$ rpki-client -vvf rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/B3D7207C0CCE11F18D20135B323D8C67.roa File: B3D7207C0CCE11F18D20135B323D8C67.roa (raw, json) Hash identifier: bYRZfdjC0+B7/pB57VQ0Saubsf0vMLkkrvGa49hZ1H8= Subject key identifier: 09:D5:28:D3:13:7A:96:01:C0:AA:A6:03:4E:F4:A0:C3:39:8C:0A:64 Certificate issuer: /CN=A915ACE2/serialNumber=DAE1CE0ADA67B44713C61B1FAEC4F5D4D67A159F Certificate serial: A7 Authority key identifier: DA:E1:CE:0A:DA:67:B4:47:13:C6:1B:1F:AE:C4:F5:D4:D6:7A:15:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/B3D7207C0CCE11F18D20135B323D8C67.roa Signing time: Sun 01 Mar 2026 18:14:25 +0000 ROA not before: Wed 18 Feb 2026 13:35:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38584 IP address blocks: 202.63.192.0/24 maxlen: 24 202.63.193.0/24 maxlen: 24 202.63.194.0/24 maxlen: 24 202.63.195.0/24 maxlen: 24 202.63.196.0/24 maxlen: 24 202.63.197.0/24 maxlen: 24 202.63.198.0/24 maxlen: 24 202.63.199.0/24 maxlen: 24 202.63.201.0/24 maxlen: 24 202.63.203.0/24 maxlen: 24 202.63.204.0/24 maxlen: 24 202.63.206.0/24 maxlen: 24 202.63.208.0/24 maxlen: 24 202.63.212.0/24 maxlen: 24 202.63.215.0/24 maxlen: 24 202.63.216.0/24 maxlen: 24 202.63.217.0/24 maxlen: 24 202.63.218.0/24 maxlen: 24 202.63.219.0/24 maxlen: 24 202.63.220.0/24 maxlen: 24 202.63.221.0/24 maxlen: 24 202.63.222.0/24 maxlen: 24 202.63.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.crl rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915ACE2, serialNumber=DAE1CE0ADA67B44713C61B1FAEC4F5D4D67A159F Validity Not Before: Feb 18 13:35:35 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48201-5360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:05:4b:c2:dd:16:49:1a:a2:6e:56:06:6c:b9: 3c:9e:41:9f:75:e1:9b:fd:25:ec:fc:59:60:15:bc: 20:d1:7f:1b:d4:db:f1:d7:48:74:1b:0b:8b:43:c9: 22:98:34:bc:3d:75:b7:12:43:39:36:63:ed:58:d1: 63:02:36:bc:6d:09:a5:e7:50:ec:1a:f0:bd:d2:71: 49:a8:48:44:65:83:0f:2b:31:7e:5d:8d:7a:0b:4e: cb:9f:b0:4d:0d:68:03:6e:4a:73:c1:0c:ab:2c:06: 5a:bc:40:b2:48:d5:59:09:cc:0e:02:71:de:d4:ee: c8:7a:df:32:2d:c4:7d:9f:b8:cf:25:61:06:1d:5a: 17:1d:82:c8:a1:31:3a:5a:11:64:5d:61:72:c4:8b: b6:0f:25:0d:8d:bd:7f:50:c1:e1:1f:e3:22:ef:68: 87:97:16:7c:1e:fa:36:71:7e:54:80:33:90:5c:8c: 86:d4:ea:39:b2:e5:20:7c:dd:2f:e2:7f:26:a9:3a: 3a:e3:e8:a3:f0:bb:bc:3d:e0:62:fa:a7:30:f4:23: a6:42:4c:e2:ae:de:1c:43:3f:8b:8f:9f:76:42:4a: af:c0:fe:f9:6d:da:10:d0:80:f8:d2:91:da:00:92: e8:6a:75:e2:e3:38:69:bf:3a:cf:51:2d:1c:e6:34: 22:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D5:28:D3:13:7A:96:01:C0:AA:A6:03:4E:F4:A0:C3:39:8C:0A:64 X509v3 Authority Key Identifier: keyid:DA:E1:CE:0A:DA:67:B4:47:13:C6:1B:1F:AE:C4:F5:D4:D6:7A:15:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/B3D7207C0CCE11F18D20135B323D8C67.roa sbgp-ipAddrBlock: critical IPv4: 202.63.192.0/21 202.63.201.0/24 202.63.203.0-202.63.204.255 202.63.206.0/24 202.63.208.0/24 202.63.212.0/24 202.63.215.0-202.63.223.255 Signature Algorithm: sha256WithRSAEncryption 19:d8:ab:80:51:43:5e:c5:4c:dc:06:a4:6a:24:28:d1:21:e8: d3:94:a3:44:5c:cf:e9:05:ed:0f:ee:80:6c:0b:f8:25:53:c2: d9:53:2d:9c:b7:af:92:a7:e4:00:fe:0d:eb:7c:98:3d:dc:4e: 2d:26:fc:0b:3c:0b:4d:45:d2:16:50:45:1a:b2:96:f5:1f:2b: 67:d6:ea:ec:6b:8f:43:2c:b6:42:11:70:5e:a4:67:99:8d:4c: 94:f2:2b:67:be:fd:c7:ea:91:4b:85:3b:4e:4c:c3:ff:cb:d3: d9:da:bc:42:fe:9d:e6:50:93:77:86:d3:c9:fe:5a:9b:aa:16: d2:f0:09:51:58:1b:be:2f:6c:40:d0:28:c1:31:00:e9:c9:ba: 74:7d:7d:40:30:4c:b7:48:41:9e:e0:79:85:04:8f:e5:40:a8: ec:ea:80:ca:5f:4d:c9:e4:28:5b:d6:ff:47:2d:43:50:3e:b3: f6:74:9c:ba:68:1f:d6:ad:5a:f5:3b:27:15:e8:3d:e2:0b:7e: 74:84:fb:5b:8e:99:f2:63:9b:38:ca:40:94:c7:2d:15:64:c3: b6:93:54:bf:b1:76:7b:b3:1c:e7:96:84:22:c1:15:ed:22:65: ca:1f:12:55:02:65:28:bc:80:f5:50:2b:38:11:98:1a:3a:6d: 48:0a:80:cf -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFDRTIxMTAvBgNVBAUTKERBRTFDRTBBREE2N0I0NDcxM0M2MUIxRkFFQzRGNUQ0 RDY3QTE1OUYwHhcNMjYwMjE4MTMzNTM1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODIwMS01MzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QVLwt0WSRqiblYGbLk8nkGfdeGb/SXs/FlgFbwg0X8b1Nvx10h0GwuLQ8ki mDS8PXW3EkM5NmPtWNFjAja8bQml51DsGvC90nFJqEhEZYMPKzF+XY16C07Ln7BN DWgDbkpzwQyrLAZavECySNVZCcwOAnHe1O7Iet8yLcR9n7jPJWEGHVoXHYLIoTE6 WhFkXWFyxIu2DyUNjb1/UMHhH+Mi72iHlxZ8Hvo2cX5UgDOQXIyG1Oo5suUgfN0v 4n8mqTo64+ij8Lu8PeBi+qcw9COmQkzirt4cQz+Lj592QkqvwP75bdoQ0ID40pHa AJLoanXi4zhpvzrPUS0c5jQiRwIDAQABo4IClDCCApAwHQYDVR0OBBYEFAnVKNMT epYBwKqmA070oMM5jApkMB8GA1UdIwQYMBaAFNrhzgraZ7RHE8YbH67E9dTWehWf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUNFMi81MUNEN0ZCQTcy Q0UxMUYwODQyMUFBNDhDNEY5QUUwMi8ydUhPQ3RwbnRFY1R4aHNmcnNUMTFOWjZG WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ1SE9DdHBudEVjVHhoc2Zyc1QxMU5aNkZaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFDRTIvNTFDRDdGQkE3MkNFMTFGMDg0MjFBQTQ4QzRGOUFFMDIvQjNENzIwN0Mw Q0NFMTFGMThEMjAxMzVCMzIzRDhDNjcucm9hMFMGCCsGAQUFBwEHAQH/BEQwQjBA BAIAATA6AwQDyj/AAwQAyj/JMAwDBADKP8sDBADKP8wDBADKP84DBADKP9ADBADK P9QwDAMEAMo/1wMEBco/wDANBgkqhkiG9w0BAQsFAAOCAQEAGdirgFFDXsVM3Aak aiQo0SHo05SjRFzP6QXtD+6AbAv4JVPC2VMtnLevkqfkAP4N63yYPdxOLSb8CzwL TUXSFlBFGrKW9R8rZ9bq7GuPQyy2QhFwXqRnmY1MlPIrZ779x+qRS4U7TkzD/8vT 2dq8Qv6d5lCTd4bTyf5am6oW0vAJUVgbvi9sQNAowTEA6cm6dH19QDBMt0hBnuB5 hQSP5UCo7OqAyl9NyeQoW9b/Ry1DUD6z9nScumgf1q1a9TsnFeg94gt+dIT7W46Z 8mObOMpAlMctFWTDtpNUv7F2e7Mc55aEIsEV7SJlyh8SVQJlKLyA9VArOBGYGjpt SAqAzw== -----END CERTIFICATE-----Generated at Mon Mar 2 08:22:56 2026 by rpki-client