$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/3CF5A86C088211F0BB90C23EC4F9AE02.roa File: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (raw, json) Hash identifier: MswLuuXELfgYCKXqS/8YmwIxT/Vpx6aTamI6VsJX25Y= Subject key identifier: 5A:9D:40:7C:0C:DE:C6:2C:FF:F6:45:A4:71:DF:1B:1C:E4:3A:47:80 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: B0 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/3CF5A86C088211F0BB90C23EC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:01:55 +0000 ROA not before: Mon 24 Mar 2025 07:33:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152672 IP address blocks: 163.223.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Mar 24 07:33:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3e463-7d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e9:c6:1b:06:ea:4c:6b:1f:3b:e7:cc:7c:32: a4:6f:07:b9:90:de:7c:af:52:ab:ff:9e:8c:08:5c: 85:f5:f9:d3:5d:80:70:40:e4:50:ee:c9:01:39:9a: 7c:86:a6:59:9d:68:f8:74:b1:a4:7e:74:31:b0:06: 8a:fa:84:3f:bf:a6:1e:94:d8:69:ae:5c:07:71:a3: 04:76:7d:02:fb:9f:e3:a8:65:b5:da:e8:f0:d9:3c: 93:d5:f5:30:50:cf:2f:7f:15:c4:9b:f1:a5:ff:1f: e4:ff:06:01:1a:db:72:74:ee:ef:06:49:9d:a1:82: a6:60:6c:8e:01:a6:00:1f:f4:f7:b3:b0:56:cf:f9: 71:b8:a0:75:85:66:d4:8f:a4:02:45:f4:32:81:25: 28:35:54:0d:bd:9c:60:60:b9:b5:78:c8:68:68:d1: e9:8e:c1:70:da:a1:f3:c0:c4:23:bb:72:b5:dc:02: bf:1f:21:a5:f7:e1:80:fa:41:ff:9f:c4:1d:88:25: f2:12:13:29:bc:e0:81:71:c6:2c:31:7e:61:03:81: 47:be:9d:10:1b:d3:20:9f:c2:84:9a:d4:8e:f5:8b: 8b:27:c0:08:56:aa:1e:34:8e:f0:82:1e:db:fa:06: eb:32:f1:48:64:56:5a:85:48:23:25:00:7d:dc:8b: 20:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:9D:40:7C:0C:DE:C6:2C:FF:F6:45:A4:71:DF:1B:1C:E4:3A:47:80 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/3CF5A86C088211F0BB90C23EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.182.0/23 Signature Algorithm: sha256WithRSAEncryption 89:85:c9:c3:cf:e0:51:c6:23:49:4c:23:39:02:80:75:ae:04: e9:fd:f8:2c:46:c8:ee:59:09:cf:2e:7b:7a:53:1e:b8:84:44: 5f:d2:ae:97:ed:41:7a:17:bb:c9:5e:52:0b:c2:42:3d:01:6c: 81:8b:46:8c:88:85:43:bc:be:2c:69:9d:15:59:a6:c7:8d:5f: 57:e5:60:71:d3:10:5e:44:21:90:f0:ea:3c:ea:e9:16:bd:3e: 24:96:d4:30:e3:8a:8c:de:61:77:89:ad:ee:b2:ab:70:57:4b: bf:3a:06:21:2a:4f:a9:c4:93:61:9d:f1:e9:4e:50:0c:06:8f: 1b:f5:89:ba:79:08:b7:15:6a:06:d8:5c:aa:60:61:cf:e9:cc: a9:67:ed:34:d4:5b:11:ce:f6:55:51:c3:b4:54:54:22:a9:a7: c4:ec:d4:2f:7d:b5:d8:83:cf:8a:a7:59:53:c3:51:2c:c8:50: 95:bb:5a:cb:b0:e1:d0:95:22:22:c5:ed:65:c8:dd:b3:bc:46: ea:65:d1:0a:99:42:a3:37:eb:ec:ce:22:ca:4e:d4:2c:61:77: 7f:de:b3:6f:18:03:75:37:a3:92:9b:3f:a5:a8:42:ee:1f:37: fb:a3:9e:44:bb:b6:27:c2:eb:ae:0a:a4:89:7a:4d:0f:da:2a: e1:72:98:be -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFCN0UxMTAvBgNVBAUTKDJBNkJGMDU0QUQyM0VBRDJEQjM5NTMxQjY0NjcyNkNB OTQ1QUM0OTIwHhcNMjUwMzI0MDczMzExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTQ2My03ZDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlunGGwbqTGsfO+fMfDKkbwe5kN58r1Kr/56MCFyF9fnTXYBwQORQ7skBOZp8 hqZZnWj4dLGkfnQxsAaK+oQ/v6YelNhprlwHcaMEdn0C+5/jqGW12ujw2TyT1fUw UM8vfxXEm/Gl/x/k/wYBGttydO7vBkmdoYKmYGyOAaYAH/T3s7BWz/lxuKB1hWbU j6QCRfQygSUoNVQNvZxgYLm1eMhoaNHpjsFw2qHzwMQju3K13AK/HyGl9+GA+kH/ n8QdiCXyEhMpvOCBccYsMX5hA4FHvp0QG9Mgn8KEmtSO9YuLJ8AIVqoeNI7wgh7b +gbrMvFIZFZahUgjJQB93Isg6QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFqdQHwM 3sYs//ZFpHHfGxzkOkeAMB8GA1UdIwQYMBaAFCpr8FStI+rS2zlTG2RnJsqUWsSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUI3RS9GNzU5Nzk2RTA4 ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0TGJPVk1iWkdjbXlwUmF4 SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFCN0UvRjc1OTc5NkUwODgxMTFGMEJBQzM0MTNFQzRGOUFFMDIvM0NGNUE4NkMw ODgyMTFGMEJCOTBDMjNFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBo9+2MA0GCSqGSIb3DQEBCwUAA4IBAQCJhcnDz+BRxiNJTCM5AoB1 rgTp/fgsRsjuWQnPLnt6Ux64hERf0q6X7UF6F7vJXlILwkI9AWyBi0aMiIVDvL4s aZ0VWabHjV9X5WBx0xBeRCGQ8Oo86ukWvT4kltQw44qM3mF3ia3usqtwV0u/OgYh Kk+pxJNhnfHpTlAMBo8b9Ym6eQi3FWoG2FyqYGHP6cypZ+001FsRzvZVUcO0VFQi qafE7NQvfbXYg8+Kp1lTw1EsyFCVu1rLsOHQlSIixe1lyN2zvEbqZdEKmUKjN+vs ziLKTtQsYXd/3rNvGAN1N6OSmz+lqELuHzf7o55Eu7YnwuuuCqSJek0P2irhcpi+ -----END CERTIFICATE-----Generated at Mon Mar 2 05:45:58 2026 by rpki-client