$ rpki-client -vvf rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/A20F01CCE1E511EEA0477018C4F9AE02.roa File: A20F01CCE1E511EEA0477018C4F9AE02.roa (raw, json) Hash identifier: JrlK4WhlTrEpcG6FzSvzNowSlZJ2e3FVMbW+wA/7IUI= Subject key identifier: 7A:5F:86:4B:6B:24:8D:23:FF:A6:9E:58:53:23:4D:42:CD:A5:A8:BB Certificate issuer: /CN=A919DAF2/serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Certificate serial: 2299 Authority key identifier: 13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/A20F01CCE1E511EEA0477018C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:39:38 +0000 ROA not before: Tue 06 May 2025 16:23:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151801 IP address blocks: 202.134.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8857 (0x2299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DAF2, serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Validity Not Before: May 6 16:23:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4419a-7d0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4e:70:52:8b:c0:ed:dd:64:83:dd:6a:40:54: b9:6e:e5:05:2b:a4:c7:ce:71:89:f4:e1:9e:64:16: 78:ac:14:2c:88:76:fd:47:3f:ea:82:ea:37:a7:3e: 5d:50:dd:dd:a0:81:3e:03:e7:82:d6:3a:c5:3a:a1: 26:8c:0d:b9:0e:af:db:7d:03:6a:de:f4:e6:e1:24: c6:57:3a:21:6b:70:c4:9a:f9:2a:ea:ec:3b:6b:83: 82:3e:cd:8a:19:0d:dc:13:54:ae:79:d5:8c:22:90: 62:cf:c4:ed:58:e7:33:78:e7:24:9c:87:2b:e8:5f: 27:85:e9:f7:5d:6d:ab:e8:37:ce:83:5a:c6:a2:d6: f9:3c:0a:cf:89:81:27:c8:fe:fd:b3:ea:05:8b:18: 10:02:fe:6c:5f:14:6a:63:9d:81:64:5a:8b:ff:af: 96:7a:67:4a:ed:8e:05:c1:34:26:bd:84:93:13:ae: e3:3d:aa:0c:83:d6:51:96:81:92:dd:ec:74:3e:38: 52:5d:6b:0e:a8:cf:da:0e:9d:d5:9b:19:41:1b:ca: 13:b7:fa:58:c4:ef:d2:91:64:ee:a2:f4:e3:b4:3a: b7:f1:d8:57:23:3b:25:00:b4:81:d0:b2:6f:84:1c: f8:38:36:16:de:ed:c5:2d:7e:a5:d8:6e:12:0c:de: 18:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:5F:86:4B:6B:24:8D:23:FF:A6:9E:58:53:23:4D:42:CD:A5:A8:BB X509v3 Authority Key Identifier: keyid:13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/A20F01CCE1E511EEA0477018C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.134.188.0/24 Signature Algorithm: sha256WithRSAEncryption 72:09:5b:4c:b4:1a:59:aa:53:60:ea:76:2e:81:8a:66:b2:8a: 18:0e:72:62:80:2d:ff:1e:e5:d0:ca:d1:32:8b:2a:1f:7c:7d: 7d:84:fe:78:00:f1:93:9b:04:3e:99:68:25:60:ac:89:18:41: d0:68:11:91:1d:a7:a9:2a:bc:18:82:fe:36:72:c7:79:32:bd: 45:2b:63:3b:a9:ad:ca:84:d4:86:78:b6:fa:2d:82:fc:ff:51: ae:e4:3a:a4:b7:d1:37:14:c3:3a:b4:01:2d:3b:f6:a3:7e:0d: 39:f2:20:97:b1:66:ba:90:25:42:ac:ce:35:66:e8:5a:04:8d: d5:18:d5:ce:73:77:59:36:2e:ea:46:fa:fe:38:d2:97:b9:97: 8c:ad:78:7d:1a:7b:36:d6:12:35:a6:a6:fc:16:6a:44:5f:5a: 77:62:91:ad:53:6d:4c:81:90:13:14:fb:02:57:bf:4b:61:95: 0c:a3:e4:78:1b:1e:18:93:7e:d7:10:44:05:16:ec:61:ed:27: 23:62:0e:f6:45:d6:c4:4a:e7:b7:6d:ca:e0:bc:e0:db:2a:bf: 1c:e3:98:99:06:14:0c:3b:fa:68:af:b4:ad:25:63:14:bc:f0: ac:67:fb:9e:e3:68:53:c1:51:51:43:2a:ed:63:0a:38:ba:09: 15:1c:5e:4b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBRjIxMTAvBgNVBAUTKDEzOUNDMURCNkI5RDI0QjkzQjE0OTI4QTc1MThEMDRF QjNCMjZBM0EwHhcNMjUwNTA2MTYyMzM1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDE5YS03ZDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl05wUovA7d1kg91qQFS5buUFK6THznGJ9OGeZBZ4rBQsiHb9Rz/qguo3pz5d UN3doIE+A+eC1jrFOqEmjA25Dq/bfQNq3vTm4STGVzoha3DEmvkq6uw7a4OCPs2K GQ3cE1SuedWMIpBiz8TtWOczeOcknIcr6F8nhen3XW2r6DfOg1rGotb5PArPiYEn yP79s+oFixgQAv5sXxRqY52BZFqL/6+WemdK7Y4FwTQmvYSTE67jPaoMg9ZRloGS 3ex0PjhSXWsOqM/aDp3VmxlBG8oTt/pYxO/SkWTuovTjtDq38dhXIzslALSB0LJv hBz4ODYW3u3FLX6l2G4SDN4YZQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHpfhktr JI0j/6aeWFMjTULNpai7MB8GA1UdIwQYMBaAFBOcwdtrnSS5OxSSinUY0E6zsmo6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REFGMi8yNkVDNkREQUQz REExMUU1OEM1Q0Q0MEZDNEY5QUUwMi9FNXpCMjJ1ZEpMazdGSktLZFJqUVRyT3lh am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1ekIyMnVkSkxrN0ZKS0tkUmpRVHJPeWFqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURBRjIvMjZFQzZEREFEM0RBMTFFNThDNUNENDBGQzRGOUFFMDIvQTIwRjAxQ0NF MUU1MTFFRUEwNDc3MDE4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyoa8MA0GCSqGSIb3DQEBCwUAA4IBAQByCVtMtBpZqlNg6nYugYpm sooYDnJigC3/HuXQytEyiyoffH19hP54APGTmwQ+mWglYKyJGEHQaBGRHaepKrwY gv42csd5Mr1FK2M7qa3KhNSGeLb6LYL8/1Gu5Dqkt9E3FMM6tAEtO/ajfg058iCX sWa6kCVCrM41ZuhaBI3VGNXOc3dZNi7qRvr+ONKXuZeMrXh9Gns21hI1pqb8FmpE X1p3YpGtU21MgZATFPsCV79LYZUMo+R4Gx4Yk37XEEQFFuxh7ScjYg72RdbESue3 bcrgvODbKr8c45iZBhQMO/por7StJWMUvPCsZ/ue42hTwVFRQyrtYwo4ugkVHF5L -----END CERTIFICATE-----Generated at Thu Mar 26 10:03:03 2026 by rpki-client