$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/3E60217E42D211EC956C7F65C4F9AE02.roa File: 3E60217E42D211EC956C7F65C4F9AE02.roa (raw, json) Hash identifier: tETiEeczeTi6RVos7PRLZrM1yj4bO0TaBc4BLbzROio= Subject key identifier: 39:F6:84:B8:34:DD:40:8C:52:8C:93:2A:08:60:AA:C0:E4:0C:CD:34 Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 052E Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/3E60217E42D211EC956C7F65C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:47:51 +0000 ROA not before: Fri 02 Jan 2026 23:19:37 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137267 IP address blocks: 203.27.18.0/24 maxlen: 24 203.33.188.0/24 maxlen: 24 2400:1360::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1326 (0x52e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Jan 2 23:19:37 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45fa6-fbfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:95:3c:0b:00:31:9c:08:ec:3f:78:24:d5:88: e3:fe:f0:3f:bc:d1:2a:b8:80:36:67:70:04:fd:8a: 76:15:11:0e:05:e9:ce:64:34:16:b6:fa:d6:51:22: 26:16:9d:d3:47:06:8e:21:62:7d:c2:f6:09:11:04: 0c:fb:23:cd:d0:33:e8:2e:7a:13:94:a8:b0:0b:28: 2d:94:76:24:37:09:c5:7e:17:5d:d9:df:8b:88:db: b4:91:8d:5c:da:56:f9:55:87:44:80:99:20:4a:36: 70:9f:d6:e9:fc:b5:ba:08:46:b1:5a:8e:91:03:f6: a6:4f:03:c7:dc:fe:fa:91:8d:08:e8:30:6c:86:9e: 6e:6e:aa:7b:3e:e5:00:e5:95:e8:f9:46:fd:f4:0e: 2a:6a:30:1f:5c:56:3a:db:d8:9a:f7:09:ce:78:f5: 2f:30:5e:a2:3e:22:1c:77:df:36:46:68:c2:23:f7: 5d:c5:2a:4c:67:24:46:41:04:dd:7e:71:3f:7a:4e: cb:9f:84:e9:0f:bb:3b:82:d2:af:b2:4e:95:ce:81: 6c:16:f4:48:49:07:ed:86:0d:a1:fa:f5:6e:ec:2c: eb:15:c3:97:ba:09:37:f9:17:c5:ad:f6:23:23:49: dc:fa:f6:f9:f8:07:c2:18:4c:85:bf:95:d1:6f:b9: 96:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F6:84:B8:34:DD:40:8C:52:8C:93:2A:08:60:AA:C0:E4:0C:CD:34 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/3E60217E42D211EC956C7F65C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.27.18.0/24 203.33.188.0/24 IPv6: 2400:1360::/34 Signature Algorithm: sha256WithRSAEncryption 87:e4:7f:0e:4b:f4:0f:3f:09:7c:a6:de:7a:57:70:9a:9b:71: c0:3e:b3:c3:7c:a6:76:1a:27:df:88:1d:78:ee:c7:9a:be:e8: 35:da:54:e5:e3:e8:6b:47:45:d9:66:21:b6:cd:b2:aa:f7:21: aa:b9:05:a8:c3:51:48:d8:c0:df:5f:70:39:5e:1a:09:54:be: 9c:78:a5:19:95:31:30:a5:f7:f4:d4:59:ea:d7:3c:54:b1:95: 5d:c8:de:45:13:60:07:ed:c9:a0:b7:ce:ba:74:02:bf:90:1c: 45:b6:47:05:45:07:2c:47:01:66:19:a2:39:46:16:25:ef:2b: cd:af:eb:77:97:9c:d1:04:f4:51:70:6d:e0:9c:aa:f1:8f:38: 54:7f:5c:80:a2:1e:14:2f:d3:11:53:c9:39:14:3b:6b:f5:7f: 38:6f:ad:3c:a8:f9:1d:b1:c0:aa:8d:95:d7:93:ee:a7:52:e8: 96:6e:fd:5a:1e:e4:f9:d4:88:b1:e8:02:38:a5:de:83:28:5a: b2:0b:6c:93:8e:79:b6:f5:35:13:d6:1d:1d:55:6e:50:70:2e: 34:33:99:d4:c7:04:19:44:3f:59:51:f1:94:4f:fd:2d:38:e5: a1:17:4a:d8:e7:23:2a:5c:b9:4f:3b:18:48:26:20:b5:11:88: bf:26:a8:ee -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjYwMTAyMjMxOTM3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWZhNi1mYmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJU8CwAxnAjsP3gk1Yjj/vA/vNEquIA2Z3AE/Yp2FREOBenOZDQWtvrWUSIm Fp3TRwaOIWJ9wvYJEQQM+yPN0DPoLnoTlKiwCygtlHYkNwnFfhdd2d+LiNu0kY1c 2lb5VYdEgJkgSjZwn9bp/LW6CEaxWo6RA/amTwPH3P76kY0I6DBshp5ubqp7PuUA 5ZXo+Ub99A4qajAfXFY629ia9wnOePUvMF6iPiIcd982RmjCI/ddxSpMZyRGQQTd fnE/ek7Ln4TpD7s7gtKvsk6VzoFsFvRISQfthg2h+vVu7CzrFcOXugk3+RfFrfYj I0nc+vb5+AfCGEyFv5XRb7mWMwIDAQABo4ICdjCCAnIwHQYDVR0OBBYEFDn2hLg0 3UCMUoyTKghgqsDkDM00MB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE5NkQvNjIwMkFBM0U0MTEwMTFFQzk5MzlDMDBGQzRGOUFFMDIvM0U2MDIxN0U0 MkQyMTFFQzk1NkM3RjY1QzRGOUFFMDIucm9hMDUGCCsGAQUFBwEHAQH/BCYwJDAS BAIAATAMAwQAyxsSAwQAyyG8MA4EAgACMAgDBgYkABNgADANBgkqhkiG9w0BAQsF AAOCAQEAh+R/Dkv0Dz8JfKbeeldwmptxwD6zw3ymdhon34gdeO7Hmr7oNdpU5ePo a0dF2WYhts2yqvchqrkFqMNRSNjA319wOV4aCVS+nHilGZUxMKX39NRZ6tc8VLGV XcjeRRNgB+3JoLfOunQCv5AcRbZHBUUHLEcBZhmiOUYWJe8rza/rd5ec0QT0UXBt 4Jyq8Y84VH9cgKIeFC/TEVPJORQ7a/V/OG+tPKj5HbHAqo2V15Pup1Lolm79Wh7k +dSIsegCOKXegyhasgtsk455tvU1E9YdHVVuUHAuNDOZ1McEGUQ/WVHxlE/9LTjl oRdK2OcjKly5TzsYSCYgtRGIvyao7g== -----END CERTIFICATE-----Generated at Mon Mar 2 16:46:44 2026 by rpki-client