$ rpki-client -vvf rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/38A2CBB88DEE11F0B9918D1FC4F9AE02.roa File: 38A2CBB88DEE11F0B9918D1FC4F9AE02.roa (raw, json) Hash identifier: z3byFN5IfEv+WZ84P4Hf1mQWrRSXQ5bot07gaZA1QjA= Subject key identifier: 04:84:34:71:71:9E:30:20:A5:23:C4:A5:56:60:92:86:0C:0D:FD:24 Certificate issuer: /CN=A915CC16/serialNumber=C68AAE06C8A068F2221231332DCD4DF1AF2F0794 Certificate serial: 02 Authority key identifier: C6:8A:AE:06:C8:A0:68:F2:22:12:31:33:2D:CD:4D:F1:AF:2F:07:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xoquBsigaPIiEjEzLc1N8a8vB5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/38A2CBB88DEE11F0B9918D1FC4F9AE02.roa Signing time: Wed 10 Sep 2025 02:31:14 +0000 ROA not before: Wed 10 Sep 2025 02:31:14 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135092 IP address blocks: 36.255.52.0/22 maxlen: 24 103.209.20.0/22 maxlen: 24 2400:bce0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/xoquBsigaPIiEjEzLc1N8a8vB5Q.crl rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/xoquBsigaPIiEjEzLc1N8a8vB5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xoquBsigaPIiEjEzLc1N8a8vB5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CC16, serialNumber=C68AAE06C8A068F2221231332DCD4DF1AF2F0794 Validity Not Before: Sep 10 02:31:14 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68c0e2f2-3ac6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:db:ba:b9:32:67:f8:95:72:03:60:1c:06:ba: bd:c7:e6:64:17:c2:83:e9:e2:2d:81:d0:d8:26:19: 77:05:66:28:49:64:4a:65:b4:17:80:c0:51:85:0b: af:e6:c3:84:35:84:79:40:03:73:eb:b0:d8:c2:47: e7:65:ac:7d:34:f9:68:ae:fd:bc:c1:1b:9b:1c:fa: d1:eb:40:39:07:55:1b:fd:70:0f:51:4a:b6:a3:3c: fe:9b:a6:91:52:cd:c2:40:96:65:18:1a:a7:9e:92: 8b:77:4d:c4:ed:87:93:f8:6e:83:ca:c4:bc:6c:71: c8:04:06:46:34:76:5d:ca:c3:8b:c4:c8:29:78:1e: 03:8f:a1:75:85:a6:7d:a1:15:3b:1d:cd:9b:ae:7b: ad:31:b0:84:6a:1f:fa:a4:7f:41:61:ca:1e:bc:91: 94:45:a0:17:b4:80:8a:df:0e:5a:fe:6a:72:03:25: 01:b1:cd:43:b9:3c:55:02:a8:16:b5:79:bc:b5:da: a5:b3:ff:48:08:43:8e:42:36:b1:01:3b:cc:59:59: 07:42:f3:1c:5b:eb:50:3a:79:74:a9:7c:db:69:e8: 52:d5:8e:ad:e6:b6:e3:ea:7c:11:4b:50:d4:c8:01: 02:77:28:a7:fc:e2:94:66:e0:f3:62:52:04:b3:92: 1d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:84:34:71:71:9E:30:20:A5:23:C4:A5:56:60:92:86:0C:0D:FD:24 X509v3 Authority Key Identifier: keyid:C6:8A:AE:06:C8:A0:68:F2:22:12:31:33:2D:CD:4D:F1:AF:2F:07:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/xoquBsigaPIiEjEzLc1N8a8vB5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xoquBsigaPIiEjEzLc1N8a8vB5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/38A2CBB88DEE11F0B9918D1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.52.0/22 103.209.20.0/22 IPv6: 2400:bce0::/32 Signature Algorithm: sha256WithRSAEncryption 74:bf:97:76:0b:e7:57:ff:e4:dc:4f:75:41:cb:34:65:14:0e: df:fa:59:da:5a:1a:aa:95:5d:01:68:8d:df:1a:77:e8:e1:dd: ec:2f:8a:f9:6e:45:cc:cb:57:39:93:f6:b9:29:5d:65:dc:7f: de:b7:96:bb:6f:2f:f6:11:91:a3:c2:9c:06:ea:fa:b7:7d:73: 3e:77:45:28:83:15:6e:e8:d9:fa:3b:c1:38:76:15:77:cc:b9: f2:1f:b8:e4:0e:8b:b9:61:64:b5:6d:42:f5:dc:87:2e:69:0b: 63:d2:4a:7f:88:17:3d:3d:b3:55:c1:af:53:67:f6:90:9a:fc: e4:c0:c0:2f:80:2d:db:3c:5e:b9:dd:63:09:d9:39:bc:25:f6: 56:c1:44:a5:09:51:8d:31:de:5f:91:07:5f:c5:97:9d:bd:bf: b8:a4:44:dc:fe:74:53:89:ad:2c:ea:4b:6b:05:32:bb:98:df: 5a:4f:6d:ca:ac:e7:ca:4b:7e:51:b3:0f:1f:96:76:c1:72:b1: f8:fe:17:71:65:10:c1:91:0f:6a:2d:4d:a9:51:9c:8d:20:24: bd:b9:62:20:d1:a2:19:7e:53:f1:1c:69:c5:74:a5:32:3c:dc: ee:3e:fe:f3:8f:e5:17:25:a3:a0:d5:a0:59:c0:91:e0:be:3a: d6:7e:d6:56 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Q0MxNjExMC8GA1UEBRMoQzY4QUFFMDZDOEEwNjhGMjIyMTIzMTMzMkRDRDRERjFB RjJGMDc5NDAeFw0yNTA5MTAwMjMxMTRaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzBlMmYyLTNhYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR27q5Mmf4lXIDYBwGur3H5mQXwoPp4i2B0NgmGXcFZihJZEpltBeAwFGFC6/m w4Q1hHlAA3PrsNjCR+dlrH00+Wiu/bzBG5sc+tHrQDkHVRv9cA9RSrajPP6bppFS zcJAlmUYGqeekot3TcTth5P4boPKxLxsccgEBkY0dl3Kw4vEyCl4HgOPoXWFpn2h FTsdzZuue60xsIRqH/qkf0Fhyh68kZRFoBe0gIrfDlr+anIDJQGxzUO5PFUCqBa1 eby12qWz/0gIQ45CNrEBO8xZWQdC8xxb61A6eXSpfNtp6FLVjq3mtuPqfBFLUNTI AQJ3KKf84pRm4PNiUgSzkh3bAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUBIQ0cXGe MCClI8SlVmCShgwN/SQwHwYDVR0jBBgwFoAUxoquBsigaPIiEjEzLc1N8a8vB5Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDQzE2LzI0RDM5RDYyRjA4 MDExRUFCNUJCMTAzN0M0RjlBRTAyL3hvcXVCc2lnYVBJaUVqRXpMYzFOOGE4dkI1 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveG9xdUJzaWdhUElpRWpFekxjMU44YTh2QjVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0MxNi8yNEQzOUQ2MkYwODAxMUVBQjVCQjEwMzdDNEY5QUUwMi8zOEEyQ0JCODhE RUUxMUYwQjk5MThEMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAiT/NAMEAmfRFDANBAIAAjAHAwUAJAC84DANBgkqhkiG9w0B AQsFAAOCAQEAdL+XdgvnV//k3E91Qcs0ZRQO3/pZ2loaqpVdAWiN3xp36OHd7C+K +W5FzMtXOZP2uSldZdx/3reWu28v9hGRo8KcBur6t31zPndFKIMVbujZ+jvBOHYV d8y58h+45A6LuWFktW1C9dyHLmkLY9JKf4gXPT2zVcGvU2f2kJr85MDAL4At2zxe ud1jCdk5vCX2VsFEpQlRjTHeX5EHX8WXnb2/uKRE3P50U4mtLOpLawUyu5jfWk9t yqznykt+UbMPH5Z2wXKx+P4XcWUQwZEPai1NqVGcjSAkvbliINGiGX5T8RxpxXSl Mjzc7j7+84/lFyWjoNWgWcCR4L461n7WVg== -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:59 2025 by rpki-client