$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/367E2CC86E2F11EE9F5DEF32C4F9AE02.roa File: 367E2CC86E2F11EE9F5DEF32C4F9AE02.roa (raw, json) Hash identifier: ZY1siwjbqnQaZCIx96bLhb0d0HA6YypX15NteDeXL0o= Subject key identifier: DD:74:52:34:F4:F5:C6:B0:2A:E5:73:C0:9F:4F:8A:9F:4E:55:4D:29 Certificate issuer: /CN=A91DB7E9/serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Certificate serial: 01DB Authority key identifier: DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/367E2CC86E2F11EE9F5DEF32C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:09:22 +0000 ROA not before: Wed 21 Jan 2026 03:22:38 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 23878 IP address blocks: 202.36.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:56:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Validity Not Before: Jan 21 03:22:38 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a456a2-0e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:e9:78:5e:ab:b4:b8:f1:32:ca:e3:7a:15:d7: bb:8e:a4:81:55:f0:0e:90:7b:c9:b4:8d:c9:7d:99: 40:e2:be:bb:d1:5c:b7:b4:82:90:94:e7:bb:83:60: 53:9a:58:3a:29:94:e6:60:1d:0a:9f:34:39:1a:f0: d3:f4:1f:23:25:21:9e:29:ba:38:57:ed:f9:51:20: a9:76:38:b5:58:7a:d0:20:7b:ab:38:0c:ed:86:1b: c7:9a:fb:3a:d8:4f:5a:e7:ff:96:f9:34:51:4c:51: 8a:66:9b:00:29:69:b6:52:c9:8e:5f:8f:cc:ff:0c: 62:2b:8d:97:79:2b:c7:7d:3f:ea:fd:bb:c7:b8:dd: 1e:7b:c2:d5:2f:4e:b6:61:d9:5e:25:88:16:a4:85: f1:19:4b:85:58:63:74:9b:48:43:1a:bb:ba:d8:f9: a7:df:c0:50:5c:66:13:1f:a5:9b:69:8c:e9:38:d5: e1:7f:fa:4d:e4:d4:d0:08:6d:a0:15:b4:36:9e:22: cd:a9:7c:ec:7e:42:b7:7e:98:a8:05:cb:98:ef:09: 1f:c8:e8:45:21:fe:71:6f:53:4b:b8:73:96:9f:13: 69:e2:f2:2e:f2:d5:44:85:0d:bf:82:66:ff:dd:cc: a4:af:e6:f0:d7:a8:28:d4:f5:72:9f:a2:19:8a:06: 6d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:74:52:34:F4:F5:C6:B0:2A:E5:73:C0:9F:4F:8A:9F:4E:55:4D:29 X509v3 Authority Key Identifier: keyid:DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/367E2CC86E2F11EE9F5DEF32C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.36.224.0/23 Signature Algorithm: sha256WithRSAEncryption ae:04:ad:f1:b1:c0:a9:6f:e2:83:ce:79:2e:e7:59:3c:d4:53: ee:0b:e8:d3:65:a6:72:b2:08:f0:64:b2:71:06:42:ba:37:b5: 29:b0:11:5e:6e:d8:f0:50:fc:ac:58:6b:4f:f0:21:21:f3:a6: 99:6f:bd:37:d1:8e:05:b9:20:6d:cd:bb:c3:9f:fc:56:86:11: 6d:dc:75:ee:6d:e2:10:6c:38:95:71:05:1a:20:b3:bb:9a:b5: b0:f4:b0:8b:89:80:d5:31:95:60:bc:1e:df:f5:21:49:17:63: 08:ab:a2:68:5e:b7:6a:78:e1:04:53:d2:cc:b0:49:eb:3d:b7: 5c:d4:61:1c:0a:37:e9:0c:ab:6a:e0:76:13:68:99:1a:f7:e6: b9:fd:3c:07:5d:e1:69:ac:8b:a1:96:02:f5:c8:1c:cd:af:ef: 8d:f9:47:57:e9:65:e3:a5:4a:99:c7:f6:52:40:8f:12:32:2a: 16:c4:d4:50:8f:76:31:10:50:dd:80:3b:46:cb:23:a5:e5:b9: e7:82:d1:90:0e:7e:4e:d9:84:f0:eb:bd:67:62:ba:dc:c9:11: ec:43:d6:f3:48:d8:0c:9b:83:45:22:58:52:60:1e:6b:94:7f: c3:83:c0:e2:cb:3f:77:7b:4d:23:24:0b:76:ce:bb:5b:c5:b8: ba:ec:22:1f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKERGNTE0NzBCMTVFOEMxNDFBRjJGQTg0NkEyOEMwM0Iz ODU5MUJBQjQwHhcNMjYwMTIxMDMyMjM4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTZhMi0wZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi+l4Xqu0uPEyyuN6Fde7jqSBVfAOkHvJtI3JfZlA4r670Vy3tIKQlOe7g2BT mlg6KZTmYB0KnzQ5GvDT9B8jJSGeKbo4V+35USCpdji1WHrQIHurOAzthhvHmvs6 2E9a5/+W+TRRTFGKZpsAKWm2UsmOX4/M/wxiK42XeSvHfT/q/bvHuN0ee8LVL062 YdleJYgWpIXxGUuFWGN0m0hDGru62Pmn38BQXGYTH6WbaYzpONXhf/pN5NTQCG2g FbQ2niLNqXzsfkK3fpioBcuY7wkfyOhFIf5xb1NLuHOWnxNp4vIu8tVEhQ2/gmb/ 3cykr+bw16go1PVyn6IZigZt2wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN10UjT0 9cawKuVzwJ9Pip9OVU0pMB8GA1UdIwQYMBaAFN9RRwsV6MFBry+oRqKMA7OFkbq0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FOTlFN0Y1MjZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi8zMUZIQ3hYb3dVR3ZMNmhHb293RHM0V1J1 clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMxRkhDeFhvd1VHdkw2aEdvb3dEczRXUnVyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI3RTkvRTk5RTdGNTI2RTJFMTFFRTg1RDkyRDMyQzRGOUFFMDIvMzY3RTJDQzg2 RTJGMTFFRTlGNURFRjMyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByiTgMA0GCSqGSIb3DQEBCwUAA4IBAQCuBK3xscCpb+KDznku51k8 1FPuC+jTZaZysgjwZLJxBkK6N7UpsBFebtjwUPysWGtP8CEh86aZb7030Y4FuSBt zbvDn/xWhhFt3HXubeIQbDiVcQUaILO7mrWw9LCLiYDVMZVgvB7f9SFJF2MIq6Jo XrdqeOEEU9LMsEnrPbdc1GEcCjfpDKtq4HYTaJka9+a5/TwHXeFprIuhlgL1yBzN r++N+UdX6WXjpUqZx/ZSQI8SMioWxNRQj3YxEFDdgDtGyyOl5bnngtGQDn5O2YTw 671nYrrcyRHsQ9bzSNgMm4NFIlhSYB5rlH/Dg8Diyz93e00jJAt2zrtbxbi67CIf -----END CERTIFICATE-----Generated at Mon Mar 2 07:21:29 2026 by rpki-client