$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/678847C6535F11EE9BC85F83C4F9AE02.roa File: 678847C6535F11EE9BC85F83C4F9AE02.roa (raw, json) Hash identifier: Z79rrvAX+MkAU7RIj82HMSiIMnnHt8DRxj3iIlw1SGs= Subject key identifier: 05:4C:EA:E6:55:B9:BA:C8:7A:08:A0:43:EE:EA:17:E3:59:EC:3B:BC Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0DBC Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/678847C6535F11EE9BC85F83C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:42:12 +0000 ROA not before: Sun 02 Nov 2025 19:08:12 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4202202256 IP address blocks: 202.75.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3516 (0xdbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 2 19:08:12 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48883-97e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ce:48:a5:c0:94:59:96:25:53:a7:82:dc:96: bc:82:ae:50:66:9f:1a:17:f7:24:0e:32:7b:77:22: ee:81:d3:25:07:1a:49:8b:47:30:c8:2d:d0:b0:0e: a1:23:a7:e2:cb:ef:ea:c1:46:fe:ec:e4:6f:be:fa: 27:b8:96:f6:92:bb:b6:23:11:c1:b5:2d:c5:9b:7d: 5b:21:5d:bc:7f:76:d8:01:a6:2e:bd:d9:ae:05:7b: 15:98:d3:f2:93:a6:3a:77:66:1d:3d:67:5b:d3:3e: ff:05:ff:20:2d:64:7f:31:20:66:30:42:c3:42:22: 8e:4e:91:05:c4:e3:e1:e5:6b:b5:2c:7c:2a:10:f9: 87:23:03:2f:e2:03:c6:22:9d:41:e1:f4:70:3b:83: 45:94:1a:a0:07:c1:96:a3:e5:1f:fc:95:34:89:f3: 8a:5e:dc:01:4f:89:1e:e9:e8:9c:a3:13:9a:05:0e: db:2a:dc:13:c8:55:54:7d:ea:23:ea:bd:63:c1:49: 1a:6f:6a:91:59:71:5e:37:26:19:58:6c:f9:3e:f7: e2:bd:50:71:ca:47:65:d5:ab:02:07:44:cf:1d:ae: 43:78:b8:18:d0:81:9b:82:97:f9:2c:c4:e3:68:a2: 35:1a:10:a4:67:2b:0f:17:96:3d:5f:b6:ef:74:a6: 67:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:4C:EA:E6:55:B9:BA:C8:7A:08:A0:43:EE:EA:17:E3:59:EC:3B:BC X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/678847C6535F11EE9BC85F83C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.75.45.0/24 Signature Algorithm: sha256WithRSAEncryption 12:dc:b2:f2:88:ef:9f:02:bd:30:97:9e:1b:14:3e:a0:0e:84: 6a:ec:8c:30:05:b6:64:fb:a0:99:42:72:89:27:36:a1:f0:86: 48:62:1f:ba:9f:1f:30:aa:ac:14:d0:90:cc:0f:9e:74:53:bd: a2:5b:b5:23:23:cb:f1:74:33:c0:98:5a:07:ad:64:75:62:39: 94:fe:dd:b2:70:90:36:f3:51:62:5f:5c:a7:87:ed:81:99:7a: 1f:01:b2:bb:77:53:b9:da:53:cf:ab:49:93:0a:1d:fb:db:34: f1:66:4b:0a:78:cc:76:75:7e:48:67:18:53:9e:79:c2:d8:ca: e6:91:20:e7:ff:af:db:e2:49:0a:c7:a1:b9:40:e9:ed:d1:f5: 7f:f6:44:b4:87:62:47:ce:48:76:ac:87:85:86:af:81:97:c5: c1:42:29:31:f1:6c:59:ed:86:a0:78:f7:60:b7:94:76:79:36: 8e:da:89:43:cf:d3:bf:08:21:ab:13:9b:92:af:25:da:0f:19: 61:3a:16:95:53:a7:34:74:dc:f2:5d:e5:d4:ac:d5:93:09:ee: f0:23:2d:e4:ee:21:75:9f:37:29:45:9f:23:1b:92:1e:a5:43: 20:26:7f:86:c9:3f:76:cc:2c:93:36:4b:cc:37:a2:d4:17:3f: a9:7f:2b:f6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTAyMTkwODEyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODg4My05N2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnM5IpcCUWZYlU6eC3Ja8gq5QZp8aF/ckDjJ7dyLugdMlBxpJi0cwyC3QsA6h I6fiy+/qwUb+7ORvvvonuJb2kru2IxHBtS3Fm31bIV28f3bYAaYuvdmuBXsVmNPy k6Y6d2YdPWdb0z7/Bf8gLWR/MSBmMELDQiKOTpEFxOPh5Wu1LHwqEPmHIwMv4gPG Ip1B4fRwO4NFlBqgB8GWo+Uf/JU0ifOKXtwBT4ke6eicoxOaBQ7bKtwTyFVUfeoj 6r1jwUkab2qRWXFeNyYZWGz5PvfivVBxykdl1asCB0TPHa5DeLgY0IGbgpf5LMTj aKI1GhCkZysPF5Y9X7bvdKZnDwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAVM6uZV ubrIegigQ+7qF+NZ7Du8MB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvNjc4ODQ3QzY1 MzVGMTFFRTlCQzg1RjgzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAykstMA0GCSqGSIb3DQEBCwUAA4IBAQAS3LLyiO+fAr0wl54bFD6g DoRq7IwwBbZk+6CZQnKJJzah8IZIYh+6nx8wqqwU0JDMD550U72iW7UjI8vxdDPA mFoHrWR1YjmU/t2ycJA281FiX1ynh+2BmXofAbK7d1O52lPPq0mTCh372zTxZksK eMx2dX5IZxhTnnnC2MrmkSDn/6/b4kkKx6G5QOnt0fV/9kS0h2JHzkh2rIeFhq+B l8XBQikx8WxZ7YagePdgt5R2eTaO2olDz9O/CCGrE5uSryXaDxlhOhaVU6c0dNzy XeXUrNWTCe7wIy3k7iF1nzcpRZ8jG5IepUMgJn+GyT92zCyTNkvMN6LUFz+pfyv2 -----END CERTIFICATE-----Generated at Mon Mar 2 07:41:30 2026 by rpki-client