$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/A2E40A5C3AA511EFA73B8885C4F9AE02.roa File: A2E40A5C3AA511EFA73B8885C4F9AE02.roa (raw, json) Hash identifier: QLCxOEmWgCa369miIkbLMZGjORq6IjjCOA26AQZ1+A8= Subject key identifier: 14:5A:52:95:F8:DD:2B:6C:D2:E1:D8:29:DF:FF:43:9A:13:05:9F:29 Certificate issuer: /CN=A915DA76/serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Certificate serial: 3474 Authority key identifier: 4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/A2E40A5C3AA511EFA73B8885C4F9AE02.roa Signing time: Wed 26 Mar 2025 14:50:45 +0000 ROA not before: Wed 26 Mar 2025 14:50:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 19905 IP address blocks: 202.78.16.0/20 maxlen: 20 202.78.24.0/24 maxlen: 24 202.78.27.0/24 maxlen: 24 202.78.28.0/23 maxlen: 23 2405:d980::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13428 (0x3474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA76, serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Validity Not Before: Mar 26 14:50:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e41445-1f43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a2:29:5a:da:3a:fe:bc:a8:04:76:66:fd:e4: 1e:93:5b:f4:a6:05:c1:d0:e5:5a:a5:78:30:88:c0: dd:8a:48:80:18:4d:80:c5:4e:04:9d:73:2f:d0:a7: 69:89:4d:45:2c:85:7e:e7:ee:9d:82:3e:78:9c:ff: a1:8a:f5:4b:17:a7:92:c5:00:00:65:fa:84:fb:57: 17:30:0a:85:c4:86:d5:33:c1:fd:c8:3e:01:10:10: 0e:4f:78:e2:be:d9:a8:bc:81:c6:ab:ec:7f:66:a0: 97:88:cc:f6:f1:24:d5:e4:e7:46:8d:97:b9:54:cc: 51:14:c5:70:29:a4:28:ba:f2:58:ca:07:12:a5:60: 22:31:9c:b0:19:6e:14:3d:12:4d:2d:67:7b:79:fe: 21:ef:77:5a:79:e8:72:ef:a4:91:4d:08:ac:ce:7d: 30:65:3c:0a:d6:77:09:19:b8:f3:f4:4f:aa:c7:c6: b0:ee:30:aa:6e:12:69:3d:de:d4:a0:dd:3b:14:60: 59:d1:63:dc:b0:6a:66:50:87:8e:99:e6:29:e0:00: 5d:58:32:8d:6e:e3:8f:81:2e:4d:92:6a:bc:fb:ae: f6:55:e3:af:f1:41:5e:05:5e:3b:e9:2e:6b:24:55: d6:4d:2e:d5:86:af:32:3a:27:84:ec:40:65:de:0e: 5c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5A:52:95:F8:DD:2B:6C:D2:E1:D8:29:DF:FF:43:9A:13:05:9F:29 X509v3 Authority Key Identifier: keyid:4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/A2E40A5C3AA511EFA73B8885C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.78.16.0/20 IPv6: 2405:d980::/32 Signature Algorithm: sha256WithRSAEncryption 65:a6:5f:ee:0d:d8:98:1e:ab:26:21:15:24:7e:57:fc:8c:b0: ec:83:d6:f9:04:bb:8c:1b:76:7f:53:64:e2:9f:34:bf:1d:73: 14:7f:33:d6:85:26:29:b6:9e:c3:d9:19:dd:58:63:a3:0d:f8: 60:3a:a9:bf:77:af:ae:ad:a5:b3:7f:f4:99:92:7b:f2:32:c6: cc:57:04:c0:f7:d2:00:e0:4a:de:c4:d5:f6:b6:0a:59:7f:2b: 46:cb:28:ee:43:4b:47:30:5e:78:26:fd:ef:d8:7c:d0:e4:3e: 04:03:f9:83:b9:5b:1e:98:99:17:8a:89:41:60:f2:68:01:e4: 55:eb:b3:8f:3c:3a:af:6d:50:3b:6c:04:64:d9:74:08:24:48: bd:bd:05:7c:1f:b0:76:95:f1:db:28:4e:93:d2:41:d3:21:0e: 4c:72:d8:ba:ff:66:9e:25:55:0b:03:f9:37:1d:ef:0e:60:13: 52:df:17:a7:7e:24:08:12:70:ca:bb:09:7e:b2:82:96:54:9c: 88:2f:7d:8d:28:78:d8:8f:93:b8:ba:b6:c5:e7:a8:94:dc:9c: 52:7d:f3:36:b5:84:e0:89:1d:0d:c3:09:da:99:6a:7a:23:67: a3:96:72:22:25:36:fe:b7:f2:e3:10:f4:3c:d8:7d:92:05:d0: eb:13:a7:3e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNzYxMTAvBgNVBAUTKDRERUJCOEUxMjIyQkUwRTNGMjNBRURCNzUyNDVFMEY5 N0I4N0M3NEQwHhcNMjUwMzI2MTQ1MDQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0MTQ0NS0xZjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaIpWto6/ryoBHZm/eQek1v0pgXB0OVapXgwiMDdikiAGE2AxU4EnXMv0Kdp iU1FLIV+5+6dgj54nP+hivVLF6eSxQAAZfqE+1cXMAqFxIbVM8H9yD4BEBAOT3ji vtmovIHGq+x/ZqCXiMz28STV5OdGjZe5VMxRFMVwKaQouvJYygcSpWAiMZywGW4U PRJNLWd7ef4h73daeehy76SRTQiszn0wZTwK1ncJGbjz9E+qx8aw7jCqbhJpPd7U oN07FGBZ0WPcsGpmUIeOmeYp4ABdWDKNbuOPgS5Nkmq8+672VeOv8UFeBV476S5r JFXWTS7Vhq8yOieE7EBl3g5ctQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBRaUpX4 3Sts0uHYKd//Q5oTBZ8pMB8GA1UdIwQYMBaAFE3ruOEiK+Dj8jrtt1JF4Pl7h8dN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE3Ni9BQUJBMzQ5ODFE OEIxMUUyQUE3NTZBRTYwOEIwMkNEMi9UZXU0NFNJcjRPUHlPdTIzVWtYZy1YdUh4 MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RldTQ0U0lyNE9QeU91MjNVa1hnLVh1SHgwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBNzYvQUFCQTM0OTgxRDhCMTFFMkFBNzU2QUU2MDhCMDJDRDIvQTJFNDBBNUMz QUE1MTFFRkE3M0I4ODg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBATKThAwDQQCAAIwBwMFACQF2YAwDQYJKoZIhvcNAQELBQAD ggEBAGWmX+4N2JgeqyYhFSR+V/yMsOyD1vkEu4wbdn9TZOKfNL8dcxR/M9aFJim2 nsPZGd1YY6MN+GA6qb93r66tpbN/9JmSe/IyxsxXBMD30gDgSt7E1fa2Cll/K0bL KO5DS0cwXngm/e/YfNDkPgQD+YO5Wx6YmReKiUFg8mgB5FXrs488Oq9tUDtsBGTZ dAgkSL29BXwfsHaV8dsoTpPSQdMhDkxy2Lr/Zp4lVQsD+Tcd7w5gE1LfF6d+JAgS cMq7CX6ygpZUnIgvfY0oeNiPk7i6tsXnqJTcnFJ98za1hOCJHQ3DCdqZanojZ6OW ciIlNv638uMQ9DzYfZIF0OsTpz4= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:49 2025 by rpki-client