$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa File: AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: JCSj0q+FNmMexjbnKyX5RfnJl2tQObdxpSVEIWFfcvQ= Subject key identifier: 42:A1:CD:B5:8A:44:BC:EE:F3:41:43:2A:3D:7A:C1:5B:44:B0:3A:75 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0A18 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 16 Jun 2026 21:25:03 +0000 ROA not before: Tue 16 Jun 2026 21:25:03 +0000 ROA not after: Thu 30 Sep 2027 00:00:00 +0000 asID: 132063 IP address blocks: 203.154.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2584 (0xa18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jun 16 21:25:03 2026 GMT Not After : Sep 30 00:00:00 2027 GMT Subject: CN=6a31bf2e-8f8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2c:0e:75:86:ca:4a:18:c6:5f:8e:9b:f0:9a: 1f:3b:97:db:90:89:47:de:90:0e:5f:78:28:d3:29: 5d:7b:d5:ee:5e:5f:24:34:db:a8:9d:64:ff:d1:2b: 3a:e5:f1:74:4a:8c:ab:c2:8d:ea:ac:79:65:e2:f3: 53:08:80:f6:0b:7f:14:1c:ac:9a:22:9f:9b:8c:65: c0:2e:c2:73:26:40:38:5d:7e:16:df:a7:7b:cd:2f: e4:ec:9b:8f:6c:83:2d:d8:61:a0:0c:79:62:ff:a7: 6b:ca:91:3d:86:d0:94:14:98:d1:4b:3c:f2:17:2c: ef:a1:13:11:10:a7:d8:00:3e:ea:a7:cd:82:04:2a: 9a:07:73:96:78:f8:59:d4:36:a3:25:13:2a:ff:aa: 7d:1a:f5:5a:92:4d:53:ad:a7:92:4a:4d:e0:38:4e: d4:b1:d5:e9:de:3f:26:ec:90:fa:7a:7d:1e:22:91: 98:a6:cb:d9:46:ae:6b:93:c4:de:ab:55:19:de:72: 8c:b5:66:50:ee:a8:76:fa:f3:47:f4:40:f8:a8:63: 6e:69:5e:28:d3:b0:43:b1:60:7d:b5:85:69:59:11: 4d:b1:49:31:34:54:18:20:40:0b:f1:5f:5e:24:22: f8:83:7d:f6:67:d9:5f:bf:5d:72:37:21:32:f6:20: 8d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A1:CD:B5:8A:44:BC:EE:F3:41:43:2A:3D:7A:C1:5B:44:B0:3A:75 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.154.137.0/24 Signature Algorithm: sha256WithRSAEncryption ba:6b:43:11:9b:65:6f:f5:f1:58:f2:25:bf:61:e4:17:40:5b: 1b:6c:c6:ba:0d:3e:4b:c4:ae:43:cf:5a:97:dc:a7:88:36:55: dc:9c:9e:3a:97:a6:ac:eb:5a:e2:5d:65:ba:16:bc:49:27:06: f8:a8:51:1f:80:c2:e3:f6:8f:97:b1:0a:4e:3b:08:ab:42:59: da:e6:80:eb:55:8d:9a:f1:14:fa:17:4f:dc:87:13:b1:3c:e5: 6e:0e:13:b1:72:05:75:75:a9:12:4b:c3:98:4a:2b:76:d6:05: c6:15:57:03:82:22:61:df:1b:bb:31:89:0b:77:fc:21:ae:ba: 9e:e5:c5:e8:51:80:2f:42:ec:99:92:c6:65:b8:4d:bc:59:fa: 04:86:6f:3f:f0:97:e2:d6:32:7f:21:6d:86:61:20:46:eb:a8: 69:44:37:0e:a6:c7:a3:4a:0f:7c:4e:68:9c:2e:d9:43:dc:dc: f4:c6:5c:07:60:c1:bc:a9:64:37:80:a0:c4:47:3b:df:b6:c1: ca:68:b4:67:8d:ef:59:65:f2:20:67:63:da:d2:b3:83:d3:7d: ab:07:79:bb:74:6b:e2:65:03:77:b4:25:55:28:f6:ba:5f:d8: 45:64:35:cd:7a:8c:03:76:fd:4e:3a:d7:3f:32:62:2d:60:68: 7b:96:15:92 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICChgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjYwNjE2MjEyNTAzWhcNMjcwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTMxYmYyZS04ZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSwOdYbKShjGX46b8JofO5fbkIlH3pAOX3go0ylde9XuXl8kNNuonWT/0Ss6 5fF0Soyrwo3qrHll4vNTCID2C38UHKyaIp+bjGXALsJzJkA4XX4W36d7zS/k7JuP bIMt2GGgDHli/6drypE9htCUFJjRSzzyFyzvoRMREKfYAD7qp82CBCqaB3OWePhZ 1DajJRMq/6p9GvVakk1TraeSSk3gOE7UsdXp3j8m7JD6en0eIpGYpsvZRq5rk8Te q1UZ3nKMtWZQ7qh2+vNH9ED4qGNuaV4o07BDsWB9tYVpWRFNsUkxNFQYIEAL8V9e JCL4g332Z9lfv11yNyEy9iCNaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEKhzbWK RLzu80FDKj16wVtEsDp1MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUFEMkRBOUEy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy5qJMA0GCSqGSIb3DQEBCwUAA4IBAQC6a0MRm2Vv9fFY8iW/YeQX QFsbbMa6DT5LxK5Dz1qX3KeINlXcnJ46l6as61riXWW6FrxJJwb4qFEfgMLj9o+X sQpOOwirQlna5oDrVY2a8RT6F0/chxOxPOVuDhOxcgV1dakSS8OYSit21gXGFVcD giJh3xu7MYkLd/whrrqe5cXoUYAvQuyZksZluE28WfoEhm8/8Jfi1jJ/IW2GYSBG 66hpRDcOpsejSg98TmicLtlD3Nz0xlwHYMG8qWQ3gKDERzvftsHKaLRnje9ZZfIg Z2Pa0rOD032rB3m7dGviZQN3tCVVKPa6X9hFZDXNeowDdv1OOtc/MmItYGh7lhWS -----END CERTIFICATE-----Generated at Wed Jun 17 20:24:30 2026 by rpki-client