$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/86DD2732D86011E9AA427365C4F9AE02.roa File: 86DD2732D86011E9AA427365C4F9AE02.roa (raw, json) Hash identifier: pjolkF44MUAe75DMpv/iMQlUBGtTK9xHk97SFljAzmk= Subject key identifier: F0:84:6C:39:8F:32:AB:B6:5C:3C:D3:7E:F5:D3:99:87:23:8F:37:A1 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2BE3 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/86DD2732D86011E9AA427365C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:23:35 +0000 ROA not before: Fri 02 Jan 2026 16:13:48 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 45959 IP address blocks: 202.80.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11235 (0x2be3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Jan 2 16:13:48 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a49237-5589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:d9:8b:94:02:eb:8c:25:88:e7:88:a3:0b:15: 4c:fe:26:cd:13:f4:de:e1:a0:3c:d3:a8:51:34:c4: 35:db:22:46:51:c4:c3:58:81:8d:9a:19:e6:63:ab: d9:ac:41:b8:e5:10:f1:d2:d5:d1:b3:b7:28:f4:44: da:d8:07:78:52:b7:22:41:5b:d5:13:3a:2a:67:fe: 25:a4:2a:a5:05:1f:fa:e0:14:fc:53:aa:69:2f:8b: 84:84:90:58:bf:74:84:af:9b:8a:1a:05:02:55:aa: 73:ea:f8:76:81:6c:75:a9:19:3e:ee:b8:66:a6:d0: 90:a9:6a:20:a4:f6:cc:55:fe:9c:4f:e2:43:84:20: 77:fd:87:69:d5:92:bd:4b:c3:aa:73:ef:78:25:36: 0d:0f:89:c6:2d:d5:32:78:60:2a:d9:48:63:a2:b2: d8:e6:f9:26:58:39:b8:94:79:f8:77:43:65:58:2e: b1:23:a0:4d:e7:b2:60:fa:bc:98:ad:c2:6d:ed:98: 30:d2:48:b8:e1:01:a5:c3:f7:1d:11:c6:95:03:ef: 45:b3:79:df:21:ab:a1:b1:bc:dd:5c:f1:d9:55:75: 79:e9:ed:79:95:17:51:de:12:09:8e:90:87:f5:73: a5:82:e2:2f:a6:7a:4a:a4:fd:e5:33:48:7c:ee:50: aa:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:84:6C:39:8F:32:AB:B6:5C:3C:D3:7E:F5:D3:99:87:23:8F:37:A1 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/86DD2732D86011E9AA427365C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.80.246.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:ab:36:5a:ce:43:50:ec:9f:5b:d6:13:78:be:19:e7:43:d6: 01:48:f8:58:e4:e7:95:e2:db:58:f8:b0:5f:f3:63:ce:3f:28: fe:d6:72:05:11:12:68:5f:92:62:30:1c:45:83:48:28:55:c8: a0:5d:c1:1b:31:09:ec:ac:c5:07:94:0d:b5:18:cf:53:ab:09: 40:f3:a8:1f:2a:c1:6d:78:b8:a4:11:a7:3a:c8:14:08:0c:05: 41:b4:62:02:2e:5b:a7:77:b5:67:c1:fa:c2:68:b6:9b:52:71: e0:b3:1e:ba:86:0a:85:d2:03:da:05:b0:f3:c7:9d:98:07:ab: 7b:f2:df:a5:c2:83:c7:06:c3:a7:a8:c9:d1:a0:e7:89:4e:ab: ac:73:50:b6:c5:1c:ab:c5:86:9b:a3:13:b5:6b:2b:14:db:d2: 2f:76:89:25:e2:46:7d:0b:54:09:a3:c5:f8:68:46:b3:60:71: 73:a9:aa:c5:4c:a9:d1:7b:74:b4:7c:d8:ac:44:ed:72:30:4a: d5:5b:c0:cd:b8:9c:38:fc:1f:30:4c:1e:a6:88:04:14:53:1d: 90:64:7c:c0:65:80:4f:00:3f:17:c4:2a:e1:7b:76:4d:38:55: a5:25:88:52:a3:03:46:8e:d0:56:7b:1a:7b:83:75:d4:71:b1: d3:01:51:04 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICK+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjYwMTAyMTYxMzQ4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTIzNy01NTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8tmLlALrjCWI54ijCxVM/ibNE/Te4aA806hRNMQ12yJGUcTDWIGNmhnmY6vZ rEG45RDx0tXRs7co9ETa2Ad4UrciQVvVEzoqZ/4lpCqlBR/64BT8U6ppL4uEhJBY v3SEr5uKGgUCVapz6vh2gWx1qRk+7rhmptCQqWogpPbMVf6cT+JDhCB3/Ydp1ZK9 S8Oqc+94JTYND4nGLdUyeGAq2UhjorLY5vkmWDm4lHn4d0NlWC6xI6BN57Jg+ryY rcJt7Zgw0ki44QGlw/cdEcaVA+9Fs3nfIauhsbzdXPHZVXV56e15lRdR3hIJjpCH 9XOlguIvpnpKpP3lM0h87lCqjQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPCEbDmP Mqu2XDzTfvXTmYcjjzehMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvODZERDI3MzJE ODYwMTFFOUFBNDI3MzY1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAylD2MA0GCSqGSIb3DQEBCwUAA4IBAQAsqzZazkNQ7J9b1hN4vhnn Q9YBSPhY5OeV4ttY+LBf82POPyj+1nIFERJoX5JiMBxFg0goVcigXcEbMQnsrMUH lA21GM9TqwlA86gfKsFteLikEac6yBQIDAVBtGICLlund7VnwfrCaLabUnHgsx66 hgqF0gPaBbDzx52YB6t78t+lwoPHBsOnqMnRoOeJTqusc1C2xRyrxYaboxO1aysU 29Ivdokl4kZ9C1QJo8X4aEazYHFzqarFTKnRe3S0fNisRO1yMErVW8DNuJw4/B8w TB6miAQUUx2QZHzAZYBPAD8XxCrhe3ZNOFWlJYhSowNGjtBWexp7g3XUcbHTAVEE -----END CERTIFICATE-----Generated at Mon Mar 2 11:46:06 2026 by rpki-client