$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/08B3C74CC9D811F09CB7D619C4F9AE02.roa File: 08B3C74CC9D811F09CB7D619C4F9AE02.roa (raw, json) Hash identifier: NkRA+6v8SHzSnOv7vUGCx9MnSFnB4HOaGLfOqoQhzJs= Subject key identifier: AC:15:FE:0A:23:97:CD:09:FB:1B:83:88:0A:D2:F7:D5:CB:51:65:91 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CD4 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/08B3C74CC9D811F09CB7D619C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:50:07 +0000 ROA not before: Tue 25 Nov 2025 08:23:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153289 IP address blocks: 161.248.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11476 (0x2cd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Nov 25 08:23:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c29f-93f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:d7:50:f1:9c:5e:de:b9:a9:66:fa:59:c1:fd: 33:56:18:31:b5:5c:73:79:53:d1:40:6a:ff:71:47: ee:15:9d:66:68:ba:19:e9:79:a3:7b:c5:a8:c6:e6: a3:29:d4:10:28:7c:d5:8c:a2:f0:af:b9:1f:0d:83: eb:8e:82:bf:57:2c:37:8c:a4:86:a1:3c:11:14:c1: 68:f3:db:1e:35:cd:f3:70:f2:5f:76:66:9e:1a:28: f3:8b:c1:e4:bf:72:ec:9e:fa:8c:f6:11:82:84:40: bd:e2:3e:6e:6c:1a:6a:32:26:ae:e1:93:e9:21:6c: 2f:11:e2:18:0d:3f:ef:9f:87:ac:34:35:91:4b:24: bb:6e:95:b5:e8:7d:20:65:7f:7a:68:78:2b:a1:57: db:50:aa:ae:e4:fa:c0:f2:0b:cc:12:3b:2c:d5:50: db:8b:c9:b0:c6:1e:af:52:8d:6c:78:87:fc:75:ee: 00:1b:92:b6:02:31:60:87:87:d1:da:d6:df:d6:fe: 48:9b:ef:e4:6c:e9:32:43:c4:42:64:42:6f:64:fb: 6a:a8:9f:3a:66:4f:4e:8c:84:a0:59:3d:34:67:07: 77:e6:21:ce:69:94:9a:89:52:e3:f1:07:12:d5:37: a5:16:46:de:ee:e6:79:06:e4:87:47:60:32:73:58: 46:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:15:FE:0A:23:97:CD:09:FB:1B:83:88:0A:D2:F7:D5:CB:51:65:91 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/08B3C74CC9D811F09CB7D619C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.38.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:00:39:89:01:c7:0d:0c:42:ee:c1:99:5e:b8:0e:ca:cd:4a: 5b:2c:7d:46:07:5a:2f:b9:7a:36:22:10:d7:6a:f0:2f:aa:f5: 29:63:95:f9:7c:ef:d4:79:19:e1:35:3a:f3:18:2f:9f:b0:ee: 0c:73:f0:7b:f8:74:f2:15:0a:7a:6a:ac:35:67:6c:58:23:d2: 75:36:70:9e:85:3e:84:07:5b:ef:0b:b7:92:63:fa:e5:0c:b7: e6:1d:aa:b4:35:70:1c:f3:9b:63:8e:b9:94:2a:7d:80:f9:9a: 5e:9c:ff:59:c1:18:3c:64:b4:99:f4:ff:a5:5b:48:86:a7:c8: 0c:01:90:7c:da:24:50:7b:ab:39:07:21:85:61:06:78:f6:47: 69:ae:07:ac:7f:20:2f:de:8e:db:dc:fb:25:0e:36:a6:c7:c3: ed:e7:55:04:b9:cf:67:78:5c:4b:cc:03:68:25:74:c2:1f:85: d2:31:18:94:38:cd:3d:aa:42:ab:7a:73:59:73:fc:3e:dc:4b: 32:09:fa:81:7e:8e:1c:12:7d:1a:48:8a:a4:65:a9:de:49:02: 2a:a8:1f:00:99:39:e2:a9:f4:4b:f6:fa:c4:1b:18:9c:62:f4: 3d:e6:3a:1c:44:53:0a:ba:c6:ca:ec:18:7e:a0:0f:e3:f5:8e: bf:e4:26:a3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMTI1MDgyMzM0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzI5Zi05M2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjddQ8Zxe3rmpZvpZwf0zVhgxtVxzeVPRQGr/cUfuFZ1maLoZ6Xmje8Woxuaj KdQQKHzVjKLwr7kfDYPrjoK/Vyw3jKSGoTwRFMFo89seNc3zcPJfdmaeGijzi8Hk v3LsnvqM9hGChEC94j5ubBpqMiau4ZPpIWwvEeIYDT/vn4esNDWRSyS7bpW16H0g ZX96aHgroVfbUKqu5PrA8gvMEjss1VDbi8mwxh6vUo1seIf8de4AG5K2AjFgh4fR 2tbf1v5Im+/kbOkyQ8RCZEJvZPtqqJ86Zk9OjISgWT00Zwd35iHOaZSaiVLj8QcS 1TelFkbe7uZ5BuSHR2Ayc1hGawIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKwV/goj l80J+xuDiArS99XLUWWRMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDhCM0M3NEND OUQ4MTFGMDlDQjdENjE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofgmMA0GCSqGSIb3DQEBCwUAA4IBAQAOADmJAccNDELuwZleuA7K zUpbLH1GB1ovuXo2IhDXavAvqvUpY5X5fO/UeRnhNTrzGC+fsO4Mc/B7+HTyFQp6 aqw1Z2xYI9J1NnCehT6EB1vvC7eSY/rlDLfmHaq0NXAc85tjjrmUKn2A+ZpenP9Z wRg8ZLSZ9P+lW0iGp8gMAZB82iRQe6s5ByGFYQZ49kdprgesfyAv3o7b3PslDjam x8Pt51UEuc9neFxLzANoJXTCH4XSMRiUOM09qkKrenNZc/w+3EsyCfqBfo4cEn0a SIqkZaneSQIqqB8AmTniqfRL9vrEGxicYvQ95jocRFMKusbK7Bh+oA/j9Y6/5Caj -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:36 2026 by rpki-client