$ rpki-client -vvf rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/38A2CBB88DEE11F0B9918D1FC4F9AE02.roa File: 38A2CBB88DEE11F0B9918D1FC4F9AE02.roa (raw, json) Hash identifier: jIvecyaNUKHM1Z6so6WtYRHY+CV5901LNEJc6GLn6Zk= Subject key identifier: C7:C1:39:1D:B9:B5:C7:15:3F:73:B0:1E:3E:8F:F5:EF:AC:32:33:94 Certificate issuer: /CN=A915CC16/serialNumber=C68AAE06C8A068F2221231332DCD4DF1AF2F0794 Certificate serial: 74 Authority key identifier: C6:8A:AE:06:C8:A0:68:F2:22:12:31:33:2D:CD:4D:F1:AF:2F:07:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xoquBsigaPIiEjEzLc1N8a8vB5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/38A2CBB88DEE11F0B9918D1FC4F9AE02.roa Signing time: Wed 08 Apr 2026 21:26:20 +0000 ROA not before: Wed 08 Apr 2026 21:26:19 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135092 IP address blocks: 36.255.52.0/22 maxlen: 24 103.209.20.0/22 maxlen: 24 2400:bce0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/xoquBsigaPIiEjEzLc1N8a8vB5Q.crl rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/xoquBsigaPIiEjEzLc1N8a8vB5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xoquBsigaPIiEjEzLc1N8a8vB5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CC16, serialNumber=C68AAE06C8A068F2221231332DCD4DF1AF2F0794 Validity Not Before: Apr 8 21:26:19 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d6c7fb-8b5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1b:b8:61:f1:1a:8d:ea:f8:81:20:b7:c7:88: 1f:ed:3e:7a:19:4a:3b:1d:22:04:6f:ba:1f:c2:d8: 21:23:76:c2:64:5a:5b:81:88:59:86:f1:49:fd:f0: 3c:06:c4:ce:49:27:58:c3:5c:57:b0:bf:ab:5e:d9: d3:5f:f8:f2:9c:88:67:99:c8:06:2a:0a:1a:52:e4: 20:ba:fc:8b:ed:6b:36:fe:f8:ff:1e:71:37:fc:22: 30:8c:fa:6c:6c:0b:23:2e:d8:bd:97:17:4d:70:c1: 90:09:ab:dd:c2:21:fe:66:86:78:57:a4:46:67:12: b6:3b:f9:83:33:d4:2b:70:56:1a:45:74:5d:35:bf: 35:f7:a2:89:5b:c1:b8:dc:30:25:a4:bf:45:8d:dd: a6:a5:be:ba:fa:c5:d0:71:ac:7f:32:d3:fb:b9:79: c7:0d:7f:46:22:c6:ca:7f:5e:a7:5a:94:e7:fb:72: 34:51:ca:de:52:f2:5d:b1:61:3b:dd:59:3c:16:90: a1:e0:ac:15:73:27:fe:e0:03:62:7e:00:1d:69:93: fd:e6:93:ae:1c:32:e2:e7:2f:e0:6b:76:d1:ac:12: a2:84:79:7f:51:70:6a:fc:6b:f8:20:b2:b5:c6:54: 64:4a:e6:21:6c:21:9f:cc:13:d0:ce:d7:5b:30:46: d5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C1:39:1D:B9:B5:C7:15:3F:73:B0:1E:3E:8F:F5:EF:AC:32:33:94 X509v3 Authority Key Identifier: keyid:C6:8A:AE:06:C8:A0:68:F2:22:12:31:33:2D:CD:4D:F1:AF:2F:07:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/xoquBsigaPIiEjEzLc1N8a8vB5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xoquBsigaPIiEjEzLc1N8a8vB5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/38A2CBB88DEE11F0B9918D1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.255.52.0/22 103.209.20.0/22 IPv6: 2400:bce0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:3e:3b:02:d8:19:a4:66:61:5d:05:24:3d:d9:b3:3e:16:a3: 03:4e:1a:8e:fd:08:6c:b3:92:29:41:1f:45:37:68:a4:77:30: 0f:d6:47:80:52:4a:2e:52:17:51:2b:58:df:c0:7a:a1:25:61: 19:36:e6:ee:78:9f:ea:e1:b4:32:fa:9b:13:62:32:f9:7e:e3: e9:39:be:70:0d:e8:e1:5c:30:70:70:65:90:22:b3:67:39:dd: e0:ec:23:4c:a1:8c:03:35:87:1f:c4:37:bb:5c:32:21:76:f2: 6c:9e:a7:27:11:f1:6d:4f:96:5b:7b:f4:c1:de:6a:a2:1e:98: 01:dc:c6:d5:ee:7a:43:70:fb:ca:66:9c:3d:8d:c3:e4:c2:c5: 12:bc:67:f4:b0:1c:be:ef:68:6d:7c:b3:16:f9:3a:b9:a8:4f: b5:fc:63:6a:07:e8:09:94:3e:43:51:26:ce:36:3e:1f:0a:d8: 91:c1:12:0f:6e:65:36:62:d8:c9:55:c1:45:69:68:b2:07:76: ca:44:96:fb:42:77:59:30:3b:f0:43:ac:48:ef:21:a7:40:4f: 4a:3e:78:1a:b8:d4:be:6b:75:94:aa:dc:69:34:fe:3e:8b:fa: 65:b5:77:6f:a0:f8:f2:15:10:8a:a5:86:8f:1d:7b:92:c1:b5: 0b:e8:10:1f -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Q0MxNjExMC8GA1UEBRMoQzY4QUFFMDZDOEEwNjhGMjIyMTIzMTMzMkRDRDRERjFB RjJGMDc5NDAeFw0yNjA0MDgyMTI2MTlaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZDZjN2ZiLThiNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcG7hh8RqN6viBILfHiB/tPnoZSjsdIgRvuh/C2CEjdsJkWluBiFmG8Un98DwG xM5JJ1jDXFewv6te2dNf+PKciGeZyAYqChpS5CC6/Ivtazb++P8ecTf8IjCM+mxs CyMu2L2XF01wwZAJq93CIf5mhnhXpEZnErY7+YMz1CtwVhpFdF01vzX3oolbwbjc MCWkv0WN3aalvrr6xdBxrH8y0/u5eccNf0Yixsp/XqdalOf7cjRRyt5S8l2xYTvd WTwWkKHgrBVzJ/7gA2J+AB1pk/3mk64cMuLnL+BrdtGsEqKEeX9RcGr8a/ggsrXG VGRK5iFsIZ/ME9DO11swRtX5AgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUx8E5Hbm1 xxU/c7AePo/176wyM5QwHwYDVR0jBBgwFoAUxoquBsigaPIiEjEzLc1N8a8vB5Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDQzE2LzI0RDM5RDYyRjA4 MDExRUFCNUJCMTAzN0M0RjlBRTAyL3hvcXVCc2lnYVBJaUVqRXpMYzFOOGE4dkI1 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveG9xdUJzaWdhUElpRWpFekxjMU44YTh2QjVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0MxNi8yNEQzOUQ2MkYwODAxMUVBQjVCQjEwMzdDNEY5QUUwMi8zOEEyQ0JCODhE RUUxMUYwQjk5MThEMUZDNEY5QUUwMi5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIk/zQDBAJn0RQwDQQCAAIwBwMFACQAvOAwDQYJKoZIhvcNAQELBQAD ggEBAG0+OwLYGaRmYV0FJD3Zsz4WowNOGo79CGyzkilBH0U3aKR3MA/WR4BSSi5S F1ErWN/AeqElYRk25u54n+rhtDL6mxNiMvl+4+k5vnAN6OFcMHBwZZAis2c53eDs I0yhjAM1hx/EN7tcMiF28myepycR8W1Pllt79MHeaqIemAHcxtXuekNw+8pmnD2N w+TCxRK8Z/SwHL7vaG18sxb5OrmoT7X8Y2oH6AmUPkNRJs42Ph8K2JHBEg9uZTZi 2MlVwUVpaLIHdspElvtCd1kwO/BDrEjvIadAT0o+eBq41L5rdZSq3Gk0/j6L+mW1 d2+g+PIVEIqlho8de5LBtQvoEB8= -----END CERTIFICATE-----Generated at Sat Apr 18 01:31:14 2026 by rpki-client