$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/047E1E9C341C11EE84F4D52CC4F9AE02.roa File: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (raw, json) Hash identifier: EWx+8I0dKpQmMmJmVtybBvo6VPcidxqCNBnDbqWKSIg= Subject key identifier: 0C:0B:7F:DA:1F:28:A5:66:A5:BA:9E:6D:A1:2D:8D:BF:2B:49:14:D0 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 01E8 Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/047E1E9C341C11EE84F4D52CC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:54:07 +0000 ROA not before: Sun 27 Apr 2025 03:40:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 202.36.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Apr 27 03:40:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5a48f-be34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d7:5d:80:d3:c2:c2:4f:fb:72:1c:4f:53:3b: c6:bd:4c:a8:1c:6d:92:d4:d4:f8:f0:1b:a6:57:5f: 26:12:61:6c:32:61:73:99:04:f5:cf:cd:d3:9d:4b: 32:a3:7a:1e:e6:aa:7e:a3:59:2b:30:70:18:64:b6: 8d:22:a6:c1:d0:31:4f:ca:cf:e2:7b:56:95:74:67: aa:8c:07:be:7a:09:ea:24:3b:76:72:d9:c6:e6:86: 83:82:1f:80:91:ed:7c:12:37:3f:a5:1b:3c:f3:8d: 33:a2:87:dc:02:66:36:d8:01:f5:ee:07:fc:60:f6: 49:a7:de:d0:a2:8b:ec:d6:1e:95:33:9b:59:cd:32: 85:5c:c6:82:22:24:6b:7d:0e:55:3a:77:7b:f2:58: 99:16:ce:3b:c3:2d:52:17:57:05:ab:11:27:02:60: 3b:1c:d8:73:01:53:75:6b:65:73:1a:e4:d3:d5:0a: 7e:70:13:df:5b:13:22:47:f3:87:dd:d6:8c:c7:2d: 62:4a:09:7b:27:42:f5:b4:4c:db:15:be:e8:a8:c8: 89:88:77:c3:2a:54:39:88:64:cb:dd:0f:69:0d:d3: 3e:73:31:0b:01:5a:ae:ee:5d:95:8a:68:42:3c:40: 2d:6f:69:d7:cb:06:a5:ce:41:e3:91:aa:89:b4:9a: 3f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:0B:7F:DA:1F:28:A5:66:A5:BA:9E:6D:A1:2D:8D:BF:2B:49:14:D0 X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/047E1E9C341C11EE84F4D52CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.36.70.0/24 Signature Algorithm: sha256WithRSAEncryption 99:b4:16:4e:14:ff:3a:cc:a7:4c:59:57:c4:80:33:38:cb:2d: 7d:79:c6:0f:7b:63:0e:a7:be:14:e3:8d:2b:80:b7:0c:08:49: 19:fb:39:ad:e2:7d:77:66:23:64:8e:a9:f3:be:13:35:4e:f5: 99:37:49:27:bf:8b:e2:74:e3:dc:24:27:dc:82:a0:ce:53:35: d1:0c:9d:ea:a3:2b:62:ed:03:dd:f2:96:08:36:50:28:ea:b2: 3f:59:c1:2b:73:9a:34:58:37:14:ff:2f:bb:27:bc:14:8b:42: 10:bf:21:c3:a1:25:66:c6:94:e5:fe:ae:30:f9:4e:58:bf:fa: a9:9b:9d:14:dc:ff:82:a3:f5:a8:5b:ff:b9:f1:14:ba:41:0f: a7:72:e5:64:31:c0:3d:b5:4a:cb:42:ee:65:18:53:ae:a4:a4: 0f:50:57:d8:a6:10:52:96:d0:33:b5:18:d9:ab:ee:15:59:7a: 3c:41:8f:ff:07:3d:d9:b0:a1:7a:79:a0:07:d1:78:bb:61:ec: 6d:c8:7b:a4:57:46:2d:2e:42:34:6e:0e:d6:8d:b1:2f:9c:70: 6e:62:a2:6b:dc:51:c7:5b:ae:07:b2:70:45:09:e6:0d:53:c0: 57:ce:b9:79:f6:bd:e2:d5:48:af:7e:91:48:17:07:b0:7c:36: a6:60:45:5b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUwNDI3MDM0MDExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTQ4Zi1iZTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdddgNPCwk/7chxPUzvGvUyoHG2S1NT48BumV18mEmFsMmFzmQT1z83TnUsy o3oe5qp+o1krMHAYZLaNIqbB0DFPys/ie1aVdGeqjAe+egnqJDt2ctnG5oaDgh+A ke18Ejc/pRs8840zoofcAmY22AH17gf8YPZJp97Qoovs1h6VM5tZzTKFXMaCIiRr fQ5VOnd78liZFs47wy1SF1cFqxEnAmA7HNhzAVN1a2VzGuTT1Qp+cBPfWxMiR/OH 3daMxy1iSgl7J0L1tEzbFb7oqMiJiHfDKlQ5iGTL3Q9pDdM+czELAVqu7l2VimhC PEAtb2nXywalzkHjkaqJtJo/TwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAwLf9of KKVmpbqebaEtjb8rSRTQMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNFNjIvMjFENUNDREUzNDFCMTFFRTlGODQ5MDI4QzRGOUFFMDIvMDQ3RTFFOUMz NDFDMTFFRTg0RjRENTJDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyiRGMA0GCSqGSIb3DQEBCwUAA4IBAQCZtBZOFP86zKdMWVfEgDM4 yy19ecYPe2MOp74U440rgLcMCEkZ+zmt4n13ZiNkjqnzvhM1TvWZN0knv4vidOPc JCfcgqDOUzXRDJ3qoyti7QPd8pYINlAo6rI/WcErc5o0WDcU/y+7J7wUi0IQvyHD oSVmxpTl/q4w+U5Yv/qpm50U3P+Co/WoW/+58RS6QQ+ncuVkMcA9tUrLQu5lGFOu pKQPUFfYphBSltAztRjZq+4VWXo8QY//Bz3ZsKF6eaAH0Xi7YextyHukV0YtLkI0 bg7WjbEvnHBuYqJr3FHHW64HsnBFCeYNU8BXzrl59r3i1UivfpFIFwewfDamYEVb -----END CERTIFICATE-----Generated at Thu Mar 26 10:31:20 2026 by rpki-client