$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D9902CEA3C9A11F1BB8FBAA4A4833773.roa File: D9902CEA3C9A11F1BB8FBAA4A4833773.roa (raw, json) Hash identifier: aN+B6cK/ab90f0K7qHQ3W7lCqAsRq+VY92HhQvPz2I8= Subject key identifier: 97:B4:31:C0:54:2C:8C:5E:3E:CA:36:2F:A7:AC:4B:38:10:7A:19:8A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DECD Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D9902CEA3C9A11F1BB8FBAA4A4833773.roa Signing time: Mon 20 Apr 2026 09:33:44 +0000 ROA not before: Mon 20 Apr 2026 09:33:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154608 IP address blocks: 163.128.204.0/24 maxlen: 24 163.128.205.0/24 maxlen: 24 2001:df6:e7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57037 (0xdecd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 20 09:33:44 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69e5f2f8-6aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:18:4a:2b:62:81:f7:39:2e:4d:ac:1f:ce:ab: f6:4d:e4:da:d1:01:19:27:f5:9f:6d:c7:05:73:4c: ad:db:a2:1f:63:3e:b3:ee:14:40:97:00:25:5e:52: c9:e3:8d:7f:77:67:e2:96:43:27:0a:9e:e3:65:66: 2b:d0:9e:a5:92:6e:78:86:72:3c:13:6d:15:3b:08: ed:58:89:ea:13:ad:1c:63:51:0b:c5:d2:5c:44:6b: c3:de:b3:77:9f:ee:8a:83:1c:f6:b5:7c:61:f2:64: c3:ed:ab:a2:14:a6:42:25:89:1b:9b:4c:18:ee:f4: db:59:8e:b3:cd:68:3a:3c:29:e2:cc:70:a8:f1:4a: 4a:0b:c8:5e:7d:b0:fc:cd:8a:f1:c0:18:75:a0:9c: df:64:d4:4b:b0:89:34:7a:c2:a0:3d:1e:60:8a:2d: e4:45:35:0a:53:b3:f7:88:84:dc:78:d7:69:a1:38: 44:d4:c9:5c:ca:12:d8:b3:ca:98:4a:8f:b1:87:3a: a2:06:35:19:23:95:ff:46:b0:4a:b0:e6:29:21:6f: 95:37:8c:36:0a:e5:a4:a3:a4:6c:58:1e:47:d6:43: 1e:ef:f2:9f:25:4f:65:95:db:6f:9d:a9:3a:e0:31: 94:3c:47:eb:a7:dd:f8:a3:c1:20:4a:e6:3b:22:81: 8e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B4:31:C0:54:2C:8C:5E:3E:CA:36:2F:A7:AC:4B:38:10:7A:19:8A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D9902CEA3C9A11F1BB8FBAA4A4833773.roa sbgp-ipAddrBlock: critical IPv4: 163.128.204.0/23 IPv6: 2001:df6:e7c0::/48 Signature Algorithm: sha256WithRSAEncryption 51:0d:49:50:91:6d:54:74:64:d2:d1:f5:53:83:10:4f:e5:8d: c8:df:88:88:aa:b0:6a:85:bc:82:c8:84:44:10:81:49:b5:d3: cd:5b:af:61:db:ab:97:18:b3:e0:71:d4:03:76:d5:cb:cb:a4: c7:a2:78:9b:56:c9:60:e3:af:1d:26:b6:c1:2a:ff:e9:24:21: f7:2d:45:a7:26:31:28:1b:31:bb:42:68:27:f9:54:ae:11:3b: d6:5a:ec:bc:c6:a1:56:9a:2c:4d:1d:6e:47:20:af:54:b7:50: c5:90:81:84:2d:0b:50:f4:5c:31:dc:68:4c:0c:78:43:a7:ce: 46:1d:e5:19:8f:b6:40:6a:f0:3d:04:ec:5b:df:3d:97:d0:58: 87:0c:fe:34:66:76:95:d7:73:23:72:f9:6e:30:64:71:6f:8e: 8d:87:89:d0:50:49:3e:25:bc:fe:c2:ad:a9:62:e4:86:c9:34: 13:3b:9f:ee:79:2f:80:e2:79:80:20:aa:64:1f:f0:ca:b2:33: bc:a4:18:85:8f:df:2e:cb:a7:67:bf:1e:7f:b3:e6:aa:5d:c9: 94:dd:a3:c7:1f:6a:2a:4b:0e:ab:bf:33:54:f8:48:c9:34:9e: 88:bf:e3:7e:6f:e2:2d:8e:e9:e4:93:f8:91:94:22:96:22:0c: db:df:40:f2 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDAN7NMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDQyMDA5MzM0NFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjllNWYyZjgtNmFhZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgYSitigfc5Lk2sH86r9k3k2tEBGSf1n23HBXNMrduiH2M+s+4UQJcAJV5S yeONf3dn4pZDJwqe42VmK9CepZJueIZyPBNtFTsI7ViJ6hOtHGNRC8XSXERrw96z d5/uioMc9rV8YfJkw+2rohSmQiWJG5tMGO7021mOs81oOjwp4sxwqPFKSgvIXn2w /M2K8cAYdaCc32TUS7CJNHrCoD0eYIot5EU1ClOz94iE3HjXaaE4RNTJXMoS2LPK mEqPsYc6ogY1GSOV/0awSrDmKSFvlTeMNgrlpKOkbFgeR9ZDHu/ynyVPZZXbb52p OuAxlDxH66fd+KPBIErmOyKBjvUCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBSXtDHA VCyMXj7KNi+nrEs4EHoZijAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q5OTAyQ0VB M0M5QTExRjFCQjhGQkFBNEE0ODMzNzczLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaOAzDAPBAIAAjAJAwcAIAEN9ufAMA0GCSqGSIb3DQEBCwUAA4IB AQBRDUlQkW1UdGTS0fVTgxBP5Y3I34iIqrBqhbyCyIREEIFJtdPNW69h26uXGLPg cdQDdtXLy6THonibVslg468dJrbBKv/pJCH3LUWnJjEoGzG7Qmgn+VSuETvWWuy8 xqFWmixNHW5HIK9Ut1DFkIGELQtQ9Fwx3GhMDHhDp85GHeUZj7ZAavA9BOxb3z2X 0FiHDP40ZnaV13MjcvluMGRxb46Nh4nQUEk+Jbz+wq2pYuSGyTQTO5/ueS+A4nmA IKpkH/DKsjO8pBiFj98uy6dnvx5/s+aqXcmU3aPHH2oqSw6rvzNU+EjJNJ6Iv+N+ b+Itjunkk/iRlCKWIgzb30Dy -----END CERTIFICATE-----Generated at Wed May 13 10:39:36 2026 by rpki-client