$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/EC11B380D4D911F0BE68C020C4F9AE02.roa File: EC11B380D4D911F0BE68C020C4F9AE02.roa (raw, json) Hash identifier: f4E63FWv2oWblBXNUrLZ5z77twy8lgwONcx7xb5r0uE= Subject key identifier: 4E:89:65:B2:22:68:F0:B0:D6:B3:EA:3D:7D:A3:0B:FF:EC:D5:06:1A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2B94 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/EC11B380D4D911F0BE68C020C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:42:26 +0000 ROA not before: Fri 27 Feb 2026 11:59:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154408 IP address blocks: 138.252.214.0/23 maxlen: 24 144.79.166.0/24 maxlen: 24 144.79.192.0/24 maxlen: 24 192.232.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 10:51:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11156 (0x2b94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Feb 27 11:59:01 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c0d2-ac44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ca:91:43:9c:7e:4a:b9:10:38:55:ff:67:50: 24:d8:b1:75:99:f9:32:aa:4f:7b:b3:72:b1:ce:b4: 03:86:30:88:8b:b6:c5:48:dd:81:d5:a1:b1:76:da: d2:c5:58:f6:db:11:bd:e0:3d:4b:27:52:32:2a:29: 28:04:d5:3c:75:07:63:c4:3a:29:cf:b9:5e:90:79: 6b:98:17:69:2f:e0:bd:6b:7d:47:2b:e0:d0:eb:4a: ce:b8:dc:a9:5e:08:3f:4c:81:c5:58:c6:31:4d:fd: fb:aa:ce:02:58:f0:ea:03:7d:4e:a0:09:a9:20:6a: 8e:0c:4d:f7:c8:14:70:db:2c:8f:aa:04:e7:04:a5: 25:9f:33:95:a8:bd:2f:c6:2d:69:e9:49:05:99:23: 64:21:4b:ba:01:26:8f:ab:45:57:4f:86:14:f4:69: 34:42:bc:a5:6d:83:4c:d6:5d:90:c1:a7:14:77:e3: fe:b1:3e:21:56:20:7b:b2:3c:e3:9f:33:da:a4:07: d9:33:b2:67:28:29:29:ed:c7:28:2a:13:03:97:a1: 89:55:83:3b:b9:3a:c1:f1:74:dc:4e:7e:9b:9b:ab: 6d:a3:07:05:ac:8c:72:ef:c7:1f:75:20:dc:c2:f6: f0:98:22:da:fc:74:51:f3:a1:39:c4:7e:98:3e:2e: 3a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:89:65:B2:22:68:F0:B0:D6:B3:EA:3D:7D:A3:0B:FF:EC:D5:06:1A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/EC11B380D4D911F0BE68C020C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.214.0/23 144.79.166.0/24 144.79.192.0/24 192.232.57.0/24 Signature Algorithm: sha256WithRSAEncryption a1:90:6a:cd:b3:47:0d:6b:d9:43:0b:a8:df:96:89:82:70:ac: 23:12:cd:19:5b:57:7e:a3:68:e3:19:06:d0:6b:da:c9:5a:88: 79:84:a0:91:4f:35:74:19:1b:cb:b4:64:24:9f:25:48:44:65: 24:2f:38:8c:42:9f:ff:e9:26:78:94:04:ae:d2:71:9c:20:4a: 4e:c0:29:af:2a:16:50:9a:8b:8c:f1:ae:77:57:f1:33:0f:01: 69:2d:d8:1f:b6:4d:dd:95:af:cb:14:c0:e6:49:73:52:15:c9: 22:cd:ac:e0:13:1b:07:be:49:90:14:48:ae:98:c1:5b:4f:f6: ed:43:23:43:d3:81:47:ed:b5:0d:e8:63:03:2c:7f:ce:9a:f7: 03:3e:24:48:d8:7f:5e:64:94:c5:bc:87:56:77:6a:ef:06:38: cf:6c:78:e3:b4:a0:8d:97:9a:19:2a:1c:49:d1:02:6c:4b:1c: 54:b1:45:b1:e9:45:76:2b:4d:9d:5c:e4:61:a1:9c:23:f0:7f: 99:ea:32:9a:e4:b2:cf:b6:6e:94:6f:86:3a:56:14:b9:18:6f: e3:71:41:fc:06:46:c3:b3:c3:1a:ff:1b:78:7d:1e:09:61:ae: 02:38:61:99:36:05:c8:e9:f8:11:69:01:b1:1b:d0:6a:14:0b: 84:59:eb:09 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICK5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwMjI3MTE1OTAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzBkMi1hYzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sqRQ5x+SrkQOFX/Z1Ak2LF1mfkyqk97s3KxzrQDhjCIi7bFSN2B1aGxdtrS xVj22xG94D1LJ1IyKikoBNU8dQdjxDopz7lekHlrmBdpL+C9a31HK+DQ60rOuNyp Xgg/TIHFWMYxTf37qs4CWPDqA31OoAmpIGqODE33yBRw2yyPqgTnBKUlnzOVqL0v xi1p6UkFmSNkIUu6ASaPq0VXT4YU9Gk0QrylbYNM1l2QwacUd+P+sT4hViB7sjzj nzPapAfZM7JnKCkp7ccoKhMDl6GJVYM7uTrB8XTcTn6bm6ttowcFrIxy78cfdSDc wvbwmCLa/HRR86E5xH6YPi46+QIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFE6JZbIi aPCw1rPqPX2jC//s1QYaMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRUMxMUIzODBE NEQ5MTFGMEJFNjhDMDIwQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBivzWAwQAkE+mAwQAkE/AAwQAwOg5MA0GCSqGSIb3DQEBCwUAA4IB AQChkGrNs0cNa9lDC6jflomCcKwjEs0ZW1d+o2jjGQbQa9rJWoh5hKCRTzV0GRvL tGQknyVIRGUkLziMQp//6SZ4lASu0nGcIEpOwCmvKhZQmouM8a53V/EzDwFpLdgf tk3dla/LFMDmSXNSFckizazgExsHvkmQFEiumMFbT/btQyND04FH7bUN6GMDLH/O mvcDPiRI2H9eZJTFvIdWd2rvBjjPbHjjtKCNl5oZKhxJ0QJsSxxUsUWx6UV2K02d XORhoZwj8H+Z6jKa5LLPtm6Ub4Y6VhS5GG/jcUH8BkbDs8Ma/xt4fR4JYa4COGGZ NgXI6fgRaQGxG9BqFAuEWesJ -----END CERTIFICATE-----Generated at Thu Mar 26 07:29:58 2026 by rpki-client