$ rpki-client -vvf rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/37FE553E5CAB11F08FCD0029C4F9AE02.roa File: 37FE553E5CAB11F08FCD0029C4F9AE02.roa (raw, json) Hash identifier: 7vsEdUjO68wSnI82MSqqLNl6M5rdXWQoFEtu17LQhaE= Subject key identifier: 3A:A7:C4:C1:73:99:8D:FE:FB:C1:E3:D2:3B:13:23:A4:B8:9A:2C:AA Certificate issuer: /CN=A9186B80/serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762 Certificate serial: 0596 Authority key identifier: BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/37FE553E5CAB11F08FCD0029C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:59:41 +0000 ROA not before: Sat 11 Oct 2025 01:55:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 14537 IP address blocks: 160.32.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.crl rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Mar 2026 22:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1430 (0x596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186B80, serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762 Validity Not Before: Oct 11 01:55:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4545d-fe63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:61:9d:9e:af:3e:1a:ff:8e:a9:53:b4:fc:85: 08:33:a6:b6:e6:da:49:15:54:78:ff:f4:d9:55:9e: ca:6e:00:d8:e3:57:14:ea:e7:38:73:af:0a:5c:ae: 8f:63:bb:5f:b5:6b:87:6c:49:43:8b:c7:69:de:5a: 08:06:0a:b2:d3:48:df:0f:af:04:ef:42:8b:cd:68: 55:46:f0:1b:ba:60:c3:a7:b2:da:10:36:db:91:e2: 8c:65:af:ac:8c:a5:92:5d:83:ad:38:e8:44:5c:c6: 30:e8:d0:56:69:42:01:fb:6a:d1:51:f5:a9:ab:3c: 0e:00:de:8b:a6:22:7d:f9:00:29:f6:10:64:1c:46: 2a:53:8d:75:30:bb:1d:fb:cd:6e:a4:8a:50:a2:72: fb:ce:97:cc:81:49:6c:d6:5e:92:8a:30:9c:be:44: 25:a6:6d:9a:30:3f:75:5c:df:c7:e0:00:a3:a8:27: fa:6c:19:44:3f:b5:4a:29:9e:b0:39:e5:cc:47:44: 20:6a:08:78:ac:d2:9b:48:68:c2:21:3f:20:a1:63: 3d:c4:39:95:1e:fa:09:f2:de:34:2f:7d:4b:91:6d: 55:3b:af:70:0e:fe:47:c7:76:a6:8e:47:1b:87:48: b1:d9:78:4f:f5:af:f9:33:f5:fd:a6:27:00:a7:b8: f0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A7:C4:C1:73:99:8D:FE:FB:C1:E3:D2:3B:13:23:A4:B8:9A:2C:AA X509v3 Authority Key Identifier: keyid:BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/37FE553E5CAB11F08FCD0029C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.32.240.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:42:01:2d:8b:de:d4:4c:f3:0e:9b:2a:33:54:d1:cd:fb:21: 70:2e:a8:27:58:d5:30:0a:5f:41:cd:3a:29:8a:48:6e:d8:f1: 0d:e1:60:37:40:40:eb:9f:af:e4:f9:1b:59:5e:a1:83:88:5a: 10:27:e1:8a:ce:1e:2a:f2:40:e8:63:5f:70:7d:78:e3:70:9d: d0:9c:10:99:61:ba:9f:70:d8:ce:e5:c3:68:01:18:84:72:0f: 58:a2:a4:8a:db:99:2a:22:d4:12:05:13:eb:eb:ba:b2:29:56: b5:d7:67:48:d0:5b:b7:f8:c0:df:47:d3:22:44:f4:6b:47:94: ed:ea:bc:56:3c:09:10:66:1a:35:d5:18:5e:7a:15:f8:fb:59: 35:c8:f7:af:0a:e0:ea:da:cc:37:97:5c:22:c7:67:da:9d:7a: 35:6d:cd:4b:01:57:61:f2:a5:28:6f:9a:f2:d0:f9:b1:57:76: f5:7e:9e:7c:a1:8f:fc:f6:a8:de:28:bf:d5:e1:d9:dc:d1:67: a6:2d:7d:e4:bf:05:bf:78:0d:cb:3d:65:d1:e5:06:fa:f5:00: 43:4e:7a:98:70:7b:38:92:9c:ce:2c:94:cd:9c:a0:33:2a:e6: 7b:49:42:22:68:8b:de:9d:20:96:b6:1c:95:33:d8:a9:3b:57: 82:f9:f0:44 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZCODAxMTAvBgNVBAUTKEJEMUU3RTY0MUZGRDk2RDU3NDYxNTVGQzQyMUIxN0RE QzFBQTc3NjIwHhcNMjUxMDExMDE1NTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTQ1ZC1mZTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi2Gdnq8+Gv+OqVO0/IUIM6a25tpJFVR4//TZVZ7KbgDY41cU6uc4c68KXK6P Y7tftWuHbElDi8dp3loIBgqy00jfD68E70KLzWhVRvAbumDDp7LaEDbbkeKMZa+s jKWSXYOtOOhEXMYw6NBWaUIB+2rRUfWpqzwOAN6LpiJ9+QAp9hBkHEYqU411MLsd +81upIpQonL7zpfMgUls1l6SijCcvkQlpm2aMD91XN/H4ACjqCf6bBlEP7VKKZ6w OeXMR0Qgagh4rNKbSGjCIT8goWM9xDmVHvoJ8t40L31LkW1VO69wDv5Hx3amjkcb h0ix2XhP9a/5M/X9picAp7jwiQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDqnxMFz mY3++8Hj0jsTI6S4miyqMB8GA1UdIwQYMBaAFL0efmQf/ZbVdGFV/EIbF93Bqndi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkI4MC9BRTZBQTFCNDEy M0IxMUVDOEExMzVGNDJDNEY5QUUwMi92UjUtWkJfOWx0VjBZVlg4UWhzWDNjR3Fk MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZSNS1aQl85bHRWMFlWWDhRaHNYM2NHcWQySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZCODAvQUU2QUExQjQxMjNCMTFFQzhBMTM1RjQyQzRGOUFFMDIvMzdGRTU1M0U1 Q0FCMTFGMDhGQ0QwMDI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDoCDwMA0GCSqGSIb3DQEBCwUAA4IBAQBLQgEti97UTPMOmyozVNHN +yFwLqgnWNUwCl9BzTopikhu2PEN4WA3QEDrn6/k+RtZXqGDiFoQJ+GKzh4q8kDo Y19wfXjjcJ3QnBCZYbqfcNjO5cNoARiEcg9YoqSK25kqItQSBRPr67qyKVa112dI 0Fu3+MDfR9MiRPRrR5Tt6rxWPAkQZho11RheehX4+1k1yPevCuDq2sw3l1wix2fa nXo1bc1LAVdh8qUob5ry0PmxV3b1fp58oY/89qjeKL/V4dnc0WemLX3kvwW/eA3L PWXR5Qb69QBDTnqYcHs4kpzOLJTNnKAzKuZ7SUIiaIvenSCWthyVM9ipO1eC+fBE -----END CERTIFICATE-----Generated at Tue Mar 10 14:31:33 2026 by rpki-client