$ rpki-client -vvf rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/D1315D7C0FDD11EEB007DA41C4F9AE02.roa File: D1315D7C0FDD11EEB007DA41C4F9AE02.roa (raw, json) Hash identifier: kRGMaXV2RHNJEqYjq9seCAVmQioDFvn7XJ10IDk+uJw= Subject key identifier: 0B:2F:45:AC:97:6D:EC:4C:8C:2D:17:6A:0F:EE:47:48:CB:BC:10:17 Certificate issuer: /CN=A91C35C9/serialNumber=7BE87031533D2FF431C11A5879A9E2D9DC8527F2 Certificate serial: 01FC Authority key identifier: 7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-hwMVM9L_QxwRpYeani2dyFJ_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/D1315D7C0FDD11EEB007DA41C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:32:59 +0000 ROA not before: Thu 19 Jun 2025 03:21:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 12076 IP address blocks: 202.36.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.crl rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-hwMVM9L_QxwRpYeani2dyFJ_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C35C9, serialNumber=7BE87031533D2FF431C11A5879A9E2D9DC8527F2 Validity Not Before: Jun 19 03:21:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3ebab-fb8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ed:57:79:22:5a:f5:4c:8d:b6:24:53:e3:94: 97:42:36:2d:86:4f:88:9d:af:41:69:79:06:6d:9d: 87:0d:c8:08:06:53:a3:3d:e5:48:f0:fc:9a:c1:36: d6:fb:ad:b0:73:31:b9:09:55:63:66:5c:41:45:c6: 48:7c:95:4c:0a:0d:88:14:b6:77:5d:6c:d4:c8:f1: 55:5d:5f:f1:10:7a:85:54:9a:e1:ef:04:e1:40:5b: de:8c:53:12:b2:dc:1b:67:5e:70:67:e7:73:65:5d: 03:e9:65:3e:4d:34:12:2e:cd:0d:eb:ab:41:2d:6b: 19:0a:07:01:64:bf:42:0a:b8:ab:84:a1:b4:46:ed: 6e:c2:14:64:8a:22:48:55:f0:07:26:1d:bc:a2:80: d2:e6:1c:84:83:ee:81:ef:4e:d3:73:b3:46:2b:88: 5e:08:e3:ca:2c:6f:d8:d2:a6:b9:36:53:55:8d:97: ea:e2:64:e7:aa:41:33:43:f8:28:ee:38:74:6e:a2: f7:18:4b:0b:73:c9:4e:ae:36:fc:f4:c9:16:7b:4b: 4e:36:42:f9:be:d3:e1:98:56:0d:5e:c4:93:88:51: 8a:e2:47:e2:d2:fc:39:3b:78:23:24:da:a2:9c:e7: d2:24:75:30:69:32:c8:5e:bd:74:52:f8:83:00:8b: 45:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2F:45:AC:97:6D:EC:4C:8C:2D:17:6A:0F:EE:47:48:CB:BC:10:17 X509v3 Authority Key Identifier: keyid:7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-hwMVM9L_QxwRpYeani2dyFJ_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/D1315D7C0FDD11EEB007DA41C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.36.34.0/24 Signature Algorithm: sha256WithRSAEncryption 25:9a:e2:08:e9:11:86:fa:f9:cf:28:bd:17:dd:15:96:3d:88: af:86:12:03:90:61:77:3a:e4:27:25:a1:8e:f4:69:c2:38:0a: c6:09:ce:ed:dd:5e:7c:3a:ca:4e:48:a6:2d:47:fb:89:65:3d: 8b:08:a5:2a:eb:f2:28:9a:be:eb:18:5f:6d:42:b9:68:81:66: 2c:f1:9e:7f:98:35:a0:7b:79:b2:16:d6:d1:58:2b:50:d6:cb: bc:58:0f:0e:24:62:f0:12:8f:75:6c:77:5a:a0:b3:20:77:0f: 47:b2:b8:2a:ff:96:65:18:e9:30:f6:cc:6f:f8:96:62:0a:86: 74:7d:ea:af:6b:99:63:a0:2b:74:2a:e4:f8:81:a8:2f:cf:a9: 67:1a:37:56:f4:d5:2b:2b:02:c3:e8:92:da:eb:85:62:44:b0: 11:1b:46:c1:94:9e:70:d5:0b:04:b9:05:db:ab:6b:b6:7e:e6: e9:25:cf:fc:34:08:b0:3b:5d:e9:41:10:49:eb:59:04:df:76: 52:98:5c:44:5c:02:b4:9e:29:9e:87:8c:c2:d4:72:20:be:43: db:ce:e7:19:60:1a:2e:59:38:58:59:1e:f9:8f:90:ea:0b:bd: 24:aa:fa:a6:4c:ea:2b:91:8a:e8:99:d1:f0:cf:5a:7d:7d:3a: e0:7d:f7:2f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM1QzkxMTAvBgNVBAUTKDdCRTg3MDMxNTMzRDJGRjQzMUMxMUE1ODc5QTlFMkQ5 REM4NTI3RjIwHhcNMjUwNjE5MDMyMTM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWJhYi1mYjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1e1XeSJa9UyNtiRT45SXQjYthk+Ina9BaXkGbZ2HDcgIBlOjPeVI8PyawTbW +62wczG5CVVjZlxBRcZIfJVMCg2IFLZ3XWzUyPFVXV/xEHqFVJrh7wThQFvejFMS stwbZ15wZ+dzZV0D6WU+TTQSLs0N66tBLWsZCgcBZL9CCrirhKG0Ru1uwhRkiiJI VfAHJh28ooDS5hyEg+6B707Tc7NGK4heCOPKLG/Y0qa5NlNVjZfq4mTnqkEzQ/go 7jh0bqL3GEsLc8lOrjb89MkWe0tONkL5vtPhmFYNXsSTiFGK4kfi0vw5O3gjJNqi nOfSJHUwaTLIXr10UviDAItFXQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAsvRayX bexMjC0Xag/uR0jLvBAXMB8GA1UdIwQYMBaAFHvocDFTPS/0McEaWHmp4tnchSfy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzVDOS83MEY4NEM2MjBG MjUxMUVFOEQyOUUyNkNDNEY5QUUwMi9lLWh3TVZNOUxfUXh3UnBZZWFuaTJkeUZK X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UtaHdNVk05TF9ReHdScFllYW5pMmR5RkpfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzM1QzkvNzBGODRDNjIwRjI1MTFFRThEMjlFMjZDQzRGOUFFMDIvRDEzMTVEN0Mw RkREMTFFRUIwMDdEQTQxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyiQiMA0GCSqGSIb3DQEBCwUAA4IBAQAlmuII6RGG+vnPKL0X3RWW PYivhhIDkGF3OuQnJaGO9GnCOArGCc7t3V58OspOSKYtR/uJZT2LCKUq6/Iomr7r GF9tQrlogWYs8Z5/mDWge3myFtbRWCtQ1su8WA8OJGLwEo91bHdaoLMgdw9Hsrgq /5ZlGOkw9sxv+JZiCoZ0feqva5ljoCt0KuT4gagvz6lnGjdW9NUrKwLD6JLa64Vi RLARG0bBlJ5w1QsEuQXbq2u2fubpJc/8NAiwO13pQRBJ61kE33ZSmFxEXAK0nime h4zC1HIgvkPbzucZYBouWThYWR75j5DqC70kqvqmTOorkYromdHwz1p9fTrgffcv -----END CERTIFICATE-----Generated at Thu Mar 26 09:53:38 2026 by rpki-client