$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa File: 36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa (raw, json) Hash identifier: c0dFynBGoAipYefjIF2Nt8mMzxmiVkaUrs6Ri6s7zMw= Subject key identifier: CB:F5:89:4D:8E:9F:E3:BC:34:1C:3A:10:EB:F8:BE:04:B9:1D:B1:1F Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 08E2 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa Signing time: Wed 08 Apr 2026 20:26:51 +0000 ROA not before: Wed 08 Apr 2026 20:26:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 23713 IP address blocks: 202.41.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2274 (0x8e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536, serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 8 20:26:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d6ba0b-04b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8d:3d:50:79:7c:7d:8a:cf:45:91:d3:e1:24: 2e:d9:a5:f7:91:70:ba:94:4c:d6:0f:c9:a4:c0:92: a4:57:56:10:63:59:0c:34:6c:e6:13:b9:02:a6:f0: 10:42:35:16:6e:28:66:b3:dd:9e:b5:5b:f3:ec:df: 35:c6:80:b0:9a:78:e9:88:96:ca:21:a7:02:a5:fd: d6:06:b0:34:fd:5f:da:d4:fb:04:c9:78:bd:03:5e: 76:2c:9a:3e:0c:37:c0:dc:fd:ef:9e:f7:8a:48:94: 86:21:cb:d9:0e:bb:2d:9d:fa:e9:f7:a0:72:97:9c: 56:0e:27:43:ca:7b:6c:b4:31:28:ba:4e:d8:71:64: 10:a9:2a:21:92:e7:52:3f:b5:12:61:ab:cd:cf:78: cb:c2:dd:e5:91:f7:df:c1:93:00:f0:19:c6:35:6c: bc:e3:69:57:1f:8b:28:77:ec:5c:d0:04:4c:f1:5e: e5:49:e3:a4:fd:45:79:e7:9d:44:f0:8e:35:c9:3c: 88:90:50:1a:66:e4:76:d7:31:3e:8f:a7:0e:d2:24: 5f:06:06:45:42:e9:5c:1d:dd:a8:62:b4:0c:39:b9: b1:c3:6c:35:f8:0c:7a:60:73:c2:1c:fc:59:67:84: 12:30:71:cf:a6:83:20:15:90:4f:fb:e1:ad:1b:e0: a6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F5:89:4D:8E:9F:E3:BC:34:1C:3A:10:EB:F8:BE:04:B9:1D:B1:1F X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.41.145.0/24 Signature Algorithm: sha256WithRSAEncryption 28:23:2f:a7:cd:6f:12:4a:75:5d:3b:2a:40:d0:82:5c:be:8e: af:46:74:4c:2f:cd:21:34:e6:40:6c:c6:bf:f3:45:2e:ff:43: 20:47:db:48:69:b5:a4:74:65:52:84:82:e0:b4:ee:25:a3:6c: d8:71:5c:a4:ee:f3:e3:7a:17:9a:81:4c:5d:89:95:f3:7e:a3: d3:17:ba:6e:7f:ec:4e:98:0e:77:30:d8:7c:cd:c1:2c:9d:d8: c5:cf:76:2e:1f:79:59:77:77:4c:47:bd:ab:7a:32:2b:7e:43: 9e:df:89:49:19:0d:4a:dd:47:8e:c5:da:0c:9f:54:e9:9e:4a: 22:7f:3a:6b:07:e5:b1:c2:20:25:a9:d1:d5:48:f2:b2:e0:0a: fd:52:71:a4:56:ce:7b:33:7b:7a:ed:8a:14:b7:5f:c1:ef:e4: 94:a2:f7:7d:b3:60:aa:b5:d5:69:4e:7b:f9:dd:0a:73:4e:29: 54:55:68:06:69:4c:fc:f6:b7:4b:7e:fc:ea:34:9d:57:16:a4: 49:bf:3c:66:80:e6:90:39:4d:ec:32:81:af:5f:3d:d1:ce:e8: f8:8a:5e:cc:f9:d5:0a:90:84:0e:ae:e0:b2:73:8d:35:e5:b9: d1:89:11:af:4b:ef:75:72:8d:e0:d7:53:74:8e:9c:98:d8:66: 57:f4:f5:90 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjYwNDA4MjAyNjUxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2YmEwYi0wNGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsY09UHl8fYrPRZHT4SQu2aX3kXC6lEzWD8mkwJKkV1YQY1kMNGzmE7kCpvAQ QjUWbihms92etVvz7N81xoCwmnjpiJbKIacCpf3WBrA0/V/a1PsEyXi9A152LJo+ DDfA3P3vnveKSJSGIcvZDrstnfrp96Byl5xWDidDyntstDEouk7YcWQQqSohkudS P7USYavNz3jLwt3lkfffwZMA8BnGNWy842lXH4sod+xc0ARM8V7lSeOk/UV5551E 8I41yTyIkFAaZuR21zE+j6cO0iRfBgZFQulcHd2oYrQMObmxw2w1+Ax6YHPCHPxZ Z4QSMHHPpoMgFZBP++GtG+CmgwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMv1iU2O n+O8NBw6EOv4vgS5HbEfMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvMzZDREUzMENF QzI0MTFFQThCMEREQTJDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyimRMA0GCSqGSIb3DQEBCwUAA4IBAQAoIy+nzW8SSnVdOypA0IJc vo6vRnRML80hNOZAbMa/80Uu/0MgR9tIabWkdGVShILgtO4lo2zYcVyk7vPjehea gUxdiZXzfqPTF7puf+xOmA53MNh8zcEsndjFz3YuH3lZd3dMR72rejIrfkOe34lJ GQ1K3UeOxdoMn1TpnkoifzprB+WxwiAlqdHVSPKy4Ar9UnGkVs57M3t67YoUt1/B 7+SUovd9s2CqtdVpTnv53QpzTilUVWgGaUz89rdLfvzqNJ1XFqRJvzxmgOaQOU3s MoGvXz3Rzuj4il7M+dUKkIQOruCyc4015bnRiRGvS+91co3g11N0jpyY2GZX9PWQ -----END CERTIFICATE-----Generated at Fri Apr 17 18:43:24 2026 by rpki-client