$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/AE9090F83B0F11F08D496424C4F9AE02.roa File: AE9090F83B0F11F08D496424C4F9AE02.roa (raw, json) Hash identifier: Pts4/fPo3wOrTStkErNlvelGiuZZrZuO6krUuiRdTok= Subject key identifier: BB:8E:A8:85:1B:B2:80:10:76:27:DD:59:5E:34:71:04:9B:6F:45:B1 Certificate issuer: /CN=A913B4BE/serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Certificate serial: 01A2 Authority key identifier: 7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/AE9090F83B0F11F08D496424C4F9AE02.roa Signing time: Fri 03 Apr 2026 04:37:52 +0000 ROA not before: Fri 03 Apr 2026 04:37:52 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 152482 IP address blocks: 157.20.42.0/23 maxlen: 23 157.20.42.0/24 maxlen: 24 157.20.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE, serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Validity Not Before: Apr 3 04:37:52 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf4420-aff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0f:bb:29:79:99:1c:ea:e3:15:9f:bd:3b:ee: 2f:19:1d:d8:ad:74:44:fa:ba:ee:8c:2f:97:8a:17: 10:38:9a:24:a5:65:1e:6b:24:36:22:7f:44:52:ba: 98:57:3b:75:64:66:17:57:5f:c8:79:96:0d:51:73: ab:45:2d:14:79:28:78:94:61:d6:fe:a7:9f:75:1d: 3b:ea:05:8e:9e:45:b4:23:32:ff:59:c3:b5:78:7f: 64:24:7a:b1:87:0a:68:60:35:e3:5a:d4:84:17:4a: a7:5c:4f:18:52:28:97:16:0f:a7:7b:e4:5f:c6:52: 94:26:51:a2:8a:bc:c0:44:2c:5f:95:13:b3:ff:23: 76:c3:ba:ed:f9:e2:ce:dc:e5:61:62:7d:79:be:1d: d8:5b:45:65:c7:0c:3f:f0:a7:60:48:79:63:79:82: 89:7b:4c:90:2f:d2:00:3a:92:e9:be:67:68:70:96: 85:9c:61:62:81:e3:0f:99:32:eb:be:bd:8b:bc:90: 31:39:25:00:c4:a4:0f:41:80:02:25:0a:21:db:2c: 0f:90:fa:82:60:fe:4e:b1:ba:a4:44:5a:4f:ac:36: 95:5a:a8:b3:59:d0:8e:f1:79:2e:b3:00:d7:6b:9d: 85:14:7c:02:1d:0f:c0:8a:ad:74:fa:47:4a:cd:57: 00:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:8E:A8:85:1B:B2:80:10:76:27:DD:59:5E:34:71:04:9B:6F:45:B1 X509v3 Authority Key Identifier: keyid:7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/AE9090F83B0F11F08D496424C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.42.0/23 Signature Algorithm: sha256WithRSAEncryption 81:ce:9e:db:c7:59:b9:a5:96:64:82:69:f6:cd:af:bb:ac:17: 0f:42:12:bc:40:f3:e5:30:92:18:b7:27:1a:f4:75:1b:8e:12: c2:49:bd:b9:09:b2:e6:8c:68:6c:c7:e3:07:16:77:2d:87:80: e0:c9:a0:eb:38:2f:0d:3b:aa:8c:99:fb:be:b5:55:b5:25:5a: d4:28:5f:15:ad:0d:c5:47:f8:96:9c:f9:35:da:19:49:a5:83: 6c:3c:3d:35:27:48:86:9a:f2:f4:80:55:09:c7:bc:6a:a1:e8: 53:61:8e:63:24:c1:14:33:72:6b:28:38:5a:b5:b6:ad:87:56: d4:28:c8:30:6a:9c:ea:52:ca:da:0d:07:73:b0:32:dd:90:a4: e6:df:6a:a4:98:1d:b5:a7:50:7d:9c:82:f2:21:c4:37:28:07: f3:82:ea:ac:1e:fd:bd:02:6e:9a:87:47:c8:55:9f:57:2a:b2: df:bc:32:c8:c5:a3:95:f9:37:a7:f0:19:b0:36:70:b2:fd:5f: 26:8f:b8:dc:6f:0c:63:9c:d5:74:cd:99:f2:18:ec:d7:12:6c: 4a:ef:ac:df:9f:69:9e:1e:1b:94:d2:a3:e1:62:67:2c:31:87: ab:f4:c6:c4:eb:d4:32:03:fe:05:33:7f:ac:c7:dd:7a:6e:aa: fc:d7:1e:f4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0QkUxMTAvBgNVBAUTKDdCMUZCMUJBM0IwRUM4Q0E1RTVDMTNBRUJDRkM2RUJB OEQyMEVBQTcwHhcNMjYwNDAzMDQzNzUyWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmNDQyMC1hZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1w+7KXmZHOrjFZ+9O+4vGR3YrXRE+rrujC+XihcQOJokpWUeayQ2In9EUrqY Vzt1ZGYXV1/IeZYNUXOrRS0UeSh4lGHW/qefdR076gWOnkW0IzL/WcO1eH9kJHqx hwpoYDXjWtSEF0qnXE8YUiiXFg+ne+RfxlKUJlGiirzARCxflROz/yN2w7rt+eLO 3OVhYn15vh3YW0Vlxww/8KdgSHljeYKJe0yQL9IAOpLpvmdocJaFnGFigeMPmTLr vr2LvJAxOSUAxKQPQYACJQoh2ywPkPqCYP5OsbqkRFpPrDaVWqizWdCO8XkuswDX a52FFHwCHQ/Aiq10+kdKzVcAOQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLuOqIUb soAQdifdWV40cQSbb0WxMB8GA1UdIwQYMBaAFHsfsbo7DsjKXlwTrrz8brqNIOqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjRCRS82RjJGRDMzOEND RjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi9leC14dWpzT3lNcGVYQk91dlB4dXVvMGc2 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2V4LXh1anNPeU1wZVhCT3V2UHh1dW8wZzZxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I0QkUvNkYyRkQzMzhDQ0Y3MTFFRTlFODlENjdBQzRGOUFFMDIvQUU5MDkwRjgz QjBGMTFGMDhENDk2NDI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRQqMA0GCSqGSIb3DQEBCwUAA4IBAQCBzp7bx1m5pZZkgmn2za+7 rBcPQhK8QPPlMJIYtyca9HUbjhLCSb25CbLmjGhsx+MHFncth4DgyaDrOC8NO6qM mfu+tVW1JVrUKF8VrQ3FR/iWnPk12hlJpYNsPD01J0iGmvL0gFUJx7xqoehTYY5j JMEUM3JrKDhatbath1bUKMgwapzqUsraDQdzsDLdkKTm32qkmB21p1B9nILyIcQ3 KAfzguqsHv29Am6ah0fIVZ9XKrLfvDLIxaOV+Ten8BmwNnCy/V8mj7jcbwxjnNV0 zZnyGOzXEmxK76zfn2meHhuU0qPhYmcsMYer9MbE69QyA/4FM3+sx916bqr81x70 -----END CERTIFICATE-----Generated at Mon Apr 6 12:24:02 2026 by rpki-client