5a:f4:a3:c9:e2:a0:3d:30:dd:f6:fa:cd:32:f2:6a: 79:45:c4:bb:33:0f:ad:10:d2:60:9b:56:14:0a:0b:71:06:76: 73:55:a5:50 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0RTcxMTAvBgNVBAUTKEE1QzRBMEFCMEU1RUUxM0IxNDg0NTQzOUIxQUU0RkIz NDQ2OEM3QjkwHhcNMjYwMzI1MDAzNDMxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWMzMmQ5Ny1kMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkBjDS6YasWT0XLNVV8MjrHNCVvUBwkZfVg/XRZqA2196Ksbp772ruhNZ63t6 SHSd1mDXWdhvaxv29upVbkE4RrWLzNLAMmWLN1xujwI5H9LDymVgs63xOnzemqHh wjDTOgM484fDhIEGIMT8K6T5GIyGjRCIO1qp6/46WCGhceJmu6V2RduAQ5GgRrNI xIlmDlIUBM6lKCSctCpIQVDJSiORl8mhVxpT6Gx3ifzw7lwVXX4s0UppIaqVWIpW 797mqLs124d7zSWZcv9mVriMdMttn8BIaJRGSnnnq6cZ4tM/1V2PVTDOg6qkLxhs 1uFeDMH8oPJC33rX95Bi37SzzwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO0SRKng Xbl583f/S0DyJJbSEdtCMB8GA1UdIwQYMBaAFKXEoKsOXuE7FIRUObGuT7NEaMe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzRFNy85ODFDMDU1OEVB RDgxMUVDQkM3RUUwMTVDNEY5QUUwMi9wY1NncXc1ZTRUc1VoRlE1c2E1UHMwUm94 N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjU2dxdzVlNFRzVWhGUTVzYTVQczBSb3g3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0RTcvOTgxQzA1NThFQUQ4MTFFQ0JDN0VFMDE1QzRGOUFFMDIvMkU4Nzk2RDIw MUQ4MTFGMUIxRUIwQkUwMzY2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAJP9hMA0GCSqGSIb3DQEBCwUAA4IBAQA9qGPwU2v7y6OFsZP/ndJK /jRGNFtAuUURh42pLFwhHluhDheBs2S7INaNax1tRfYg3Xo1jzQqop+ahALpwKPl rOJP0bukRU0vHStbjKyG7WqmVpFhx5lBPLJHsuO5v8wmntIyQ6MmwxNx+8DFupd9 aLt6CUvOafxGMzOcqpsEJ0qL3zO/+US0dGjd2RpgEFUSXPu7UN8SiU7oMYArryv7 9qKB2mJywoR8cmxwvmwFuAmML2YEg4UuG9xERmvRx8/pPTxlmUKqj1KfqBztA7oU QMxTAcao2wZIa7ha9KPJ4qA9MN32+s0y8mp5RcS7Mw+tENJgm1YUCgtxBnZzVaVQ -----END CERTIFICATE-----Generated at Thu Mar 26 09:43:03 2026 by rpki-client