$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/09E2DC32B12B11E59337F35AC4F9AE02.roa File: 09E2DC32B12B11E59337F35AC4F9AE02.roa (raw, json) Hash identifier: 9fz8ROlxgIz9BeZ3bDwbubljhDBRymKASujcQJN55ag= Subject key identifier: B8:01:B2:C9:A4:28:70:17:4E:11:2C:60:56:EA:1B:94:A5:4C:AB:97 Certificate issuer: /CN=A91AE85E/serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Certificate serial: 357B Authority key identifier: 70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/09E2DC32B12B11E59337F35AC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:25:38 +0000 ROA not before: Sat 08 Nov 2025 14:30:07 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 23905 IP address blocks: 202.36.141.0/24 maxlen: 24 2404:2000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13691 (0x357b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E, serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Validity Not Before: Nov 8 14:30:07 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a45a72-6513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:42:9d:55:bc:b1:fb:24:f7:44:a3:28:02:c0: f4:62:1d:c8:20:6f:df:95:da:d8:ea:e3:eb:57:03: 16:05:ce:7a:83:24:5e:b3:62:7e:27:6e:98:c6:e4: 6a:43:ad:d2:3c:b7:f3:9c:b8:1f:e8:65:23:21:62: 95:1b:7f:d1:28:d8:09:9f:16:44:1a:a9:88:65:1e: 5d:56:16:50:95:5b:42:79:bc:3c:1f:2e:eb:f7:9f: 5a:e6:44:1e:c3:4e:dd:ee:ee:8b:38:66:7c:ef:d5: d8:86:3a:fc:1d:be:8b:7d:61:38:8a:cf:21:42:83: 4a:ff:f7:5e:2e:36:a0:12:b1:d7:59:34:82:31:33: 4a:71:8f:3f:af:bc:30:77:63:a2:44:2c:36:99:b6: c1:3e:18:f6:77:2e:f5:3a:1f:c3:f5:89:14:fd:b8: 42:08:b0:3c:bd:a0:75:b0:83:45:84:b7:19:3b:40: 7d:bc:b4:6c:76:5e:e0:87:03:4e:88:56:50:d5:77: 72:d3:ae:95:e3:58:8d:fd:a0:fc:24:1d:88:23:42: be:b0:74:b7:35:da:ef:bd:ef:52:9a:0f:50:4b:66: 86:1d:d0:e9:54:f5:41:19:7d:d2:50:4c:d2:4a:38: 5f:5a:bf:eb:dd:97:9a:0c:e4:81:47:e8:52:12:92: 03:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:01:B2:C9:A4:28:70:17:4E:11:2C:60:56:EA:1B:94:A5:4C:AB:97 X509v3 Authority Key Identifier: keyid:70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/09E2DC32B12B11E59337F35AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.36.141.0/24 IPv6: 2404:2000::/32 Signature Algorithm: sha256WithRSAEncryption 31:74:c6:e3:f4:27:d1:8e:41:32:d5:5d:e0:bf:99:b3:85:88: 4a:fd:f5:e1:d9:b3:9b:f6:bc:ca:cc:a6:3a:d7:1c:e3:cf:02: cb:32:a9:ee:c2:d3:5a:44:fc:7c:de:b3:8b:ad:5f:bf:48:e9: 69:91:f9:a7:c0:06:5b:81:b5:c5:45:bd:08:46:8b:6f:e5:23: e1:f6:e6:1f:c0:83:da:32:6d:9f:af:34:2e:84:54:22:71:b2: 0b:79:0e:5c:18:b8:28:b4:86:81:59:c8:bc:3e:36:26:ff:b2: 60:81:11:7b:f0:a8:57:18:8c:f4:d2:6e:07:8d:a1:74:0f:aa: 58:72:06:f1:44:eb:3b:51:50:4d:f9:8d:0f:61:b4:29:f7:da: 2f:51:1e:5b:51:ad:8d:ae:7d:28:3b:8d:bf:42:e5:cc:9a:06: 8a:b0:37:58:2e:1e:8d:f8:04:8b:89:cc:b5:fa:0e:15:36:3b: 61:69:bb:64:69:5b:b4:0a:e4:5a:6c:d2:58:9c:5f:f4:22:06: 0e:d0:25:e8:0d:60:fe:9c:36:e7:08:a5:14:1a:a9:59:1b:c5: bb:04:e0:30:3f:76:e9:1f:f6:4a:bd:e0:ed:ef:c7:5d:9d:3b: ef:f6:be:67:02:43:33:fa:ae:36:f9:0d:65:e9:23:99:82:ba: 11:fe:e1:b5 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICNXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDcwOTc2NUM3RDREMzMxRjRDMzZBQzZCRTM0N0ZBNjZB MUYwMjM0OTAwHhcNMjUxMTA4MTQzMDA3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWE3Mi02NTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEKdVbyx+yT3RKMoAsD0Yh3IIG/fldrY6uPrVwMWBc56gyRes2J+J26YxuRq Q63SPLfznLgf6GUjIWKVG3/RKNgJnxZEGqmIZR5dVhZQlVtCebw8Hy7r959a5kQe w07d7u6LOGZ879XYhjr8Hb6LfWE4is8hQoNK//deLjagErHXWTSCMTNKcY8/r7ww d2OiRCw2mbbBPhj2dy71Oh/D9YkU/bhCCLA8vaB1sINFhLcZO0B9vLRsdl7ghwNO iFZQ1Xdy066V41iN/aD8JB2II0K+sHS3Ndrvve9Smg9QS2aGHdDpVPVBGX3SUEzS SjhfWr/r3ZeaDOSBR+hSEpID9wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLgBssmk KHAXThEsYFbqG5SlTKuXMB8GA1UdIwQYMBaAFHCXZcfU0zH0w2rGvjR/pmofAjSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8wQkVEMzUyNjFE NkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1mVERhc2EtTkgtbWFoOENO SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKZGx4OVRUTWZURGFzYS1OSC1tYWg4Q05KQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU4NUUvMEJFRDM1MjYxRDZFMTFFMkIwNEE2MUFGMDhCMDJDRDIvMDlFMkRDMzJC MTJCMTFFNTkzMzdGMzVBQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAyiSNMA0EAgACMAcDBQAkBCAAMA0GCSqGSIb3DQEBCwUAA4IBAQAx dMbj9CfRjkEy1V3gv5mzhYhK/fXh2bOb9rzKzKY61xzjzwLLMqnuwtNaRPx83rOL rV+/SOlpkfmnwAZbgbXFRb0IRotv5SPh9uYfwIPaMm2frzQuhFQicbILeQ5cGLgo tIaBWci8PjYm/7JggRF78KhXGIz00m4HjaF0D6pYcgbxROs7UVBN+Y0PYbQp99ov UR5bUa2Nrn0oO42/QuXMmgaKsDdYLh6N+ASLicy1+g4VNjthabtkaVu0CuRabNJY nF/0IgYO0CXoDWD+nDbnCKUUGqlZG8W7BOAwP3bpH/ZKveDt78ddnTvv9r5nAkMz +q42+Q1l6SOZgroR/uG1 -----END CERTIFICATE-----Generated at Mon Mar 2 19:08:58 2026 by rpki-client