$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa File: 36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa (raw, json) Hash identifier: PzLLkSB5J2MZJf6IsORgtS1K1mhp7rG5kzX8OnLBvKw= Subject key identifier: CE:F5:BD:C3:4E:68:74:FF:37:EC:E1:23:21:A6:AD:35:33:23:A1:AB Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 08C5 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:43:06 +0000 ROA not before: Fri 04 Apr 2025 21:34:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23713 IP address blocks: 202.41.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2245 (0x8c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536, serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 4 21:34:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45e8a-2add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f0:5b:aa:f4:b3:62:fa:25:53:c1:c1:c2:05: 0d:46:ab:a8:37:46:43:73:3a:bb:7b:59:6d:38:0e: 6e:72:f0:14:2a:c5:dc:b2:b3:08:60:78:43:1b:51: 39:c5:8c:d5:7b:62:58:6b:75:cd:59:29:f1:be:32: dd:55:63:4c:ca:91:b5:bb:db:94:cf:bb:af:d7:59: ee:2a:06:73:b1:fb:7f:c1:dc:43:02:5f:98:9b:a0: 23:3b:03:84:12:02:c3:e4:af:88:a6:f5:c9:d4:37: 52:50:c3:b6:b7:08:4c:cf:0c:92:fc:17:ab:50:cc: 22:0d:2e:9f:c2:36:80:04:f3:ab:dd:4d:36:3a:88: 66:c5:9d:5a:da:a3:1d:ae:46:68:b3:6f:99:66:ec: ce:e6:ba:22:e9:4d:ec:db:6d:45:01:ee:1e:6d:fa: 9e:06:da:9a:da:fe:32:12:25:39:5a:9e:ea:e5:e0: ab:ef:2b:60:95:7d:35:f4:91:89:ab:b3:9d:97:07: d3:65:6c:70:f4:73:f4:2f:3d:44:44:4c:dc:80:44: 6b:a6:3a:76:86:23:31:9d:aa:b8:7d:53:76:c6:b7: fd:da:9c:27:e7:9b:ca:db:4e:c1:fa:cb:8a:f5:8d: de:64:11:44:4d:23:f7:73:87:18:32:bc:fa:5a:c7: 9d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:F5:BD:C3:4E:68:74:FF:37:EC:E1:23:21:A6:AD:35:33:23:A1:AB X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.41.145.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:7d:8b:de:04:7c:bb:70:03:dc:b7:34:a9:ad:87:74:f5:64: 37:40:cb:8a:29:95:ed:aa:3f:dc:61:78:0f:4a:c6:b6:58:f1: 9b:24:b4:6c:77:97:3a:e1:9c:ce:e9:1d:c1:13:ef:84:19:5a: 29:c3:a0:ce:8d:e4:25:74:0a:fa:ab:ea:5b:ff:b8:75:56:32: dc:1b:b3:04:a2:0e:2f:53:2b:65:f1:a2:f9:58:5d:b9:6c:51: e8:1f:ef:04:bb:a5:5f:e8:f9:3c:d6:f5:71:6c:ce:b0:81:72: 66:f4:58:5d:0f:a1:f6:c2:6f:e7:ed:ad:1b:3d:2c:e5:11:6c: 62:46:4d:9e:85:6e:d7:1c:dc:44:4b:c5:41:9a:93:6c:2a:fd: a5:d3:de:b8:02:ba:f8:7f:2d:45:9f:7e:29:7e:47:08:76:e7: ea:c3:ad:a8:86:42:48:56:29:96:6c:ea:86:3e:eb:22:57:0f: 43:d8:0e:01:f7:bf:cf:70:12:7f:43:17:a1:07:e8:80:cc:f4: 60:12:ce:0d:7c:f6:1b:f1:26:34:cf:9c:4c:b5:05:c7:b4:34: 86:9a:95:79:d1:ec:5e:7b:0b:5a:23:a1:26:3c:bb:8c:37:50: 50:1f:ff:32:8a:38:4b:da:b2:9c:07:e5:2f:95:04:53:db:05: 58:25:3d:63 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjUwNDA0MjEzNDMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWU4YS0yYWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfBbqvSzYvolU8HBwgUNRquoN0ZDczq7e1ltOA5ucvAUKsXcsrMIYHhDG1E5 xYzVe2JYa3XNWSnxvjLdVWNMypG1u9uUz7uv11nuKgZzsft/wdxDAl+Ym6AjOwOE EgLD5K+IpvXJ1DdSUMO2twhMzwyS/BerUMwiDS6fwjaABPOr3U02OohmxZ1a2qMd rkZos2+ZZuzO5roi6U3s221FAe4ebfqeBtqa2v4yEiU5Wp7q5eCr7ytglX019JGJ q7OdlwfTZWxw9HP0Lz1EREzcgERrpjp2hiMxnaq4fVN2xrf92pwn55vK207B+suK 9Y3eZBFETSP3c4cYMrz6WsedRwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM71vcNO aHT/N+zhIyGmrTUzI6GrMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvMzZDREUzMENF QzI0MTFFQThCMEREQTJDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyimRMA0GCSqGSIb3DQEBCwUAA4IBAQAafYveBHy7cAPctzSprYd0 9WQ3QMuKKZXtqj/cYXgPSsa2WPGbJLRsd5c64ZzO6R3BE++EGVopw6DOjeQldAr6 q+pb/7h1VjLcG7MEog4vUytl8aL5WF25bFHoH+8Eu6Vf6Pk81vVxbM6wgXJm9Fhd D6H2wm/n7a0bPSzlEWxiRk2ehW7XHNxES8VBmpNsKv2l0964Arr4fy1Fn34pfkcI dufqw62ohkJIVimWbOqGPusiVw9D2A4B97/PcBJ/QxehB+iAzPRgEs4NfPYb8SY0 z5xMtQXHtDSGmpV50exeewtaI6EmPLuMN1BQH/8yijhL2rKcB+UvlQRT2wVYJT1j -----END CERTIFICATE-----Generated at Mon Mar 2 18:33:24 2026 by rpki-client