$ rpki-client -vvf rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/2C00BB1239EF11EFB6EE4687C4F9AE02.roa File: 2C00BB1239EF11EFB6EE4687C4F9AE02.roa (raw, json) Hash identifier: 8A6OZKEYDe5tk62VO4N+r8KirwNL+HYE9ef12Zy2x34= Subject key identifier: D9:19:42:9D:87:52:A8:84:D3:34:A7:0B:29:7E:F2:13:02:F7:A3:53 Certificate issuer: /CN=A919BC3B/serialNumber=E8F755E71F5ED7F913452CFFCE3ED42088121A68 Certificate serial: 0146 Authority key identifier: E8:F7:55:E7:1F:5E:D7:F9:13:45:2C:FF:CE:3E:D4:20:88:12:1A:68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6PdV5x9e1_kTRSz_zj7UIIgSGmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/2C00BB1239EF11EFB6EE4687C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:18:02 +0000 ROA not before: Sat 07 Jun 2025 05:54:59 +0000 ROA not after: Thu 31 Aug 2028 00:00:00 +0000 asID: 152890 IP address blocks: 160.22.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/6PdV5x9e1_kTRSz_zj7UIIgSGmg.crl rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/6PdV5x9e1_kTRSz_zj7UIIgSGmg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6PdV5x9e1_kTRSz_zj7UIIgSGmg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:59:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BC3B, serialNumber=E8F755E71F5ED7F913452CFFCE3ED42088121A68 Validity Not Before: Jun 7 05:54:59 2025 GMT Not After : Aug 31 00:00:00 2028 GMT Subject: CN=69a59c19-a424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ea:15:d6:49:d3:f3:49:23:24:39:2a:93:70: 47:c5:84:f2:7f:dc:4f:4a:9f:9c:14:ea:1c:49:8b: 4b:2b:e0:89:85:56:a0:8b:0c:ee:da:38:2b:36:4d: bf:68:3a:3c:dd:fa:9d:0e:8b:a7:a6:dd:62:d2:c4: 35:bf:12:41:72:26:17:8d:82:6f:0b:4e:80:ff:40: f3:dd:22:2f:cc:15:ca:fa:40:50:7a:ac:df:25:66: b1:1f:89:7b:ca:6c:54:15:33:04:c7:ce:a1:cd:2e: 86:cc:81:db:73:f2:d0:74:44:ca:b3:30:9b:8d:db: 4b:d9:26:96:89:e1:16:3f:af:fc:69:ed:95:81:e0: fe:97:b1:e1:0f:f8:53:c9:12:32:00:75:3b:ab:e4: 76:69:4b:ae:b6:80:18:b1:e4:5e:bd:73:b1:fd:e9: 38:c8:23:59:0f:7e:70:2a:7b:ac:d5:32:5b:7b:d8: c3:37:08:19:a3:b0:75:ca:ac:c7:a8:de:d2:e5:19: a3:3b:91:8a:18:59:f3:16:a6:6c:05:00:11:38:e6: 86:9c:1f:78:44:43:2e:86:bf:9b:44:72:f3:c0:21: 5d:ab:54:c2:d3:2a:01:2b:96:00:14:64:bd:c9:e4: d6:c4:04:c8:47:b2:92:76:38:c3:4c:31:12:40:a9: 0c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:19:42:9D:87:52:A8:84:D3:34:A7:0B:29:7E:F2:13:02:F7:A3:53 X509v3 Authority Key Identifier: keyid:E8:F7:55:E7:1F:5E:D7:F9:13:45:2C:FF:CE:3E:D4:20:88:12:1A:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/6PdV5x9e1_kTRSz_zj7UIIgSGmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6PdV5x9e1_kTRSz_zj7UIIgSGmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/2C00BB1239EF11EFB6EE4687C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.22.38.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:c3:c5:91:03:7f:ea:fb:ec:73:ee:c7:82:82:60:81:2d:81: c4:a1:44:e1:38:93:5e:ec:5b:7d:e6:5d:5e:36:26:65:e2:b8: a0:86:62:d9:a6:4c:62:af:73:10:7e:07:b1:01:41:b5:d5:d7: 91:a2:68:28:a8:4b:64:9d:48:cc:16:d9:78:19:ea:1f:fd:3f: 9f:6d:be:e2:9a:95:ce:0b:21:10:cb:aa:9e:06:af:61:39:a3: c9:29:95:5f:de:9b:50:c1:57:bf:a3:69:8e:b3:2e:05:b8:51: e1:bb:68:e9:85:9e:50:8b:ec:2b:91:2d:f7:2b:ba:5f:48:75: 85:d2:36:20:fa:3d:0b:f5:3a:22:47:2d:b3:26:35:71:e4:e0: 40:d0:9c:55:a2:44:a0:c3:92:9f:94:c3:44:c8:4d:44:4f:4b: 89:21:3b:14:7a:71:b3:72:10:bd:01:b2:9b:33:54:41:d7:76: 60:89:9e:84:b8:f5:b8:56:e7:e4:5e:0e:fb:c5:ac:f2:19:bc: ff:d2:21:5f:94:7b:04:5c:fb:94:bb:e2:7e:f4:68:f2:64:f5: c8:c5:50:5f:43:f6:2d:a8:33:fb:ff:88:12:c8:01:a2:6e:97: d2:39:e6:21:2d:7d:55:2c:fe:ac:8d:54:b2:aa:e7:13:e3:fc: aa:bf:80:95 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJDM0IxMTAvBgNVBAUTKEU4Rjc1NUU3MUY1RUQ3RjkxMzQ1MkNGRkNFM0VENDIw ODgxMjFBNjgwHhcNMjUwNjA3MDU1NDU5WhcNMjgwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWMxOS1hNDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmeoV1knT80kjJDkqk3BHxYTyf9xPSp+cFOocSYtLK+CJhVagiwzu2jgrNk2/ aDo83fqdDounpt1i0sQ1vxJBciYXjYJvC06A/0Dz3SIvzBXK+kBQeqzfJWaxH4l7 ymxUFTMEx86hzS6GzIHbc/LQdETKszCbjdtL2SaWieEWP6/8ae2VgeD+l7HhD/hT yRIyAHU7q+R2aUuutoAYseRevXOx/ek4yCNZD35wKnus1TJbe9jDNwgZo7B1yqzH qN7S5RmjO5GKGFnzFqZsBQAROOaGnB94REMuhr+bRHLzwCFdq1TC0yoBK5YAFGS9 yeTWxATIR7KSdjjDTDESQKkMewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNkZQp2H UqiE0zSnCyl+8hMC96NTMB8GA1UdIwQYMBaAFOj3VecfXtf5E0Us/84+1CCIEhpo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkMzQi9DNkJENTQ3QzM5 RUUxMUVGQTQzRDY1ODZDNEY5QUUwMi82UGRWNXg5ZTFfa1RSU3pfemo3VUlJZ1NH bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZQZFY1eDllMV9rVFJTel96ajdVSUlnU0dtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJDM0IvQzZCRDU0N0MzOUVFMTFFRkE0M0Q2NTg2QzRGOUFFMDIvMkMwMEJCMTIz OUVGMTFFRkI2RUU0Njg3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBYmMA0GCSqGSIb3DQEBCwUAA4IBAQB8w8WRA3/q++xz7seCgmCB LYHEoUThOJNe7Ft95l1eNiZl4righmLZpkxir3MQfgexAUG11deRomgoqEtknUjM Ftl4Geof/T+fbb7impXOCyEQy6qeBq9hOaPJKZVf3ptQwVe/o2mOsy4FuFHhu2jp hZ5Qi+wrkS33K7pfSHWF0jYg+j0L9ToiRy2zJjVx5OBA0JxVokSgw5KflMNEyE1E T0uJITsUenGzchC9AbKbM1RB13ZgiZ6EuPW4VufkXg77xazyGbz/0iFflHsEXPuU u+J+9GjyZPXIxVBfQ/YtqDP7/4gSyAGibpfSOeYhLX1VLP6sjVSyqucT4/yqv4CV -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:46 2026 by rpki-client