$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa File: 35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa (raw, json) Hash identifier: PAdaUQdgxLqlRVvXqSXWvpxOh++4R6fUgpb+g4DfWLQ= Subject key identifier: 52:5E:8F:D7:E8:29:FE:B3:F3:FF:39:8A:A6:2C:64:EA:B7:D9:BD:D5 Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 08E0 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa Signing time: Wed 08 Apr 2026 20:26:50 +0000 ROA not before: Wed 08 Apr 2026 20:26:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 23711 IP address blocks: 202.41.141.0/24 maxlen: 24 2001:dd8:16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536, serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 8 20:26:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d6ba09-5c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c9:e5:49:85:20:c7:cd:d6:da:68:4a:e9:48: f2:06:08:ff:a9:9a:03:08:49:28:76:e9:a7:2f:33: c5:6a:77:e3:1f:ae:f1:9f:ad:d6:38:e5:81:be:0e: ba:29:35:8d:1d:ac:e7:b0:53:5c:09:3b:15:65:e2: da:9b:f9:2d:2d:9d:f4:61:68:b3:6a:f1:6c:93:7a: 73:3b:41:75:75:3d:ec:c7:89:c3:e9:d1:9f:a5:cb: 64:26:cc:5e:fd:c7:aa:9e:ad:2f:a7:39:1d:5e:54: b4:c7:9c:20:d8:a9:3f:ee:7f:fc:8b:41:b3:30:3a: 85:da:22:36:95:dd:a0:79:a9:4d:a9:7f:6a:92:a6: 03:ac:cf:ff:5b:5e:08:9f:57:69:f2:3d:e0:17:ea: cd:9f:ec:ff:20:77:00:a2:4a:12:01:b2:6e:08:c1: c1:a3:a9:ea:ab:f7:64:56:be:41:d5:46:b2:c3:57: 73:d0:ab:4c:ff:f2:c9:22:df:f7:28:ec:65:23:f1: 29:df:c1:d8:ef:2b:39:24:ee:d0:d3:c0:4e:63:99: 15:9d:5e:ad:b3:ba:c3:d5:65:c6:06:dd:07:19:ef: e9:18:9f:23:6b:6d:69:05:c0:f0:84:9c:b1:54:af: 09:3c:85:51:40:af:d0:0b:ec:8b:03:01:b8:07:c9: 73:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5E:8F:D7:E8:29:FE:B3:F3:FF:39:8A:A6:2C:64:EA:B7:D9:BD:D5 X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.41.141.0/24 IPv6: 2001:dd8:16::/48 Signature Algorithm: sha256WithRSAEncryption d0:75:4c:fd:c0:22:b2:5c:0f:29:7b:b8:9b:ca:43:e1:da:6d: 0f:9c:07:bc:43:10:84:09:32:3b:d4:52:d8:2f:0f:6b:db:34: 97:f6:10:d3:62:78:27:c5:e9:b2:2f:0c:0e:d0:80:9a:37:3c: 63:d1:ea:a3:3b:62:d7:74:02:eb:05:c4:52:89:97:15:14:a0: f5:98:8a:1a:80:1b:5e:2c:2a:36:24:bb:1f:38:a1:64:ca:56: a5:ee:2b:75:e5:5e:31:3e:05:96:94:34:b9:0d:43:a0:e1:e9: c2:fb:7a:21:b1:43:03:31:47:fe:ea:0b:7f:27:f5:e5:9c:cb: b1:70:ef:a0:b4:ac:6d:4c:dd:c2:69:08:5a:57:3e:84:68:f6: a7:41:90:48:e3:41:9a:22:7b:2b:a0:0c:58:ab:75:1e:b8:25: 3d:38:01:86:38:51:1f:fb:d7:41:e4:ec:91:10:53:f2:24:d5: f2:e5:df:56:84:eb:26:5d:04:e8:52:b1:4f:ed:31:82:96:d9: a3:90:2e:06:18:ce:b1:ce:b4:48:37:ba:53:c8:b1:63:22:69: 77:69:96:d5:02:9f:9b:7f:45:57:7c:f0:27:c0:0c:a0:71:5b: bc:7d:1f:cd:80:48:e0:97:d7:ac:d4:db:ea:b1:83:e5:3c:fa: 66:cc:c6:17 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjYwNDA4MjAyNjUwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2YmEwOS01YzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18nlSYUgx83W2mhK6UjyBgj/qZoDCEkodumnLzPFanfjH67xn63WOOWBvg66 KTWNHaznsFNcCTsVZeLam/ktLZ30YWizavFsk3pzO0F1dT3sx4nD6dGfpctkJsxe /ceqnq0vpzkdXlS0x5wg2Kk/7n/8i0GzMDqF2iI2ld2gealNqX9qkqYDrM//W14I n1dp8j3gF+rNn+z/IHcAokoSAbJuCMHBo6nqq/dkVr5B1Uayw1dz0KtM//LJIt/3 KOxlI/Ep38HY7ys5JO7Q08BOY5kVnV6ts7rD1WXGBt0HGe/pGJ8ja21pBcDwhJyx VK8JPIVRQK/QC+yLAwG4B8lz8QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFJej9fo Kf6z8/85iqYsZOq32b3VMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvMzVBOENGMUVF QzI0MTFFQThCMEREQTJDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyimNMA8EAgACMAkDBwAgAQ3YABYwDQYJKoZIhvcNAQELBQADggEB ANB1TP3AIrJcDyl7uJvKQ+HabQ+cB7xDEIQJMjvUUtgvD2vbNJf2ENNieCfF6bIv DA7QgJo3PGPR6qM7Ytd0AusFxFKJlxUUoPWYihqAG14sKjYkux84oWTKVqXuK3Xl XjE+BZaUNLkNQ6Dh6cL7eiGxQwMxR/7qC38n9eWcy7Fw76C0rG1M3cJpCFpXPoRo 9qdBkEjjQZoieyugDFirdR64JT04AYY4UR/710Hk7JEQU/Ik1fLl31aE6yZdBOhS sU/tMYKW2aOQLgYYzrHOtEg3ulPIsWMiaXdpltUCn5t/RVd88CfADKBxW7x9H82A SOCX16zU2+qxg+U8+mbMxhc= -----END CERTIFICATE-----Generated at Sat Apr 18 04:39:28 2026 by rpki-client