$ rpki-client -vvf rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/2A148C7E1D4211F1BDB413AD1B3D8C67.roa File: 2A148C7E1D4211F1BDB413AD1B3D8C67.roa (raw, json) Hash identifier: 9+eeW3fxI81UmxuXMQKdcRk52NKqKNvOzfTZtPfzt/w= Subject key identifier: 10:66:5D:E7:BA:D7:2F:99:2B:F0:27:E0:8E:A7:56:DA:5C:9C:9D:0E Certificate issuer: /CN=A916E9E3/serialNumber=0084F47A4372C8F8A7D51183D5036C593D19E1C3 Certificate serial: 62 Authority key identifier: 00:84:F4:7A:43:72:C8:F8:A7:D5:11:83:D5:03:6C:59:3D:19:E1:C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AIT0ekNyyPin1RGD1QNsWT0Z4cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/2A148C7E1D4211F1BDB413AD1B3D8C67.roa Signing time: Wed 11 Mar 2026 12:02:24 +0000 ROA not before: Wed 11 Mar 2026 12:02:24 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 152098 IP address blocks: 155.35.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/AIT0ekNyyPin1RGD1QNsWT0Z4cM.crl rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/AIT0ekNyyPin1RGD1QNsWT0Z4cM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AIT0ekNyyPin1RGD1QNsWT0Z4cM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E9E3, serialNumber=0084F47A4372C8F8A7D51183D5036C593D19E1C3 Validity Not Before: Mar 11 12:02:24 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69b159cf-e12d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ff:61:54:b4:29:59:a9:48:9a:f5:23:92:9a: 8a:42:72:67:f7:4d:c4:1b:82:e3:6a:00:e2:52:56: 7d:87:cb:7d:1a:0b:f2:e4:56:a5:8e:88:9c:d9:c3: 9b:fc:9c:6b:ed:e9:74:27:56:f8:e0:70:a3:ca:50: 96:64:2a:af:df:59:19:64:b5:e2:12:42:69:c5:2f: f9:f4:36:8a:17:23:a4:67:d6:f9:91:0b:71:0c:5e: de:88:8a:54:4d:c8:09:82:34:c2:14:c0:7c:ab:1d: 02:17:88:8e:74:9e:8f:a9:c7:65:d9:f8:fb:e0:34: 46:61:6a:98:3b:03:5c:c7:01:33:d6:eb:f1:39:f1: b5:c7:04:c6:86:4b:61:4b:31:66:f0:c5:46:fa:5f: 01:54:de:1a:f5:ff:0d:5c:97:87:03:70:5b:13:e0: 64:7a:30:a5:cf:58:d0:4a:d5:bb:c2:4c:9c:8a:be: c7:1c:12:66:39:81:85:80:d2:6d:21:ca:ad:66:9a: a2:1b:d7:64:f8:90:e3:3f:3a:55:f0:aa:40:21:88: c4:70:0b:95:a2:e4:7e:74:93:ef:f0:a2:31:21:c4: 58:97:05:a7:da:f1:dc:12:a8:e2:90:78:57:27:11: be:2d:5b:c9:01:90:dd:9f:80:a0:de:43:bd:87:75: 7e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:66:5D:E7:BA:D7:2F:99:2B:F0:27:E0:8E:A7:56:DA:5C:9C:9D:0E X509v3 Authority Key Identifier: keyid:00:84:F4:7A:43:72:C8:F8:A7:D5:11:83:D5:03:6C:59:3D:19:E1:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/AIT0ekNyyPin1RGD1QNsWT0Z4cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AIT0ekNyyPin1RGD1QNsWT0Z4cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E9E3/44CE4ED2A3A411F092013E29C4F9AE02/2A148C7E1D4211F1BDB413AD1B3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 155.35.35.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:fe:08:f6:e7:a6:6f:3b:04:16:39:45:7d:b8:b1:76:51:7e: a3:da:a9:63:9a:1e:85:c1:15:33:7e:50:b5:f9:ea:b3:70:2d: cc:53:8a:54:16:97:48:5e:51:53:01:68:ee:a3:30:ec:4b:5c: 4b:05:9f:f4:36:7a:5e:2e:99:e7:28:e0:61:2b:a8:7e:d0:7c: 93:72:c3:45:31:33:de:be:b2:31:f2:b2:d8:d1:a6:95:03:60: dd:0b:b1:96:7f:72:1b:52:ba:30:00:bf:14:15:2d:8c:ee:46: c1:e0:fa:4c:4d:87:ce:f2:e9:32:e3:f7:ba:5a:0d:33:f4:e9: 4c:c9:76:2a:db:be:83:b3:aa:e4:a4:dc:e0:c4:c0:2e:4c:5b: 6c:53:ec:4c:86:a4:89:8b:51:76:0f:28:3f:27:95:76:4a:46: 32:44:39:ad:40:12:f6:b0:b5:3b:18:be:2a:62:cd:39:d2:8b: fb:94:27:3b:a5:28:d1:6b:10:fd:da:e6:ad:30:54:0d:50:c6: e8:f1:a2:9c:80:bd:cf:ce:ed:85:65:ae:e4:d4:88:08:82:08: e2:6d:aa:fc:b6:c0:b4:6e:6c:a8:f6:f0:54:09:e3:86:55:39: 14:d1:fd:54:6a:4a:1d:6b:8f:63:0a:9c:f7:42:3c:ef:12:21: a3:24:f6:24 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RTlFMzExMC8GA1UEBRMoMDA4NEY0N0E0MzcyQzhGOEE3RDUxMTgzRDUwMzZDNTkz RDE5RTFDMzAeFw0yNjAzMTExMjAyMjRaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjE1OWNmLWUxMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs/2FUtClZqUia9SOSmopCcmf3TcQbguNqAOJSVn2Hy30aC/LkVqWOiJzZw5v8 nGvt6XQnVvjgcKPKUJZkKq/fWRlkteISQmnFL/n0NooXI6Rn1vmRC3EMXt6IilRN yAmCNMIUwHyrHQIXiI50no+px2XZ+PvgNEZhapg7A1zHATPW6/E58bXHBMaGS2FL MWbwxUb6XwFU3hr1/w1cl4cDcFsT4GR6MKXPWNBK1bvCTJyKvsccEmY5gYWA0m0h yq1mmqIb12T4kOM/OlXwqkAhiMRwC5Wi5H50k+/wojEhxFiXBafa8dwSqOKQeFcn Eb4tW8kBkN2fgKDeQ72HdX4NAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUEGZd57rX L5kr8CfgjqdW2lycnQ4wHwYDVR0jBBgwFoAUAIT0ekNyyPin1RGD1QNsWT0Z4cMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZFOUUzLzQ0Q0U0RUQyQTNB NDExRjA5MjAxM0UyOUM0RjlBRTAyL0FJVDBla055eVBpbjFSR0QxUU5zV1QwWjRj TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQUlUMGVrTnl5UGluMVJHRDFRTnNXVDBaNGNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTlFMy80NENFNEVEMkEzQTQxMUYwOTIwMTNFMjlDNEY5QUUwMi8yQTE0OEM3RTFE NDIxMUYxQkRCNDEzQUQxQjNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACbIyMwDQYJKoZIhvcNAQELBQADggEBAE/+CPbnpm87BBY5RX24sXZR fqPaqWOaHoXBFTN+ULX56rNwLcxTilQWl0heUVMBaO6jMOxLXEsFn/Q2el4umeco 4GErqH7QfJNyw0UxM96+sjHystjRppUDYN0LsZZ/chtSujAAvxQVLYzuRsHg+kxN h87y6TLj97paDTP06UzJdirbvoOzquSk3ODEwC5MW2xT7EyGpImLUXYPKD8nlXZK RjJEOa1AEvawtTsYvipizTnSi/uUJzulKNFrEP3a5q0wVA1QxujxopyAvc/O7YVl ruTUiAiCCOJtqvy2wLRubKj28FQJ44ZVORTR/VRqSh1rj2MKnPdCPO8SIaMk9iQ= -----END CERTIFICATE-----Generated at Thu Mar 26 18:39:33 2026 by rpki-client