$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/989BBF70904F11EC8B118911C4F9AE02.roa File: 989BBF70904F11EC8B118911C4F9AE02.roa (raw, json) Hash identifier: OS+MMRRjQluFNuI+98G/Gv/Ff4t99hp6Izi7LUhaJJQ= Subject key identifier: 2F:B0:E8:66:6C:24:9C:9B:9D:51:C0:53:89:FD:3B:1F:C7:22:2E:CB Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0466 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/989BBF70904F11EC8B118911C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:39:07 +0000 ROA not before: Thu 29 Jan 2026 00:20:03 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 4755 IP address blocks: 182.255.20.0/24 maxlen: 24 182.255.21.0/24 maxlen: 24 182.255.22.0/24 maxlen: 24 182.255.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1126 (0x466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Jan 29 00:20:03 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a46bab-cdf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:07:86:c9:55:8d:70:27:0c:88:dc:4a:c1:ce: f3:ed:dc:21:4d:9f:21:e7:b7:88:77:e6:4e:0d:7b: 16:b7:f3:f3:f1:dc:64:dc:a0:11:b0:c5:f2:c7:83: 99:83:9d:19:7b:1d:69:3a:8f:ef:bb:a4:6a:1b:a5: b4:49:9f:3a:2f:f2:44:85:39:3e:76:c6:8f:38:e5: 73:7b:3e:1f:cc:b8:1c:7c:36:50:54:40:ff:f2:17: 67:e0:70:b4:8d:1d:d3:ac:ac:a0:91:8d:92:71:67: cf:d1:7a:95:f6:46:26:4e:1e:ca:31:de:29:00:0b: a8:c1:b7:03:c5:c6:c7:f7:d0:fc:5d:5a:ef:6d:ff: 37:a3:d8:7c:07:3c:cb:6c:2b:92:f4:36:c7:e6:3b: 26:f4:30:a6:76:ff:f1:ba:f3:fa:9d:32:2a:76:82: 35:ac:2d:67:be:d4:a8:6f:c9:d9:f1:77:54:d5:7c: 12:63:d7:a7:2c:25:90:0d:fd:3c:24:9c:ec:97:13: cb:ca:18:a3:a1:be:54:1f:14:89:45:51:e1:e0:08: a8:59:b5:e5:80:90:a4:66:9c:38:f5:a9:b5:ad:5e: 44:48:79:86:68:4d:59:c7:40:46:3a:d7:24:8e:ae: 12:d7:15:24:b5:ec:6c:3c:14:85:9a:40:fc:0a:af: 96:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B0:E8:66:6C:24:9C:9B:9D:51:C0:53:89:FD:3B:1F:C7:22:2E:CB X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/989BBF70904F11EC8B118911C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 182.255.20.0/22 Signature Algorithm: sha256WithRSAEncryption 37:a0:fb:75:24:56:1a:59:3b:fe:4b:2d:a7:8f:2e:bc:18:13: 3f:a6:d3:b8:1c:60:49:79:83:02:40:93:05:61:b0:61:f7:32: f1:f6:3d:60:7c:8b:c4:ad:03:a5:d4:17:95:e3:9e:43:d8:b5: 47:71:78:ed:68:f1:de:c7:7a:7a:dd:14:f9:fb:70:e5:dd:34: d6:1f:b0:6f:41:2e:74:5e:5f:27:d9:a6:e2:90:08:73:5f:99: 7d:18:71:17:93:95:65:f3:79:d2:1e:8c:70:71:b8:7a:6b:0d: 28:07:8d:39:8b:0c:1c:90:bd:5d:dc:55:fc:66:7a:e6:43:f1: c4:0f:e7:0f:54:f2:40:da:b0:d6:fe:ad:eb:1d:97:da:2c:e1: a8:cf:3f:de:85:04:09:a0:3e:21:cc:9f:14:80:8e:96:75:0b: 61:60:2c:13:fd:3f:9c:2a:fc:fd:66:a9:ce:bd:ca:72:4f:a4: 4a:44:8c:66:99:2a:51:50:25:e8:0e:f2:cc:46:0b:4f:35:97: de:a3:78:ca:e7:4e:16:ab:59:55:21:8e:1d:12:53:1f:82:31: 51:a1:26:82:c2:28:79:f0:00:b0:01:64:a0:3e:d8:7f:df:13: 39:70:6a:c9:f2:d1:4f:cd:f8:f1:a6:02:70:83:13:40:35:d1: 9e:4b:f4:db -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjYwMTI5MDAyMDAzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmJhYi1jZGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlAeGyVWNcCcMiNxKwc7z7dwhTZ8h57eId+ZODXsWt/Pz8dxk3KARsMXyx4OZ g50Zex1pOo/vu6RqG6W0SZ86L/JEhTk+dsaPOOVzez4fzLgcfDZQVED/8hdn4HC0 jR3TrKygkY2ScWfP0XqV9kYmTh7KMd4pAAuowbcDxcbH99D8XVrvbf83o9h8BzzL bCuS9DbH5jsm9DCmdv/xuvP6nTIqdoI1rC1nvtSob8nZ8XdU1XwSY9enLCWQDf08 JJzslxPLyhijob5UHxSJRVHh4AioWbXlgJCkZpw49am1rV5ESHmGaE1Zx0BGOtck jq4S1xUktexsPBSFmkD8Cq+WowIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC+w6GZs JJybnVHAU4n9Ox/HIi7LMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQxNEIvOTRDODk4Q0M4RkUyMTFFQ0E4QUZFRTc4QzRGOUFFMDIvOTg5QkJGNzA5 MDRGMTFFQzhCMTE4OTExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCtv8UMA0GCSqGSIb3DQEBCwUAA4IBAQA3oPt1JFYaWTv+Sy2njy68 GBM/ptO4HGBJeYMCQJMFYbBh9zLx9j1gfIvErQOl1BeV455D2LVHcXjtaPHex3p6 3RT5+3Dl3TTWH7BvQS50Xl8n2abikAhzX5l9GHEXk5Vl83nSHoxwcbh6aw0oB405 iwwckL1d3FX8ZnrmQ/HED+cPVPJA2rDW/q3rHZfaLOGozz/ehQQJoD4hzJ8UgI6W dQthYCwT/T+cKvz9ZqnOvcpyT6RKRIxmmSpRUCXoDvLMRgtPNZfeo3jK504Wq1lV IY4dElMfgjFRoSaCwih58ACwAWSgPth/3xM5cGrJ8tFPzfjxpgJwgxNANdGeS/Tb -----END CERTIFICATE-----Generated at Thu Mar 26 11:25:36 2026 by rpki-client