$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/8D3F53F6A15F11F09B632177C4F9AE02.roa File: 8D3F53F6A15F11F09B632177C4F9AE02.roa (raw, json) Hash identifier: vX6cUsgV2BJ/qMoJTuzDJbv2J97UHwQcYMbzfjEUHMU= Subject key identifier: 2D:58:10:6B:5D:E2:51:72:7B:57:FE:D5:27:E0:C0:3D:E6:FA:EE:96 Certificate issuer: /CN=A916CAE6/serialNumber=64CA5426AC7A550BDA1053A01283144E2DCD2BD7 Certificate serial: 54 Authority key identifier: 64:CA:54:26:AC:7A:55:0B:DA:10:53:A0:12:83:14:4E:2D:CD:2B:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/8D3F53F6A15F11F09B632177C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:54:16 +0000 ROA not before: Tue 28 Oct 2025 20:09:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 17995 IP address blocks: 123.253.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.crl rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAE6, serialNumber=64CA5426AC7A550BDA1053A01283144E2DCD2BD7 Validity Not Before: Oct 28 20:09:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a48b58-279c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:93:fa:3f:55:61:36:2b:ac:98:46:66:a6:5f: fb:bf:94:31:85:be:bc:a4:10:93:04:32:3b:cc:85: 8c:14:1e:76:61:dc:e8:72:43:a4:6a:38:c3:8a:6e: 7b:9c:d2:f3:cf:d2:20:a3:c5:73:05:59:62:a3:9d: 8b:87:a1:9b:83:78:5d:aa:8b:29:e5:3e:aa:d3:fb: b9:ce:cc:ea:a9:de:41:5f:d0:82:ad:15:26:7d:0b: 29:e1:a1:a0:45:73:c2:c2:cb:50:0a:f8:95:2c:dc: 35:aa:97:34:d7:33:36:14:6c:64:77:6c:94:43:06: 18:7c:83:6b:8b:f9:ae:35:f7:56:b7:b4:c7:29:e2: 3c:16:b3:2b:29:34:a5:96:ae:a8:04:b9:6b:15:88: 8f:14:cc:d1:02:d9:19:f2:f7:2e:39:0b:41:84:07: d1:88:59:78:e6:db:2d:2a:fe:dd:e7:5e:43:8a:92: 1c:c5:cc:8b:fd:12:fb:7e:f6:10:bd:c1:71:13:9b: 9f:e4:1d:70:74:00:61:8b:6f:b4:94:aa:33:0a:42: 1b:8b:33:1e:07:6f:26:fb:8d:d5:04:d3:ab:13:8d: 65:95:f6:b9:18:b2:98:89:53:bc:0d:41:9e:78:5f: db:82:61:61:70:a1:d8:7f:c6:4a:08:12:3d:de:fb: ac:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:58:10:6B:5D:E2:51:72:7B:57:FE:D5:27:E0:C0:3D:E6:FA:EE:96 X509v3 Authority Key Identifier: keyid:64:CA:54:26:AC:7A:55:0B:DA:10:53:A0:12:83:14:4E:2D:CD:2B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/8D3F53F6A15F11F09B632177C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.253.4.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:ce:59:b3:50:6a:66:16:a6:ce:8a:72:88:3a:7d:fa:9f:98: 88:0e:fe:19:e6:c8:f0:13:00:b8:db:bf:fd:62:c5:8f:1d:9a: c2:2d:3e:d2:c8:13:01:a7:ea:84:61:d5:6a:50:02:e5:18:cb: 34:f7:0f:7c:15:4c:bb:8e:cf:31:2a:42:28:1d:a9:59:5d:54: 19:1c:cd:a0:8f:d7:5f:c6:66:a2:03:2e:fc:eb:4c:ba:c1:57: 4b:b3:ed:e5:9c:b4:71:8a:58:b7:21:b2:98:37:6c:09:de:a6: 90:2c:ce:f2:11:42:35:f6:48:a7:34:e7:71:fd:b2:77:49:99: af:6e:f4:e5:05:b9:1c:e8:0e:be:c6:29:7c:33:3d:20:96:37: 98:ba:d4:d6:56:2f:1d:d8:03:87:e2:6e:92:25:f5:55:f3:1d: 5e:5a:05:9a:9c:20:6f:35:53:30:0e:fc:b8:8f:79:ec:17:ea: 2a:15:88:06:fb:61:27:2b:34:17:48:23:fc:70:a1:ef:85:72: a5:16:5c:46:82:35:29:6d:11:56:e1:85:82:32:27:f4:a2:e6: b6:95:6e:83:c1:e5:a8:39:ec:50:ea:0b:81:bc:0e:5e:29:f3: 47:72:56:a8:f2:1a:29:39:b7:bb:ad:8e:4f:88:82:64:da:5c: 86:ad:51:ed -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Q0FFNjExMC8GA1UEBRMoNjRDQTU0MjZBQzdBNTUwQkRBMTA1M0EwMTI4MzE0NEUy RENEMkJENzAeFw0yNTEwMjgyMDA5MTJaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ4YjU4LTI3OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCDk/o/VWE2K6yYRmamX/u/lDGFvrykEJMEMjvMhYwUHnZh3OhyQ6RqOMOKbnuc 0vPP0iCjxXMFWWKjnYuHoZuDeF2qiynlPqrT+7nOzOqp3kFf0IKtFSZ9CynhoaBF c8LCy1AK+JUs3DWqlzTXMzYUbGR3bJRDBhh8g2uL+a4191a3tMcp4jwWsyspNKWW rqgEuWsViI8UzNEC2Rny9y45C0GEB9GIWXjm2y0q/t3nXkOKkhzFzIv9Evt+9hC9 wXETm5/kHXB0AGGLb7SUqjMKQhuLMx4Hbyb7jdUE06sTjWWV9rkYspiJU7wNQZ54 X9uCYWFwodh/xkoIEj3e+6xtAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQULVgQa13i UXJ7V/7VJ+DAPeb67pYwHwYDVR0jBBgwFoAUZMpUJqx6VQvaEFOgEoMUTi3NK9cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDQUU2LzY1RDA0NEM0OTQx ODExRUE5NDBGQjUzMEM0RjlBRTAyL1pNcFVKcXg2VlF2YUVGT2dFb01VVGkzTks5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWk1wVUpxeDZWUXZhRUZPZ0VvTVVUaTNOSzljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0FFNi82NUQwNDRDNDk0MTgxMUVBOTQwRkI1MzBDNEY5QUUwMi84RDNGNTNGNkEx NUYxMUYwOUI2MzIxNzdDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJ7/QQwDQYJKoZIhvcNAQELBQADggEBAJrOWbNQamYWps6Kcog6ffqf mIgO/hnmyPATALjbv/1ixY8dmsItPtLIEwGn6oRh1WpQAuUYyzT3D3wVTLuOzzEq QigdqVldVBkczaCP11/GZqIDLvzrTLrBV0uz7eWctHGKWLchspg3bAneppAszvIR QjX2SKc053H9sndJma9u9OUFuRzoDr7GKXwzPSCWN5i61NZWLx3YA4fibpIl9VXz HV5aBZqcIG81UzAO/LiPeewX6ioViAb7YScrNBdII/xwoe+FcqUWXEaCNSltEVbh hYIyJ/Si5raVboPB5ag57FDqC4G8Dl4p80dyVqjyGik5t7utjk+IgmTaXIatUe0= -----END CERTIFICATE-----Generated at Mon Mar 2 16:09:08 2026 by rpki-client