$ rpki-client -vvf rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/38A5FCB48FC911E8902DFE16C4F9AE02.roa File: 38A5FCB48FC911E8902DFE16C4F9AE02.roa (raw, json) Hash identifier: jGhrtAK4exRlSw5p5BupizFtQ6ARkyDeq/Ro7o2534k= Subject key identifier: C7:C1:D0:51:11:56:72:71:77:5B:4F:2A:27:16:54:01:12:C1:62:B4 Certificate issuer: /CN=A916B18B/serialNumber=368F3C938B601412521A3A819009978FCFE91E7E Certificate serial: 17F1 Authority key identifier: 36:8F:3C:93:8B:60:14:12:52:1A:3A:81:90:09:97:8F:CF:E9:1E:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/38A5FCB48FC911E8902DFE16C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:20:33 +0000 ROA not before: Thu 04 Dec 2025 16:15:56 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137226 IP address blocks: 204.145.4.0/24 maxlen: 24 208.71.224.0/24 maxlen: 24 208.71.225.0/24 maxlen: 24 208.71.226.0/24 maxlen: 24 208.71.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.crl rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6129 (0x17f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B18B, serialNumber=368F3C938B601412521A3A819009978FCFE91E7E Validity Not Before: Dec 4 16:15:56 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48370-246d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:33:85:f2:f2:3d:0e:43:a7:c3:3c:0a:cc:9c: f5:92:01:15:02:f5:9b:96:e1:59:de:f9:98:5d:01: cf:7f:ba:1f:2f:60:c7:56:f9:bb:f6:b7:1f:d2:a8: ae:2e:e4:a2:f6:83:8d:94:af:58:45:8a:a3:84:2d: d4:30:fd:04:c7:ab:b5:6b:29:7a:5b:99:9f:62:4b: 83:f2:f5:78:81:62:f9:6b:d6:8a:82:84:04:86:09: f6:8d:25:ce:96:0c:11:56:2b:7f:99:cb:42:22:7a: 72:6e:33:90:ec:62:17:26:94:3e:aa:f7:3d:f3:a5: 24:4d:86:2f:fc:a2:5e:b9:ef:82:ee:41:9e:2a:76: a3:56:a0:69:59:1b:31:e8:94:25:dd:0d:c6:53:99: 27:85:f4:f4:bb:87:46:e7:55:6b:77:cd:18:ce:cc: 34:c6:11:1f:1d:99:8b:85:42:40:3c:7e:fd:b4:64: 71:8c:6f:77:a5:49:fe:b1:ff:6c:46:5b:2c:fc:f4: 8b:54:3e:dd:62:87:e6:0f:a3:78:4a:f4:64:eb:74: e0:4b:b5:53:3b:a6:71:5b:0e:1c:66:65:b7:b5:43: 02:13:98:d1:77:fa:9a:71:78:47:4b:29:d8:ac:bf: ff:bf:03:b4:2f:ac:5f:40:3c:3d:d9:bb:dd:2e:5e: 93:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C1:D0:51:11:56:72:71:77:5B:4F:2A:27:16:54:01:12:C1:62:B4 X509v3 Authority Key Identifier: keyid:36:8F:3C:93:8B:60:14:12:52:1A:3A:81:90:09:97:8F:CF:E9:1E:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/38A5FCB48FC911E8902DFE16C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 204.145.4.0/24 208.71.224.0/22 Signature Algorithm: sha256WithRSAEncryption bf:84:89:25:c5:01:f4:0d:7b:f4:70:12:8b:3a:8b:50:77:56: 70:30:82:66:9a:50:b0:ae:d9:bb:c8:f9:83:84:40:d7:23:bf: 6b:1f:22:5e:d1:6d:3c:5a:09:4c:92:d2:54:4c:bb:3b:9b:ca: 1a:de:63:1d:80:53:9d:1b:2d:3a:48:70:5c:b9:23:cd:0f:48: 8e:bb:00:84:a0:94:6d:d1:3c:28:98:1b:8c:83:29:ab:6d:5e: 60:fc:84:33:b1:72:e7:33:d7:d1:c3:3c:19:15:4a:17:71:0d: d7:45:27:78:09:81:dd:a5:be:3d:88:41:9e:eb:a0:0c:9e:69: 36:86:54:2f:5b:83:8d:47:12:12:e1:6c:4e:f4:18:fb:c8:23: 9f:98:af:81:74:26:7f:7c:a7:ba:8c:99:1c:b1:e5:48:43:76: b4:53:3c:44:1a:b9:a5:7a:16:69:7f:22:70:d7:47:9f:5e:8f: 96:0c:bc:70:c1:c5:d6:fa:e4:14:48:a3:f0:f3:90:2a:29:af: 14:ea:f5:f8:3c:48:14:01:e7:14:d1:e0:01:98:78:11:31:ac: ec:23:5b:c3:41:39:22:aa:23:ae:04:2f:bb:14:07:86:75:23: a2:c8:79:f7:0f:01:67:67:bc:00:6e:9a:2a:bf:bc:37:6b:23: 24:58:01:01 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICF/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOEIxMTAvBgNVBAUTKDM2OEYzQzkzOEI2MDE0MTI1MjFBM0E4MTkwMDk5NzhG Q0ZFOTFFN0UwHhcNMjUxMjA0MTYxNTU2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODM3MC0yNDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDOF8vI9DkOnwzwKzJz1kgEVAvWbluFZ3vmYXQHPf7ofL2DHVvm79rcf0qiu LuSi9oONlK9YRYqjhC3UMP0Ex6u1ayl6W5mfYkuD8vV4gWL5a9aKgoQEhgn2jSXO lgwRVit/mctCInpybjOQ7GIXJpQ+qvc986UkTYYv/KJeue+C7kGeKnajVqBpWRsx 6JQl3Q3GU5knhfT0u4dG51Vrd80Yzsw0xhEfHZmLhUJAPH79tGRxjG93pUn+sf9s Rlss/PSLVD7dYofmD6N4SvRk63TgS7VTO6ZxWw4cZmW3tUMCE5jRd/qacXhHSynY rL//vwO0L6xfQDw92bvdLl6T6QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFMfB0FER VnJxd1tPKicWVAESwWK0MB8GA1UdIwQYMBaAFDaPPJOLYBQSUho6gZAJl4/P6R5+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE4Qi9GOThCNUYwQzIx RjkxMUU4OTZDMUREMjNDNEY5QUUwMi9Obzg4azR0Z0ZCSlNHanFCa0FtWGo4X3BI bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05vODhrNHRnRkJKU0dqcUJrQW1YajhfcEhuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIxOEIvRjk4QjVGMEMyMUY5MTFFODk2QzFERDIzQzRGOUFFMDIvMzhBNUZDQjQ4 RkM5MTFFODkwMkRGRTE2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAzJEEAwQC0EfgMA0GCSqGSIb3DQEBCwUAA4IBAQC/hIklxQH0DXv0 cBKLOotQd1ZwMIJmmlCwrtm7yPmDhEDXI79rHyJe0W08WglMktJUTLs7m8oa3mMd gFOdGy06SHBcuSPND0iOuwCEoJRt0TwomBuMgymrbV5g/IQzsXLnM9fRwzwZFUoX cQ3XRSd4CYHdpb49iEGe66AMnmk2hlQvW4ONRxIS4WxO9Bj7yCOfmK+BdCZ/fKe6 jJkcseVIQ3a0UzxEGrmlehZpfyJw10efXo+WDLxwwcXW+uQUSKPw85AqKa8U6vX4 PEgUAecU0eABmHgRMazsI1vDQTkiqiOuBC+7FAeGdSOiyHn3DwFnZ7wAbpoqv7w3 ayMkWAEB -----END CERTIFICATE-----Generated at Mon Mar 2 04:09:49 2026 by rpki-client