$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/4AFF817484EF11EFBDCD721DC4F9AE02.roa File: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (raw, json) Hash identifier: MRSyunFuZV1S3WfmC+o5wAwU5vJtDQmtS6IHzeBNXmc= Subject key identifier: 8A:9B:AF:B0:58:B1:1C:1D:3E:37:7F:6B:45:33:FF:95:05:3D:6B:4E Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: 0137 Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/4AFF817484EF11EFBDCD721DC4F9AE02.roa Signing time: Tue 05 May 2026 05:38:26 +0000 ROA not before: Tue 05 May 2026 05:38:26 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 17542 IP address blocks: 192.111.102.0/24 maxlen: 24 192.150.218.0/24 maxlen: 24 192.150.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525, serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: May 5 05:38:26 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69f98252-7590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4f:bd:79:93:b2:9e:2e:02:df:f1:56:0d:a7: 16:b2:53:06:96:d7:64:0d:26:65:2e:2b:d1:42:a1: a2:f9:5c:df:7c:98:86:17:fe:18:ee:38:bf:2a:6f: 44:a6:83:bf:b7:e6:6a:93:fd:ce:71:64:70:e2:ce: e6:b4:ac:11:24:b8:ff:df:d6:75:d1:85:9b:df:4c: 9e:49:e6:2d:6b:4d:31:95:10:4c:c7:c3:b1:40:37: ee:fa:31:a0:22:10:e4:f7:83:b4:94:d3:2b:d7:5c: 81:39:96:99:93:a2:ee:a7:75:b9:3f:8d:c0:64:81: 84:07:76:46:60:32:07:d7:7b:4b:f5:90:85:0a:3a: 0e:33:72:f4:2f:02:a9:6a:59:be:4b:8e:2c:97:c9: 60:ab:01:a2:d6:54:83:44:76:a3:04:72:86:78:52: b0:20:23:00:de:a3:3b:dd:3f:fe:71:f1:71:a4:52: 70:49:ae:65:9c:eb:0f:cb:3c:cf:a0:52:d8:29:ef: 10:27:83:71:cc:d7:7c:c5:78:01:71:68:41:d0:76: c1:b6:f6:e5:b2:99:f3:d4:34:76:a7:f1:48:5c:e6: 73:a0:0c:8e:68:e6:cd:42:0a:0e:1b:a1:0d:3d:63: 3d:c5:7d:7f:90:34:c7:af:43:ea:52:4e:36:8e:c6: 40:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:9B:AF:B0:58:B1:1C:1D:3E:37:7F:6B:45:33:FF:95:05:3D:6B:4E X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/4AFF817484EF11EFBDCD721DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.111.102.0/24 192.150.218.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:38:4e:8e:90:ab:dd:54:39:bb:c8:62:9e:b7:4c:c4:01:8b: dc:57:03:cd:54:1a:80:dc:f8:f7:fd:70:1a:40:f8:bf:df:59: 85:58:95:2f:39:b2:79:6d:2e:7b:dd:55:81:27:dd:0b:4e:a4: ad:71:04:11:97:21:a1:2f:65:78:9e:0c:89:ec:40:b2:51:0c: b5:7c:0a:46:57:da:73:13:7a:78:ca:4b:51:b6:3d:8f:a2:c3: c0:c9:83:fe:92:de:36:fb:97:96:9c:31:3a:83:f7:17:d7:be: d2:c7:dd:e6:26:16:69:6c:fc:3e:8b:d4:8f:01:a2:e4:d7:85: 1d:2a:dc:69:5b:5a:9f:4d:94:14:b2:e5:28:80:ac:74:ef:a5: 79:78:7f:a1:83:00:7b:a8:a8:6b:08:8d:a4:ec:19:65:9f:b4: d5:7b:84:f2:d2:c9:a3:99:d9:ce:7b:64:d5:b8:6a:a6:a6:89: 87:a7:29:6a:2f:8d:b7:1a:4c:48:fc:2e:c9:fa:01:48:bf:e4: ec:7f:72:f6:af:14:66:00:3e:fd:89:90:1f:90:f6:2d:47:a4: 59:5b:92:c8:93:cc:d8:de:06:6b:53:5c:a5:fb:35:d6:6f:e6: fa:46:e7:c5:e4:06:43:a0:c4:e5:c4:bb:fb:f2:4a:8d:97:28: 56:86:52:1c -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1MjUxMTAvBgNVBAUTKDJCM0RCODVFRjk1MjIzOEQxOTJEQ0YxNzBFRTZCRUIx QzhEQjAzQTkwHhcNMjYwNTA1MDUzODI2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY5ODI1Mi03NTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0+9eZOyni4C3/FWDacWslMGltdkDSZlLivRQqGi+VzffJiGF/4Y7ji/Km9E poO/t+Zqk/3OcWRw4s7mtKwRJLj/39Z10YWb30yeSeYta00xlRBMx8OxQDfu+jGg IhDk94O0lNMr11yBOZaZk6Lup3W5P43AZIGEB3ZGYDIH13tL9ZCFCjoOM3L0LwKp alm+S44sl8lgqwGi1lSDRHajBHKGeFKwICMA3qM73T/+cfFxpFJwSa5lnOsPyzzP oFLYKe8QJ4NxzNd8xXgBcWhB0HbBtvblspnz1DR2p/FIXOZzoAyOaObNQgoOG6EN PWM9xX1/kDTHr0PqUk42jsZAjQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIqbr7BY sRwdPjd/a0Uz/5UFPWtOMB8GA1UdIwQYMBaAFCs9uF75UiONGS3PFw7mvrHI2wOp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjUyNS9FMTg3MTc3Njg0 RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9LejI0WHZsU0k0MFpMYzhYRHVhLXNjamJB NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY1MjUvRTE4NzE3NzY4NEVEMTFFRkI5RkYyRDVBQzRGOUFFMDIvNEFGRjgxNzQ4 NEVGMTFFRkJEQ0Q3MjFEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAwG9mAwQBwJbaMA0GCSqGSIb3DQEBCwUAA4IBAQBMOE6OkKvdVDm7 yGKet0zEAYvcVwPNVBqA3Pj3/XAaQPi/31mFWJUvObJ5bS573VWBJ90LTqStcQQR lyGhL2V4ngyJ7ECyUQy1fApGV9pzE3p4yktRtj2PosPAyYP+kt42+5eWnDE6g/cX 177Sx93mJhZpbPw+i9SPAaLk14UdKtxpW1qfTZQUsuUogKx076V5eH+hgwB7qKhr CI2k7Blln7TVe4Ty0smjmdnOe2TVuGqmpomHpylqL423GkxI/C7J+gFIv+Tsf3L2 rxRmAD79iZAfkPYtR6RZW5LIk8zY3gZrU1yl+zXWb+b6RufF5AZDoMTlxLv78kqN lyhWhlIc -----END CERTIFICATE-----Generated at Wed May 13 10:47:40 2026 by rpki-client