$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3B609732DF1411F0A54B68C45F6F56BC.roa File: 3B609732DF1411F0A54B68C45F6F56BC.roa (raw, json) Hash identifier: qIDpMBhi1+p6DcpKAXCimBbDAChBXIxBrphHrBAWHuk= Subject key identifier: BE:C3:D7:4F:5A:92:83:A4:EC:A7:F9:79:86:C9:F5:1C:C5:E6:90:4E Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CE9 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3B609732DF1411F0A54B68C45F6F56BC.roa Signing time: Sun 01 Mar 2026 22:50:36 +0000 ROA not before: Mon 22 Dec 2025 08:57:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154297 IP address blocks: 138.252.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11497 (0x2ce9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Dec 22 08:57:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c2bc-f5c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bc:c5:57:c3:c1:54:6e:35:57:67:87:59:6c: 04:d6:ab:f1:ae:cb:51:cd:10:ec:79:bf:09:ab:62: 63:7e:50:14:81:46:cd:e6:3b:f5:d6:1c:3f:79:f7: 1a:73:d3:57:17:8d:c6:e3:92:47:75:79:51:9a:38: 82:4a:b3:59:bf:87:eb:34:ea:6a:54:f9:bd:88:f8: ec:ac:c9:6f:2f:73:e9:17:00:37:e3:cd:06:f8:28: 68:4e:e3:50:0d:ec:fc:88:09:f3:6d:1a:7f:bd:f0: 71:1a:4f:ff:23:63:94:51:82:1d:c4:73:ab:11:85: 99:f4:13:32:89:73:e7:f1:6a:7e:da:b0:01:93:e2: ae:69:10:90:5e:39:71:ee:30:cc:f7:57:15:8d:7d: 8c:43:e6:ff:df:fc:02:17:c5:ff:93:60:a0:2d:e2: 23:af:ab:a2:a3:d9:27:d7:a6:c0:23:35:5c:dd:f2: 28:92:7f:7d:98:97:38:0f:3a:6e:d1:80:14:4e:22: 00:7e:1e:1b:48:43:5b:52:7e:28:b6:92:2f:7c:9e: c8:65:d3:8c:fb:8a:c6:6d:31:73:8d:bf:7b:dd:60: b4:4f:49:b7:88:24:05:0c:d0:74:48:0f:e4:c5:f9: 40:a5:64:7b:22:47:30:0d:f8:d9:34:c4:db:2f:b9: 44:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C3:D7:4F:5A:92:83:A4:EC:A7:F9:79:86:C9:F5:1C:C5:E6:90:4E X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3B609732DF1411F0A54B68C45F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 138.252.34.0/23 Signature Algorithm: sha256WithRSAEncryption 10:46:be:48:60:c8:2a:b7:68:a3:92:ee:17:16:7e:39:f5:7d: bf:37:c8:f1:00:c6:3b:3c:2f:4b:58:43:43:89:59:3e:df:7f: 06:eb:ce:73:45:02:fd:42:4e:c7:a0:b1:14:f5:e4:ed:52:41: cd:29:bd:54:12:9b:35:dc:46:96:cb:c8:5d:c5:f0:70:71:6d: c5:55:d1:45:51:38:be:32:7e:f0:61:1b:94:6c:0a:88:88:56: 0f:68:94:3b:aa:6c:4a:7f:fc:0a:a4:13:44:9f:44:37:3f:7b: 03:06:8f:ea:6e:f2:70:a4:f4:36:cd:53:19:d1:23:1d:82:b4: af:cf:4d:69:53:9b:ca:a3:39:52:60:9b:3e:59:7e:2f:3e:76: a0:79:c7:55:fc:6a:35:7f:ef:95:b4:31:2b:c4:6b:e9:60:d7: 0c:c1:7d:ef:a3:06:57:84:4a:77:c1:e3:d8:fa:e6:29:5a:66: 37:f0:77:ac:25:49:c0:3a:42:0c:db:29:61:39:60:a0:72:60: d8:14:aa:81:4f:da:f5:0b:2b:a4:ac:ac:5b:41:26:c4:22:5c: 41:7b:ea:e8:3b:a7:9f:ab:50:2e:76:e3:6d:77:25:fd:53:6f: 52:f0:0a:b1:ad:cf:3a:59:05:24:77:7a:4b:de:1a:32:1c:06: 28:77:71:82 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMjIyMDg1NzI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzJiYy1mNWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bzFV8PBVG41V2eHWWwE1qvxrstRzRDseb8Jq2JjflAUgUbN5jv11hw/efca c9NXF43G45JHdXlRmjiCSrNZv4frNOpqVPm9iPjsrMlvL3PpFwA3480G+ChoTuNQ Dez8iAnzbRp/vfBxGk//I2OUUYIdxHOrEYWZ9BMyiXPn8Wp+2rABk+KuaRCQXjlx 7jDM91cVjX2MQ+b/3/wCF8X/k2CgLeIjr6uio9kn16bAIzVc3fIokn99mJc4Dzpu 0YAUTiIAfh4bSENbUn4otpIvfJ7IZdOM+4rGbTFzjb973WC0T0m3iCQFDNB0SA/k xflApWR7IkcwDfjZNMTbL7lEeQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL7D109a koOk7Kf5eYbJ9RzF5pBOMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0I2MDk3MzJE RjE0MTFGMEE1NEI2OEM0NUY2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBivwiMA0GCSqGSIb3DQEBCwUAA4IBAQAQRr5IYMgqt2ijku4XFn45 9X2/N8jxAMY7PC9LWENDiVk+338G685zRQL9Qk7HoLEU9eTtUkHNKb1UEps13EaW y8hdxfBwcW3FVdFFUTi+Mn7wYRuUbAqIiFYPaJQ7qmxKf/wKpBNEn0Q3P3sDBo/q bvJwpPQ2zVMZ0SMdgrSvz01pU5vKozlSYJs+WX4vPnagecdV/Go1f++VtDErxGvp YNcMwX3vowZXhEp3wePY+uYpWmY38HesJUnAOkIM2ylhOWCgcmDYFKqBT9r1Cyuk rKxbQSbEIlxBe+roO6efq1AuduNtdyX9U29S8Aqxrc86WQUkd3pL3hoyHAYod3GC -----END CERTIFICATE-----Generated at Mon Mar 2 15:05:09 2026 by rpki-client