$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/7E8442B68FE511EC94D98C7BC4F9AE02.roa File: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (raw, json) Hash identifier: JVO8JZCfYqp3N9h+hRdEkwlagsjOuD7MM+G3/8q05pI= Subject key identifier: 3B:91:26:AF:6C:02:25:49:64:68:81:66:8D:2C:00:2E:FA:31:B5:60 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0467 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/7E8442B68FE511EC94D98C7BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:39:08 +0000 ROA not before: Thu 29 Jan 2026 00:20:04 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 55520 IP address blocks: 182.255.20.0/24 maxlen: 24 182.255.21.0/24 maxlen: 24 182.255.22.0/24 maxlen: 24 182.255.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1127 (0x467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Jan 29 00:20:04 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a46bac-2994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7e:8e:8e:51:bd:d4:66:69:23:18:40:a4:6b: bf:87:f1:21:e7:7a:46:64:8c:0b:d9:b4:f7:5a:08: 6e:99:ac:a2:24:6a:09:0f:c1:dc:35:ec:cb:db:69: 0f:68:eb:94:5c:9d:ee:5f:28:97:66:76:d3:2f:4f: d1:f7:7a:b7:b3:af:2c:14:dc:4c:aa:86:a2:e1:54: 37:42:7a:e2:79:92:d1:09:41:0c:e3:16:51:2b:b4: c7:4b:1e:65:80:e1:ef:7d:41:de:43:9e:bd:76:38: 1b:a7:94:d6:c5:4a:74:c8:10:dc:0d:22:48:46:d6: 80:31:c0:c1:33:9a:75:ef:c0:ee:18:ea:08:ce:98: f0:9c:08:dd:97:5f:6c:47:8a:d9:b4:1a:b6:47:78: 13:f8:13:a6:a4:ac:fb:77:27:2d:64:7d:77:85:63: 3f:03:6c:60:70:ed:42:44:b9:4b:84:d6:93:85:ad: 5c:d3:cb:86:19:52:b4:a1:e6:ca:08:a9:5a:ed:dc: 53:81:3a:41:90:3c:07:92:be:4c:02:bc:52:94:94: a3:8f:77:58:2c:a6:1f:c3:36:b2:4f:c0:82:bc:f9: 77:6e:14:54:92:88:b0:d9:10:8a:0a:99:a5:60:1c: 8a:3c:08:2a:90:f9:21:2c:4d:31:62:fd:70:07:b9: b9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:91:26:AF:6C:02:25:49:64:68:81:66:8D:2C:00:2E:FA:31:B5:60 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/7E8442B68FE511EC94D98C7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 182.255.20.0/22 Signature Algorithm: sha256WithRSAEncryption a0:90:27:fc:41:39:80:66:ce:8f:d6:a9:cc:3a:62:49:ab:97: 50:89:2b:61:b3:68:9a:88:a3:99:97:bc:2f:9d:cb:06:54:a1: f9:e7:7e:fe:36:71:95:9c:d0:00:0d:2a:d2:ed:b1:2a:35:32: e8:fb:b6:d4:c4:78:41:70:46:2d:6c:f4:62:8f:eb:d8:6d:d7: 83:85:62:00:40:e9:7c:c5:d7:3a:f2:4e:af:35:1a:e8:02:67: a6:4f:73:db:10:12:59:d9:47:e1:43:06:f3:85:83:73:8a:62: 8e:ac:49:2c:49:77:2d:35:77:5f:af:bc:27:93:e8:db:65:59: 24:8c:3c:fe:51:ff:02:4c:92:12:b4:09:11:9c:a9:f3:9f:32: ff:3c:b6:e8:19:52:be:88:c0:bc:79:04:47:1c:30:42:8b:0d: 0a:fd:bd:f3:2a:c9:ad:fd:2a:75:b6:33:e2:e1:45:77:15:44: 35:5d:50:6e:39:ba:0a:3c:bc:43:91:37:9b:e0:47:f7:93:d8: 1c:ae:54:ac:fa:18:ab:de:b4:b1:31:03:c0:76:be:3a:52:e5: 6c:1e:cb:36:ff:32:d0:c5:30:4b:d3:71:ab:5d:82:70:e0:08: 9b:bd:9d:23:7f:4b:6d:5b:9e:49:2b:9a:dd:7c:05:d4:8c:36: 66:37:33:20 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjYwMTI5MDAyMDA0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmJhYy0yOTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun6OjlG91GZpIxhApGu/h/Eh53pGZIwL2bT3WghumayiJGoJD8HcNezL22kP aOuUXJ3uXyiXZnbTL0/R93q3s68sFNxMqoai4VQ3QnrieZLRCUEM4xZRK7THSx5l gOHvfUHeQ569djgbp5TWxUp0yBDcDSJIRtaAMcDBM5p178DuGOoIzpjwnAjdl19s R4rZtBq2R3gT+BOmpKz7dyctZH13hWM/A2xgcO1CRLlLhNaTha1c08uGGVK0oebK CKla7dxTgTpBkDwHkr5MArxSlJSjj3dYLKYfwzayT8CCvPl3bhRUkoiw2RCKCpml YByKPAgqkPkhLE0xYv1wB7m5NQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDuRJq9s AiVJZGiBZo0sAC76MbVgMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQxNEIvOTRDODk4Q0M4RkUyMTFFQ0E4QUZFRTc4QzRGOUFFMDIvN0U4NDQyQjY4 RkU1MTFFQzk0RDk4QzdCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCtv8UMA0GCSqGSIb3DQEBCwUAA4IBAQCgkCf8QTmAZs6P1qnMOmJJ q5dQiSths2iaiKOZl7wvncsGVKH5537+NnGVnNAADSrS7bEqNTLo+7bUxHhBcEYt bPRij+vYbdeDhWIAQOl8xdc68k6vNRroAmemT3PbEBJZ2UfhQwbzhYNzimKOrEks SXctNXdfr7wnk+jbZVkkjDz+Uf8CTJIStAkRnKnznzL/PLboGVK+iMC8eQRHHDBC iw0K/b3zKsmt/Sp1tjPi4UV3FUQ1XVBuOboKPLxDkTeb4Ef3k9gcrlSs+hir3rSx MQPAdr46UuVsHss2/zLQxTBL03GrXYJw4AibvZ0jf0ttW55JK5rdfAXUjDZmNzMg -----END CERTIFICATE-----Generated at Thu Mar 26 15:57:55 2026 by rpki-client