$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/C85D80CE43F611EF84151D6FC4F9AE02.roa File: C85D80CE43F611EF84151D6FC4F9AE02.roa (raw, json) Hash identifier: foxTG8mq8kcm/d5eCXjWBJn4Sw2IsdHZd1ZWxbUvu/Y= Subject key identifier: 4B:78:D2:AC:5C:67:CA:6E:F3:97:E5:92:17:3D:B5:FF:11:62:76:0A Certificate issuer: /CN=A91C0D37/serialNumber=CF41CDAF41C5700129064CEF284003BEF0B9BFC2 Certificate serial: 01D9 Authority key identifier: CF:41:CD:AF:41:C5:70:01:29:06:4C:EF:28:40:03:BE:F0:B9:BF:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/C85D80CE43F611EF84151D6FC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:02:56 +0000 ROA not before: Fri 09 Jan 2026 03:22:24 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 18119 IP address blocks: 202.36.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.crl rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0D37, serialNumber=CF41CDAF41C5700129064CEF284003BEF0B9BFC2 Validity Not Before: Jan 9 03:22:24 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43900-3a84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c8:e8:14:72:a4:fc:cb:1a:02:68:5d:9d:4f: 6c:8c:40:56:c5:5e:bd:54:1a:4f:c7:21:ab:77:29: c8:55:4e:cf:87:ee:62:06:aa:41:c9:c3:3e:c1:d9: 5f:5f:50:10:4c:b9:7b:8c:3b:c8:d8:14:d2:17:05: 19:b1:d9:a3:57:d7:50:75:90:c2:46:c2:bd:e9:ea: c4:33:7e:1d:40:7e:c4:5f:9a:08:4d:73:eb:cf:39: f7:e0:d7:c5:c1:81:9e:38:7f:42:ec:8c:07:9b:cc: 9e:08:0c:45:a3:6e:12:6e:69:06:84:c2:a4:6d:6c: 6e:be:4c:d5:b7:88:73:c5:00:a0:a1:1c:1b:93:bf: f4:e1:1b:c1:29:e8:13:cf:20:6f:54:92:8b:77:83: df:96:d4:17:c6:5e:c2:61:2d:a8:ec:92:92:cd:90: d5:7c:c0:95:2c:19:95:cf:fc:8a:b3:ba:78:5e:cc: ab:64:27:33:6e:e3:9d:1d:bd:1b:c4:ad:12:50:9f: 4c:b9:f7:9c:45:26:07:da:59:49:25:4c:ae:f5:04: a7:a5:a1:2d:36:6f:44:e1:ee:2c:aa:58:e2:58:fd: 4b:28:1c:d1:e9:52:be:0c:0e:74:74:26:6c:36:99: 95:b5:fe:9a:18:b3:38:ee:8e:07:f9:41:d3:9f:24: 87:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:78:D2:AC:5C:67:CA:6E:F3:97:E5:92:17:3D:B5:FF:11:62:76:0A X509v3 Authority Key Identifier: keyid:CF:41:CD:AF:41:C5:70:01:29:06:4C:EF:28:40:03:BE:F0:B9:BF:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/C85D80CE43F611EF84151D6FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.36.44.0/24 Signature Algorithm: sha256WithRSAEncryption 01:f4:c0:5c:a4:dd:2f:7b:29:da:b2:ee:0a:87:6d:a2:97:bb: 2b:bd:17:29:5a:11:26:17:a5:b8:68:98:32:69:2a:a9:81:ef: 34:7a:50:23:e6:4e:51:70:1e:6c:c6:77:64:37:ff:d5:b9:c6: 5a:95:92:c1:a4:3f:d3:4a:ae:33:2b:ed:4e:15:ff:fc:4d:35: 9d:12:8b:09:65:a3:b2:8d:8f:df:42:fd:09:c7:aa:0a:a3:0d: 83:05:05:46:be:4b:ec:cf:ad:01:51:f5:91:63:a9:c4:00:b5: 49:b2:c3:01:b0:aa:0a:ff:2a:a0:b8:86:aa:e9:72:a6:c8:cb: 3a:ef:9b:2a:32:d8:a1:d2:44:a8:63:ad:86:e5:85:fe:41:28: 7e:45:ff:2e:5b:33:17:db:26:2c:24:58:b5:a7:51:5c:82:fd: c2:5d:ae:21:5f:ea:ee:44:13:64:c5:aa:43:6a:2e:5c:aa:0d: af:bd:8d:e5:01:b9:eb:45:61:25:cb:00:c8:8a:b6:43:64:d8: c1:d6:71:12:16:aa:df:1b:c9:3d:95:3b:ce:dd:73:68:5f:3f: 91:e6:2b:6f:3b:67:e0:65:5a:a2:f3:d3:cb:b8:1d:16:48:0d: 33:63:ce:1b:6e:af:9d:6f:f7:00:e1:71:e8:6f:3b:99:90:c8: 5c:ae:01:93 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBEMzcxMTAvBgNVBAUTKENGNDFDREFGNDFDNTcwMDEyOTA2NENFRjI4NDAwM0JF RjBCOUJGQzIwHhcNMjYwMTA5MDMyMjI0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzkwMC0zYTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8joFHKk/MsaAmhdnU9sjEBWxV69VBpPxyGrdynIVU7Ph+5iBqpBycM+wdlf X1AQTLl7jDvI2BTSFwUZsdmjV9dQdZDCRsK96erEM34dQH7EX5oITXPrzzn34NfF wYGeOH9C7IwHm8yeCAxFo24SbmkGhMKkbWxuvkzVt4hzxQCgoRwbk7/04RvBKegT zyBvVJKLd4PfltQXxl7CYS2o7JKSzZDVfMCVLBmVz/yKs7p4XsyrZCczbuOdHb0b xK0SUJ9MufecRSYH2llJJUyu9QSnpaEtNm9E4e4sqljiWP1LKBzR6VK+DA50dCZs NpmVtf6aGLM47o4H+UHTnySHXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEt40qxc Z8pu85flkhc9tf8RYnYKMB8GA1UdIwQYMBaAFM9Bza9BxXABKQZM7yhAA77wub/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEQzNy8wRThCQ0IzODUz NUIxMUVFOUJGMjBBNkJDNEY5QUUwMi96MEhOcjBIRmNBRXBCa3p2S0VBRHZ2QzV2 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3owSE5yMEhGY0FFcEJrenZLRUFEdnZDNXY4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBEMzcvMEU4QkNCMzg1MzVCMTFFRTlCRjIwQTZCQzRGOUFFMDIvQzg1RDgwQ0U0 M0Y2MTFFRjg0MTUxRDZGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyiQsMA0GCSqGSIb3DQEBCwUAA4IBAQAB9MBcpN0veynasu4Kh22i l7srvRcpWhEmF6W4aJgyaSqpge80elAj5k5RcB5sxndkN//VucZalZLBpD/TSq4z K+1OFf/8TTWdEosJZaOyjY/fQv0Jx6oKow2DBQVGvkvsz60BUfWRY6nEALVJssMB sKoK/yqguIaq6XKmyMs675sqMtih0kSoY62G5YX+QSh+Rf8uWzMX2yYsJFi1p1Fc gv3CXa4hX+ruRBNkxapDai5cqg2vvY3lAbnrRWElywDIirZDZNjB1nESFqrfG8k9 lTvO3XNoXz+R5itvO2fgZVqi89PLuB0WSA0zY84bbq+db/cA4XHobzuZkMhcrgGT -----END CERTIFICATE-----Generated at Mon Mar 2 09:15:40 2026 by rpki-client