$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/54DA33D2FB2E11EFB488A95EC4F9AE02.roa File: 54DA33D2FB2E11EFB488A95EC4F9AE02.roa (raw, json) Hash identifier: lVJ/wAuLoxmXnwU3EkGNm9UUsAUB6qqvPi8MZYUo1FY= Subject key identifier: 05:A0:BB:31:AD:EA:54:A8:A8:1B:42:8C:5F:5D:FE:D9:FB:C8:89:75 Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: CC Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/54DA33D2FB2E11EFB488A95EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:19:28 +0000 ROA not before: Tue 27 Jan 2026 05:28:45 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 38235 IP address blocks: 118.67.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C Validity Not Before: Jan 27 05:28:45 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4670f-0e98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b5:ee:36:a7:21:cf:2d:38:c5:13:98:bf:eb: b6:46:85:41:a8:9f:90:3b:62:79:86:76:7a:f5:e0: ff:0f:04:af:f2:da:52:69:31:08:7c:da:cd:b3:3f: 17:90:71:a2:93:64:f9:ba:a7:d9:28:42:91:66:a4: 5a:ee:af:ac:95:9d:4e:08:e4:d9:05:7e:be:ca:f5: 82:66:12:0e:8b:33:da:47:9f:2d:c4:f4:32:a4:25: 15:e8:3b:6c:f9:a0:c5:c3:f7:fc:b5:51:a5:f9:db: 00:0e:6c:00:67:ac:a3:66:03:0c:45:60:9f:ae:f1: bf:93:0d:c4:df:a5:2f:f9:e6:5e:dd:53:36:e1:6f: db:d7:b4:8d:10:e3:cb:71:2c:de:03:07:c5:60:d7: 32:7e:cd:e7:1d:08:be:d7:a5:83:b1:f0:b7:8e:e4: 5c:78:21:8f:24:be:eb:97:76:7f:c7:4d:a9:29:d1: 0c:e2:27:71:7b:10:5d:bf:d9:40:d5:b1:84:79:7c: 4f:d3:46:1c:ba:33:cd:77:43:24:4b:6a:f2:09:eb: 88:4c:53:ca:40:b1:05:4a:21:b0:e6:ba:3e:e1:81: c8:db:8f:a5:fb:62:ab:2d:71:b0:20:11:b9:58:c0: 5b:d6:4a:17:7b:b7:13:b4:b4:9e:26:41:d3:73:bf: 1c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A0:BB:31:AD:EA:54:A8:A8:1B:42:8C:5F:5D:FE:D9:FB:C8:89:75 X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/54DA33D2FB2E11EFB488A95EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 118.67.204.0/22 Signature Algorithm: sha256WithRSAEncryption 98:a5:07:bd:b0:a7:80:09:13:53:9b:55:f3:97:0c:39:7d:b2: d5:03:af:7b:f8:94:41:f7:8a:ee:b5:05:81:ff:ac:de:bd:4e: 5a:52:e9:c7:43:c5:cf:03:67:06:cb:3b:61:33:55:b9:4d:7c: 91:3c:39:cd:13:92:f4:f1:30:1c:42:db:c4:e6:28:f8:4e:e4: 1a:27:21:78:17:a6:1e:6e:f4:df:b9:f8:52:27:46:66:66:32: 33:a8:c9:6f:c0:f5:d6:9b:dd:a6:02:31:c1:87:98:3e:d1:87: c2:94:20:ab:95:a1:08:13:90:3b:d8:2e:2d:dc:dd:e1:27:b4: 5a:da:00:80:8f:11:e5:1e:55:9c:ce:86:a9:c7:03:61:ec:b8: f7:50:74:fe:63:55:8c:db:3d:f7:64:f8:4b:bd:97:d8:d0:96: 9c:85:1c:de:42:c9:56:83:58:5d:85:9f:8b:ae:b8:09:f7:06: 55:83:42:cb:9c:16:70:1f:bb:0d:d1:8f:99:63:84:bf:c1:d9: ec:59:24:4a:e5:d8:36:00:d8:ac:c9:c0:a0:94:8f:49:af:2e: 4b:bb:48:7e:0d:33:b5:51:9a:19:99:08:27:49:d3:4f:93:55: 41:a5:f6:b3:10:9d:fd:b8:a2:ce:90:5d:a8:e6:0b:e0:8b:1f: 49:6d:5c:36 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDIxMTAvBgNVBAUTKDM4NkMzMDBFRDcyRjEyQjkwNTQ3OEEzM0NFRjI3Nzk5 MjU0QTY5MUMwHhcNMjYwMTI3MDUyODQ1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjcwZi0wZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47XuNqchzy04xROYv+u2RoVBqJ+QO2J5hnZ69eD/DwSv8tpSaTEIfNrNsz8X kHGik2T5uqfZKEKRZqRa7q+slZ1OCOTZBX6+yvWCZhIOizPaR58txPQypCUV6Dts +aDFw/f8tVGl+dsADmwAZ6yjZgMMRWCfrvG/kw3E36Uv+eZe3VM24W/b17SNEOPL cSzeAwfFYNcyfs3nHQi+16WDsfC3juRceCGPJL7rl3Z/x02pKdEM4idxexBdv9lA 1bGEeXxP00YcujPNd0MkS2ryCeuITFPKQLEFSiGw5ro+4YHI24+l+2KrLXGwIBG5 WMBb1koXe7cTtLSeJkHTc78c7wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAWguzGt 6lSoqBtCjF9d/tn7yIl1MB8GA1UdIwQYMBaAFDhsMA7XLxK5BUeKM87yd5klSmkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwMi84N0MzRkQwQUZC MjkxMUVGQjc2NkRDNzZDNEY5QUUwMi9PR3d3RHRjdkVya0ZSNG96enZKM21TVkth UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU1MDIvODdDM0ZEMEFGQjI5MTFFRkI3NjZEQzc2QzRGOUFFMDIvNTREQTMzRDJG QjJFMTFFRkI0ODhBOTVFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdkPMMA0GCSqGSIb3DQEBCwUAA4IBAQCYpQe9sKeACRNTm1Xzlww5 fbLVA697+JRB94rutQWB/6zevU5aUunHQ8XPA2cGyzthM1W5TXyRPDnNE5L08TAc QtvE5ij4TuQaJyF4F6YebvTfufhSJ0ZmZjIzqMlvwPXWm92mAjHBh5g+0YfClCCr laEIE5A72C4t3N3hJ7Ra2gCAjxHlHlWczoapxwNh7Lj3UHT+Y1WM2z33ZPhLvZfY 0JachRzeQslWg1hdhZ+LrrgJ9wZVg0LLnBZwH7sN0Y+ZY4S/wdnsWSRK5dg2ANis ycCglI9Jry5Lu0h+DTO1UZoZmQgnSdNPk1VBpfazEJ39uKLOkF2o5gvgix9JbVw2 -----END CERTIFICATE-----Generated at Mon Mar 2 05:48:57 2026 by rpki-client