$ rpki-client -vvf rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/1E85ABA6231E11EFA893585AC4F9AE02.roa File: 1E85ABA6231E11EFA893585AC4F9AE02.roa (raw, json) Hash identifier: MnaX3T0zyBvJ0bwY6OhmDdwRp34O+rk5wwsxDth8dQA= Subject key identifier: 3C:BA:CC:D9:E3:92:41:EE:7C:D9:A0:D5:C4:06:8B:56:DB:3C:6F:05 Certificate issuer: /CN=A917DFDA/serialNumber=22AFD4CDD9C4F4C383762B3E93EECF1AE6FF9D16 Certificate serial: 014F Authority key identifier: 22:AF:D4:CD:D9:C4:F4:C3:83:76:2B:3E:93:EE:CF:1A:E6:FF:9D:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/1E85ABA6231E11EFA893585AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:10:50 +0000 ROA not before: Wed 21 May 2025 05:16:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9934 IP address blocks: 202.37.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.crl rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DFDA, serialNumber=22AFD4CDD9C4F4C383762B3E93EECF1AE6FF9D16 Validity Not Before: May 21 05:16:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a58c5a-d889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:89:d3:71:60:77:84:9b:ba:1a:af:82:04:b9: 4a:73:ee:a8:e7:de:fe:c4:6a:8c:26:f7:bf:bc:74: 81:a8:d0:8f:1d:e0:c9:fb:38:5d:40:6c:2e:fc:0c: b3:5e:f5:24:2c:81:fa:1c:db:ef:44:23:b2:47:27: 69:d6:87:b4:8e:86:bf:82:7f:58:a8:e2:29:09:4a: 15:20:fd:92:b3:08:d1:ab:92:5f:ed:67:44:5c:80: d6:4f:94:cb:8f:0b:38:e3:00:94:27:6d:dc:37:aa: c7:20:6c:dc:8f:2c:b6:4a:c4:ff:5a:dd:e8:c4:20: 17:bf:47:ee:55:24:6d:66:9a:5e:44:24:69:1e:67: 35:f1:a8:2c:33:af:4f:a1:d3:1b:69:87:79:e7:98: c1:f7:1b:f9:12:b5:cc:22:b7:05:35:e0:bb:ca:ff: 8c:3b:6d:3d:d9:d6:24:22:54:9f:10:38:06:6f:a0: 99:4f:f6:4a:4f:5c:dd:2f:ef:3a:86:8a:1c:96:8b: 06:6f:cb:45:56:76:96:96:56:32:96:4a:16:26:cc: 0f:84:3a:12:17:7a:ee:6c:f1:6e:68:1f:70:fc:30: 21:2e:82:ea:bc:6f:dc:f9:3c:f4:f5:c8:48:4d:f6: 94:1f:8e:4a:8e:1b:39:08:79:ed:94:24:04:b3:82: 8c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BA:CC:D9:E3:92:41:EE:7C:D9:A0:D5:C4:06:8B:56:DB:3C:6F:05 X509v3 Authority Key Identifier: keyid:22:AF:D4:CD:D9:C4:F4:C3:83:76:2B:3E:93:EE:CF:1A:E6:FF:9D:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/1E85ABA6231E11EFA893585AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.37.235.0/24 Signature Algorithm: sha256WithRSAEncryption 40:80:e8:0b:d5:06:65:dd:59:51:71:c9:a9:84:21:7e:33:92: 08:09:09:6e:e5:e6:86:2b:0d:b1:b3:f4:03:15:e1:c4:b2:fa: e8:ce:24:3c:3e:7a:5b:45:2c:33:f0:d5:ab:b0:74:5e:7e:9f: a1:db:99:89:d9:1a:58:02:01:e8:a4:f0:e7:39:b6:ef:9e:21: ba:96:a7:26:3a:13:ca:04:74:bd:9e:42:da:d9:6b:9c:7b:3e: be:ed:ae:86:71:e8:5c:27:29:e4:78:1a:0b:53:d6:ff:ed:93: 97:d0:f7:1f:ed:bc:e8:06:c5:43:d3:c9:e6:a3:a2:98:d2:6e: 88:c3:9a:59:9a:cb:03:95:77:fc:97:60:09:ec:b9:fe:92:b4: fa:3a:14:5f:d8:6f:80:bf:84:31:d7:bd:5a:09:1f:22:64:4b: f6:52:fa:b8:da:17:1b:1f:67:57:34:55:5d:b8:42:72:20:18: ed:06:79:e7:79:8a:b0:cb:9b:d3:ce:82:a5:95:19:e9:db:18: e3:af:53:81:c1:72:14:11:f4:4c:35:88:e2:e1:c5:bc:d8:4e: ac:2a:f2:cd:e0:5b:4d:ec:f4:2a:63:03:b3:50:31:2f:69:d3: d7:35:89:a0:5e:b5:63:b6:91:86:10:20:c4:47:c9:b0:82:cd: 04:d7:1a:39 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RGREExMTAvBgNVBAUTKDIyQUZENENERDlDNEY0QzM4Mzc2MkIzRTkzRUVDRjFB RTZGRjlEMTYwHhcNMjUwNTIxMDUxNjQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGM1YS1kODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4nTcWB3hJu6Gq+CBLlKc+6o597+xGqMJve/vHSBqNCPHeDJ+zhdQGwu/Ayz XvUkLIH6HNvvRCOyRydp1oe0joa/gn9YqOIpCUoVIP2SswjRq5Jf7WdEXIDWT5TL jws44wCUJ23cN6rHIGzcjyy2SsT/Wt3oxCAXv0fuVSRtZppeRCRpHmc18agsM69P odMbaYd555jB9xv5ErXMIrcFNeC7yv+MO2092dYkIlSfEDgGb6CZT/ZKT1zdL+86 hooclosGb8tFVnaWllYylkoWJswPhDoSF3rubPFuaB9w/DAhLoLqvG/c+Tz09chI TfaUH45Kjhs5CHntlCQEs4KMOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDy6zNnj kkHufNmg1cQGi1bbPG8FMB8GA1UdIwQYMBaAFCKv1M3ZxPTDg3YrPpPuzxrm/50W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REZEQS9BRjJENTBFNjIz MDAxMUVGOTQ1REUzODJDNEY5QUUwMi9JcV9VemRuRTlNT0RkaXMtay03UEd1Yl9u UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxX1V6ZG5FOU1PRGRpcy1rLTdQR3ViX25SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RGREEvQUYyRDUwRTYyMzAwMTFFRjk0NURFMzgyQzRGOUFFMDIvMUU4NUFCQTYy MzFFMTFFRkE4OTM1ODVBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyiXrMA0GCSqGSIb3DQEBCwUAA4IBAQBAgOgL1QZl3VlRccmphCF+ M5IICQlu5eaGKw2xs/QDFeHEsvroziQ8PnpbRSwz8NWrsHRefp+h25mJ2RpYAgHo pPDnObbvniG6lqcmOhPKBHS9nkLa2Wucez6+7a6GcehcJynkeBoLU9b/7ZOX0Pcf 7bzoBsVD08nmo6KY0m6Iw5pZmssDlXf8l2AJ7Ln+krT6OhRf2G+Av4Qx171aCR8i ZEv2Uvq42hcbH2dXNFVduEJyIBjtBnnneYqwy5vTzoKllRnp2xjjr1OBwXIUEfRM NYji4cW82E6sKvLN4FtN7PQqYwOzUDEvadPXNYmgXrVjtpGGECDER8mwgs0E1xo5 -----END CERTIFICATE-----Generated at Thu Mar 26 18:53:39 2026 by rpki-client