$ rpki-client -vvf rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/8DFAE1DA019D11E8A7804A1EC4F9AE02.roa File: 8DFAE1DA019D11E8A7804A1EC4F9AE02.roa (raw, json) Hash identifier: UFlhmCCynZhl65w2GzVnawinh1Lr9CWnAf/vy/WIFtA= Subject key identifier: CC:F4:8F:C3:A5:D4:75:A0:B9:41:6A:9A:D0:7E:FA:3E:CA:5F:CA:24 Certificate issuer: /CN=A918742C/serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Certificate serial: 1721 Authority key identifier: 1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/8DFAE1DA019D11E8A7804A1EC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:16:26 +0000 ROA not before: Fri 16 May 2025 17:08:49 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 23900 IP address blocks: 202.136.240.0/21 maxlen: 21 202.136.240.0/24 maxlen: 24 202.136.241.0/24 maxlen: 24 202.136.242.0/23 maxlen: 23 202.136.242.0/24 maxlen: 24 202.136.243.0/24 maxlen: 24 202.136.244.0/24 maxlen: 24 202.136.245.0/24 maxlen: 24 202.136.246.0/24 maxlen: 24 202.136.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5921 (0x1721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918742C, serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Validity Not Before: May 16 17:08:49 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a403ea-f740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:af:a2:e2:46:36:e3:96:42:ee:7c:be:13:09: 59:59:c4:76:c5:08:84:ff:c4:00:d2:a8:fc:57:ef: 67:ea:88:11:c3:80:b1:9d:ed:b8:9f:dd:61:33:aa: 92:22:6c:16:95:e5:a6:c7:cb:ff:81:2f:58:7f:96: 92:ed:80:e8:14:37:ef:ad:e2:21:98:c0:c6:b6:e6: 5b:dc:32:59:05:1c:7a:16:db:12:37:04:5d:f0:82: 36:9f:db:ac:ac:14:29:43:ce:d5:20:f7:7b:40:b8: 8a:cb:d2:ed:9e:a3:31:d4:dd:81:68:1f:49:47:96: 08:1d:ab:87:79:57:cc:df:86:19:cd:58:47:6d:c1: d7:97:df:ad:51:58:5f:6f:41:e2:fd:28:97:7d:14: 24:ea:77:fe:77:9d:95:43:c5:eb:d5:95:12:57:be: 09:22:6c:76:2d:53:bb:f9:ff:d4:8b:cd:7a:1d:4d: 23:02:28:e0:ca:05:04:7c:fe:77:e1:60:3c:7a:c3: 24:be:b8:da:13:4f:13:17:4b:15:9b:c4:aa:2d:dc: 49:40:8b:28:23:d8:05:68:9f:2c:7d:61:ef:60:d7: d2:75:75:e1:1f:a2:a9:6d:98:41:c2:4f:17:5d:7d: a5:40:8f:32:df:06:5a:c6:e4:46:3d:6c:77:f5:47: 6c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F4:8F:C3:A5:D4:75:A0:B9:41:6A:9A:D0:7E:FA:3E:CA:5F:CA:24 X509v3 Authority Key Identifier: keyid:1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/8DFAE1DA019D11E8A7804A1EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.136.240.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:71:d0:25:34:b4:76:bd:eb:ac:90:ea:6e:ae:e2:4d:52:84: 5e:76:00:1e:2d:b8:b4:8b:f4:c1:91:e9:32:44:f0:ef:58:6b: c3:69:f6:0c:4b:32:99:08:16:8e:b6:8a:df:fa:0d:b2:15:d0: 0e:09:d6:77:5d:57:2f:ca:b7:9b:a3:46:79:c9:9c:6b:0a:38: e1:d2:93:bf:e1:de:5b:97:74:75:fd:ad:f8:a8:a2:83:fd:c7: 1e:a4:08:ce:2c:69:60:e4:08:7b:08:84:93:9a:21:45:01:a4: 15:0b:c2:67:7f:f3:38:73:ef:95:38:c6:f3:cc:30:54:f5:4d: b9:93:ef:be:d4:27:21:c9:ca:e0:d8:6d:ce:c0:44:ee:44:f7: b1:65:8d:d0:d2:30:91:1b:4e:92:50:11:c4:32:fc:6b:d6:c3: 0f:ba:96:dc:47:de:73:f2:41:5b:da:83:9a:cc:2c:ef:96:36: f2:e3:57:68:04:f3:73:9b:d8:38:17:d5:85:c6:46:ae:7f:53: 27:60:03:70:71:8e:79:82:db:f5:b1:b8:01:68:bf:a6:db:71: e1:f5:c8:38:70:76:db:b5:20:9d:7e:7c:95:f3:c4:dc:22:af: f9:f2:79:9b:2c:27:c3:a3:03:81:49:a3:34:60:2e:83:1f:49: 21:17:e7:b6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICFyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0MkMxMTAvBgNVBAUTKDFDM0Y5OUEwQzE4MkI1OENDNDVCODExMkYyOTFFMTJB MTUzMzMxRTkwHhcNMjUwNTE2MTcwODQ5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDNlYS1mNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApq+i4kY245ZC7ny+EwlZWcR2xQiE/8QA0qj8V+9n6ogRw4Cxne24n91hM6qS ImwWleWmx8v/gS9Yf5aS7YDoFDfvreIhmMDGtuZb3DJZBRx6FtsSNwRd8II2n9us rBQpQ87VIPd7QLiKy9LtnqMx1N2BaB9JR5YIHauHeVfM34YZzVhHbcHXl9+tUVhf b0Hi/SiXfRQk6nf+d52VQ8Xr1ZUSV74JImx2LVO7+f/Ui816HU0jAijgygUEfP53 4WA8esMkvrjaE08TF0sVm8SqLdxJQIsoI9gFaJ8sfWHvYNfSdXXhH6KpbZhBwk8X XX2lQI8y3wZaxuRGPWx39Uds+QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMz0j8Ol 1HWguUFqmtB++j7KX8okMB8GA1UdIwQYMBaAFBw/maDBgrWMxFuBEvKR4SoVMzHp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQyQy9GMjhDODlDNDAx OUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZekVXNEVTOHBIaEtoVXpN ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hELVpvTUdDdFl6RVc0RVM4cEhoS2hVek1lay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc0MkMvRjI4Qzg5QzQwMTlDMTFFODkwMzVGOTE5QzRGOUFFMDIvOERGQUUxREEw MTlEMTFFOEE3ODA0QTFFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDyojwMA0GCSqGSIb3DQEBCwUAA4IBAQCPcdAlNLR2veuskOpuruJN UoRedgAeLbi0i/TBkekyRPDvWGvDafYMSzKZCBaOtorf+g2yFdAOCdZ3XVcvyreb o0Z5yZxrCjjh0pO/4d5bl3R1/a34qKKD/ccepAjOLGlg5Ah7CISTmiFFAaQVC8Jn f/M4c++VOMbzzDBU9U25k+++1Cchycrg2G3OwETuRPexZY3Q0jCRG06SUBHEMvxr 1sMPupbcR95z8kFb2oOazCzvljby41doBPNzm9g4F9WFxkauf1MnYANwcY55gtv1 sbgBaL+m23Hh9cg4cHbbtSCdfnyV88TcIq/58nmbLCfDowOBSaM0YC6DH0khF+e2 -----END CERTIFICATE-----Generated at Thu Mar 26 17:26:59 2026 by rpki-client