$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/B11136C4BA5411F0A7CF623BC4F9AE02.roa File: B11136C4BA5411F0A7CF623BC4F9AE02.roa (raw, json) Hash identifier: 4m56v9WrLnVPmGdujR4qOaBQSAGX0P92yEZf7PwBOyo= Subject key identifier: FF:7A:40:2E:2C:B0:C5:40:35:0D:D5:14:2F:13:93:17:19:8C:F9:3B Certificate issuer: /CN=A918C661/serialNumber=8BF7E2930CFC6EEB916E7390F893E0100BA93B32 Certificate serial: 0ACB Authority key identifier: 8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/B11136C4BA5411F0A7CF623BC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:51:03 +0000 ROA not before: Sat 08 Nov 2025 19:09:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138995 IP address blocks: 137.220.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2763 (0xacb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=8BF7E2930CFC6EEB916E7390F893E0100BA93B32 Validity Not Before: Nov 8 19:09:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47c87-98f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1f:48:fe:54:b0:46:03:9a:c0:79:df:ac:01: 3f:93:a3:57:41:25:79:db:0b:11:fc:c6:84:24:36: b1:d8:6f:eb:5f:89:e0:09:7f:db:49:72:1b:50:b5: 20:7c:2b:38:ee:05:64:93:9b:27:72:0a:80:1e:ca: 7f:7d:2d:4f:bd:d1:0f:b8:6d:fc:b0:b5:0e:b7:8a: 37:13:5b:3f:72:29:8b:1a:33:c6:87:c4:55:62:be: 08:d9:f4:c0:30:ed:5b:1b:63:56:51:9f:a7:c8:24: 5c:37:a7:31:f8:cf:39:7c:42:1d:49:6c:6e:6b:ad: bb:ee:72:54:32:0a:c2:9a:ad:57:fc:40:0a:34:67: 4c:0e:c2:6d:fa:f5:f6:08:45:aa:c0:36:ad:bb:44: dd:af:dd:05:de:2d:0d:da:13:b3:b6:88:4f:4f:14: 6a:4f:e9:b1:c6:b4:2c:ea:ff:51:7a:b4:b0:ce:dc: 8f:30:57:76:c3:e7:2c:7b:cd:6b:8e:6a:40:b1:bd: e2:9b:bd:23:ef:6f:68:41:2c:20:df:51:39:b5:f2: 83:b9:1e:bf:e3:e4:46:ac:ef:34:74:de:7b:52:c3: 65:5d:df:c9:8f:36:2c:98:f6:ee:56:c4:5f:c4:48: 33:ba:2a:b2:8d:31:ae:6a:9f:9d:55:b0:13:ce:df: 26:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:7A:40:2E:2C:B0:C5:40:35:0D:D5:14:2F:13:93:17:19:8C:F9:3B X509v3 Authority Key Identifier: keyid:8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/B11136C4BA5411F0A7CF623BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 137.220.164.0/24 Signature Algorithm: sha256WithRSAEncryption 24:bc:a2:e6:f7:96:aa:1f:63:04:b8:7c:d2:5b:98:8d:6d:7c: 4b:c2:ce:30:2c:bc:b2:3d:3c:62:7e:bb:a0:45:99:9a:c5:84: 76:86:14:e5:a3:6b:5d:d3:b4:9e:e4:7d:a9:68:83:17:7a:aa: 74:e1:ae:c7:14:53:77:11:ed:c2:d9:d5:fd:71:3b:11:36:22: 90:d1:1f:fe:8b:17:dc:5d:5b:39:33:61:95:6a:d0:04:f6:01: 04:24:25:cb:1a:3c:67:72:03:c9:d3:68:51:c0:af:71:6c:61: 22:63:84:26:c7:8d:5b:6e:87:5b:84:fd:7f:0a:bf:a3:ae:61: e4:a6:5f:4c:81:53:12:c5:b9:3a:f2:ad:36:48:d8:34:4b:a3: 43:d3:c9:e5:14:f9:44:fe:f0:79:c3:02:60:28:c4:4a:f9:f0: a8:0c:3d:88:2a:ba:1b:27:63:60:93:a0:de:d8:2f:1e:06:49: 91:4f:44:40:68:b5:d3:a0:bb:dd:87:b9:5d:bd:81:89:d1:73: 38:ea:99:ea:0e:66:33:31:df:5e:a8:82:13:cb:35:b0:f0:94: 76:4e:d3:f9:9a:6f:3c:34:38:9d:a5:86:7b:56:3c:fb:31:a2: ac:b9:27:42:e7:71:a4:9c:4d:0d:b0:51:41:be:95:c8:e1:03: ab:db:a7:5d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDhCRjdFMjkzMENGQzZFRUI5MTZFNzM5MEY4OTNFMDEw MEJBOTNCMzIwHhcNMjUxMTA4MTkwOTU0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2M4Ny05OGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqh9I/lSwRgOawHnfrAE/k6NXQSV52wsR/MaEJDax2G/rX4ngCX/bSXIbULUg fCs47gVkk5sncgqAHsp/fS1PvdEPuG38sLUOt4o3E1s/cimLGjPGh8RVYr4I2fTA MO1bG2NWUZ+nyCRcN6cx+M85fEIdSWxua6277nJUMgrCmq1X/EAKNGdMDsJt+vX2 CEWqwDatu0Tdr90F3i0N2hOztohPTxRqT+mxxrQs6v9RerSwztyPMFd2w+cse81r jmpAsb3im70j729oQSwg31E5tfKDuR6/4+RGrO80dN57UsNlXd/JjzYsmPbuVsRf xEgzuiqyjTGuap+dVbATzt8mjQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP96QC4s sMVANQ3VFC8TkxcZjPk7MB8GA1UdIwQYMBaAFIv34pMM/G7rkW5zkPiT4BALqTsy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wNEFBQjI5RTgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9pX2Zpa3d6OGJ1dVJibk9RLUpQZ0VBdXBP ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lfZmlrd3o4YnV1UmJuT1EtSlBnRUF1cE96SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM2NjEvMDRBQUIyOUU4MzZEMTFFQUI0QTJENzZEQzRGOUFFMDIvQjExMTM2QzRC QTU0MTFGMEE3Q0Y2MjNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAidykMA0GCSqGSIb3DQEBCwUAA4IBAQAkvKLm95aqH2MEuHzSW5iN bXxLws4wLLyyPTxifrugRZmaxYR2hhTlo2td07Se5H2paIMXeqp04a7HFFN3Ee3C 2dX9cTsRNiKQ0R/+ixfcXVs5M2GVatAE9gEEJCXLGjxncgPJ02hRwK9xbGEiY4Qm x41bbodbhP1/Cr+jrmHkpl9MgVMSxbk68q02SNg0S6ND08nlFPlE/vB5wwJgKMRK +fCoDD2IKrobJ2Ngk6De2C8eBkmRT0RAaLXToLvdh7ldvYGJ0XM46pnqDmYzMd9e qIITyzWw8JR2TtP5mm88NDidpYZ7Vjz7MaKsuSdC53GknE0NsFFBvpXI4QOr26dd -----END CERTIFICATE-----Generated at Thu Mar 26 21:14:54 2026 by rpki-client