$ rpki-client -vvf rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/C53A8AF010AE11F1B1789E883B3D8C67.roa File: C53A8AF010AE11F1B1789E883B3D8C67.roa (raw, json) Hash identifier: BVZb748ht5IQsD5gjUkjZUEu7rDelrcy6NU5wkQOYRg= Subject key identifier: 40:06:D9:7A:99:2E:4C:21:E5:3B:22:81:3D:B2:F2:4D:0F:4C:A5:A3 Certificate issuer: /CN=A918D1BD/serialNumber=C395D01A08C15A211103CE81061E26824F56BDD8 Certificate serial: 50 Authority key identifier: C3:95:D0:1A:08:C1:5A:21:11:03:CE:81:06:1E:26:82:4F:56:BD:D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w5XQGgjBWiERA86BBh4mgk9Wvdg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/C53A8AF010AE11F1B1789E883B3D8C67.roa Signing time: Sun 01 Mar 2026 06:15:54 +0000 ROA not before: Mon 23 Feb 2026 11:57:04 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154284 IP address blocks: 138.252.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/w5XQGgjBWiERA86BBh4mgk9Wvdg.crl rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/w5XQGgjBWiERA86BBh4mgk9Wvdg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w5XQGgjBWiERA86BBh4mgk9Wvdg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D1BD, serialNumber=C395D01A08C15A211103CE81061E26824F56BDD8 Validity Not Before: Feb 23 11:57:04 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d99a-01c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:31:74:4b:ea:de:69:71:24:c6:22:b1:2f:48: ed:c4:b9:70:aa:a8:0a:ee:71:b6:b5:92:67:de:b5: ea:46:00:25:85:cf:48:aa:3c:65:9c:98:98:23:e8: 63:d5:bd:78:40:39:7b:ae:93:29:7e:63:10:d0:6a: 2e:1b:4e:d9:b0:15:b8:cb:59:f8:45:14:d0:7a:92: 50:ed:c2:b6:54:27:d7:c8:a0:b5:4b:c9:de:d7:ea: 1b:e9:58:3c:bb:d0:4d:bd:dc:71:4b:c4:b0:2a:07: fe:12:31:98:37:e3:6c:28:4e:a8:46:b2:17:19:25: b3:03:c6:06:58:6c:c2:c3:cf:f9:6c:11:97:8b:0b: 37:f7:a9:1a:5f:82:9c:d5:8d:45:9e:d3:b5:b3:46: 70:42:8d:6d:75:af:bb:fd:bc:b8:94:b3:41:de:93: 2c:df:6e:28:dc:9a:52:ba:2d:da:65:12:2f:62:37: c3:2d:7a:7f:cc:d4:18:a8:49:34:77:8e:bc:93:47: f0:84:b7:39:b2:9c:4c:ba:cc:27:8c:89:cd:75:7b: 90:1c:45:d2:43:94:bb:4c:df:6d:3b:c6:4a:53:e9: 8a:c2:db:02:3a:4a:ae:8c:20:9f:f4:05:a6:bc:ef: d3:24:d2:2e:b2:a9:dd:17:4a:3a:e5:89:4d:c3:4e: 19:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:06:D9:7A:99:2E:4C:21:E5:3B:22:81:3D:B2:F2:4D:0F:4C:A5:A3 X509v3 Authority Key Identifier: keyid:C3:95:D0:1A:08:C1:5A:21:11:03:CE:81:06:1E:26:82:4F:56:BD:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/w5XQGgjBWiERA86BBh4mgk9Wvdg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w5XQGgjBWiERA86BBh4mgk9Wvdg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/C53A8AF010AE11F1B1789E883B3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 138.252.20.0/24 Signature Algorithm: sha256WithRSAEncryption 38:05:c9:9b:75:87:3f:27:d4:9b:19:06:d4:81:c6:42:e7:e0: 17:78:3f:66:a1:0b:c2:97:58:1c:4c:21:97:23:b8:39:e3:15: 08:ab:df:57:b6:3e:35:d2:0c:34:57:3a:16:01:a3:03:d0:56: 32:e5:45:54:ff:0a:fb:aa:5e:97:f9:db:1e:01:b5:02:ea:5c: f4:d2:6d:ab:e1:e1:23:a4:c9:79:56:7f:07:96:d0:8f:82:52: 8f:b3:05:7d:b0:1a:38:ee:31:b6:4a:45:ed:39:42:f2:96:28: 1a:37:a2:83:b6:66:f1:cc:55:d1:08:46:b9:5f:fc:81:e8:09: c5:60:a9:66:eb:36:b0:ff:48:c0:34:0c:a2:b9:d5:9f:42:ba: d9:29:33:03:0a:29:23:bf:e2:45:b1:80:d4:45:da:61:d3:94: 0b:8b:5b:87:4f:0d:f9:ec:ce:e2:b3:8f:78:a3:c4:e3:c0:b6: 68:08:d9:47:98:4c:17:63:f1:30:07:50:7e:0a:26:c6:98:60: 58:d8:a1:a2:af:f6:ab:75:01:59:d2:d0:a2:24:89:ce:39:f0: fe:c5:e0:84:14:9d:25:e3:c2:cb:57:5b:c4:07:f9:f0:48:d1: 5d:a4:6d:16:b0:04:f7:73:22:68:78:07:e3:c5:ad:df:9f:cc: 26:10:a7:51 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDFCRDExMC8GA1UEBRMoQzM5NUQwMUEwOEMxNUEyMTExMDNDRTgxMDYxRTI2ODI0 RjU2QkREODAeFw0yNjAyMjMxMTU3MDRaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOTlhLTAxYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9MXRL6t5pcSTGIrEvSO3EuXCqqArucba1kmfetepGACWFz0iqPGWcmJgj6GPV vXhAOXuukyl+YxDQai4bTtmwFbjLWfhFFNB6klDtwrZUJ9fIoLVLyd7X6hvpWDy7 0E293HFLxLAqB/4SMZg342woTqhGshcZJbMDxgZYbMLDz/lsEZeLCzf3qRpfgpzV jUWe07WzRnBCjW11r7v9vLiUs0HekyzfbijcmlK6LdplEi9iN8Mten/M1BioSTR3 jryTR/CEtzmynEy6zCeMic11e5AcRdJDlLtM3207xkpT6YrC2wI6Sq6MIJ/0Baa8 79Mk0i6yqd0XSjrliU3DThmNAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUQAbZepku TCHlOyKBPbLyTQ9MpaMwHwYDVR0jBBgwFoAUw5XQGgjBWiERA86BBh4mgk9Wvdgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEMUJEL0E3MDZGOEIyQTc2 MjExRjA4RkRFMzQxM0M0RjlBRTAyL3c1WFFHZ2pCV2lFUkE4NkJCaDRtZ2s5V3Zk Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdzVYUUdnakJXaUVSQTg2QkJoNG1nazlXdmRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDFCRC9BNzA2RjhCMkE3NjIxMUYwOEZERTM0MTNDNEY5QUUwMi9DNTNBOEFGMDEw QUUxMUYxQjE3ODlFODgzQjNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACK/BQwDQYJKoZIhvcNAQELBQADggEBADgFyZt1hz8n1JsZBtSBxkLn 4Bd4P2ahC8KXWBxMIZcjuDnjFQir31e2PjXSDDRXOhYBowPQVjLlRVT/CvuqXpf5 2x4BtQLqXPTSbavh4SOkyXlWfweW0I+CUo+zBX2wGjjuMbZKRe05QvKWKBo3ooO2 ZvHMVdEIRrlf/IHoCcVgqWbrNrD/SMA0DKK51Z9CutkpMwMKKSO/4kWxgNRF2mHT lAuLW4dPDfnszuKzj3ijxOPAtmgI2UeYTBdj8TAHUH4KJsaYYFjYoaKv9qt1AVnS 0KIkic458P7F4IQUnSXjwstXW8QH+fBI0V2kbRawBPdzImh4B+PFrd+fzCYQp1E= -----END CERTIFICATE-----Generated at Mon Mar 2 16:03:55 2026 by rpki-client