$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/A2E40A5C3AA511EFA73B8885C4F9AE02.roa File: A2E40A5C3AA511EFA73B8885C4F9AE02.roa (raw, json) Hash identifier: By4zvqcuSEOfqSmWwJ6puPJhyVCJAK9bqhK8smX7DyA= Subject key identifier: 05:A5:B0:F2:1D:9D:0A:54:55:C9:5D:7D:9D:66:A2:CA:7F:28:2B:14 Certificate issuer: /CN=A915DA76/serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Certificate serial: 3527 Authority key identifier: 4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/A2E40A5C3AA511EFA73B8885C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:34:21 +0000 ROA not before: Wed 26 Mar 2025 14:50:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 19905 IP address blocks: 202.78.16.0/20 maxlen: 20 202.78.24.0/24 maxlen: 24 202.78.27.0/24 maxlen: 24 202.78.28.0/23 maxlen: 23 2405:d980::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13607 (0x3527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA76, serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Validity Not Before: Mar 26 14:50:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4405c-c5a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:79:e1:85:ec:00:2a:34:ed:1a:4c:48:20:50: 06:66:37:36:b9:f1:02:cb:2f:e4:1e:99:51:84:d7: 76:86:da:19:dd:ab:27:a6:90:d6:fd:28:c7:b8:7d: 6d:03:0c:ba:e1:56:8b:9e:3d:b3:4d:96:44:a8:0b: f3:e1:ed:5f:86:3f:5a:d4:2d:20:a4:34:e0:3a:26: 9b:4c:a3:34:79:b5:96:54:e1:fc:71:65:2d:7e:ef: 53:ee:59:b1:48:39:76:fd:c1:4f:bb:1a:a4:8a:be: 67:10:ba:5c:ee:ea:d2:92:c7:e9:15:8a:a2:7c:42: 48:ad:49:b3:f6:d4:77:ec:d9:46:f7:8a:9e:0c:c2: da:7c:8f:14:80:63:27:34:6f:5f:79:f5:0e:4b:08: bd:b4:26:a5:23:4e:38:17:a7:c7:2b:83:16:3e:fa: ed:06:b0:64:f8:02:cb:0e:53:84:69:59:2d:0c:f2: 6a:e4:65:51:a0:b8:d5:0e:82:34:1a:46:7b:06:c9: 2f:cf:9a:b0:b4:59:d6:2d:72:92:f0:44:e3:d6:fd: a2:0d:0e:d7:b0:ce:57:bd:76:a1:88:fd:cd:89:1e: d2:23:9d:03:89:40:27:bf:10:e4:44:53:aa:21:3c: 90:de:ce:13:b8:3c:39:c1:fb:46:39:06:d0:05:bb: 34:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A5:B0:F2:1D:9D:0A:54:55:C9:5D:7D:9D:66:A2:CA:7F:28:2B:14 X509v3 Authority Key Identifier: keyid:4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/A2E40A5C3AA511EFA73B8885C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.78.16.0/20 IPv6: 2405:d980::/32 Signature Algorithm: sha256WithRSAEncryption 0b:86:85:41:07:e1:d8:82:82:91:62:ff:cc:91:6c:33:ff:38: ab:2c:98:b1:0b:39:a4:0a:12:96:6a:2b:ac:40:26:57:17:6a: 9f:5f:f1:ae:c2:cb:a3:a7:e1:3b:64:df:50:71:a1:37:e5:ce: 35:86:ed:fb:7f:dc:41:71:be:12:bd:6a:54:68:1a:9d:4d:8c: 96:6c:ca:9a:1b:f8:d8:47:8b:60:7a:84:6c:db:e6:c1:7c:89: 06:7f:ac:88:ae:25:1a:fb:40:ff:ee:47:58:b9:71:5a:03:10: 32:16:46:53:cb:74:b1:7a:88:b2:2a:7f:26:64:82:68:2d:d7: 6b:5f:28:83:4e:91:e6:e9:c8:8e:9a:da:20:27:1b:e4:78:88: 4d:52:75:1b:28:8e:7a:7c:22:f4:1a:5c:3b:29:81:bc:cf:88: 5c:04:9c:f9:2b:d8:f3:e2:77:ef:4f:5d:da:ff:8c:91:1a:33: 8d:69:2a:aa:26:a2:a6:d6:ba:e9:3c:de:87:70:c8:8c:02:7c: aa:c3:48:1f:be:80:95:68:7b:f8:29:71:9b:3e:74:f9:2a:d6: ab:94:ec:b6:f9:26:4f:dd:a8:10:09:8a:80:11:b8:01:25:fe: 03:f7:a2:00:42:8a:85:02:c4:43:fe:36:a1:50:b9:2f:0d:7a: 4b:b5:85:59 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICNScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNzYxMTAvBgNVBAUTKDRERUJCOEUxMjIyQkUwRTNGMjNBRURCNzUyNDVFMEY5 N0I4N0M3NEQwHhcNMjUwMzI2MTQ1MDQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDA1Yy1jNWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXnhhewAKjTtGkxIIFAGZjc2ufECyy/kHplRhNd2htoZ3asnppDW/SjHuH1t Awy64VaLnj2zTZZEqAvz4e1fhj9a1C0gpDTgOiabTKM0ebWWVOH8cWUtfu9T7lmx SDl2/cFPuxqkir5nELpc7urSksfpFYqifEJIrUmz9tR37NlG94qeDMLafI8UgGMn NG9fefUOSwi9tCalI044F6fHK4MWPvrtBrBk+ALLDlOEaVktDPJq5GVRoLjVDoI0 GkZ7Bskvz5qwtFnWLXKS8ETj1v2iDQ7XsM5XvXahiP3NiR7SI50DiUAnvxDkRFOq ITyQ3s4TuDw5wftGOQbQBbs0ywIDAQABo4ICbzCCAmswHQYDVR0OBBYEFAWlsPId nQpUVcldfZ1mosp/KCsUMB8GA1UdIwQYMBaAFE3ruOEiK+Dj8jrtt1JF4Pl7h8dN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE3Ni9BQUJBMzQ5ODFE OEIxMUUyQUE3NTZBRTYwOEIwMkNEMi9UZXU0NFNJcjRPUHlPdTIzVWtYZy1YdUh4 MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RldTQ0U0lyNE9QeU91MjNVa1hnLVh1SHgwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBNzYvQUFCQTM0OTgxRDhCMTFFMkFBNzU2QUU2MDhCMDJDRDIvQTJFNDBBNUMz QUE1MTFFRkE3M0I4ODg1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQEyk4QMA0EAgACMAcDBQAkBdmAMA0GCSqGSIb3DQEBCwUAA4IBAQAL hoVBB+HYgoKRYv/MkWwz/zirLJixCzmkChKWaiusQCZXF2qfX/Guwsujp+E7ZN9Q caE35c41hu37f9xBcb4SvWpUaBqdTYyWbMqaG/jYR4tgeoRs2+bBfIkGf6yIriUa +0D/7kdYuXFaAxAyFkZTy3SxeoiyKn8mZIJoLddrXyiDTpHm6ciOmtogJxvkeIhN UnUbKI56fCL0Glw7KYG8z4hcBJz5K9jz4nfvT13a/4yRGjONaSqqJqKm1rrpPN6H cMiMAnyqw0gfvoCVaHv4KXGbPnT5KtarlOy2+SZP3agQCYqAEbgBJf4D96IAQoqF AsRD/jahULkvDXpLtYVZ -----END CERTIFICATE-----Generated at Mon Mar 2 18:26:16 2026 by rpki-client