$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/2CC58A76368D11ED9458DD49C4F9AE02.roa File: 2CC58A76368D11ED9458DD49C4F9AE02.roa (raw, json) Hash identifier: dkhD9BBvuYIZ7lnREPJ+QcQGcwCyMTBzZEMhZBQWXX8= Subject key identifier: 8F:D6:B5:61:2B:97:8E:4E:07:E6:10:3C:EA:87:01:9D:4A:F3:FB:02 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2BC9 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/2CC58A76368D11ED9458DD49C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:23:12 +0000 ROA not before: Fri 02 Jan 2026 16:13:20 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141692 IP address blocks: 202.80.224.0/24 maxlen: 24 2405:9800:c90c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11209 (0x2bc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Jan 2 16:13:20 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a49220-5e08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4f:c2:5e:98:45:53:6f:d0:8d:5d:87:95:af: d9:5d:dd:4f:df:57:07:b3:bb:67:9b:ad:b6:27:aa: 22:04:36:6f:62:bb:c6:68:1c:48:88:35:14:9a:78: df:1c:8d:59:c5:5e:a8:6b:8e:2a:b7:e8:90:d3:66: fe:02:e3:0c:73:b5:1e:57:31:e3:c3:13:43:3f:cd: f3:2a:a4:dd:0b:cb:d3:24:2d:bd:9e:29:3c:05:34: 12:f6:52:f1:e4:e9:5a:5c:79:2c:ff:86:68:e1:ce: ba:d4:6e:91:36:8e:be:a4:56:75:3a:0b:ee:65:03: 15:5c:85:15:8a:e9:cc:87:4d:45:3a:67:fa:ad:6a: 76:f2:b5:4f:22:10:83:ef:30:ca:2a:5a:76:3c:f2: 22:cb:61:f0:ce:28:30:55:49:df:40:e1:01:25:d4: f3:b6:e0:2a:34:f8:2d:a7:42:59:9f:3c:41:44:4c: c7:c0:b4:60:65:71:ce:a3:8a:86:87:1e:a7:0a:7d: 33:32:18:35:bd:fc:e6:a9:08:06:84:e1:2f:f4:0f: 15:b2:c8:bd:a0:55:61:b1:fa:b5:ba:b9:4e:07:39: 62:28:06:0c:e6:9d:50:c3:fa:18:16:54:5e:d9:f7: 39:fc:af:cf:b4:75:6c:01:33:87:2c:85:5d:e4:65: 37:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D6:B5:61:2B:97:8E:4E:07:E6:10:3C:EA:87:01:9D:4A:F3:FB:02 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/2CC58A76368D11ED9458DD49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.80.224.0/24 IPv6: 2405:9800:c90c::/48 Signature Algorithm: sha256WithRSAEncryption 31:98:4b:46:a7:c1:58:f9:8b:5e:0b:d5:fc:0a:89:3a:0e:84: 6d:e2:eb:68:fa:a3:91:67:12:20:9c:70:33:35:f0:4f:78:15: d1:1f:e4:e5:ab:92:a3:87:36:f7:92:16:26:97:1e:8b:9e:17: 9e:eb:07:5d:5c:6c:b0:cc:0a:b1:9f:68:8b:a9:4e:03:57:78: 14:3d:7c:16:b6:fd:e4:05:8c:5b:0b:81:52:26:02:e9:85:fe: 2c:ee:1e:35:9f:45:4c:35:87:f9:93:9f:b6:df:c6:6b:9e:a3: cf:ea:17:d1:50:3d:81:6e:e9:ad:3e:a6:1d:8a:f1:ef:aa:b8: 1c:66:77:a9:0a:dd:e8:cd:8c:0c:d2:01:26:68:0b:9d:65:b5: 54:58:c1:97:51:01:5f:84:e4:c2:f3:31:d1:5f:17:d6:b5:85: fc:c6:73:f9:02:7f:99:24:bd:6b:8c:83:dd:ef:c9:3e:55:d3: e5:c3:0c:83:b8:9d:67:4d:86:e5:53:cf:7d:24:96:17:ea:f1: e4:64:64:84:10:a9:05:a7:7e:b1:86:e1:ec:1a:52:5f:0b:04: 14:9f:a4:a9:7c:d7:83:83:a0:83:ac:79:d2:6e:7a:aa:23:a2: 70:f2:9e:c9:df:70:cb:f2:6d:b6:d6:06:ce:25:2e:09:e9:a7: 6e:4d:2d:36 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICK8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjYwMTAyMTYxMzIwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTIyMC01ZTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU/CXphFU2/QjV2Hla/ZXd1P31cHs7tnm622J6oiBDZvYrvGaBxIiDUUmnjf HI1ZxV6oa44qt+iQ02b+AuMMc7UeVzHjwxNDP83zKqTdC8vTJC29nik8BTQS9lLx 5OlaXHks/4Zo4c661G6RNo6+pFZ1OgvuZQMVXIUViunMh01FOmf6rWp28rVPIhCD 7zDKKlp2PPIiy2HwzigwVUnfQOEBJdTztuAqNPgtp0JZnzxBREzHwLRgZXHOo4qG hx6nCn0zMhg1vfzmqQgGhOEv9A8Vssi9oFVhsfq1urlOBzliKAYM5p1Qw/oYFlRe 2fc5/K/PtHVsATOHLIVd5GU3xwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFI/WtWEr l45OB+YQPOqHAZ1K8/sCMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvMkNDNThBNzYz NjhEMTFFRDk0NThERDQ5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAylDgMA8EAgACMAkDBwAkBZgAyQwwDQYJKoZIhvcNAQELBQADggEB ADGYS0anwVj5i14L1fwKiToOhG3i62j6o5FnEiCccDM18E94FdEf5OWrkqOHNveS FiaXHoueF57rB11cbLDMCrGfaIupTgNXeBQ9fBa2/eQFjFsLgVImAumF/izuHjWf RUw1h/mTn7bfxmueo8/qF9FQPYFu6a0+ph2K8e+quBxmd6kK3ejNjAzSASZoC51l tVRYwZdRAV+E5MLzMdFfF9a1hfzGc/kCf5kkvWuMg93vyT5V0+XDDIO4nWdNhuVT z30klhfq8eRkZIQQqQWnfrGG4ewaUl8LBBSfpKl814ODoIOsedJueqojonDynsnf cMvybbbWBs4lLgnpp25NLTY= -----END CERTIFICATE-----Generated at Mon Mar 2 14:58:12 2026 by rpki-client