$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/5258D3D4BCE011EFAB38225AC4F9AE02.roa File: 5258D3D4BCE011EFAB38225AC4F9AE02.roa (raw, json) Hash identifier: PEH68zFCTxpFSTzGq90DnMAYUrlMtG9wBFuZ6IkSPHQ= Subject key identifier: D3:10:83:C2:D8:99:BA:9E:F7:93:6F:D6:06:67:29:98:6D:39:36:FE Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 0A7B Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/5258D3D4BCE011EFAB38225AC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:39:40 +0000 ROA not before: Wed 02 Jul 2025 20:29:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9269 IP address blocks: 138.19.0.0/16 maxlen: 24 165.84.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2683 (0xa7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Jul 2 20:29:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a45dbc-d061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:c2:52:a6:68:53:34:18:50:15:b6:83:3e: cc:40:a4:e3:e7:98:69:80:c3:3f:93:a5:73:bd:5d: d2:5a:0f:62:b3:9b:2f:58:34:cb:04:5f:c8:1f:17: 01:1d:98:97:30:99:9c:60:fe:d3:9b:8d:77:d1:20: cb:6a:5e:a2:77:59:a3:2c:4d:fe:7a:b8:f6:81:b7: e8:74:4c:c4:22:78:db:f8:a8:1e:08:87:d3:0f:12: 7c:bb:3c:35:30:b5:43:42:35:53:fc:61:41:b7:7a: 68:08:5f:94:7f:a6:9c:54:43:56:f2:d0:39:dd:42: b6:d6:47:e9:c5:dd:41:50:a7:27:81:e4:10:30:27: 1c:dd:15:34:b6:b8:30:f1:44:ef:5b:e2:e7:ac:21: 32:26:43:63:f1:35:a5:f7:c5:c4:7b:58:b3:0e:bb: ee:4b:50:35:ab:01:a2:34:ae:0b:39:12:bc:a3:1f: f1:d4:e9:58:c7:a8:e3:af:12:26:71:52:0a:f2:ef: 6c:23:80:00:f6:3a:9a:1a:eb:09:8c:2f:a6:bf:9c: 98:cc:35:74:64:9d:c3:ba:52:42:2e:45:09:21:65: 72:ff:fa:dd:5e:30:2f:83:c9:1e:87:c0:e3:73:cd: b8:b5:74:c6:05:16:a3:c2:fb:d5:07:3c:9c:ff:c9: bb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:10:83:C2:D8:99:BA:9E:F7:93:6F:D6:06:67:29:98:6D:39:36:FE X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/5258D3D4BCE011EFAB38225AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.19.0.0/16 165.84.128.0/18 Signature Algorithm: sha256WithRSAEncryption 4c:1f:f8:63:15:50:b5:40:ba:7a:94:af:da:a7:50:2e:c1:cd: db:73:c9:82:44:fe:c0:0e:3b:48:ec:0a:f7:ba:3f:d0:ee:b2: 84:c8:e9:f2:a1:6d:63:33:c5:e1:68:50:f8:02:9c:e1:9b:bc: 73:d0:21:2d:ed:f5:09:b1:7d:98:e9:9c:e1:be:c6:b6:28:7e: 24:7e:b2:f3:92:49:30:1c:f6:d6:8c:d1:b5:99:19:31:61:3d: f9:2a:ae:0d:e9:9b:57:59:62:f1:5a:b5:5f:d2:ed:ef:72:39: 3f:26:18:9e:39:af:ee:85:24:be:f2:ba:40:84:d8:f8:b0:c4: 40:41:9b:f9:6b:90:ec:6f:0d:42:a4:97:b9:9b:1d:58:da:55: 44:e3:3f:29:18:3b:28:70:a7:63:0a:60:e2:4e:cb:66:a3:f2: 50:13:84:b8:ea:91:6f:0d:16:76:d0:9d:87:f2:eb:8b:95:0e: 8b:cc:c1:ab:31:b1:18:69:23:e8:23:09:ad:62:6c:12:0f:b4: 33:b5:a7:74:be:7e:c0:8d:7d:ec:9e:5a:6c:d3:a6:24:49:a7: bf:09:4d:76:22:dc:f1:c5:50:5f:99:aa:6a:3b:c3:01:bc:15: 34:14:00:2e:4d:95:74:c7:88:d6:3b:b1:b2:0e:bd:6c:b3:bc: 79:bb:8e:e0 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgICCnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjUwNzAyMjAyOTM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWRiYy1kMDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrvCUqZoUzQYUBW2gz7MQKTj55hpgMM/k6VzvV3SWg9is5svWDTLBF/IHxcB HZiXMJmcYP7Tm4130SDLal6id1mjLE3+erj2gbfodEzEInjb+KgeCIfTDxJ8uzw1 MLVDQjVT/GFBt3poCF+Uf6acVENW8tA53UK21kfpxd1BUKcngeQQMCcc3RU0trgw 8UTvW+LnrCEyJkNj8TWl98XEe1izDrvuS1A1qwGiNK4LORK8ox/x1OlYx6jjrxIm cVIK8u9sI4AA9jqaGusJjC+mv5yYzDV0ZJ3DulJCLkUJIWVy//rdXjAvg8keh8Dj c824tXTGBRajwvvVBzyc/8m7tQIDAQABo4ICZTCCAmEwHQYDVR0OBBYEFNMQg8LY mbqe95Nv1gZnKZhtOTb+MB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvM0IxQ0RGQkM4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvNTI1OEQzRDRC Q0UwMTFFRkFCMzgyMjVBQzRGOUFFMDIucm9hMCQGCCsGAQUFBwEHAQH/BBUwEzAR BAIAATALAwMAihMDBAalVIAwDQYJKoZIhvcNAQELBQADggEBAEwf+GMVULVAunqU r9qnUC7BzdtzyYJE/sAOO0jsCve6P9DusoTI6fKhbWMzxeFoUPgCnOGbvHPQIS3t 9QmxfZjpnOG+xrYofiR+svOSSTAc9taM0bWZGTFhPfkqrg3pm1dZYvFatV/S7e9y OT8mGJ45r+6FJL7yukCE2PiwxEBBm/lrkOxvDUKkl7mbHVjaVUTjPykYOyhwp2MK YOJOy2aj8lAThLjqkW8NFnbQnYfy64uVDovMwasxsRhpI+gjCa1ibBIPtDO1p3S+ fsCNfeyeWmzTpiRJp78JTXYi3PHFUF+Zqmo7wwG8FTQUAC5NlXTHiNY7sbIOvWyz vHm7juA= -----END CERTIFICATE-----Generated at Mon Mar 2 06:18:06 2026 by rpki-client