$ rpki-client -vvf rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/4B3E4A0693DE11EE81D1045FC4F9AE02.roa File: 4B3E4A0693DE11EE81D1045FC4F9AE02.roa (raw, json) Hash identifier: +D/Xxn50EVg8DEjdVI0q+xul/2qrla9jwori+Klwr2U= Subject key identifier: 2C:C6:E0:23:68:B9:77:48:39:D4:4D:35:7B:95:2F:8A:AE:15:0A:26 Certificate issuer: /CN=A919B20D/serialNumber=E556DC86B94E91CF9B2E2944A85F71692DA094D2 Certificate serial: 01AC Authority key identifier: E5:56:DC:86:B9:4E:91:CF:9B:2E:29:44:A8:5F:71:69:2D:A0:94:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5VbchrlOkc-bLilEqF9xaS2glNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/4B3E4A0693DE11EE81D1045FC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:40:21 +0000 ROA not before: Wed 18 Jun 2025 02:46:01 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55785 IP address blocks: 202.37.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/5VbchrlOkc-bLilEqF9xaS2glNI.crl rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/5VbchrlOkc-bLilEqF9xaS2glNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5VbchrlOkc-bLilEqF9xaS2glNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B20D, serialNumber=E556DC86B94E91CF9B2E2944A85F71692DA094D2 Validity Not Before: Jun 18 02:46:01 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3df55-506e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ba:eb:6e:17:51:35:91:22:37:67:ee:2b:be: d7:2d:83:ad:35:58:39:c4:3a:72:bb:75:ef:89:97: a9:e7:d3:77:cf:de:87:4f:6a:f1:93:1a:dd:f6:65: 31:a4:99:7d:b0:c6:62:74:81:da:77:7f:0e:a4:5b: ad:e5:23:a3:58:5a:08:97:d7:64:1c:3f:02:d4:fe: 73:89:3c:78:e0:53:e9:b5:da:9a:b0:4a:fd:d0:87: 8f:64:5d:51:a5:27:1d:97:aa:0e:20:18:1d:10:54: 11:e5:49:fd:dc:9a:33:e8:43:50:05:b3:9f:b3:73: 9d:3f:6b:2a:87:f2:2a:a0:dc:f0:a8:c4:8c:48:a2: 96:39:7e:44:59:81:8b:ba:bc:d7:e2:79:5e:2f:f6: 2c:4a:f1:48:66:80:d1:df:60:d4:a6:31:c5:8c:a0: 7d:a3:5a:2c:3e:8d:7f:c9:59:91:cd:4f:5e:bc:23: f9:97:e5:55:b7:a8:e5:23:70:52:e2:12:61:07:f7: 97:a6:65:80:aa:db:3f:54:09:52:c2:ca:fb:63:9f: ba:24:cf:7b:18:5e:8a:34:80:6d:fa:11:bf:c6:23: 06:75:bb:22:22:54:56:73:34:cc:c1:07:fb:cf:1d: 06:20:44:43:5b:fe:80:31:07:ad:e5:a3:3c:0c:73: 8d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C6:E0:23:68:B9:77:48:39:D4:4D:35:7B:95:2F:8A:AE:15:0A:26 X509v3 Authority Key Identifier: keyid:E5:56:DC:86:B9:4E:91:CF:9B:2E:29:44:A8:5F:71:69:2D:A0:94:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/5VbchrlOkc-bLilEqF9xaS2glNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5VbchrlOkc-bLilEqF9xaS2glNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/4B3E4A0693DE11EE81D1045FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.37.198.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:b2:83:9d:83:71:41:3e:1e:a5:17:b4:00:a7:cb:c3:cc:1d: 0d:76:b7:10:96:11:5f:01:82:ac:9b:49:ac:09:6f:52:1a:4a: 29:e7:23:c9:f0:57:3c:19:22:e4:77:cc:c2:db:a9:4f:f6:14: 34:cd:af:6d:83:aa:71:ef:a1:c4:8a:93:42:02:38:7a:95:f0: 55:16:71:dd:1c:f0:40:cd:d3:0f:4d:82:a9:4d:c4:84:e2:17: fa:c4:39:12:98:65:27:83:26:e9:f0:0e:fb:51:00:49:c6:3a: 4a:41:c8:f9:f9:7a:d5:dd:2b:32:c1:0f:53:5c:2a:0c:c5:5c: 03:38:7c:70:e9:45:77:59:25:1e:2e:eb:39:0f:de:bf:38:25: e9:65:dd:51:7d:93:57:67:87:be:ee:b6:b3:e0:89:f0:21:e4: 61:c7:4e:8f:7f:b3:67:a4:35:45:aa:d5:7f:14:66:cc:40:30: 32:59:1a:79:f2:17:9d:2c:0c:06:21:ee:05:b0:a8:f0:2d:5e: ae:19:65:c7:79:06:e3:46:b6:57:e6:24:de:bc:0b:42:13:f2: c5:8d:d3:88:31:80:85:0a:76:74:2f:09:bd:9b:06:07:a1:7b: c6:4b:bb:ca:c3:ef:44:bb:12:c6:a3:5d:b7:0c:96:67:34:a4: da:7f:89:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIyMEQxMTAvBgNVBAUTKEU1NTZEQzg2Qjk0RTkxQ0Y5QjJFMjk0NEE4NUY3MTY5 MkRBMDk0RDIwHhcNMjUwNjE4MDI0NjAxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGY1NS01MDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubrrbhdRNZEiN2fuK77XLYOtNVg5xDpyu3XviZep59N3z96HT2rxkxrd9mUx pJl9sMZidIHad38OpFut5SOjWFoIl9dkHD8C1P5ziTx44FPptdqasEr90IePZF1R pScdl6oOIBgdEFQR5Un93Joz6ENQBbOfs3OdP2sqh/IqoNzwqMSMSKKWOX5EWYGL urzX4nleL/YsSvFIZoDR32DUpjHFjKB9o1osPo1/yVmRzU9evCP5l+VVt6jlI3BS 4hJhB/eXpmWAqts/VAlSwsr7Y5+6JM97GF6KNIBt+hG/xiMGdbsiIlRWczTMwQf7 zx0GIERDW/6AMQet5aM8DHONSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCzG4CNo uXdIOdRNNXuVL4quFQomMB8GA1UdIwQYMBaAFOVW3Ia5TpHPmy4pRKhfcWktoJTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjIwRC82MUFDQkY0Njkz QTkxMUVFOTE0OUUzNTRDNEY5QUUwMi81VmJjaHJsT2tjLWJMaWxFcUY5eGFTMmds TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVWYmNocmxPa2MtYkxpbEVxRjl4YVMyZ2xOSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIyMEQvNjFBQ0JGNDY5M0E5MTFFRTkxNDlFMzU0QzRGOUFFMDIvNEIzRTRBMDY5 M0RFMTFFRTgxRDEwNDVGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyiXGMA0GCSqGSIb3DQEBCwUAA4IBAQCesoOdg3FBPh6lF7QAp8vD zB0NdrcQlhFfAYKsm0msCW9SGkop5yPJ8Fc8GSLkd8zC26lP9hQ0za9tg6px76HE ipNCAjh6lfBVFnHdHPBAzdMPTYKpTcSE4hf6xDkSmGUngybp8A77UQBJxjpKQcj5 +XrV3SsywQ9TXCoMxVwDOHxw6UV3WSUeLus5D96/OCXpZd1RfZNXZ4e+7raz4Inw IeRhx06Pf7NnpDVFqtV/FGbMQDAyWRp58hedLAwGIe4FsKjwLV6uGWXHeQbjRrZX 5iTevAtCE/LFjdOIMYCFCnZ0Lwm9mwYHoXvGS7vKw+9EuxLGo123DJZnNKTaf4kj -----END CERTIFICATE-----Generated at Mon Mar 2 15:54:27 2026 by rpki-client