$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3A5A84F8CB7111EBA9EEF440C4F9AE02.roa File: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (raw, json) Hash identifier: 2ZECssZFKej2Bnmujg65SvPR+m2K68FZcUfUc+ikvVg= Subject key identifier: BF:36:47:52:99:68:C4:AF:71:50:69:22:C7:FB:5B:FB:BA:D6:D9:3E Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C9A Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3A5A84F8CB7111EBA9EEF440C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:00:15 +0000 ROA not before: Thu 08 Jan 2026 18:15:32 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 8739 IP address blocks: 116.251.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3226 (0xc9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Jan 8 18:15:32 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a5a5ff-0448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f7:02:9e:0e:79:d7:2f:03:d6:02:7c:03:e4: f7:09:a0:62:d0:7b:a8:a6:09:82:21:a4:2c:7f:a0: 6c:a3:d2:f4:eb:f3:1d:af:1c:88:60:31:2d:d5:c8: 6c:d3:42:fc:18:9c:44:96:bd:94:62:fd:1b:60:75: 3b:38:76:e7:84:57:a8:4b:c2:15:d2:10:d3:43:12: c9:92:db:71:2f:b9:a7:39:a0:a3:ed:14:bb:31:bb: 5b:3c:2b:94:7d:c5:be:6e:dc:cf:f6:20:a3:4a:56: ed:01:95:d2:6e:44:be:7e:f4:93:f0:a1:99:a7:1a: 0d:48:65:e7:f3:70:ff:94:d6:76:26:fd:7e:79:6f: 44:0b:b3:01:80:b2:04:c7:ef:9c:95:32:23:b9:2c: 6f:a0:93:97:93:07:d0:bc:64:b9:ea:e4:ce:90:08: 4d:b6:93:7c:15:75:88:ae:e4:6a:a0:d8:66:a1:98: d8:cc:96:20:42:16:5f:e9:0e:fc:b5:33:84:24:26: 7b:de:b6:ea:41:a0:fb:8d:d8:26:13:9f:77:fc:c9: b4:b7:42:49:cd:e2:c3:75:9f:22:f3:ee:01:07:b1: 96:ea:3f:2c:c3:fa:75:31:51:02:69:92:aa:99:b2: 75:03:59:d8:34:c1:41:5c:a3:20:70:d7:17:24:09: d2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:36:47:52:99:68:C4:AF:71:50:69:22:C7:FB:5B:FB:BA:D6:D9:3E X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3A5A84F8CB7111EBA9EEF440C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.251.204.0/22 Signature Algorithm: sha256WithRSAEncryption af:1b:af:e3:9e:d4:fc:19:99:37:35:fb:22:36:1f:db:2c:09: e0:42:27:27:ec:e4:4d:a4:84:de:a9:b5:08:bd:e9:ba:3a:d8: 84:09:c6:fe:54:fd:40:3e:ee:3b:8c:36:1b:78:a4:dd:2f:a4: 3a:44:43:ad:e3:26:43:d1:5c:62:db:07:ca:d6:c9:10:a7:76: f5:3a:a3:ee:f8:d5:90:c1:b0:08:a1:f7:9d:0b:1a:4c:dc:1f: aa:17:c8:3b:a0:eb:e0:5f:42:20:34:19:9f:da:18:4a:aa:28: 90:d6:46:f6:0c:92:c1:24:ca:e0:41:f1:e5:5e:c6:e0:95:59: 20:c2:00:5a:22:92:34:71:d1:9d:27:66:20:df:44:a3:ab:7e: 7d:ac:8f:2f:54:92:2c:df:ed:73:8c:8c:ec:4f:db:92:90:32: c7:bb:b8:c3:17:f1:fa:bb:d3:a9:59:03:de:4c:a7:d4:57:a3: e4:80:c4:d9:1b:24:5e:2c:d3:bc:f6:90:b2:b5:6d:b4:94:55: 4a:b0:9d:8b:b5:9b:a0:28:13:31:4d:38:77:1b:cf:f6:b0:51: 26:7f:de:6e:81:b9:bf:09:98:1e:36:f1:58:90:b8:4b:5c:99: 88:b8:f8:87:86:80:8b:65:5d:c5:5d:7f:b7:17:3f:ff:20:c8: 0b:14:9f:a0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjYwMTA4MTgxNTMyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTVmZi0wNDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnPcCng551y8D1gJ8A+T3CaBi0HuopgmCIaQsf6Bso9L06/MdrxyIYDEt1chs 00L8GJxElr2UYv0bYHU7OHbnhFeoS8IV0hDTQxLJkttxL7mnOaCj7RS7MbtbPCuU fcW+btzP9iCjSlbtAZXSbkS+fvST8KGZpxoNSGXn83D/lNZ2Jv1+eW9EC7MBgLIE x++clTIjuSxvoJOXkwfQvGS56uTOkAhNtpN8FXWIruRqoNhmoZjYzJYgQhZf6Q78 tTOEJCZ73rbqQaD7jdgmE593/Mm0t0JJzeLDdZ8i8+4BB7GW6j8sw/p1MVECaZKq mbJ1A1nYNMFBXKMgcNcXJAnSnQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL82R1KZ aMSvcVBpIsf7W/u61tk+MB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg1NjgvRDMxMzA2NzYxODU3MTFFQTk4NjM0MTVFQzRGOUFFMDIvM0E1QTg0RjhD QjcxMTFFQkE5RUVGNDQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdPvMMA0GCSqGSIb3DQEBCwUAA4IBAQCvG6/jntT8GZk3NfsiNh/b LAngQicn7ORNpITeqbUIvem6OtiECcb+VP1APu47jDYbeKTdL6Q6REOt4yZD0Vxi 2wfK1skQp3b1OqPu+NWQwbAIofedCxpM3B+qF8g7oOvgX0IgNBmf2hhKqiiQ1kb2 DJLBJMrgQfHlXsbglVkgwgBaIpI0cdGdJ2Yg30Sjq359rI8vVJIs3+1zjIzsT9uS kDLHu7jDF/H6u9OpWQPeTKfUV6PkgMTZGyReLNO89pCytW20lFVKsJ2LtZugKBMx TTh3G8/2sFEmf95ugbm/CZgeNvFYkLhLXJmIuPiHhoCLZV3FXX+3Fz//IMgLFJ+g -----END CERTIFICATE-----Generated at Fri Mar 13 08:41:50 2026 by rpki-client