$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/C353D09A1D2711F1B40CC16C143D8C67.roa File: C353D09A1D2711F1B40CC16C143D8C67.roa (raw, json) Hash identifier: GLJtEpQzBfkgk+ZH6nE1USNscfvZG/ow27KNoqGuMd0= Subject key identifier: EC:2C:10:E1:C3:FD:68:BB:C0:E2:20:F5:7E:6A:D3:A5:38:33:87:22 Certificate issuer: /CN=A918C661/serialNumber=8BF7E2930CFC6EEB916E7390F893E0100BA93B32 Certificate serial: 0AD8 Authority key identifier: 8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/C353D09A1D2711F1B40CC16C143D8C67.roa Signing time: Wed 11 Mar 2026 08:53:24 +0000 ROA not before: Wed 11 Mar 2026 08:53:24 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 13335 IP address blocks: 134.122.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2776 (0xad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=8BF7E2930CFC6EEB916E7390F893E0100BA93B32 Validity Not Before: Mar 11 08:53:24 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69b12d84-53fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:73:43:06:1c:19:83:0f:b0:0c:73:bb:05:07: 27:90:5b:fb:c7:ff:82:17:34:b7:76:f1:0b:5c:af: 96:c4:46:b4:2a:10:83:e4:c8:ac:e5:83:17:d2:34: 45:dc:98:4f:8d:47:34:cd:36:60:de:f4:38:cb:b8: 27:aa:54:79:e9:40:2d:74:04:e5:e4:be:c3:2f:6a: bd:cc:82:e6:73:cb:e0:12:d0:d2:5c:73:25:8f:81: 3e:24:da:39:f4:20:65:df:2b:57:9f:52:71:32:77: 23:b1:3f:98:bd:ad:b7:ef:fc:47:e5:d5:6b:ac:c9: 0c:da:ff:d5:e1:f5:62:5c:cc:fb:a4:06:70:68:48: 65:0e:29:6a:51:86:08:1e:0f:f8:4c:b1:ba:8c:ef: 82:84:44:4e:fb:86:4f:a9:e6:62:5e:ab:40:6c:08: b4:c8:09:c6:d0:cb:8a:c7:d5:0b:3e:ea:a2:4a:c9: 77:4d:d9:ea:ce:ba:39:ec:9b:0a:47:4d:08:07:24: e8:ba:71:53:18:ba:dc:86:93:fa:22:a6:fa:26:83: 7e:11:d7:ae:9b:2c:1e:b6:04:af:f9:56:a0:41:90: 4d:c4:53:1a:a2:15:bb:34:29:43:78:45:b5:4c:ec: f8:9a:4f:a2:ca:2a:af:76:6c:3e:dc:d2:13:15:71: 69:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:2C:10:E1:C3:FD:68:BB:C0:E2:20:F5:7E:6A:D3:A5:38:33:87:22 X509v3 Authority Key Identifier: keyid:8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/C353D09A1D2711F1B40CC16C143D8C67.roa sbgp-ipAddrBlock: critical IPv4: 134.122.128.0/17 Signature Algorithm: sha256WithRSAEncryption 79:0a:09:5c:ce:42:ef:a5:51:3f:cd:d4:a2:e8:79:6e:8e:85: 0a:0e:e4:de:2d:6f:7a:06:e3:c2:96:53:c4:e9:9f:57:a5:43: 21:c6:39:be:14:40:16:24:66:c5:96:af:b7:7a:12:51:c5:0b: 35:35:b8:db:5b:aa:5a:5d:da:c8:5c:e4:8b:31:af:f4:2e:af: 02:b2:f5:66:ea:2e:92:74:c6:18:a2:52:4a:1d:16:a1:79:6f: 9d:0b:76:20:87:aa:76:1d:96:e7:fd:25:9d:0b:0e:e3:a6:45: de:7b:e3:7a:f0:03:63:e4:0a:a6:cb:45:94:4e:76:e5:3c:50: 9e:3c:ec:68:0e:f6:c2:57:2e:d6:b7:cf:44:1e:97:78:27:66: 3e:0f:77:0c:0b:be:8c:2c:22:b1:09:69:9a:4a:cc:af:a5:bc: f0:b5:73:ac:6d:77:c1:c9:fe:0b:ca:c7:27:7d:5f:9a:de:73: e2:64:d5:fd:0c:5a:ed:db:cb:51:99:66:ff:ee:2b:28:7e:98: 76:fc:8d:21:a8:cd:28:1f:9e:62:ca:e7:ba:c1:12:ee:40:93: 06:5c:a1:ba:01:36:af:ff:56:1e:0a:e0:a2:14:0a:65:89:bd: f6:db:fd:b7:fa:c3:44:bd:bc:fb:d4:8c:63:c9:64:97:bf:63: 3b:31:d1:cc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDhCRjdFMjkzMENGQzZFRUI5MTZFNzM5MEY4OTNFMDEw MEJBOTNCMzIwHhcNMjYwMzExMDg1MzI0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIxMmQ4NC01M2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXNDBhwZgw+wDHO7BQcnkFv7x/+CFzS3dvELXK+WxEa0KhCD5Mis5YMX0jRF 3JhPjUc0zTZg3vQ4y7gnqlR56UAtdATl5L7DL2q9zILmc8vgEtDSXHMlj4E+JNo5 9CBl3ytXn1JxMncjsT+Yva237/xH5dVrrMkM2v/V4fViXMz7pAZwaEhlDilqUYYI Hg/4TLG6jO+ChERO+4ZPqeZiXqtAbAi0yAnG0MuKx9ULPuqiSsl3Tdnqzro57JsK R00IByTounFTGLrchpP6Iqb6JoN+EdeumywetgSv+VagQZBNxFMaohW7NClDeEW1 TOz4mk+iyiqvdmw+3NITFXFpdQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOwsEOHD /Wi7wOIg9X5q06U4M4ciMB8GA1UdIwQYMBaAFIv34pMM/G7rkW5zkPiT4BALqTsy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wNEFBQjI5RTgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9pX2Zpa3d6OGJ1dVJibk9RLUpQZ0VBdXBP ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lfZmlrd3o4YnV1UmJuT1EtSlBnRUF1cE96SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM2NjEvMDRBQUIyOUU4MzZEMTFFQUI0QTJENzZEQzRGOUFFMDIvQzM1M0QwOUEx RDI3MTFGMUI0MENDMTZDMTQzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQHhnqAMA0GCSqGSIb3DQEBCwUAA4IBAQB5CglczkLvpVE/zdSi6Hlu joUKDuTeLW96BuPCllPE6Z9XpUMhxjm+FEAWJGbFlq+3ehJRxQs1NbjbW6paXdrI XOSLMa/0Lq8CsvVm6i6SdMYYolJKHRaheW+dC3Ygh6p2HZbn/SWdCw7jpkXee+N6 8ANj5Aqmy0WUTnblPFCePOxoDvbCVy7Wt89EHpd4J2Y+D3cMC76MLCKxCWmaSsyv pbzwtXOsbXfByf4LyscnfV+a3nPiZNX9DFrt28tRmWb/7isofph2/I0hqM0oH55i yue6wRLuQJMGXKG6ATav/1YeCuCiFAplib322/23+sNEvbz71IxjyWSXv2M7MdHM -----END CERTIFICATE-----Generated at Thu Mar 26 11:27:16 2026 by rpki-client