$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D74300A41D1211F1BF2912330A3D8C67.roa File: D74300A41D1211F1BF2912330A3D8C67.roa (raw, json) Hash identifier: 2lkiF7o1axArUgE0dTMQEhinMKb7tz93/F0PD4iIE2s= Subject key identifier: A3:1A:0D:D5:21:F3:68:66:E5:A6:AD:20:8A:1C:C1:2B:4F:B4:EF:CB Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2D4C Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D74300A41D1211F1BF2912330A3D8C67.roa Signing time: Wed 11 Mar 2026 06:23:39 +0000 ROA not before: Wed 11 Mar 2026 06:23:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151089 IP address blocks: 157.20.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11596 (0x2d4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Mar 11 06:23:39 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69b10a6b-8fcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1c:8f:1f:30:1b:f6:2e:58:bb:8e:43:ae:43: 21:50:ac:f0:f6:33:44:f3:19:8e:49:a7:f3:b0:55: b5:8d:25:10:c3:ab:2c:84:0d:89:a9:4a:11:63:f8: 35:f3:6d:ac:f5:55:3a:d0:ef:ed:be:b9:28:f3:fd: 0c:54:5b:d0:96:bf:61:2b:5d:c5:ad:51:e3:54:82: c0:11:6e:24:9e:92:16:39:c4:0d:6a:ac:66:9b:f1: 3b:88:f0:1c:9f:fc:50:f4:29:37:f8:c4:51:c1:bf: 87:ad:4e:61:9f:07:d6:fa:b2:58:1b:48:50:77:02: 72:58:f6:25:15:34:49:ca:58:61:ad:73:3d:42:f2: 43:75:3f:48:fe:a5:e7:3f:b6:b2:6f:57:d6:b0:06: 55:b5:8c:70:7a:4f:e4:dc:da:df:fe:0a:15:2a:95: be:88:1a:14:d9:0a:cd:11:a1:ce:05:0a:93:ba:99: 2f:46:c0:ad:f7:34:38:4f:ba:3b:4d:2f:7d:a5:59: 39:08:2d:0f:f1:db:a9:f0:21:e9:a8:bd:ad:9c:26: 5c:03:e6:1f:1d:71:e7:6e:4b:37:99:75:9b:e8:85: 33:22:8a:68:bb:e4:5c:9f:93:6a:54:8d:0a:0c:60: 8c:ff:cb:82:b7:44:a1:bc:93:3b:cc:9b:ed:eb:ee: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1A:0D:D5:21:F3:68:66:E5:A6:AD:20:8A:1C:C1:2B:4F:B4:EF:CB X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D74300A41D1211F1BF2912330A3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 157.20.170.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:d4:7d:99:aa:d3:9f:fe:b9:5f:29:22:eb:cb:9b:4e:e4:7f: c4:f5:ef:96:9b:d9:50:ad:b1:e3:00:3a:51:92:79:9d:63:56: d8:78:b7:8b:42:5f:41:7a:25:6c:b5:db:da:a2:c0:33:61:eb: 2f:02:34:73:a9:29:96:40:fd:da:fb:51:ad:5d:52:2e:93:4d: 66:f9:c6:c0:4e:7e:29:c2:bb:1a:33:ef:6f:98:ea:b8:66:5f: 1e:cc:b3:79:0a:24:7a:90:77:5c:59:94:41:1d:fa:71:5d:1f: da:f0:16:d6:b8:ea:20:2d:2e:1a:42:91:ef:9e:31:2b:86:a4: 36:e4:64:c0:97:2b:4e:39:69:fb:94:ef:8c:77:7e:1e:72:94: 71:49:68:d4:e5:d0:f4:54:d1:8b:1f:b9:40:35:e9:89:46:de: 5d:1c:c1:d7:ab:47:32:23:3c:66:df:0a:9f:c4:16:32:f5:14: 65:bd:24:4c:55:78:4e:dc:a0:92:74:a0:75:f1:05:3e:49:b7: 56:89:ab:14:c3:74:c9:71:2d:60:a1:f3:24:d9:10:49:d1:68: a0:13:05:a3:a5:ad:d4:18:3e:56:70:8e:07:84:31:2e:d6:63: 8a:36:84:54:00:64:d5:c8:8f:29:a0:a3:82:15:56:c1:01:08: 8e:de:b7:84 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwMzExMDYyMzM5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIxMGE2Yi04ZmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmhyPHzAb9i5Yu45DrkMhUKzw9jNE8xmOSafzsFW1jSUQw6sshA2JqUoRY/g1 822s9VU60O/tvrko8/0MVFvQlr9hK13FrVHjVILAEW4knpIWOcQNaqxmm/E7iPAc n/xQ9Ck3+MRRwb+HrU5hnwfW+rJYG0hQdwJyWPYlFTRJylhhrXM9QvJDdT9I/qXn P7ayb1fWsAZVtYxwek/k3Nrf/goVKpW+iBoU2QrNEaHOBQqTupkvRsCt9zQ4T7o7 TS99pVk5CC0P8dup8CHpqL2tnCZcA+YfHXHnbks3mXWb6IUzIopou+Rcn5NqVI0K DGCM/8uCt0ShvJM7zJvt6+6yEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKMaDdUh 82hm5aatIIocwStPtO/LMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDc0MzAwQTQx RDEyMTFGMUJGMjkxMjMzMEEzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRSqMA0GCSqGSIb3DQEBCwUAA4IBAQBM1H2ZqtOf/rlfKSLry5tO 5H/E9e+Wm9lQrbHjADpRknmdY1bYeLeLQl9BeiVstdvaosAzYesvAjRzqSmWQP3a +1GtXVIuk01m+cbATn4pwrsaM+9vmOq4Zl8ezLN5CiR6kHdcWZRBHfpxXR/a8BbW uOogLS4aQpHvnjErhqQ25GTAlytOOWn7lO+Md34ecpRxSWjU5dD0VNGLH7lANemJ Rt5dHMHXq0cyIzxm3wqfxBYy9RRlvSRMVXhO3KCSdKB18QU+SbdWiasUw3TJcS1g ofMk2RBJ0WigEwWjpa3UGD5WcI4HhDEu1mOKNoRUAGTVyI8poKOCFVbBAQiO3reE -----END CERTIFICATE-----Generated at Thu Mar 26 23:40:52 2026 by rpki-client