$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3181E726CE7911F0A596D24CC4F9AE02.roa File: 3181E726CE7911F0A596D24CC4F9AE02.roa (raw, json) Hash identifier: Q6nT1DNFMCp7qpzlXLwSnEcQZeHtin6qnflq08P8c3U= Subject key identifier: 69:E5:B7:C6:48:18:F9:56:56:E3:B4:85:03:6B:AF:E2:D7:7B:50:5B Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CD6 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3181E726CE7911F0A596D24CC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:50:10 +0000 ROA not before: Mon 01 Dec 2025 05:58:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135692 IP address blocks: 138.252.242.0/23 maxlen: 23 138.252.242.0/24 maxlen: 24 138.252.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11478 (0x2cd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Dec 1 05:58:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c2a1-de47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:97:5a:dd:13:6f:df:35:2f:d8:96:0b:03:45: 3a:37:22:94:da:52:ca:ea:ed:77:fd:bb:3f:64:01: 54:31:da:be:e8:bd:c7:c8:bd:26:cd:2a:09:3e:61: e2:db:45:3e:ce:42:6b:dd:20:d0:7a:30:91:83:91: 4a:4f:d0:6e:57:d9:7f:61:72:60:d0:a2:e2:41:7b: 30:2f:72:b4:65:6c:af:5e:ae:84:75:c3:67:da:97: 39:58:2f:62:96:f2:de:69:10:78:83:8d:7e:72:83: ef:d3:21:da:ed:b3:25:06:b4:62:50:9f:26:b2:0b: 0a:25:5e:51:10:ed:7e:b1:09:ed:90:c1:a8:58:d1: 08:58:74:ae:17:28:aa:47:33:a3:25:fd:bb:8c:bc: ee:07:4d:c3:11:ad:b4:02:5f:aa:cc:76:2a:8f:2f: e7:9f:6d:db:e6:be:57:0f:e0:ac:f6:d8:b1:dd:c4: 5c:97:4e:61:01:d5:1e:e4:cb:db:37:42:7e:36:3f: 0d:f0:82:69:a6:f1:24:9b:9c:78:e5:91:a3:bf:99: 8b:af:53:97:ce:e8:8d:8f:5a:38:c1:75:ab:27:5d: de:3c:3d:a7:eb:7c:15:53:2e:cf:58:cc:bc:af:b6: 38:25:5f:a6:51:27:05:23:0b:c2:43:33:6a:d4:15: 15:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E5:B7:C6:48:18:F9:56:56:E3:B4:85:03:6B:AF:E2:D7:7B:50:5B X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3181E726CE7911F0A596D24CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.242.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:6a:c7:25:d1:0e:c3:07:bd:13:5a:3f:e1:0e:03:87:0f:4c: c8:d6:38:c8:71:b7:05:f7:6b:48:89:ae:c0:45:8c:ba:c4:1e: 17:b8:ba:ae:c3:1b:13:cf:0f:a3:05:25:63:00:0c:74:1d:bd: 54:36:f7:72:47:f7:e6:4e:16:8d:c2:29:f7:17:14:b9:b4:1c: 52:e8:eb:a5:70:0f:84:d1:7b:c2:14:93:db:92:1e:b8:d9:af: 6e:60:da:1b:3c:46:6a:17:52:aa:77:2d:f1:6b:63:29:ea:ca: b6:03:f9:e5:02:3f:69:68:12:6f:5a:e3:05:6b:32:ea:fe:bb: 09:de:8c:24:a6:14:00:a4:6e:47:74:cf:8c:db:e4:1f:52:60: 11:1f:88:75:f3:c8:58:a8:65:56:f5:7a:f8:be:8a:f2:50:22: 68:ac:02:4c:99:04:61:47:3e:a9:e7:32:7d:36:d6:ea:40:c1: 6d:c1:50:12:64:88:51:25:ca:8e:e7:f5:e4:ca:e5:b1:2a:d7: 48:45:ba:68:57:55:9c:a9:b2:6c:1d:a0:8e:99:b6:b7:57:d5: b0:6a:1d:ed:03:33:8a:7c:dc:3c:62:dc:6a:40:fb:e0:70:93: 65:5f:2d:7d:d9:9f:b4:6e:16:cd:ab:a6:46:8c:83:32:aa:4d: d8:a2:ec:ec -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMjAxMDU1ODM4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzJhMS1kZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Zda3RNv3zUv2JYLA0U6NyKU2lLK6u13/bs/ZAFUMdq+6L3HyL0mzSoJPmHi 20U+zkJr3SDQejCRg5FKT9BuV9l/YXJg0KLiQXswL3K0ZWyvXq6EdcNn2pc5WC9i lvLeaRB4g41+coPv0yHa7bMlBrRiUJ8msgsKJV5REO1+sQntkMGoWNEIWHSuFyiq RzOjJf27jLzuB03DEa20Al+qzHYqjy/nn23b5r5XD+Cs9tix3cRcl05hAdUe5Mvb N0J+Nj8N8IJppvEkm5x45ZGjv5mLr1OXzuiNj1o4wXWrJ13ePD2n63wVUy7PWMy8 r7Y4JV+mUScFIwvCQzNq1BUVOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGnlt8ZI GPlWVuO0hQNrr+LXe1BbMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzE4MUU3MjZD RTc5MTFGMEE1OTZEMjRDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBivzyMA0GCSqGSIb3DQEBCwUAA4IBAQBsascl0Q7DB70TWj/hDgOH D0zI1jjIcbcF92tIia7ARYy6xB4XuLquwxsTzw+jBSVjAAx0Hb1UNvdyR/fmThaN win3FxS5tBxS6OulcA+E0XvCFJPbkh642a9uYNobPEZqF1Kqdy3xa2Mp6sq2A/nl Aj9paBJvWuMFazLq/rsJ3owkphQApG5HdM+M2+QfUmARH4h188hYqGVW9Xr4vory UCJorAJMmQRhRz6p5zJ9NtbqQMFtwVASZIhRJcqO5/XkyuWxKtdIRbpoV1WcqbJs HaCOmba3V9Wwah3tAzOKfNw8YtxqQPvgcJNlXy192Z+0bhbNq6ZGjIMyqk3Youzs -----END CERTIFICATE-----Generated at Mon Mar 2 17:06:18 2026 by rpki-client