$ rpki-client -vvf rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/37DEC83C9DEC11EFB004850FC4F9AE02.roa File: 37DEC83C9DEC11EFB004850FC4F9AE02.roa (raw, json) Hash identifier: FNB/Vhah+1KKF+D8+8ZX+5xp4x5bxuKgnMy6uZOCSaU= Subject key identifier: 11:DA:4A:D1:EF:5B:3C:62:EA:97:0C:59:89:79:3F:F9:BD:1C:A3:0A Certificate issuer: /CN=A915D8F3/serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Certificate serial: 0102 Authority key identifier: 32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/37DEC83C9DEC11EFB004850FC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:08:22 +0000 ROA not before: Sat 03 Jan 2026 03:26:19 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152165 IP address blocks: 160.191.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D8F3, serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Validity Not Before: Jan 3 03:26:19 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a43a46-c68e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:65:a5:3a:54:35:ac:2b:5c:06:0e:3b:45:f7: 49:86:f6:99:56:29:e3:1a:42:ff:dd:16:9b:84:00: db:c7:90:a3:49:e2:6e:df:f0:06:ee:5b:9c:58:a2: e1:62:dd:65:02:34:2b:8e:1c:06:45:d6:f2:ae:7f: ed:6d:d2:69:40:a8:0e:95:6a:1e:9d:a6:fe:59:b6: 1c:ed:83:bd:b7:70:b6:1d:4d:a2:5b:90:0a:a2:5c: fb:ad:b5:bb:d1:4f:12:df:c3:7f:bd:0c:cf:69:ed: e6:e5:1f:e7:b3:25:81:6f:6f:8e:bc:a6:d1:7b:d3: 15:93:6e:08:a6:08:b0:48:96:58:01:8f:2c:75:02: ae:c7:f6:11:1f:2c:d8:4f:28:12:cc:23:f0:5d:b8: 31:3c:74:51:ae:66:fc:72:1f:e2:08:5e:2a:e9:3c: 60:74:36:da:fb:6c:69:ef:30:21:43:0b:eb:0f:51: 30:77:5b:23:f9:b8:86:20:0b:06:d3:fc:ec:07:ae: 07:43:4b:9a:09:82:25:25:5f:fd:bf:89:15:47:70: b0:9a:95:24:74:11:1b:91:2e:91:8b:3e:0f:6c:e1: 19:03:57:5b:f4:26:f9:81:f1:20:ed:10:7f:c4:29: 26:66:45:d5:62:7a:e3:39:70:e6:63:5e:52:14:21: 5e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DA:4A:D1:EF:5B:3C:62:EA:97:0C:59:89:79:3F:F9:BD:1C:A3:0A X509v3 Authority Key Identifier: keyid:32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/37DEC83C9DEC11EFB004850FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.145.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:40:30:86:f6:79:d2:db:e5:ae:a2:75:01:72:60:f3:e2:63: 96:4c:78:e1:c5:7a:0e:88:4d:55:d5:63:75:ef:0a:a5:d3:70: 76:09:cd:86:45:39:de:33:85:f5:1a:b7:a4:9f:c5:2a:d1:ff: 4f:11:20:f6:4f:ca:52:98:d7:5e:28:dc:06:90:42:45:b0:34: a4:9f:b1:9f:64:97:0a:72:32:35:77:35:82:27:0e:64:7e:14: 38:d8:18:25:b9:ec:55:19:64:04:31:9f:4b:0b:ec:e1:42:a5: 61:ef:0a:de:9f:75:11:df:bf:5f:0b:15:b7:55:1d:8b:a1:41: 2a:10:de:d3:21:19:a4:8c:9f:7c:d8:81:a2:78:d7:4f:18:67: d7:03:59:ca:1c:4b:4f:84:1c:f7:0c:7a:c7:1e:c3:aa:77:9d: 5c:50:50:6e:4e:73:26:7a:31:a9:fa:d2:25:3b:31:51:aa:9f: b4:0c:54:4f:21:a2:98:38:87:c8:26:c3:b8:49:79:f0:ad:15: 77:e7:26:00:c8:95:5e:50:3b:33:0d:f1:34:cd:50:90:e7:7b: 4e:7c:57:66:bc:f7:a9:71:21:8d:ca:b1:03:88:e3:35:35:dc: 7e:c0:4f:d3:7e:5c:9b:4a:81:bd:d9:d6:a7:8d:4d:f9:47:59: d2:f9:e7:57 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ4RjMxMTAvBgNVBAUTKDMyQzAyMTMxMUI2MkZFNDUwMEJDOEU0RTBGNDg1MkM2 NEJDNURBQ0IwHhcNMjYwMTAzMDMyNjE5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2E0Ni1jNjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GWlOlQ1rCtcBg47RfdJhvaZVinjGkL/3RabhADbx5CjSeJu3/AG7lucWKLh Yt1lAjQrjhwGRdbyrn/tbdJpQKgOlWoenab+WbYc7YO9t3C2HU2iW5AKolz7rbW7 0U8S38N/vQzPae3m5R/nsyWBb2+OvKbRe9MVk24IpgiwSJZYAY8sdQKux/YRHyzY TygSzCPwXbgxPHRRrmb8ch/iCF4q6TxgdDba+2xp7zAhQwvrD1Ewd1sj+biGIAsG 0/zsB64HQ0uaCYIlJV/9v4kVR3CwmpUkdBEbkS6Riz4PbOEZA1db9Cb5gfEg7RB/ xCkmZkXVYnrjOXDmY15SFCFe4QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBHaStHv Wzxi6pcMWYl5P/m9HKMKMB8GA1UdIwQYMBaAFDLAITEbYv5FALyOTg9IUsZLxdrL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDhGMy9DNTdGMjNBRTlC MDcxMUVGODM3RUEwMTJDNEY5QUUwMi9Nc0FoTVJ0aV9rVUF2STVPRDBoU3hrdkYy c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01zQWhNUnRpX2tVQXZJNU9EMGhTeGt2RjJzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ4RjMvQzU3RjIzQUU5QjA3MTFFRjgzN0VBMDEyQzRGOUFFMDIvMzdERUM4M0M5 REVDMTFFRkIwMDQ4NTBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoL+RMA0GCSqGSIb3DQEBCwUAA4IBAQAtQDCG9nnS2+WuonUBcmDz 4mOWTHjhxXoOiE1V1WN17wql03B2Cc2GRTneM4X1Grekn8Uq0f9PESD2T8pSmNde KNwGkEJFsDSkn7GfZJcKcjI1dzWCJw5kfhQ42BgluexVGWQEMZ9LC+zhQqVh7wre n3UR379fCxW3VR2LoUEqEN7TIRmkjJ982IGieNdPGGfXA1nKHEtPhBz3DHrHHsOq d51cUFBuTnMmejGp+tIlOzFRqp+0DFRPIaKYOIfIJsO4SXnwrRV35yYAyJVeUDsz DfE0zVCQ53tOfFdmvPepcSGNyrEDiOM1Ndx+wE/TflybSoG92danjU35R1nS+edX -----END CERTIFICATE-----Generated at Thu Mar 26 14:25:59 2026 by rpki-client