$ rpki-client -vvf rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/50068D0EAB2511F0BE8B7031C4F9AE02.roa File: 50068D0EAB2511F0BE8B7031C4F9AE02.roa (raw, json) Hash identifier: 3yN6QJ5NEAiNK5nSIUM1YLhX4XGOfFHenHk9+gzckwA= Subject key identifier: EA:6F:19:B5:22:12:0F:F6:61:2D:0D:61:52:45:4A:EC:B7:EF:38:B2 Certificate issuer: /CN=A917C4E7/serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Certificate serial: 03C9 Authority key identifier: A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/50068D0EAB2511F0BE8B7031C4F9AE02.roa Signing time: Wed 25 Mar 2026 00:34:34 +0000 ROA not before: Wed 25 Mar 2026 00:34:34 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 208185 IP address blocks: 36.255.98.0/24 maxlen: 24 103.209.76.0/24 maxlen: 24 103.209.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 969 (0x3c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C4E7, serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Validity Not Before: Mar 25 00:34:34 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c32d9a-7aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9b:87:cb:a6:0e:33:09:26:b9:fa:28:32:84: 6b:38:7d:9a:5e:1e:9f:b8:15:29:d3:c7:82:27:b0: fe:88:14:a5:a6:1a:61:26:4e:a4:6a:2f:4c:98:54: b7:52:54:4c:9e:63:ab:28:e2:31:d5:97:ff:39:98: 8a:74:81:96:54:e3:dc:f3:ed:a7:96:82:aa:9e:94: f1:74:6b:06:6b:d2:86:ad:d1:ed:95:e5:10:6f:61: ce:71:07:eb:45:11:4b:34:a4:17:f5:d4:c8:83:91: 88:76:2a:e4:13:8b:4e:de:f2:2f:90:b0:25:23:84: 98:6d:f5:b4:81:f5:33:34:12:27:fb:8c:4f:11:30: d6:4f:f2:38:b5:33:26:39:07:fa:96:2e:33:d9:c1: 53:ed:03:de:b5:04:5f:e0:52:4a:d1:6f:47:26:43: 32:44:75:1f:32:c8:fe:38:49:a3:be:22:9c:b8:3f: ff:28:0a:a3:ac:a9:cb:32:49:b3:06:fe:aa:f3:6e: 0b:fc:25:33:c1:fc:0e:4a:1d:1e:f4:d8:60:47:35: d8:f2:4a:79:c1:db:1e:5e:5f:60:1a:9f:81:a8:26: a4:37:37:8c:68:66:43:ef:3c:b5:96:4e:87:54:27: 41:36:6b:b4:e4:c1:59:29:80:48:e5:23:40:72:07: e5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:6F:19:B5:22:12:0F:F6:61:2D:0D:61:52:45:4A:EC:B7:EF:38:B2 X509v3 Authority Key Identifier: keyid:A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/50068D0EAB2511F0BE8B7031C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.255.98.0/24 103.209.76.0/23 Signature Algorithm: sha256WithRSAEncryption 07:a9:de:30:4c:b1:dd:26:46:10:ac:05:a3:1a:51:48:cb:72: 2b:77:07:51:4f:d7:24:d0:27:ce:5e:d8:29:bf:fe:c0:76:a9: b1:8f:6b:fd:ad:68:22:fe:ad:47:e2:38:b0:10:5c:5b:57:21: 4f:2e:70:5b:46:d2:96:ad:8a:f3:2b:82:ac:be:25:fa:a0:76: 68:27:32:bd:7e:52:01:78:43:52:a3:af:6b:21:82:8c:5b:82: fc:a2:6f:eb:d2:0f:fa:0f:85:30:57:a5:53:01:d2:3e:ea:65: dd:b4:c9:4e:41:c9:28:7c:2d:cd:61:bb:f7:a6:7d:f7:7e:f8: d6:c0:0a:03:51:e6:89:61:c6:8f:f7:92:f4:16:ea:f1:2c:ac: 9d:c4:95:2e:7a:5e:b2:07:b5:5c:81:30:f7:df:84:58:36:cc: 3a:03:85:4b:b7:7e:0e:ca:0a:7f:fc:53:6d:6a:a7:f6:ee:ed: 60:d5:49:da:8e:b4:86:48:5d:7a:e7:f3:ef:aa:2d:0d:85:23: 14:a2:83:20:f7:a4:31:62:6f:1a:c6:17:c9:89:e4:77:31:59: f6:d7:5a:4e:bf:f2:1b:1c:8c:bc:e5:0e:92:27:ef:b0:4b:25: dc:2f:fa:d1:aa:3f:1c:ee:ba:d2:db:9a:aa:bb:64:e6:df:65: 89:80:f8:39 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICA8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0RTcxMTAvBgNVBAUTKEE1QzRBMEFCMEU1RUUxM0IxNDg0NTQzOUIxQUU0RkIz NDQ2OEM3QjkwHhcNMjYwMzI1MDAzNDM0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWMzMmQ5YS03YWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJuHy6YOMwkmufooMoRrOH2aXh6fuBUp08eCJ7D+iBSlphphJk6kai9MmFS3 UlRMnmOrKOIx1Zf/OZiKdIGWVOPc8+2nloKqnpTxdGsGa9KGrdHtleUQb2HOcQfr RRFLNKQX9dTIg5GIdirkE4tO3vIvkLAlI4SYbfW0gfUzNBIn+4xPETDWT/I4tTMm OQf6li4z2cFT7QPetQRf4FJK0W9HJkMyRHUfMsj+OEmjviKcuD//KAqjrKnLMkmz Bv6q824L/CUzwfwOSh0e9NhgRzXY8kp5wdseXl9gGp+BqCakNzeMaGZD7zy1lk6H VCdBNmu05MFZKYBI5SNAcgflSwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOpvGbUi Eg/2YS0NYVJFSuy37ziyMB8GA1UdIwQYMBaAFKXEoKsOXuE7FIRUObGuT7NEaMe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzRFNy85ODFDMDU1OEVB RDgxMUVDQkM3RUUwMTVDNEY5QUUwMi9wY1NncXc1ZTRUc1VoRlE1c2E1UHMwUm94 N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjU2dxdzVlNFRzVWhGUTVzYTVQczBSb3g3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0RTcvOTgxQzA1NThFQUQ4MTFFQ0JDN0VFMDE1QzRGOUFFMDIvNTAwNjhEMEVB QjI1MTFGMEJFOEI3MDMxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAJP9iAwQBZ9FMMA0GCSqGSIb3DQEBCwUAA4IBAQAHqd4wTLHdJkYQ rAWjGlFIy3IrdwdRT9ck0CfOXtgpv/7Adqmxj2v9rWgi/q1H4jiwEFxbVyFPLnBb RtKWrYrzK4KsviX6oHZoJzK9flIBeENSo69rIYKMW4L8om/r0g/6D4UwV6VTAdI+ 6mXdtMlOQckofC3NYbv3pn33fvjWwAoDUeaJYcaP95L0FurxLKydxJUuel6yB7Vc gTD334RYNsw6A4VLt34Oygp//FNtaqf27u1g1UnajrSGSF165/Pvqi0NhSMUooMg 96QxYm8axhfJieR3MVn211pOv/IbHIy85Q6SJ++wSyXcL/rRqj8c7rrS25qqu2Tm 32WJgPg5 -----END CERTIFICATE-----Generated at Thu Mar 26 12:00:58 2026 by rpki-client