$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/38F85C12315611F0A6B1097AC4F9AE02.roa File: 38F85C12315611F0A6B1097AC4F9AE02.roa (raw, json) Hash identifier: qDcBGVVVpPB654fgT8L85CmaaISkTMyW0pq/EwFVO0w= Subject key identifier: CF:7A:B3:99:CB:34:D3:21:DD:91:1B:95:7B:1B:69:7C:C0:E2:01:29 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 08DA Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/38F85C12315611F0A6B1097AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:53:46 +0000 ROA not before: Wed 08 Oct 2025 22:54:11 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151373 IP address blocks: 163.53.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 22:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2266 (0x8da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 8 22:54:11 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48b3a-42c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ac:50:88:53:21:ac:6c:fb:90:01:83:eb:01: fd:5c:15:e1:b5:be:c2:b1:a9:a4:de:f0:46:28:02: f7:ed:0d:8a:ff:00:14:b6:f0:11:13:76:0e:c4:47: 4e:9a:eb:6b:54:d3:4c:9b:57:37:c0:ce:28:98:2e: 6e:25:e7:3b:f9:36:44:f5:62:d7:ad:29:d3:38:d7: 35:6c:06:67:33:04:54:5a:11:99:f1:9d:c3:8c:45: 6b:32:92:c4:2e:93:e7:38:67:7c:98:f0:0e:52:15: 9b:d2:9d:da:de:0a:06:fd:b7:3a:be:9b:5a:45:be: bc:66:f9:0a:d3:2c:25:20:ac:67:75:1d:5c:33:fb: 28:cb:29:cc:e0:64:6d:74:25:09:a4:9c:90:c4:83: bb:ff:4c:f9:51:ed:54:21:f8:9c:37:cf:ab:81:d8: 52:71:56:98:5e:9e:12:d6:9a:9e:2d:5f:08:8d:62: 55:5e:81:e2:bd:33:6c:f5:10:7a:ec:b7:70:2a:0f: 0f:08:95:50:48:c9:74:af:61:ea:0c:62:6f:97:e7: ea:47:db:5d:a2:20:60:c0:58:60:0d:57:bc:b6:31: a8:49:17:d9:c9:03:0f:90:bd:14:87:04:13:f0:5a: 77:c6:f7:82:db:6b:75:eb:be:aa:47:e1:96:91:d6: 6f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7A:B3:99:CB:34:D3:21:DD:91:1B:95:7B:1B:69:7C:C0:E2:01:29 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/38F85C12315611F0A6B1097AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.53.19.0/24 Signature Algorithm: sha256WithRSAEncryption 86:6a:28:37:d3:2b:a4:52:21:ae:3c:4d:15:3d:5f:00:bb:af: ed:c1:76:02:9c:f4:f9:65:aa:9e:1f:b3:b9:60:54:55:40:39: 85:0c:52:fc:fa:b7:3e:28:cd:d6:07:0e:ba:76:66:72:64:1f: 69:68:7c:f8:f2:8c:dd:b5:c9:74:f4:7a:2b:0d:56:b5:ed:10: 49:23:18:bb:1b:5f:bb:a3:6b:09:3b:25:c7:4c:cc:67:09:a8: 5c:67:9a:06:e7:40:23:54:bc:61:9b:b4:58:65:a1:25:65:04: fb:8c:92:65:33:c7:0a:52:1b:c8:a8:e2:a3:f6:a9:a8:cd:1d: cf:af:ed:48:60:46:27:fd:e4:f2:6a:52:66:94:83:5c:32:e8: cf:04:87:aa:e0:72:61:83:5b:b8:7b:8a:a1:43:04:da:f8:1d: b6:e3:b4:1a:86:b2:91:00:d4:f9:6c:e2:31:63:60:90:c6:1c: 3f:2c:73:13:fb:d5:82:e8:94:31:5c:2c:6e:85:f3:7d:9d:55: a9:32:46:60:22:e3:24:0e:ac:8b:09:76:56:a8:a2:14:0c:22: 50:ee:2b:c1:a0:6d:ca:1a:13:b6:d7:ae:10:4b:bf:b7:33:df: 1a:4c:96:e4:40:1a:c6:09:61:70:5a:6e:2b:50:f8:74:14:a4: 67:74:0a:b2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMDA4MjI1NDExWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGIzYS00MmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6xQiFMhrGz7kAGD6wH9XBXhtb7Csamk3vBGKAL37Q2K/wAUtvARE3YOxEdO mutrVNNMm1c3wM4omC5uJec7+TZE9WLXrSnTONc1bAZnMwRUWhGZ8Z3DjEVrMpLE LpPnOGd8mPAOUhWb0p3a3goG/bc6vptaRb68ZvkK0ywlIKxndR1cM/soyynM4GRt dCUJpJyQxIO7/0z5Ue1UIficN8+rgdhScVaYXp4S1pqeLV8IjWJVXoHivTNs9RB6 7LdwKg8PCJVQSMl0r2HqDGJvl+fqR9tdoiBgwFhgDVe8tjGoSRfZyQMPkL0UhwQT 8Fp3xveC22t1676qR+GWkdZvdQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM96s5nL NNMh3ZEblXsbaXzA4gEpMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvMzhGODVDMTIz MTU2MTFGMEE2QjEwOTdBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAozUTMA0GCSqGSIb3DQEBCwUAA4IBAQCGaig30yukUiGuPE0VPV8A u6/twXYCnPT5ZaqeH7O5YFRVQDmFDFL8+rc+KM3WBw66dmZyZB9paHz48ozdtcl0 9HorDVa17RBJIxi7G1+7o2sJOyXHTMxnCahcZ5oG50AjVLxhm7RYZaElZQT7jJJl M8cKUhvIqOKj9qmozR3Pr+1IYEYn/eTyalJmlINcMujPBIeq4HJhg1u4e4qhQwTa +B2247QahrKRANT5bOIxY2CQxhw/LHMT+9WC6JQxXCxuhfN9nVWpMkZgIuMkDqyL CXZWqKIUDCJQ7ivBoG3KGhO2164QS7+3M98aTJbkQBrGCWFwWm4rUPh0FKRndAqy -----END CERTIFICATE-----Generated at Fri Mar 6 05:42:38 2026 by rpki-client