$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/3CFE7680BC5C11EFB951FD4FC4F9AE02.roa File: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (raw, json) Hash identifier: wmWAheRVRUWaL+3QPLJN7sGparB+U18Ved7K/jnj6is= Subject key identifier: AE:A6:79:BA:E5:D5:87:EB:33:F6:9A:74:73:FF:2E:BC:0D:2B:7B:BE Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: ED Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/3CFE7680BC5C11EFB951FD4FC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:16:18 +0000 ROA not before: Sat 31 May 2025 03:50:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150436 IP address blocks: 145.223.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: May 31 03:50:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3f5d1-ed58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d4:dd:26:01:5a:6b:b2:e3:23:63:55:cd:73: 10:94:13:55:0e:73:7e:4e:f4:5b:11:23:5e:45:5d: a9:71:47:50:19:94:ae:c4:f6:49:a7:09:36:0f:e2: cc:4a:50:c5:be:d8:60:b6:13:b9:ce:ed:48:41:10: 5a:2f:e4:19:be:96:7e:8f:67:6a:21:a7:95:71:03: 13:17:a9:3b:31:df:ba:ec:12:ce:73:69:90:21:2c: 82:2e:c1:cd:70:90:bd:26:f4:c2:c6:85:5b:6e:a5: 86:a9:f9:3c:c8:78:5c:44:f8:d0:16:2b:3c:2c:88: fc:ad:47:b2:8c:b8:94:b2:44:9e:f9:e6:82:43:15: e4:ad:96:94:8d:d5:94:17:05:ec:c0:91:33:8e:a2: e1:c2:bc:ae:5a:b1:67:d2:88:ef:29:73:61:13:c4: c1:d0:c4:63:87:8e:81:27:b8:39:ec:3e:95:ed:ce: 16:63:f7:44:6d:d5:8b:0c:a3:5b:b1:1c:31:18:cd: 70:e3:a8:5b:fa:8a:18:f7:e3:6a:69:14:45:ea:c1: 5e:67:e0:52:49:49:f4:f1:5b:4b:fc:e5:2a:3e:98: 1d:e7:73:a6:64:8c:86:d9:94:87:10:91:0f:be:b9: fd:ba:f9:2b:79:59:7a:1e:8e:23:67:60:c0:fd:2a: 71:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A6:79:BA:E5:D5:87:EB:33:F6:9A:74:73:FF:2E:BC:0D:2B:7B:BE X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/3CFE7680BC5C11EFB951FD4FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 145.223.128.0/18 Signature Algorithm: sha256WithRSAEncryption 3f:bf:0c:8d:a9:9b:eb:21:9e:62:70:9a:97:cd:26:ec:0a:69: fe:9e:7c:4a:4c:67:7e:1b:8d:d4:b9:6e:24:c7:0f:5c:d6:dc: c2:ea:68:df:d0:49:cf:fd:77:e7:03:da:9e:05:2f:cf:aa:a1: 4f:7b:22:c2:99:be:c7:14:48:00:d7:55:6c:a9:57:13:d7:77: f3:8a:53:6e:d2:8e:2b:8f:30:4b:96:d4:5a:8f:5f:fe:e0:f3: ec:71:2c:4a:51:c8:d3:70:b4:43:96:c1:b2:6c:d0:7d:2b:b6: 92:f5:44:55:c6:d0:c4:84:03:df:89:69:07:92:13:26:98:c4: bf:6c:d6:b2:7d:35:bd:06:3e:40:b1:0c:90:2d:b9:8f:fc:5a: 03:4b:a7:4e:22:97:8f:f3:00:34:9e:03:1c:ec:eb:2a:30:f0: b0:f8:78:1a:39:b1:8f:13:f6:73:ed:54:09:1d:49:3b:a1:85: d4:78:9b:b1:c4:2a:f4:1b:28:0d:ce:42:14:11:91:62:51:d4: aa:3b:65:fe:ae:32:4e:5b:c0:60:40:00:8c:2f:c6:c1:17:2b: 7c:66:fc:1a:89:45:e1:e5:72:08:53:09:a3:59:3e:f5:3b:f6: 2d:67:53:81:9f:5e:aa:90:ab:0a:39:d9:c6:b1:1b:92:8a:eb: 2a:a3:70:f8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUwNTMxMDM1MDU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjVkMS1lZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNTdJgFaa7LjI2NVzXMQlBNVDnN+TvRbESNeRV2pcUdQGZSuxPZJpwk2D+LM SlDFvthgthO5zu1IQRBaL+QZvpZ+j2dqIaeVcQMTF6k7Md+67BLOc2mQISyCLsHN cJC9JvTCxoVbbqWGqfk8yHhcRPjQFis8LIj8rUeyjLiUskSe+eaCQxXkrZaUjdWU FwXswJEzjqLhwryuWrFn0ojvKXNhE8TB0MRjh46BJ7g57D6V7c4WY/dEbdWLDKNb sRwxGM1w46hb+ooY9+NqaRRF6sFeZ+BSSUn08VtL/OUqPpgd53OmZIyG2ZSHEJEP vrn9uvkreVl6Ho4jZ2DA/SpxIwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFK6mebrl 1YfrM/aadHP/LrwNK3u+MB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvNENGQzA4REFCNzZDMTFFRkI4NzQyNzZFQzRGOUFFMDIvM0NGRTc2ODBC QzVDMTFFRkI5NTFGRDRGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGkd+AMA0GCSqGSIb3DQEBCwUAA4IBAQA/vwyNqZvrIZ5icJqXzSbs Cmn+nnxKTGd+G43UuW4kxw9c1tzC6mjf0EnP/XfnA9qeBS/PqqFPeyLCmb7HFEgA 11VsqVcT13fzilNu0o4rjzBLltRaj1/+4PPscSxKUcjTcLRDlsGybNB9K7aS9URV xtDEhAPfiWkHkhMmmMS/bNayfTW9Bj5AsQyQLbmP/FoDS6dOIpeP8wA0ngMc7Osq MPCw+HgaObGPE/Zz7VQJHUk7oYXUeJuxxCr0GygNzkIUEZFiUdSqO2X+rjJOW8Bg QACML8bBFyt8ZvwaiUXh5XIIUwmjWT71O/YtZ1OBn16qkKsKOdnGsRuSiusqo3D4 -----END CERTIFICATE-----Generated at Mon Mar 2 07:58:54 2026 by rpki-client