$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/7C3A615CFD2A11EE9030911CC4F9AE02.roa File: 7C3A615CFD2A11EE9030911CC4F9AE02.roa (raw, json) Hash identifier: ge93gK4lUWgpZWqf0mLTvZJqGeY+ssrFNxVQ9BEvxjU= Subject key identifier: 4A:2E:AA:7B:7E:4E:0B:D2:9E:20:51:51:32:DF:C5:4D:16:BC:15:5B Certificate issuer: /CN=A915FDA7/serialNumber=0BDBAC15225F1BF9B614B2A347A1B96C4A0F969C Certificate serial: 016B Authority key identifier: 0B:DB:AC:15:22:5F:1B:F9:B6:14:B2:A3:47:A1:B9:6C:4A:0F:96:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9usFSJfG_m2FLKjR6G5bEoPlpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/7C3A615CFD2A11EE9030911CC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:00:30 +0000 ROA not before: Wed 03 Dec 2025 03:02:58 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 38305 IP address blocks: 202.14.106.0/24 maxlen: 24 202.27.239.0/24 maxlen: 24 202.37.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/C9usFSJfG_m2FLKjR6G5bEoPlpw.crl rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/C9usFSJfG_m2FLKjR6G5bEoPlpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9usFSJfG_m2FLKjR6G5bEoPlpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDA7, serialNumber=0BDBAC15225F1BF9B614B2A347A1B96C4A0F969C Validity Not Before: Dec 3 03:02:58 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a597fe-0665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b2:25:40:ec:a4:9b:2b:67:e5:f3:85:0a:66: ea:e8:f0:9b:fe:10:5c:3a:a2:87:ff:da:c1:50:0f: 6c:2c:e2:d6:a3:bc:e0:8b:a8:32:fd:28:58:64:2c: 2d:53:d6:6c:f4:fe:11:a4:ae:1e:55:52:15:ca:38: d9:4b:73:34:8d:8c:b3:77:87:f5:d9:ec:57:8a:b3: 92:0a:30:21:b2:8d:41:bf:7f:bc:36:a8:a7:e5:eb: cb:97:32:83:ed:f6:f6:ab:65:20:64:23:61:ca:34: e2:f2:cb:37:9f:34:20:7e:f9:ce:17:10:ff:45:ed: fd:27:54:4a:e2:a5:96:df:44:02:fb:1b:a4:7f:7b: 5d:5d:82:9b:12:fd:eb:b3:c9:f7:c7:6a:10:05:75: 74:37:e1:20:70:cf:d1:c2:b4:f9:04:ee:39:04:89: c0:a2:65:45:a2:b3:1c:3f:b6:4a:c4:07:34:01:c8: b4:36:f9:fe:88:c1:95:88:bf:07:a4:16:f6:d2:c3: 9d:d4:f2:ca:0e:38:fe:d9:fc:63:28:ff:72:f4:2c: f7:87:56:8d:f3:47:60:6e:ad:27:d4:84:1a:e9:5b: 08:28:26:59:51:80:fe:2a:cd:01:87:59:79:82:18: b3:ff:63:8f:50:82:3b:65:18:f5:c2:1e:b4:60:c5: df:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2E:AA:7B:7E:4E:0B:D2:9E:20:51:51:32:DF:C5:4D:16:BC:15:5B X509v3 Authority Key Identifier: keyid:0B:DB:AC:15:22:5F:1B:F9:B6:14:B2:A3:47:A1:B9:6C:4A:0F:96:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/C9usFSJfG_m2FLKjR6G5bEoPlpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9usFSJfG_m2FLKjR6G5bEoPlpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/7C3A615CFD2A11EE9030911CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.14.106.0/24 202.27.239.0/24 202.37.99.0/24 Signature Algorithm: sha256WithRSAEncryption 01:51:81:d4:e2:ac:46:8c:67:be:e4:5a:10:63:dc:d8:6d:5d: ee:82:f8:ad:c1:a1:d2:32:6f:a3:31:24:dc:8b:59:e9:d9:6c: 11:a3:47:09:e8:80:f6:0e:16:1f:a0:d3:9b:b0:03:16:83:fe: 19:d1:88:de:f3:68:50:10:4c:07:54:bd:18:d8:99:d1:b5:a8: 17:14:88:ed:7f:5f:5a:14:e1:ef:d9:be:44:d8:f6:34:53:22: 5a:dd:09:fd:e1:60:da:f2:10:19:5c:0a:77:7e:49:5b:41:18: a6:95:7f:5e:ac:02:7e:d7:45:2e:32:46:df:d2:18:2b:fe:83: a4:a7:c7:4a:78:5e:59:5f:81:c3:8e:73:dd:56:40:2b:67:31: e2:31:84:d8:c3:db:98:dc:2f:d1:65:93:88:00:78:65:05:d6: 24:18:49:23:dd:77:19:aa:31:b2:97:6d:45:4d:7d:09:74:ea: 63:01:49:31:ba:14:4a:70:81:fd:b3:3b:dd:2c:1e:80:13:1a: a1:0c:af:e8:8a:2d:a4:9a:e2:68:2a:ca:4f:bd:e0:47:e7:fe: 5b:32:f0:76:13:16:3a:16:ef:2b:a1:37:a2:c3:ec:17:5f:d9: 94:64:3e:c2:04:85:15:e1:6a:46:bb:3f:91:22:8d:c7:de:0b: 05:58:66:81 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEQTcxMTAvBgNVBAUTKDBCREJBQzE1MjI1RjFCRjlCNjE0QjJBMzQ3QTFCOTZD NEEwRjk2OUMwHhcNMjUxMjAzMDMwMjU4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTdmZS0wNjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLIlQOykmytn5fOFCmbq6PCb/hBcOqKH/9rBUA9sLOLWo7zgi6gy/ShYZCwt U9Zs9P4RpK4eVVIVyjjZS3M0jYyzd4f12exXirOSCjAhso1Bv3+8Nqin5evLlzKD 7fb2q2UgZCNhyjTi8ss3nzQgfvnOFxD/Re39J1RK4qWW30QC+xukf3tdXYKbEv3r s8n3x2oQBXV0N+EgcM/RwrT5BO45BInAomVForMcP7ZKxAc0Aci0Nvn+iMGViL8H pBb20sOd1PLKDjj+2fxjKP9y9Cz3h1aN80dgbq0n1IQa6VsIKCZZUYD+Ks0Bh1l5 ghiz/2OPUII7ZRj1wh60YMXfXwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFEouqnt+ TgvSniBRUTLfxU0WvBVbMB8GA1UdIwQYMBaAFAvbrBUiXxv5thSyo0ehuWxKD5ac MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkRBNy80RjQ4MUFDOEZE MjkxMUVFQTYyOUFFNjJDNEY5QUUwMi9DOXVzRlNKZkdfbTJGTEtqUjZHNWJFb1Bs cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5dXNGU0pmR19tMkZMS2pSNkc1YkVvUGxwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZEQTcvNEY0ODFBQzhGRDI5MTFFRUE2MjlBRTYyQzRGOUFFMDIvN0MzQTYxNUNG RDJBMTFFRTkwMzA5MTFDQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAyg5qAwQAyhvvAwQAyiVjMA0GCSqGSIb3DQEBCwUAA4IBAQABUYHU 4qxGjGe+5FoQY9zYbV3ugvitwaHSMm+jMSTci1np2WwRo0cJ6ID2DhYfoNObsAMW g/4Z0Yje82hQEEwHVL0Y2JnRtagXFIjtf19aFOHv2b5E2PY0UyJa3Qn94WDa8hAZ XAp3fklbQRimlX9erAJ+10UuMkbf0hgr/oOkp8dKeF5ZX4HDjnPdVkArZzHiMYTY w9uY3C/RZZOIAHhlBdYkGEkj3XcZqjGyl21FTX0JdOpjAUkxuhRKcIH9szvdLB6A ExqhDK/oii2kmuJoKspPveBH5/5bMvB2ExY6Fu8roTeiw+wXX9mUZD7CBIUV4WpG uz+RIo3H3gsFWGaB -----END CERTIFICATE-----Generated at Mon Mar 2 20:56:53 2026 by rpki-client