$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa File: 03C522BA8CF211ED8699F014C4F9AE02.roa (raw, json) Hash identifier: ZiJdNAI9D1fhgY+vFrSQSO5HYdO+TKWApMeaHQROAjU= Subject key identifier: 3B:2F:8E:68:4B:6C:F9:2F:28:88:30:B6:38:A6:19:12:0C:81:7E:FE Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 35FF Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:25:58 +0000 ROA not before: Thu 30 Oct 2025 15:31:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 148000 IP address blocks: 36.50.36.0/24 maxlen: 24 36.50.50.0/24 maxlen: 24 2409::/40 maxlen: 40 2409::/48 maxlen: 48 2409:1::/48 maxlen: 48 2409:e:eb::/48 maxlen: 48 2409:e:ed::/48 maxlen: 48 240a:e000::/20 maxlen: 20 240a:eabc::/32 maxlen: 32 240a:eabc:abcd::/48 maxlen: 48 240a:eabc:d00d::/48 maxlen: 48 240a:eff0::/32 maxlen: 32 240a:eff1::/32 maxlen: 32 240a:eff2::/32 maxlen: 32 240a:eff4::/32 maxlen: 32 240a:eff6::/32 maxlen: 32 240a:eff8::/32 maxlen: 32 240a:eff9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13823 (0x35ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Oct 30 15:31:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a484b6-f00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:43:fb:76:b9:ec:41:0a:dd:53:27:f8:65:98: 08:61:26:0a:5c:0c:e8:db:bb:1b:ff:6a:0a:f9:f3: 74:89:42:1e:97:a1:78:fd:e0:a3:3f:18:f9:a1:45: cc:b5:09:2c:9a:84:06:ff:48:34:92:ab:67:60:32: c4:35:65:27:61:e2:04:7e:24:8c:14:ae:d3:38:a2: db:18:c5:a4:44:af:68:34:70:5b:8b:e8:6f:16:cb: bc:59:ce:9a:60:73:d3:0d:3a:a5:7a:c5:0d:08:c3: 31:fb:f1:b0:ad:6b:25:e9:90:a1:5f:3d:ca:a5:76: 50:1d:97:0b:3c:b3:42:2a:63:e2:8d:91:b8:99:cb: 9f:1f:36:6a:7d:a7:06:9b:e0:74:68:c1:99:64:d4: 20:79:9e:f2:25:e8:12:7a:05:eb:8c:57:c4:d8:24: 36:0e:67:c1:f3:3c:fe:eb:8b:2a:f3:e7:92:3d:9b: e4:c9:db:f9:80:5d:a3:b6:d1:c2:6a:bd:81:82:0c: f9:9e:e2:76:78:05:1b:97:1b:fc:7e:e6:ae:44:79: d2:cd:5e:ee:0c:34:5f:74:35:ce:e8:27:f2:b6:fb: aa:ed:da:4d:ed:43:03:6c:62:2b:58:22:e7:87:82: 9b:00:ba:f8:9c:81:aa:fe:a7:02:d1:22:87:61:11: 9e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2F:8E:68:4B:6C:F9:2F:28:88:30:B6:38:A6:19:12:0C:81:7E:FE X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.36.0/24 36.50.50.0/24 IPv6: 2409::/40 2409:1::/48 2409:e:eb::/48 2409:e:ed::/48 240a:e000::/20 Signature Algorithm: sha256WithRSAEncryption ed:f6:0b:9b:12:24:c5:56:04:87:1f:33:a6:c5:ae:85:f2:84: c8:4d:59:d3:85:6b:95:c2:e3:ef:fa:dc:ea:65:71:75:52:9e: 0c:90:07:aa:16:92:84:9e:0b:92:68:ae:d1:4e:07:21:5f:e7: e7:d2:05:e5:f1:cb:68:1e:d1:47:06:f6:45:7b:7a:f3:11:f7: 7f:f1:e8:98:28:d3:ec:3e:97:9c:8c:6d:30:ad:87:ff:e9:26: cd:d0:13:bf:94:08:57:bf:fb:22:bf:d0:9e:93:8d:83:c8:b7: 9e:5d:4a:6d:ac:7a:10:e1:c8:61:e2:01:9d:b9:35:aa:da:99: 47:37:c1:81:b9:a4:42:c3:dd:e0:88:9a:9d:d4:c5:a3:2a:b6: cd:3f:5d:14:c6:f7:c5:98:11:aa:2c:43:c9:10:a8:0e:37:53: 14:1a:ea:ef:6d:af:0f:b0:8c:56:c5:97:55:63:72:6f:8f:7a: ff:a7:cf:e8:65:d5:52:09:43:dc:8e:6f:b4:1f:2c:61:b2:44: c9:8e:b4:ed:25:24:42:84:e5:ac:da:8e:98:d5:a2:e7:c9:39: 7e:15:bd:ed:81:89:b8:e2:2d:5a:fa:87:a6:78:1e:84:73:41: b2:4e:c4:57:0e:6a:9f:6f:52:f1:59:35:0e:07:9f:0d:f9:84: b5:f2:bf:e4 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICNf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUxMDMwMTUzMTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODRiNi1mMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UP7drnsQQrdUyf4ZZgIYSYKXAzo27sb/2oK+fN0iUIel6F4/eCjPxj5oUXM tQksmoQG/0g0kqtnYDLENWUnYeIEfiSMFK7TOKLbGMWkRK9oNHBbi+hvFsu8Wc6a YHPTDTqlesUNCMMx+/GwrWsl6ZChXz3KpXZQHZcLPLNCKmPijZG4mcufHzZqfacG m+B0aMGZZNQgeZ7yJegSegXrjFfE2CQ2DmfB8zz+64sq8+eSPZvkydv5gF2jttHC ar2Bggz5nuJ2eAUblxv8fuauRHnSzV7uDDRfdDXO6Cfytvuq7dpN7UMDbGIrWCLn h4KbALr4nIGq/qcC0SKHYRGevwIDAQABo4IClzCCApMwHQYDVR0OBBYEFDsvjmhL bPkvKIgwtjimGRIMgX7+MB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvMDNDNTIyQkE4 Q0YyMTFFRDg2OTlGMDE0QzRGOUFFMDIucm9hMFYGCCsGAQUFBwEHAQH/BEcwRTAS BAIAATAMAwQAJDIkAwQAJDIyMC8EAgACMCkDBgAkCQAAAAMHACQJAAEAAAMHACQJ AA4A6wMHACQJAA4A7QMEBCQK4DANBgkqhkiG9w0BAQsFAAOCAQEA7fYLmxIkxVYE hx8zpsWuhfKEyE1Z04VrlcLj7/rc6mVxdVKeDJAHqhaShJ4Lkmiu0U4HIV/n59IF 5fHLaB7RRwb2RXt68xH3f/HomCjT7D6XnIxtMK2H/+kmzdATv5QIV7/7Ir/QnpON g8i3nl1Kbax6EOHIYeIBnbk1qtqZRzfBgbmkQsPd4IiandTFoyq2zT9dFMb3xZgR qixDyRCoDjdTFBrq722vD7CMVsWXVWNyb496/6fP6GXVUglD3I5vtB8sYbJEyY60 7SUkQoTlrNqOmNWi58k5fhW97YGJuOItWvqHpngehHNBsk7EVw5qn29S8Vk1Dgef DfmEtfK/5A== -----END CERTIFICATE-----Generated at Mon Mar 2 19:27:32 2026 by rpki-client