$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/3A00D342928511EB8B3AAC22C4F9AE02.roa File: 3A00D342928511EB8B3AAC22C4F9AE02.roa (raw, json) Hash identifier: LcYL4bDsuUT3zoZgud/O2L3NegCJeaxCuiBri9185ZE= Subject key identifier: 40:B6:40:F8:8A:DD:44:39:D6:6F:FA:96:F4:FA:12:C5:DE:C9:87:F6 Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 06CD Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/3A00D342928511EB8B3AAC22C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:45:54 +0000 ROA not before: Tue 08 Apr 2025 22:33:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17705 IP address blocks: 202.36.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1741 (0x6cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Apr 8 22:33:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fcc1-be6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:41:2f:f8:df:7f:1c:ea:19:f0:52:43:6e:4b: c3:8b:fb:9a:37:66:0c:d4:b9:ba:17:c8:49:f0:86: 78:e5:3e:58:3c:5e:e7:94:42:55:d1:c4:2b:4d:20: 2e:fb:a1:4e:20:f6:98:db:25:ad:b6:40:3e:d0:6a: e0:f9:44:fa:93:4b:09:e1:97:be:fd:5a:a6:52:2e: a1:9f:8f:bb:33:a5:a1:7d:2c:96:1d:af:4f:c0:38: e5:df:bf:96:af:cf:f4:86:12:d2:80:1d:30:d6:20: b2:71:c3:a1:2d:42:9d:9d:0c:e5:24:37:f3:55:14: 63:18:69:ed:51:a9:e2:fd:40:89:d6:7e:35:fd:e9: d5:03:ce:7b:a7:3d:1f:3f:1f:f4:35:30:d3:04:8f: e0:46:bc:e7:66:c3:c2:06:df:76:fe:11:35:67:8c: b9:31:74:04:cc:85:06:60:59:dc:d0:22:5b:e8:13: a9:ee:0f:1d:5f:ac:62:1e:48:b4:fd:62:a8:3d:84: 38:13:44:8a:1a:0f:60:7c:22:f1:fb:c4:5d:cb:49: 09:ef:6d:80:31:60:43:7e:7b:27:63:47:17:52:a8: ec:b5:56:a4:02:7a:a8:25:5b:1a:a6:35:24:35:20: fe:05:9d:53:17:3f:26:84:e2:af:87:f8:f4:e0:1c: 0d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B6:40:F8:8A:DD:44:39:D6:6F:FA:96:F4:FA:12:C5:DE:C9:87:F6 X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/3A00D342928511EB8B3AAC22C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.36.214.0/23 Signature Algorithm: sha256WithRSAEncryption 78:99:25:b3:24:38:a6:68:c7:1e:bb:5a:7f:a8:d2:c8:2b:1d: ec:df:3e:27:83:da:50:cc:dd:48:33:3a:a9:31:8b:98:ae:a7: 03:cb:b8:86:cf:a9:6d:0f:72:cc:0f:31:22:1a:0d:52:ce:e2: dd:68:fc:1d:3a:a6:f8:4b:7f:36:00:fa:f5:6f:b2:ea:aa:d4: 63:c4:b1:51:6f:ca:2f:1c:ad:df:a3:49:14:1c:4a:cb:2f:c8: 2f:9a:ef:ac:f2:2c:66:2b:70:06:b1:9c:1b:bf:23:39:24:c0: 88:9d:7f:6c:c8:61:82:c3:04:e3:72:db:99:4f:11:4d:d8:af: 03:2e:06:f6:c1:63:8e:ba:09:68:26:c9:72:a3:df:e8:a2:f2: 5d:dc:f1:21:ba:8f:00:4c:67:4b:c2:69:e3:fc:ef:d2:e3:bb: 7c:aa:6a:b6:a0:c0:05:79:b5:1b:a1:0f:4d:31:51:02:72:de: 55:1c:2b:af:2d:ce:7a:64:21:8d:84:bb:fd:c9:6e:e5:53:f5: b2:25:e2:42:13:ac:18:30:ab:f5:2c:52:d6:2c:57:3a:21:98: 00:54:57:93:50:2d:ee:15:31:77:5f:5c:e6:7b:b1:b0:39:79: c6:fe:7a:13:bb:8e:2c:81:33:96:6a:f6:94:e6:38:69:51:89: 09:8a:3f:dc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUwNDA4MjIzMzM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmNjMS1iZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUEv+N9/HOoZ8FJDbkvDi/uaN2YM1Lm6F8hJ8IZ45T5YPF7nlEJV0cQrTSAu +6FOIPaY2yWttkA+0Grg+UT6k0sJ4Ze+/VqmUi6hn4+7M6WhfSyWHa9PwDjl37+W r8/0hhLSgB0w1iCyccOhLUKdnQzlJDfzVRRjGGntUani/UCJ1n41/enVA857pz0f Px/0NTDTBI/gRrznZsPCBt92/hE1Z4y5MXQEzIUGYFnc0CJb6BOp7g8dX6xiHki0 /WKoPYQ4E0SKGg9gfCLx+8Rdy0kJ722AMWBDfnsnY0cXUqjstVakAnqoJVsapjUk NSD+BZ1TFz8mhOKvh/j04BwNSQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEC2QPiK 3UQ51m/6lvT6EsXeyYf2MB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQyODUvNkYxNUI1NzI5MjgzMTFFQjgwOTcwNDIwQzRGOUFFMDIvM0EwMEQzNDI5 Mjg1MTFFQjhCM0FBQzIyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByiTWMA0GCSqGSIb3DQEBCwUAA4IBAQB4mSWzJDimaMceu1p/qNLI Kx3s3z4ng9pQzN1IMzqpMYuYrqcDy7iGz6ltD3LMDzEiGg1SzuLdaPwdOqb4S382 APr1b7LqqtRjxLFRb8ovHK3fo0kUHErLL8gvmu+s8ixmK3AGsZwbvyM5JMCInX9s yGGCwwTjctuZTxFN2K8DLgb2wWOOugloJslyo9/oovJd3PEhuo8ATGdLwmnj/O/S 47t8qmq2oMAFebUboQ9NMVECct5VHCuvLc56ZCGNhLv9yW7lU/WyJeJCE6wYMKv1 LFLWLFc6IZgAVFeTUC3uFTF3X1zme7GwOXnG/noTu44sgTOWavaU5jhpUYkJij/c -----END CERTIFICATE-----Generated at Mon Mar 2 15:51:57 2026 by rpki-client