$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/BE9BADE02B4011F0BA1FF282C4F9AE02.roa File: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (raw, json) Hash identifier: e0sKc/3PzukaFrJycUXB6K4Zrj8DGKsFURALFcSQcVU= Subject key identifier: E0:2E:1E:BB:F1:AC:FF:74:4D:1B:F2:2B:AE:1F:1F:D1:83:47:A9:CC Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2BC2 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/BE9BADE02B4011F0BA1FF282C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:51:33 +0000 ROA not before: Fri 16 Jan 2026 16:12:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152842 IP address blocks: 160.22.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:34:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11202 (0x2bc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Jan 16 16:12:51 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48ab5-c8a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:94:2b:14:b5:6b:c8:aa:4e:67:99:dc:87:6f: 5a:11:aa:44:f8:12:d6:9b:39:e8:08:08:e2:48:bf: c4:cd:9f:49:ae:16:de:87:0c:6b:ca:54:28:3b:82: 05:de:eb:47:40:d6:aa:88:45:57:cb:be:1a:8d:01: be:7d:26:20:f4:ca:49:61:65:09:b7:cd:69:e6:0b: 87:ec:ae:43:17:f2:7b:2d:70:dc:5d:85:6f:34:88: 5f:4a:73:69:c6:c2:18:72:44:79:2d:92:0b:b3:71: c3:a4:73:61:02:58:2b:9a:b0:4b:07:80:9b:50:13: 82:d2:51:e2:27:90:db:15:14:0e:4d:e4:e8:98:64: 99:22:98:58:83:79:f9:b5:ed:6e:a8:4b:c7:f3:e2: 68:9a:10:68:1c:d6:e1:e5:30:17:2b:9d:b8:a5:a0: 55:64:60:74:14:9a:71:0f:58:0e:81:c2:42:3d:59: b1:46:13:b7:29:a2:06:be:dd:51:c4:73:e4:c9:0e: 8c:fa:aa:db:c1:13:27:d8:2f:a0:ab:ff:91:2a:29: ad:34:56:9a:00:d3:7d:bb:e0:a7:c2:6c:f8:0e:fb: e6:62:21:34:4f:da:86:20:0a:52:b1:f5:5b:ad:c3: 8d:d1:57:af:7c:31:c6:1b:e2:81:c6:3f:20:47:bd: 3a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2E:1E:BB:F1:AC:FF:74:4D:1B:F2:2B:AE:1F:1F:D1:83:47:A9:CC X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/BE9BADE02B4011F0BA1FF282C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.22.238.0/23 Signature Algorithm: sha256WithRSAEncryption 12:d7:18:6b:bc:ea:ed:bc:39:33:64:1a:86:de:d9:db:e6:66: fa:fb:64:3f:53:58:14:b6:72:74:fe:ad:9a:d1:d4:bc:7e:fc: be:bd:05:89:e8:b4:c8:76:86:5a:bc:99:4d:9e:19:46:2b:66: c2:d9:38:95:a9:bd:d9:5c:e1:ce:4f:5a:cc:00:fb:3d:05:0b: af:59:c2:95:91:23:61:f2:d8:12:69:bf:12:9b:4c:be:61:e5: 50:04:37:34:62:ae:3b:cc:26:0c:c9:02:b7:67:c3:84:79:6b: 75:53:b2:5f:22:5e:a3:5b:2f:76:1d:10:e3:4a:b2:f3:20:5b: f9:e9:d1:18:d4:31:8c:50:2e:65:1e:f1:9a:b0:e9:2c:b6:9f: 92:43:cb:9c:a9:27:f5:37:5c:d0:dc:40:c4:57:f8:92:52:ad: 4d:df:61:8c:69:53:fc:4d:57:3f:72:78:ed:37:fe:6e:e1:06: 1d:5c:09:0d:cf:14:99:73:34:bc:49:65:14:da:fe:2c:c5:c6: e3:2c:01:27:ef:68:b9:4e:34:19:8d:8c:7f:94:c5:da:6a:78: 1d:ee:7a:48:52:c5:96:10:3a:45:9a:84:aa:c9:75:28:53:7e: 5e:d9:16:0f:ac:2d:2f:df:7a:81:f5:fe:be:65:09:9b:8f:37: 8e:e3:c5:57 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICK8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjYwMTE2MTYxMjUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGFiNS1jOGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhJQrFLVryKpOZ5nch29aEapE+BLWmznoCAjiSL/EzZ9JrhbehwxrylQoO4IF 3utHQNaqiEVXy74ajQG+fSYg9MpJYWUJt81p5guH7K5DF/J7LXDcXYVvNIhfSnNp xsIYckR5LZILs3HDpHNhAlgrmrBLB4CbUBOC0lHiJ5DbFRQOTeTomGSZIphYg3n5 te1uqEvH8+JomhBoHNbh5TAXK524paBVZGB0FJpxD1gOgcJCPVmxRhO3KaIGvt1R xHPkyQ6M+qrbwRMn2C+gq/+RKimtNFaaANN9u+Cnwmz4DvvmYiE0T9qGIApSsfVb rcON0VevfDHGG+KBxj8gR706HQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOAuHrvx rP90TRvyK64fH9GDR6nMMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQjdGODE5NTgzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQkU5QkFERTAy QjQwMTFGMEJBMUZGMjgyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBbuMA0GCSqGSIb3DQEBCwUAA4IBAQAS1xhrvOrtvDkzZBqG3tnb 5mb6+2Q/U1gUtnJ0/q2a0dS8fvy+vQWJ6LTIdoZavJlNnhlGK2bC2TiVqb3ZXOHO T1rMAPs9BQuvWcKVkSNh8tgSab8Sm0y+YeVQBDc0Yq47zCYMyQK3Z8OEeWt1U7Jf Il6jWy92HRDjSrLzIFv56dEY1DGMUC5lHvGasOkstp+SQ8ucqSf1N1zQ3EDEV/iS Uq1N32GMaVP8TVc/cnjtN/5u4QYdXAkNzxSZczS8SWUU2v4sxcbjLAEn72i5TjQZ jYx/lMXaangd7npIUsWWEDpFmoSqyXUoU35e2RYPrC0v33qB9f6+ZQmbjzeO48VX -----END CERTIFICATE-----Generated at Thu Mar 26 23:24:32 2026 by rpki-client