$ rpki-client -vvf rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/38A2CBB88DEE11F0B9918D1FC4F9AE02.roa File: 38A2CBB88DEE11F0B9918D1FC4F9AE02.roa (raw, json) Hash identifier: xgSF3MSg+ECbX1HYJEOkVDxrn/8L3wJeiao34PywgRk= Subject key identifier: 3E:49:F9:71:93:0F:4F:82:7C:CA:CD:1B:F5:70:32:F9:7F:11:BF:F4 Certificate issuer: /CN=A915CC16/serialNumber=C68AAE06C8A068F2221231332DCD4DF1AF2F0794 Certificate serial: 5C Authority key identifier: C6:8A:AE:06:C8:A0:68:F2:22:12:31:33:2D:CD:4D:F1:AF:2F:07:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xoquBsigaPIiEjEzLc1N8a8vB5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/38A2CBB88DEE11F0B9918D1FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:57:02 +0000 ROA not before: Wed 10 Sep 2025 02:31:14 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135092 IP address blocks: 36.255.52.0/22 maxlen: 24 103.209.20.0/22 maxlen: 24 2400:bce0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/xoquBsigaPIiEjEzLc1N8a8vB5Q.crl rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/xoquBsigaPIiEjEzLc1N8a8vB5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xoquBsigaPIiEjEzLc1N8a8vB5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CC16, serialNumber=C68AAE06C8A068F2221231332DCD4DF1AF2F0794 Validity Not Before: Sep 10 02:31:14 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48bfe-8060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d7:62:f8:a8:ef:ca:3f:ef:37:23:be:7d:6b: 89:67:ce:06:cd:d7:6b:04:8e:11:50:95:fd:06:4c: ab:3c:70:89:95:ea:1c:02:c1:81:07:c6:ef:f2:21: 30:b3:cb:84:52:be:57:02:ac:a0:de:33:bd:ce:aa: ad:c1:17:1d:75:a3:81:45:60:41:31:7a:18:f7:21: e8:88:f7:b1:bb:75:f8:46:3f:a1:aa:8f:48:88:2e: 88:5c:25:ee:83:a3:aa:76:54:f5:81:8e:4f:99:51: 48:e7:6f:00:65:7e:ec:d2:d9:1d:e3:9e:f4:53:12: 0e:e3:e1:24:b1:83:9e:76:00:d3:89:d5:7a:f8:80: 30:2f:c3:8e:68:56:1f:33:01:de:32:0c:b9:e2:be: ed:85:29:07:93:dc:af:6e:a7:bd:93:3e:8c:b3:24: b2:74:ae:97:bb:f4:90:e6:1d:a9:40:64:ab:2a:cd: 65:8a:97:1f:17:c5:bd:fc:c4:7b:bf:d0:97:f0:23: 2b:03:f9:fb:b4:7b:ef:b6:4d:ff:01:99:83:65:51: ac:29:4d:ca:46:ae:5d:13:b1:fc:ed:2a:15:bd:a6: 9b:25:f4:39:ca:2e:e7:cc:0f:03:23:83:60:3e:ae: cf:ac:d2:45:4a:7e:cf:15:9d:ef:cf:1e:43:09:45: cc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:49:F9:71:93:0F:4F:82:7C:CA:CD:1B:F5:70:32:F9:7F:11:BF:F4 X509v3 Authority Key Identifier: keyid:C6:8A:AE:06:C8:A0:68:F2:22:12:31:33:2D:CD:4D:F1:AF:2F:07:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/xoquBsigaPIiEjEzLc1N8a8vB5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xoquBsigaPIiEjEzLc1N8a8vB5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/38A2CBB88DEE11F0B9918D1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.255.52.0/22 103.209.20.0/22 IPv6: 2400:bce0::/32 Signature Algorithm: sha256WithRSAEncryption 2a:38:cd:e8:0b:4d:cd:05:64:a4:2a:df:78:be:3a:0d:f0:3c: 07:a5:d0:32:73:23:b4:27:93:93:db:0b:df:da:80:d3:5b:6d: f8:46:77:36:65:11:8b:7b:cf:a8:b5:7a:2e:42:c9:8b:e0:e4: 1e:6e:31:5a:de:da:19:fd:92:67:ae:de:90:fc:4f:a0:c8:08: c5:43:76:7c:f5:99:c6:11:f2:37:2e:24:88:a4:96:81:f6:56: f8:06:43:5f:29:75:37:a8:82:d0:be:79:b6:11:f7:22:87:d2: a7:7b:8f:4b:b2:bb:00:d1:e0:57:b9:d3:fd:9e:a5:97:e4:fc: cd:dc:53:9c:a0:c0:0a:0b:cb:e9:c5:04:d7:fd:a4:b2:15:e9: 09:97:24:7e:b0:57:03:1f:f6:b1:6d:ac:07:d3:d1:8c:b3:80: de:7b:3b:3d:23:75:05:36:5b:02:e3:51:d2:98:2d:2f:25:72: b9:24:61:41:a0:73:a7:1b:dd:b2:fc:85:ed:33:43:ac:5d:c1: 85:71:21:15:30:2b:fc:4e:a7:4b:17:e9:c5:ef:ab:99:ad:fb: e4:9d:db:64:1b:8d:3e:39:bc:07:c0:ae:9a:4a:43:f0:67:4e: 8a:a4:67:d8:db:4a:d1:c8:e9:1e:f5:bd:56:1a:ec:70:19:d8: 55:28:3f:74 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Q0MxNjExMC8GA1UEBRMoQzY4QUFFMDZDOEEwNjhGMjIyMTIzMTMzMkRDRDRERjFB RjJGMDc5NDAeFw0yNTA5MTAwMjMxMTRaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ4YmZlLTgwNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv12L4qO/KP+83I759a4lnzgbN12sEjhFQlf0GTKs8cImV6hwCwYEHxu/yITCz y4RSvlcCrKDeM73Oqq3BFx11o4FFYEExehj3IeiI97G7dfhGP6Gqj0iILohcJe6D o6p2VPWBjk+ZUUjnbwBlfuzS2R3jnvRTEg7j4SSxg552ANOJ1Xr4gDAvw45oVh8z Ad4yDLnivu2FKQeT3K9up72TPoyzJLJ0rpe79JDmHalAZKsqzWWKlx8Xxb38xHu/ 0JfwIysD+fu0e++2Tf8BmYNlUawpTcpGrl0TsfztKhW9ppsl9DnKLufMDwMjg2A+ rs+s0kVKfs8Vne/PHkMJRcx5AgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUPkn5cZMP T4J8ys0b9XAy+X8Rv/QwHwYDVR0jBBgwFoAUxoquBsigaPIiEjEzLc1N8a8vB5Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDQzE2LzI0RDM5RDYyRjA4 MDExRUFCNUJCMTAzN0M0RjlBRTAyL3hvcXVCc2lnYVBJaUVqRXpMYzFOOGE4dkI1 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveG9xdUJzaWdhUElpRWpFekxjMU44YTh2QjVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0MxNi8yNEQzOUQ2MkYwODAxMUVBQjVCQjEwMzdDNEY5QUUwMi8zOEEyQ0JCODhE RUUxMUYwQjk5MThEMUZDNEY5QUUwMi5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIk/zQDBAJn0RQwDQQCAAIwBwMFACQAvOAwDQYJKoZIhvcNAQELBQAD ggEBACo4zegLTc0FZKQq33i+Og3wPAel0DJzI7Qnk5PbC9/agNNbbfhGdzZlEYt7 z6i1ei5CyYvg5B5uMVre2hn9kmeu3pD8T6DICMVDdnz1mcYR8jcuJIikloH2VvgG Q18pdTeogtC+ebYR9yKH0qd7j0uyuwDR4Fe50/2epZfk/M3cU5ygwAoLy+nFBNf9 pLIV6QmXJH6wVwMf9rFtrAfT0YyzgN57Oz0jdQU2WwLjUdKYLS8lcrkkYUGgc6cb 3bL8he0zQ6xdwYVxIRUwK/xOp0sX6cXvq5mt++Sd22QbjT45vAfArppKQ/BnToqk Z9jbStHI6R71vVYa7HAZ2FUoP3Q= -----END CERTIFICATE-----Generated at Mon Mar 2 02:36:20 2026 by rpki-client