$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/53BCB840EA4211EB846B8757C4F9AE02.roa File: 53BCB840EA4211EB846B8757C4F9AE02.roa (raw, json) Hash identifier: 8A4Wb2KJcDqzfgpVuNBZcnB+OO/NHwZAcOnGRk55RA8= Subject key identifier: EC:21:1A:14:AD:8F:0A:E2:7B:E5:E6:AC:37:56:20:D6:03:96:57:97 Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0621 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/53BCB840EA4211EB846B8757C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:49:30 +0000 ROA not before: Thu 02 Oct 2025 23:24:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 14340 IP address blocks: 104.161.128.0/18 maxlen: 24 104.161.248.0/23 maxlen: 24 104.161.252.0/24 maxlen: 24 104.161.253.0/24 maxlen: 24 161.32.64.0/18 maxlen: 24 161.32.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 22:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Oct 2 23:24:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46e1a-a9be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:07:0c:8b:c3:8a:b6:0a:22:94:a1:de:69:1a: 6f:87:67:45:dc:1a:35:86:bd:ed:6a:94:5e:76:14: f6:0f:d9:be:ab:4a:66:46:09:7d:c6:34:be:28:f9: 00:e9:59:08:45:cc:a9:4f:f5:29:8a:4b:17:25:19: 44:84:82:42:f1:fe:cc:65:70:36:ad:86:39:0c:51: 25:a9:81:08:ec:fb:3e:a8:d7:67:28:58:c8:95:b1: d4:8a:3c:b4:10:62:db:c3:71:f2:7e:38:f2:5d:d5: 74:25:1a:6f:41:be:0a:de:a2:a6:da:0c:b5:75:04: 2c:5f:8b:76:bc:3b:3b:7d:f2:77:69:93:30:61:54: 53:3f:05:f0:a5:10:e8:92:9e:9f:a3:2e:24:e3:67: 99:1c:2e:35:d0:e6:7a:b9:e1:0f:b9:a5:9e:fc:8c: 04:fb:87:86:c0:c7:92:81:1d:b4:78:61:1c:59:2b: ec:7f:17:f4:b3:10:2c:75:98:97:53:c6:b3:68:7c: d1:41:69:10:de:61:ad:ad:f6:23:8b:02:c8:0c:90: 13:f1:c9:e8:45:33:f3:fb:e1:50:96:27:78:01:90: e6:76:cf:e2:c4:6a:19:33:01:1a:74:eb:e9:9d:37: 05:eb:13:57:f2:48:9c:42:6f:67:77:cc:32:f8:59: bd:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:21:1A:14:AD:8F:0A:E2:7B:E5:E6:AC:37:56:20:D6:03:96:57:97 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/53BCB840EA4211EB846B8757C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 104.161.128.0/18 104.161.248.0/23 104.161.252.0/23 161.32.64.0-161.32.255.255 Signature Algorithm: sha256WithRSAEncryption 61:38:e3:84:b4:f7:76:42:b6:f1:32:7e:8e:9e:75:1b:b9:16: 21:b3:4e:ef:7e:12:82:5a:54:39:fc:ba:e7:57:8e:0b:68:e7: 35:d5:e3:fb:26:ec:1b:0e:b3:8b:a0:c3:8a:d3:80:10:07:5a: b8:ae:3d:c6:02:1f:4d:a9:f3:f6:22:ec:11:17:8c:63:28:18: 9f:d0:e1:a7:c5:3e:ef:ba:c1:0c:58:63:ad:66:ba:82:bd:42: 79:b2:97:bb:42:ed:16:ce:b5:96:af:8a:b8:e5:ad:d8:4c:1d: e0:a4:d5:b9:ff:5d:99:06:b0:d4:9a:46:c6:19:33:90:8f:38: da:ac:73:9f:20:7d:1a:e0:b7:ec:8c:2b:73:ff:ea:20:24:b6: 67:f6:9d:2a:af:b9:63:62:ec:24:f4:e9:cc:d7:54:eb:ff:d5: 56:83:26:73:a7:8c:29:d7:bc:90:85:ac:c3:86:35:a3:60:81: bf:90:8f:15:51:39:77:fb:67:bb:9c:80:db:b8:04:c0:12:81: db:ab:fb:91:4a:ca:33:1b:80:19:c9:55:68:ac:d7:d2:f3:51: 9d:83:b5:01:18:5d:f7:7e:05:9c:8e:31:93:45:a5:c6:bf:a9: 9c:33:c6:c2:64:d6:93:23:21:b7:f0:71:31:f2:99:d2:35:65: ee:14:3b:0a -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUxMDAyMjMyNDMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmUxYS1hOWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QcMi8OKtgoilKHeaRpvh2dF3Bo1hr3tapRedhT2D9m+q0pmRgl9xjS+KPkA 6VkIRcypT/UpiksXJRlEhIJC8f7MZXA2rYY5DFElqYEI7Ps+qNdnKFjIlbHUijy0 EGLbw3HyfjjyXdV0JRpvQb4K3qKm2gy1dQQsX4t2vDs7ffJ3aZMwYVRTPwXwpRDo kp6foy4k42eZHC410OZ6ueEPuaWe/IwE+4eGwMeSgR20eGEcWSvsfxf0sxAsdZiX U8azaHzRQWkQ3mGtrfYjiwLIDJAT8cnoRTPz++FQlid4AZDmds/ixGoZMwEadOvp nTcF6xNX8kicQm9nd8wy+Fm9qwIDAQABo4ICeTCCAnUwHQYDVR0OBBYEFOwhGhSt jwrie+XmrDdWINYDlleXMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvNENCRkY0QUVERkYxMTFFQjg5NEYzMDY3QzRGOUFFMDIvNTNCQ0I4NDBF QTQyMTFFQjg0NkI4NzU3QzRGOUFFMDIucm9hMDgGCCsGAQUFBwEHAQH/BCkwJzAl BAIAATAfAwQGaKGAAwQBaKH4AwQBaKH8MAsDBAahIEADAwChIDANBgkqhkiG9w0B AQsFAAOCAQEAYTjjhLT3dkK28TJ+jp51G7kWIbNO734SglpUOfy651eOC2jnNdXj +ybsGw6zi6DDitOAEAdauK49xgIfTanz9iLsEReMYygYn9Dhp8U+77rBDFhjrWa6 gr1CebKXu0LtFs61lq+KuOWt2Ewd4KTVuf9dmQaw1JpGxhkzkI842qxznyB9GuC3 7Iwrc//qICS2Z/adKq+5Y2LsJPTpzNdU6//VVoMmc6eMKde8kIWsw4Y1o2CBv5CP FVE5d/tnu5yA27gEwBKB26v7kUrKMxuAGclVaKzX0vNRnYO1ARhd934FnI4xk0Wl xr+pnDPGwmTWkyMht/BxMfKZ0jVl7hQ7Cg== -----END CERTIFICATE-----Generated at Fri Mar 13 19:35:06 2026 by rpki-client