$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/C38EA6882B3411F0929A5143C4F9AE02.roa File: C38EA6882B3411F0929A5143C4F9AE02.roa (raw, json) Hash identifier: hhtv+djG+OoiLW6kOulINdG5xKpxF6kKbN64oaLNPLE= Subject key identifier: 79:C7:DC:DA:59:71:74:F4:74:BC:83:7A:A3:F5:0F:20:FB:BE:E4:AF Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3A6B Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/C38EA6882B3411F0929A5143C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:22:32 +0000 ROA not before: Fri 16 Jan 2026 16:13:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45725 IP address blocks: 43.230.152.0/24 maxlen: 24 43.230.153.0/24 maxlen: 24 43.230.154.0/24 maxlen: 24 43.230.155.0/24 maxlen: 24 103.245.136.0/24 maxlen: 24 103.245.137.0/24 maxlen: 24 103.245.138.0/24 maxlen: 24 103.245.139.0/24 maxlen: 24 180.211.88.0/21 maxlen: 24 202.150.160.0/21 maxlen: 24 202.150.168.0/21 maxlen: 24 2402:780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14955 (0x3a6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:13:40 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4ae18-d957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f7:3e:e7:11:6e:e6:58:79:df:98:4a:d3:38: 64:48:9e:55:8b:4d:77:49:62:41:36:fa:8d:88:64: 00:01:59:9f:81:55:6e:b3:c4:d2:bf:2a:b2:a8:ee: 0e:c0:bb:e0:ab:6b:4a:94:b4:32:7a:34:42:b6:d5: b5:d0:e6:aa:a3:9b:5c:8d:2b:19:d2:05:5a:0e:82: 2f:a4:f8:5f:3a:7d:eb:8b:37:3e:aa:a3:18:fd:9e: 02:de:14:c7:82:80:d9:c3:e0:ab:9d:d9:f2:f3:11: 77:99:94:38:04:55:21:5d:a5:1b:2f:cf:b5:9f:e2: 62:62:67:4e:6a:ae:28:db:40:28:07:12:e1:c8:93: c5:fb:00:32:0b:3d:91:81:b0:1c:7b:70:b3:5e:bb: 33:df:cf:b7:e6:68:7e:6d:fd:a9:73:02:d3:bd:7c: 00:99:fc:dc:70:32:76:f5:04:4f:81:ea:76:fa:83: ed:cd:69:53:34:f9:8a:e9:aa:e8:62:68:a3:b9:25: b5:83:53:04:a7:7b:12:11:68:38:e1:8e:95:dd:1e: 85:23:12:3e:f7:7c:ae:0e:26:fe:fe:a9:07:0d:5e: 1b:92:fa:05:15:6e:df:59:b1:e6:2d:2a:7b:c6:4f: c8:44:ca:50:10:07:15:ba:b0:88:9c:68:f9:cf:c6: 43:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C7:DC:DA:59:71:74:F4:74:BC:83:7A:A3:F5:0F:20:FB:BE:E4:AF X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/C38EA6882B3411F0929A5143C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.152.0/22 103.245.136.0/22 180.211.88.0/21 202.150.160.0/20 IPv6: 2402:780::/32 Signature Algorithm: sha256WithRSAEncryption 2d:65:60:1d:03:4d:92:61:68:5d:73:47:99:32:d2:e0:6d:81: b0:33:0b:ee:bb:6b:27:b9:47:95:91:7c:30:e2:73:99:8f:d0: 5a:16:a4:5d:52:11:61:49:60:64:ee:d8:33:ca:25:e7:9d:5b: 57:ec:13:cf:b1:a2:0a:6b:42:be:e2:87:a5:6f:04:e0:09:cc: aa:dc:2f:42:32:e9:da:58:54:30:76:40:78:f4:fb:72:73:ae: 07:55:c4:2f:90:d6:a4:1b:34:ba:8a:8e:03:01:b9:c8:65:71: d1:81:aa:77:25:f6:22:14:be:38:b5:1f:89:2d:3f:e0:e4:33: 4e:c0:ce:b2:2f:ad:03:b5:9c:c5:72:d9:17:02:33:a9:d2:7a: f8:d3:af:27:a6:ae:21:45:fa:eb:45:ba:10:95:88:b2:6d:04: d6:70:35:98:73:26:9a:d0:a2:33:5c:c8:de:09:8b:47:0b:c8: b5:63:fc:be:b6:65:9d:bc:90:3f:73:8a:46:03:e6:c4:b0:30: 12:bb:aa:49:a2:d7:50:6f:ac:5e:01:81:87:66:33:7e:c1:51: 3b:77:42:de:6b:0a:f8:8d:dd:15:c3:28:e8:97:6a:85:1b:8e: 4b:f1:f8:16:02:8c:65:c9:b8:85:83:d5:10:8c:ea:32:ee:1c: d5:97:dd:46 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICOmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMzQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWUxOC1kOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPc+5xFu5lh535hK0zhkSJ5Vi013SWJBNvqNiGQAAVmfgVVus8TSvyqyqO4O wLvgq2tKlLQyejRCttW10Oaqo5tcjSsZ0gVaDoIvpPhfOn3rizc+qqMY/Z4C3hTH goDZw+Crndny8xF3mZQ4BFUhXaUbL8+1n+JiYmdOaq4o20AoBxLhyJPF+wAyCz2R gbAce3CzXrsz38+35mh+bf2pcwLTvXwAmfzccDJ29QRPgep2+oPtzWlTNPmK6aro YmijuSW1g1MEp3sSEWg44Y6V3R6FIxI+93yuDib+/qkHDV4bkvoFFW7fWbHmLSp7 xk/IRMpQEAcVurCInGj5z8ZDOwIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFHnH3NpZ cXT0dLyDeqP1DyD7vuSvMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQzM4RUE2ODgy QjM0MTFGMDkyOUE1MTQzQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQCK+aYAwQCZ/WIAwQDtNNYAwQEypagMA0EAgACMAcDBQAkAgeAMA0G CSqGSIb3DQEBCwUAA4IBAQAtZWAdA02SYWhdc0eZMtLgbYGwMwvuu2snuUeVkXww 4nOZj9BaFqRdUhFhSWBk7tgzyiXnnVtX7BPPsaIKa0K+4oelbwTgCcyq3C9CMuna WFQwdkB49Ptyc64HVcQvkNakGzS6io4DAbnIZXHRgap3JfYiFL44tR+JLT/g5DNO wM6yL60DtZzFctkXAjOp0nr4068npq4hRfrrRboQlYiybQTWcDWYcyaa0KIzXMje CYtHC8i1Y/y+tmWdvJA/c4pGA+bEsDASu6pJotdQb6xeAYGHZjN+wVE7d0Leawr4 jd0Vwyjol2qFG45L8fgWAoxlybiFg9UQjOoy7hzVl91G -----END CERTIFICATE-----Generated at Mon Mar 2 10:53:58 2026 by rpki-client