$ rpki-client -vvf rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/CF946690E5E711EE89AF4E5AC4F9AE02.roa File: CF946690E5E711EE89AF4E5AC4F9AE02.roa (raw, json) Hash identifier: R0F5zzc+BpzP1/ZU/NVRkNdsAgNiR161974QmuBaZJM= Subject key identifier: D9:5C:EF:7C:A2:8F:85:1A:EB:40:35:39:8E:FC:F1:77:9D:83:C6:96 Certificate issuer: /CN=A915AE5F/serialNumber=AFE727E4209DCDF82762574B5E33C8083787A18F Certificate serial: 1F49 Authority key identifier: AF:E7:27:E4:20:9D:CD:F8:27:62:57:4B:5E:33:C8:08:37:87:A1:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-cn5CCdzfgnYldLXjPICDeHoY8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/CF946690E5E711EE89AF4E5AC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:38:58 +0000 ROA not before: Fri 14 Nov 2025 16:03:53 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 58659 IP address blocks: 202.179.77.0/24 maxlen: 24 202.179.78.0/24 maxlen: 24 202.179.80.0/24 maxlen: 24 202.179.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/r-cn5CCdzfgnYldLXjPICDeHoY8.crl rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/r-cn5CCdzfgnYldLXjPICDeHoY8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-cn5CCdzfgnYldLXjPICDeHoY8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:08:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8009 (0x1f49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AE5F, serialNumber=AFE727E4209DCDF82762574B5E33C8083787A18F Validity Not Before: Nov 14 16:03:53 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a479b2-c5ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a0:35:d7:e3:1b:ba:31:c6:9e:ed:1c:cc:e0: f3:ea:cd:43:db:6f:8d:20:1d:ab:0f:d0:1c:8d:b1: 10:c7:9f:8f:e3:f9:b3:1b:49:0b:a9:cd:27:d4:3e: ee:d5:18:b3:65:95:07:af:f5:c5:04:20:0e:32:43: 8f:e4:3e:99:33:82:fe:8d:77:33:82:85:56:4d:70: e4:9f:18:50:63:01:68:fc:ad:fe:d4:0b:f0:51:27: 24:66:d3:c4:76:df:09:d9:dc:40:b4:4c:ca:d6:3f: ba:d3:ba:b4:ef:3b:fe:76:74:a7:46:3a:1c:e2:17: 35:83:f4:e4:5d:b3:a9:7e:4a:b9:46:a6:04:b7:3d: 15:a2:33:06:08:be:ae:a0:93:ae:21:d6:8a:91:21: 7a:d5:f8:ed:07:4a:2b:a3:b0:57:d7:f7:30:80:0b: 41:16:51:c6:10:15:5b:64:7a:24:0d:d2:0b:ef:3e: 2e:72:66:9d:d5:05:b7:dd:2f:0e:aa:92:c2:1a:bb: 19:c4:0d:63:30:9b:55:09:9c:4a:ef:45:0a:b5:67: cf:fd:3e:13:f1:3e:e4:41:06:9b:4b:16:9c:5a:dd: b8:c3:9b:19:bb:a0:6b:14:a9:e5:a4:13:92:b5:4f: 2e:38:b6:fd:f4:0a:ad:a3:90:04:8c:2f:6f:da:db: db:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:5C:EF:7C:A2:8F:85:1A:EB:40:35:39:8E:FC:F1:77:9D:83:C6:96 X509v3 Authority Key Identifier: keyid:AF:E7:27:E4:20:9D:CD:F8:27:62:57:4B:5E:33:C8:08:37:87:A1:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/r-cn5CCdzfgnYldLXjPICDeHoY8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-cn5CCdzfgnYldLXjPICDeHoY8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/CF946690E5E711EE89AF4E5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.179.77.0-202.179.78.255 202.179.80.0/24 202.179.89.0/24 Signature Algorithm: sha256WithRSAEncryption 62:15:ac:b2:8a:49:24:4e:4c:3b:f0:83:37:68:68:46:18:a5: a9:af:2c:79:19:15:be:5d:16:0f:1d:cf:dd:a6:51:fb:1a:4a: ab:57:2b:d8:1a:5e:69:e8:7a:c8:9a:f3:a1:57:da:2e:c7:10: e4:8d:7b:0b:ec:b8:c0:f0:f0:7c:de:5b:ca:87:90:4c:7d:08: 6c:14:86:2e:30:c4:1f:0d:75:c4:11:45:3e:9f:f5:b0:3b:29: 00:ca:fd:03:6f:1b:3a:1b:7f:58:23:17:9b:d2:77:74:04:f7: 20:98:d4:41:04:e2:8f:92:0d:75:63:a8:a2:9c:2f:af:6d:a6: 36:95:26:d8:a9:1c:60:17:a5:6a:0b:40:91:09:33:8e:52:fc: 75:63:93:6b:b0:eb:7f:8c:f6:d3:5e:53:1a:6e:c0:76:c8:87: 12:c6:e4:67:5f:0f:b0:f4:9b:31:27:39:bb:c2:e4:9d:cc:23: 59:71:76:f6:13:69:bb:ce:d2:bd:cf:08:9f:7d:da:f0:9f:1e: a4:45:26:25:77:40:a8:32:f8:77:5a:be:72:1e:ec:1f:51:5a: ba:ad:f7:a0:a9:5e:68:62:62:29:71:06:ef:1c:c9:74:58:89: 3f:6e:53:07:b2:f2:0f:b3:d5:7c:f4:de:bd:eb:ba:8c:8f:95: 43:f3:67:4f -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICH0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFFNUYxMTAvBgNVBAUTKEFGRTcyN0U0MjA5RENERjgyNzYyNTc0QjVFMzNDODA4 Mzc4N0ExOEYwHhcNMjUxMTE0MTYwMzUzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzliMi1jNWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqA11+MbujHGnu0czODz6s1D22+NIB2rD9AcjbEQx5+P4/mzG0kLqc0n1D7u 1RizZZUHr/XFBCAOMkOP5D6ZM4L+jXczgoVWTXDknxhQYwFo/K3+1AvwUSckZtPE dt8J2dxAtEzK1j+607q07zv+dnSnRjoc4hc1g/TkXbOpfkq5RqYEtz0VojMGCL6u oJOuIdaKkSF61fjtB0oro7BX1/cwgAtBFlHGEBVbZHokDdIL7z4ucmad1QW33S8O qpLCGrsZxA1jMJtVCZxK70UKtWfP/T4T8T7kQQabSxacWt24w5sZu6BrFKnlpBOS tU8uOLb99Aqto5AEjC9v2tvbsQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFNlc73yi j4Ua60A1OY788Xedg8aWMB8GA1UdIwQYMBaAFK/nJ+Qgnc34J2JXS14zyAg3h6GP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUU1Ri84Qjc5QjY3ODg4 NTExMUU2QTY5MkRFNzhDNEY5QUUwMi9yLWNuNUNDZHpmZ25ZbGRMWGpQSUNEZUhv WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ItY241Q0NkemZnbllsZExYalBJQ0RlSG9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFFNUYvOEI3OUI2Nzg4ODUxMTFFNkE2OTJERTc4QzRGOUFFMDIvQ0Y5NDY2OTBF NUU3MTFFRTg5QUY0RTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaMAwDBADKs00DBADKs04DBADKs1ADBADKs1kwDQYJKoZIhvcNAQELBQAD ggEBAGIVrLKKSSROTDvwgzdoaEYYpamvLHkZFb5dFg8dz92mUfsaSqtXK9gaXmno esia86FX2i7HEOSNewvsuMDw8HzeW8qHkEx9CGwUhi4wxB8NdcQRRT6f9bA7KQDK /QNvGzobf1gjF5vSd3QE9yCY1EEE4o+SDXVjqKKcL69tpjaVJtipHGAXpWoLQJEJ M45S/HVjk2uw63+M9tNeUxpuwHbIhxLG5GdfD7D0mzEnObvC5J3MI1lxdvYTabvO 0r3PCJ992vCfHqRFJiV3QKgy+HdavnIe7B9RWrqt96CpXmhiYilxBu8cyXRYiT9u Uwey8g+z1Xz03r3ruoyPlUPzZ08= -----END CERTIFICATE-----Generated at Mon Mar 2 16:45:11 2026 by rpki-client