$ rpki-client -vvf rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/2A148C7E1D4211F1BDB413AD1B3D8C67.roa File: 2A148C7E1D4211F1BDB413AD1B3D8C67.roa (raw, json) Hash identifier: DOrKq68OV6bv6i78b+TQ33vm1VYkB4ogKWrurv8Roro= Subject key identifier: 6F:7C:4E:08:5D:7E:CE:62:23:C2:C4:71:84:E2:E5:9E:6C:E5:51:23 Certificate issuer: /CN=A916E9E3/serialNumber=0084F47A4372C8F8A7D51183D5036C593D19E1C3 Certificate serial: 72 Authority key identifier: 00:84:F4:7A:43:72:C8:F8:A7:D5:11:83:D5:03:6C:59:3D:19:E1:C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AIT0ekNyyPin1RGD1QNsWT0Z4cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/2A148C7E1D4211F1BDB413AD1B3D8C67.roa Signing time: Thu 02 Apr 2026 08:53:03 +0000 ROA not before: Thu 02 Apr 2026 08:53:03 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 152098 IP address blocks: 155.35.34.0/24 maxlen: 24 155.35.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/AIT0ekNyyPin1RGD1QNsWT0Z4cM.crl rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/AIT0ekNyyPin1RGD1QNsWT0Z4cM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AIT0ekNyyPin1RGD1QNsWT0Z4cM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 07:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E9E3, serialNumber=0084F47A4372C8F8A7D51183D5036C593D19E1C3 Validity Not Before: Apr 2 08:53:03 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69ce2e6e-148c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f8:4e:1a:f3:41:2c:9d:11:88:73:38:1f:9e: d5:c3:44:af:9b:f3:9f:32:1b:82:ce:88:b0:de:24: d0:c7:28:a1:51:76:9b:1f:07:a8:b2:2e:b4:25:b5: b2:88:29:a9:e2:28:e2:9a:79:30:7c:4d:3f:a3:e6: 94:ac:6c:3e:46:4e:b5:95:9a:47:da:e0:77:c3:8c: e9:2c:37:fc:9d:0b:f6:34:99:87:d4:1a:c6:f9:49: 11:42:10:3c:8f:61:02:ea:95:ce:a2:0c:17:73:df: 6a:33:b6:7f:b4:7e:c6:36:cc:10:21:f7:54:ed:66: bf:ab:8f:53:e1:d2:e7:d5:97:61:df:fe:16:21:59: 2d:27:06:1e:f3:04:6c:b3:db:b0:17:4d:1c:db:06: 93:4e:a5:40:ff:14:07:e0:41:f2:87:ae:23:48:d9: b1:69:2e:34:93:9d:95:d5:e8:73:3d:86:be:ce:e4: 0a:5d:e5:b1:03:f6:fc:28:3d:ff:d0:19:4a:18:de: 8b:cb:f6:46:dd:c4:9e:0e:6d:11:7b:5f:ab:44:e8: af:5b:74:6a:d7:17:5b:b3:64:58:92:6c:ae:0d:b5: f4:36:1a:c5:dd:f3:14:fd:c8:60:2c:c8:18:b7:c3: ef:86:98:d7:e0:6f:dd:b3:b7:a2:53:4d:95:fb:be: cf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:7C:4E:08:5D:7E:CE:62:23:C2:C4:71:84:E2:E5:9E:6C:E5:51:23 X509v3 Authority Key Identifier: keyid:00:84:F4:7A:43:72:C8:F8:A7:D5:11:83:D5:03:6C:59:3D:19:E1:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/AIT0ekNyyPin1RGD1QNsWT0Z4cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AIT0ekNyyPin1RGD1QNsWT0Z4cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/2A148C7E1D4211F1BDB413AD1B3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 155.35.34.0/23 Signature Algorithm: sha256WithRSAEncryption 32:ef:a0:d1:0a:77:d3:07:b4:3f:a4:92:9c:1d:c4:ee:4e:af: a9:6f:c9:13:4e:61:ea:a3:48:1a:89:1a:e7:b3:9e:fc:fd:a4: 68:12:3e:a2:40:9b:ba:32:b2:d8:ed:6a:46:76:0d:ea:69:6f: 77:76:21:a5:e9:56:c6:d5:85:08:8f:e1:61:02:6d:d5:2f:03: 2d:00:8f:3b:4c:32:b8:6c:e1:7e:f1:70:8b:47:c0:23:22:d1: 9d:60:79:e9:b0:56:31:31:37:dd:6b:c6:ad:81:6c:14:9f:03: e3:90:b2:29:17:cc:a1:54:34:cd:71:aa:cd:ce:bd:fd:4a:be: b9:72:05:19:a1:f4:4f:c4:fd:b3:04:fe:d4:32:a4:83:a7:95: 81:1d:37:fd:74:55:ed:23:f3:23:6b:17:24:61:8b:4e:2f:3f: f3:e6:e0:63:43:cb:42:bb:c6:28:33:87:f9:b5:dc:a3:42:d9: 35:73:2c:14:2f:bd:12:cd:46:d5:dc:ee:4b:a6:69:3a:e1:c0: 50:67:aa:60:9e:2c:9c:b5:8a:15:10:43:b1:02:0b:7a:cc:b3: 1b:19:bf:1e:59:be:ce:ac:01:b2:41:72:2b:66:a1:d7:90:91: f5:a7:8e:fd:c8:07:aa:c8:f8:32:a9:be:4b:27:b7:33:05:60: 5e:ba:29:67 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RTlFMzExMC8GA1UEBRMoMDA4NEY0N0E0MzcyQzhGOEE3RDUxMTgzRDUwMzZDNTkz RDE5RTFDMzAeFw0yNjA0MDIwODUzMDNaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Y2UyZTZlLTE0OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCe+E4a80EsnRGIczgfntXDRK+b858yG4LOiLDeJNDHKKFRdpsfB6iyLrQltbKI KaniKOKaeTB8TT+j5pSsbD5GTrWVmkfa4HfDjOksN/ydC/Y0mYfUGsb5SRFCEDyP YQLqlc6iDBdz32oztn+0fsY2zBAh91TtZr+rj1Ph0ufVl2Hf/hYhWS0nBh7zBGyz 27AXTRzbBpNOpUD/FAfgQfKHriNI2bFpLjSTnZXV6HM9hr7O5Apd5bED9vwoPf/Q GUoY3ovL9kbdxJ4ObRF7X6tE6K9bdGrXF1uzZFiSbK4NtfQ2GsXd8xT9yGAsyBi3 w++GmNfgb92zt6JTTZX7vs81AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUb3xOCF1+ zmIjwsRxhOLlnmzlUSMwHwYDVR0jBBgwFoAUAIT0ekNyyPin1RGD1QNsWT0Z4cMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZFOUUzLzQ0Q0U0RUQyQTNB NDExRjA5MjAxM0UyOUM0RjlBRTAyL0FJVDBla055eVBpbjFSR0QxUU5zV1QwWjRj TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQUlUMGVrTnl5UGluMVJHRDFRTnNXVDBaNGNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTlFMy80NENFNEVEMkEzQTQxMUYwOTIwMTNFMjlDNEY5QUUwMi8yQTE0OEM3RTFE NDIxMUYxQkRCNDEzQUQxQjNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGbIyIwDQYJKoZIhvcNAQELBQADggEBADLvoNEKd9MHtD+kkpwdxO5O r6lvyRNOYeqjSBqJGueznvz9pGgSPqJAm7oystjtakZ2Deppb3d2IaXpVsbVhQiP 4WECbdUvAy0AjztMMrhs4X7xcItHwCMi0Z1geemwVjExN91rxq2BbBSfA+OQsikX zKFUNM1xqs3Ovf1KvrlyBRmh9E/E/bME/tQypIOnlYEdN/10Ve0j8yNrFyRhi04v P/Pm4GNDy0K7xigzh/m13KNC2TVzLBQvvRLNRtXc7kumaTrhwFBnqmCeLJy1ihUQ Q7ECC3rMsxsZvx5Zvs6sAbJBcitmodeQkfWnjv3IB6rI+DKpvksntzMFYF66KWc= -----END CERTIFICATE-----Generated at Fri Apr 17 06:30:58 2026 by rpki-client