$ rpki-client -vvf rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa File: 061C3362985911EBA5F39B54C4F9AE02.roa (raw, json) Hash identifier: /mJHJa7Kv9dezINTXj77QX2Yml1BYOyNQzqk9w8TsFI= Subject key identifier: A6:9C:1B:EE:19:0C:BC:B9:A1:2C:78:DB:05:B6:C6:B9:8A:68:62:CC Certificate issuer: /CN=A915DB55/serialNumber=4423FBF41AD9F0FC74D3C15558B8D09A164B261B Certificate serial: 06C8 Authority key identifier: 44:23:FB:F4:1A:D9:F0:FC:74:D3:C1:55:58:B8:D0:9A:16:4B:26:1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:34:03 +0000 ROA not before: Fri 30 May 2025 20:59:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139034 IP address blocks: 104.255.36.0/22 maxlen: 22 104.255.36.0/24 maxlen: 24 104.255.37.0/24 maxlen: 24 104.255.38.0/24 maxlen: 24 104.255.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.crl rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DB55, serialNumber=4423FBF41AD9F0FC74D3C15558B8D09A164B261B Validity Not Before: May 30 20:59:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4080b-b007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5d:74:7b:ce:b5:39:a0:fd:c4:c7:db:20:6a: 9a:dc:a0:03:27:bc:81:0a:61:20:47:3e:e5:e8:a1: 26:0e:87:81:e2:9a:57:39:f8:2b:f5:80:2d:b5:c3: 8f:25:4f:6c:f3:ae:f5:81:2d:b2:76:0b:1d:31:54: cf:f6:c4:8c:5b:21:a0:d4:99:69:aa:27:a9:41:56: 35:61:b5:2f:f4:e3:27:a8:71:8c:fd:d5:83:cb:37: 2b:3a:61:d2:61:7a:4a:4b:57:62:cf:52:e7:e4:15: 2e:3a:52:0e:db:23:d6:03:59:82:fb:e3:82:bf:eb: 44:32:50:87:2b:95:9e:c3:7b:07:6d:00:8a:bd:03: 8d:c5:bb:b6:1c:81:74:89:cf:76:f6:29:6a:14:ed: af:40:1b:f8:84:82:87:8c:62:92:4f:a6:50:4c:88: aa:1f:fb:89:5e:4d:73:04:59:56:d5:b9:75:06:eb: 40:5c:2d:41:b3:20:0d:af:e0:91:4b:d7:73:29:64: 44:cf:d6:e1:4f:b8:40:da:29:22:59:5f:93:5b:aa: 69:79:43:d1:88:f9:b2:7e:9c:78:e3:54:e0:5f:cb: 22:27:3e:2c:34:76:1e:0f:c4:09:30:38:a9:77:35: 47:ff:de:e1:f2:7f:de:7f:c5:c8:2d:df:8d:9c:a7: 30:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9C:1B:EE:19:0C:BC:B9:A1:2C:78:DB:05:B6:C6:B9:8A:68:62:CC X509v3 Authority Key Identifier: keyid:44:23:FB:F4:1A:D9:F0:FC:74:D3:C1:55:58:B8:D0:9A:16:4B:26:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 104.255.36.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:87:12:a3:22:51:4d:20:b4:69:35:1b:a4:9b:0e:21:e8:71: d2:73:46:05:e6:63:c7:fc:17:74:3c:f1:fd:c6:93:93:9b:d1: a1:60:d4:2b:b5:7c:61:f7:99:a3:25:ca:bd:6e:56:92:7e:76: bd:a0:03:cf:e4:1b:1c:b9:ce:aa:c1:29:9b:72:cf:b5:03:77: a8:7b:49:21:6f:a8:73:74:6d:ab:7d:0d:b3:ba:10:64:c5:df: 0a:01:2e:f9:3e:e3:c4:fd:c8:2a:8b:fa:92:00:7c:23:fa:61: 42:fc:b1:c3:5a:ba:3d:f7:9f:45:0d:fb:aa:0b:f6:ae:cd:e1: 53:d1:7c:b1:30:e7:4d:30:a8:d2:30:67:8d:a3:ba:78:f1:cc: dd:87:ca:9b:15:e0:05:14:1a:31:e7:69:26:07:2f:b4:e2:47: 54:1a:ea:78:ee:10:85:0d:6d:a2:82:89:76:ab:a7:7b:d0:51: 96:0f:33:e8:88:25:56:54:f4:18:d3:44:9d:a6:74:19:ee:60: 4e:d8:33:a0:80:95:53:7a:90:fe:06:57:7e:98:5a:0a:b8:92: f7:43:a5:3c:00:96:0d:7f:36:58:e3:3e:00:db:34:bf:23:f9: b2:43:51:2f:af:04:d2:05:76:f6:d7:26:fe:5e:70:84:e4:63: 6d:0f:78:12 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURCNTUxMTAvBgNVBAUTKDQ0MjNGQkY0MUFEOUYwRkM3NEQzQzE1NTU4QjhEMDlB MTY0QjI2MUIwHhcNMjUwNTMwMjA1OTMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDgwYi1iMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAql10e861OaD9xMfbIGqa3KADJ7yBCmEgRz7l6KEmDoeB4ppXOfgr9YAttcOP JU9s8671gS2ydgsdMVTP9sSMWyGg1JlpqiepQVY1YbUv9OMnqHGM/dWDyzcrOmHS YXpKS1diz1Ln5BUuOlIO2yPWA1mC++OCv+tEMlCHK5Wew3sHbQCKvQONxbu2HIF0 ic929ilqFO2vQBv4hIKHjGKST6ZQTIiqH/uJXk1zBFlW1bl1ButAXC1BsyANr+CR S9dzKWREz9bhT7hA2ikiWV+TW6ppeUPRiPmyfpx441TgX8siJz4sNHYeD8QJMDip dzVH/97h8n/ef8XILd+NnKcwXQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKacG+4Z DLy5oSx42wW2xrmKaGLMMB8GA1UdIwQYMBaAFEQj+/Qa2fD8dNPBVVi40JoWSyYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REI1NS8yMDQ4MDUzMjk4 NTgxMUVCOEE0MUZBMjBDNEY5QUUwMi9SQ1A3OUJyWjhQeDAwOEZWV0xqUW1oWkxK aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JDUDc5QnJaOFB4MDA4RlZXTGpRbWhaTEpocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURCNTUvMjA0ODA1MzI5ODU4MTFFQjhBNDFGQTIwQzRGOUFFMDIvMDYxQzMzNjI5 ODU5MTFFQkE1RjM5QjU0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCaP8kMA0GCSqGSIb3DQEBCwUAA4IBAQAOhxKjIlFNILRpNRukmw4h 6HHSc0YF5mPH/Bd0PPH9xpOTm9GhYNQrtXxh95mjJcq9blaSfna9oAPP5Bscuc6q wSmbcs+1A3eoe0khb6hzdG2rfQ2zuhBkxd8KAS75PuPE/cgqi/qSAHwj+mFC/LHD Wro9959FDfuqC/auzeFT0XyxMOdNMKjSMGeNo7p48czdh8qbFeAFFBox52kmBy+0 4kdUGup47hCFDW2igol2q6d70FGWDzPoiCVWVPQY00SdpnQZ7mBO2DOggJVTepD+ Bld+mFoKuJL3Q6U8AJYNfzZY4z4A2zS/I/myQ1EvrwTSBXb21yb+XnCE5GNtD3gS -----END CERTIFICATE-----Generated at Mon Mar 2 06:23:19 2026 by rpki-client