$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/AE9090F83B0F11F08D496424C4F9AE02.roa File: AE9090F83B0F11F08D496424C4F9AE02.roa (raw, json) Hash identifier: XOfrJtsfsR+/OaB8ND0RqeVpDEphsXI6C793fxqaX4Y= Subject key identifier: A0:62:33:6D:65:37:97:6E:77:DD:50:6F:E6:2F:3A:DD:E8:43:90:BA Certificate issuer: /CN=A913B4BE/serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Certificate serial: 018E Authority key identifier: 7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/AE9090F83B0F11F08D496424C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:30:04 +0000 ROA not before: Tue 27 May 2025 16:11:09 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152482 IP address blocks: 157.20.42.0/23 maxlen: 23 157.20.42.0/24 maxlen: 24 157.20.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:43:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE, serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Validity Not Before: May 27 16:11:09 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a590dc-ff1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:38:cc:c0:8a:ff:92:14:b4:a6:f3:97:58:fb: f2:bc:85:20:84:23:1e:5b:b3:57:f7:56:f3:0d:16: cb:9a:41:52:b1:6b:c7:76:79:ff:d1:71:bd:34:0f: 47:f2:7a:dc:f3:75:1b:97:2c:33:37:71:8b:40:16: 38:99:88:45:13:ff:dd:db:3b:7f:b0:bc:6a:25:0a: c2:0c:dd:14:6e:e4:39:5b:e0:d4:bc:b5:01:6b:20: 56:53:78:7d:15:e1:a5:79:98:5c:88:0d:0d:28:10: f4:16:0d:da:47:88:e6:a6:31:e4:da:65:3d:6e:da: 63:62:c5:25:0a:f6:9d:37:b6:c8:73:26:2e:f1:a2: 28:64:c6:33:38:ef:64:c9:97:3a:84:4d:22:29:c9: 4f:51:58:e6:dd:d0:87:91:26:2c:6a:bb:6e:b8:7c: 22:5a:22:72:2a:91:4e:86:56:4f:d8:0d:f4:3f:8f: 4b:98:5f:2d:c5:03:b8:15:83:8d:3b:e4:17:ca:91: 14:90:c2:70:df:9b:80:c3:b9:ca:df:2f:af:92:9a: 0b:03:55:a0:ca:7d:55:f0:ad:76:7d:31:39:0a:0c: e8:7b:4e:a0:9f:28:45:39:b0:52:4a:28:b4:7a:e2: 4b:98:04:29:9d:af:96:f6:2e:7c:61:f5:7b:64:90: 7f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:62:33:6D:65:37:97:6E:77:DD:50:6F:E6:2F:3A:DD:E8:43:90:BA X509v3 Authority Key Identifier: keyid:7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/AE9090F83B0F11F08D496424C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.42.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:cf:64:c0:0c:61:b1:6c:04:4d:3d:bb:fc:46:bb:b7:2a:62: 54:4f:d0:e5:d9:f8:96:30:3f:f0:c3:1b:fb:b8:46:be:f3:71: fd:fd:fa:70:04:13:10:0c:70:9d:c8:b7:6d:f5:ed:9d:a2:e6: 64:80:0f:47:f7:b8:65:a2:4b:8c:ef:a1:e6:64:a9:3c:67:48: e4:6c:e6:55:ff:08:ff:73:8a:87:5e:2f:89:ba:17:28:8f:6c: 0c:b0:b6:24:34:65:e8:d5:cc:8d:df:1f:f8:3c:db:a6:2a:02: 93:b7:a4:29:dd:74:ca:d9:33:d1:86:3f:16:91:03:e5:54:e5: ee:0f:fb:5d:b0:a9:6b:01:0e:eb:eb:09:30:73:15:72:68:8f: 71:6c:7b:2c:97:9e:75:34:cc:40:7d:84:c9:b4:ce:1a:34:2e: b2:06:f3:96:95:ce:c9:d1:e2:df:f6:61:2a:ba:70:ff:79:89: 62:dc:28:34:35:6d:7a:f8:ad:7c:2b:41:f8:7c:bd:36:2f:35: d0:d3:38:66:45:5d:ac:87:da:e5:86:8b:ba:d0:95:8f:8c:63: 59:98:9c:59:57:c5:d5:cc:1b:53:17:64:ae:e6:66:50:e2:1a: 50:70:d9:10:16:97:d8:3c:17:15:2a:c7:3f:21:ef:d9:d0:04: 2d:d3:f6:df -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0QkUxMTAvBgNVBAUTKDdCMUZCMUJBM0IwRUM4Q0E1RTVDMTNBRUJDRkM2RUJB OEQyMEVBQTcwHhcNMjUwNTI3MTYxMTA5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTBkYy1mZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7DjMwIr/khS0pvOXWPvyvIUghCMeW7NX91bzDRbLmkFSsWvHdnn/0XG9NA9H 8nrc83UblywzN3GLQBY4mYhFE//d2zt/sLxqJQrCDN0UbuQ5W+DUvLUBayBWU3h9 FeGleZhciA0NKBD0Fg3aR4jmpjHk2mU9btpjYsUlCvadN7bIcyYu8aIoZMYzOO9k yZc6hE0iKclPUVjm3dCHkSYsartuuHwiWiJyKpFOhlZP2A30P49LmF8txQO4FYON O+QXypEUkMJw35uAw7nK3y+vkpoLA1Wgyn1V8K12fTE5Cgzoe06gnyhFObBSSii0 euJLmAQpna+W9i58YfV7ZJB/VQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKBiM21l N5dud91Qb+YvOt3oQ5C6MB8GA1UdIwQYMBaAFHsfsbo7DsjKXlwTrrz8brqNIOqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjRCRS82RjJGRDMzOEND RjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi9leC14dWpzT3lNcGVYQk91dlB4dXVvMGc2 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2V4LXh1anNPeU1wZVhCT3V2UHh1dW8wZzZxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I0QkUvNkYyRkQzMzhDQ0Y3MTFFRTlFODlENjdBQzRGOUFFMDIvQUU5MDkwRjgz QjBGMTFGMDhENDk2NDI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRQqMA0GCSqGSIb3DQEBCwUAA4IBAQANz2TADGGxbARNPbv8Rru3 KmJUT9Dl2fiWMD/wwxv7uEa+83H9/fpwBBMQDHCdyLdt9e2douZkgA9H97hlokuM 76HmZKk8Z0jkbOZV/wj/c4qHXi+Juhcoj2wMsLYkNGXo1cyN3x/4PNumKgKTt6Qp 3XTK2TPRhj8WkQPlVOXuD/tdsKlrAQ7r6wkwcxVyaI9xbHssl551NMxAfYTJtM4a NC6yBvOWlc7J0eLf9mEqunD/eYli3Cg0NW16+K18K0H4fL02LzXQ0zhmRV2sh9rl hou60JWPjGNZmJxZV8XVzBtTF2Su5mZQ4hpQcNkQFpfYPBcVKsc/Ie/Z0AQt0/bf -----END CERTIFICATE-----Generated at Thu Mar 26 22:30:00 2026 by rpki-client