$ rpki-client -vvf rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/E8343A14280A11ED80EB7F2FC4F9AE02.roa File: E8343A14280A11ED80EB7F2FC4F9AE02.roa (raw, json) Hash identifier: mf0wGIWAXtcqp5A/STrLzJZxEHdPx6LC7pC19PfOQBM= Subject key identifier: DF:17:9F:D3:61:42:EC:0A:2D:5E:3E:D1:E0:10:B3:23:4E:84:5A:FC Certificate issuer: /CN=A9155AE4/serialNumber=3CF91608226819C3E9DA84D1195B5326F9249FBD Certificate serial: 037D Authority key identifier: 3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/E8343A14280A11ED80EB7F2FC4F9AE02.roa Signing time: Mon 11 May 2026 04:24:33 +0000 ROA not before: Mon 11 May 2026 04:24:33 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 24017 IP address blocks: 202.10.240.0/22 maxlen: 22 202.10.244.0/22 maxlen: 22 203.17.26.0/23 maxlen: 23 203.17.26.0/24 maxlen: 24 203.17.27.0/24 maxlen: 24 203.18.237.0/24 maxlen: 24 203.18.238.0/24 maxlen: 24 203.18.239.0/24 maxlen: 24 203.22.0.0/24 maxlen: 24 203.22.1.0/24 maxlen: 24 203.22.2.0/24 maxlen: 24 203.22.6.0/24 maxlen: 24 203.22.10.0/24 maxlen: 24 203.22.11.0/24 maxlen: 24 203.22.12.0/23 maxlen: 23 203.22.14.0/23 maxlen: 23 203.22.14.0/24 maxlen: 24 203.22.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 893 (0x37d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155AE4, serialNumber=3CF91608226819C3E9DA84D1195B5326F9249FBD Validity Not Before: May 11 04:24:33 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6a015a01-3521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c8:af:b3:a8:d5:ec:e5:17:5c:11:2e:14:f9: 09:86:5d:44:fa:5d:52:1c:81:8b:63:68:ba:98:46: 7e:ba:55:ed:7b:cc:a6:3b:a3:53:2a:a2:c2:6c:63: 35:7f:21:d8:aa:fd:1f:2c:87:cf:0c:67:db:4c:ab: 42:49:83:1b:78:56:ec:5a:66:45:ab:39:30:d3:86: f0:73:0c:89:f7:a8:a4:44:59:22:78:56:4e:53:86: 34:e3:c2:ce:1a:a7:68:b5:69:aa:76:4d:10:e6:18: 7a:e6:bd:18:4e:cf:09:8b:59:34:3b:00:64:d7:b4: f1:4b:0d:80:07:3f:76:39:00:32:bc:7e:a1:8c:38: 2e:15:ae:a3:d9:2b:d6:2e:69:08:8a:1f:58:55:11: 62:8d:46:38:ba:9d:c5:85:54:6c:cd:63:1e:b4:8e: 9a:95:40:13:3e:d9:a7:47:48:09:71:34:14:9d:4c: 95:04:bd:4b:98:ad:79:ee:40:16:00:bb:76:bb:76: 5d:1d:d2:81:61:93:c8:e8:da:45:68:f1:eb:a3:8d: 31:7e:39:00:85:8a:95:10:f1:14:0f:a9:31:07:c0: d4:33:3c:45:ca:10:49:f0:dd:28:a0:26:a9:d7:e6: 5e:bd:cc:45:17:d9:0d:c7:4f:1b:4d:00:c8:5d:22: 43:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:17:9F:D3:61:42:EC:0A:2D:5E:3E:D1:E0:10:B3:23:4E:84:5A:FC X509v3 Authority Key Identifier: keyid:3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/E8343A14280A11ED80EB7F2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.10.240.0/21 203.17.26.0/23 203.18.237.0-203.18.239.255 203.22.0.0-203.22.2.255 203.22.6.0/24 203.22.10.0-203.22.15.255 Signature Algorithm: sha256WithRSAEncryption 3d:bc:a5:0f:1e:22:d9:42:96:dc:8a:69:6b:34:3f:db:12:4d: cd:59:0a:b6:b7:ef:f2:7d:d8:48:a3:89:57:69:86:5e:cb:47: 87:1c:2d:35:58:82:4a:db:d0:e4:e2:49:b8:45:41:6a:8f:4f: 9a:ec:7b:36:c7:51:ba:a4:68:be:22:f4:f5:92:32:fc:5a:16: 27:03:63:f0:a6:d2:8d:7b:0c:45:3e:42:f3:8d:73:a1:e2:2b: 18:a5:c5:e8:ff:86:d6:2d:4d:76:1d:e5:7c:a5:15:b0:6b:6e: d7:0d:a7:e8:e4:cb:06:98:c1:f3:d5:a7:80:b3:26:5c:bc:8a: 78:b6:86:d3:9d:01:ea:2d:79:3e:ec:27:ab:6d:c6:07:01:75: ad:4e:33:c0:c7:a9:8e:34:bd:b3:42:30:ce:8b:7f:20:67:3c: a7:f8:f0:4c:b3:89:85:aa:94:12:69:38:b3:76:1f:30:07:be: 03:55:a1:53:c6:4c:eb:d0:40:d9:e2:cc:ca:ed:92:f4:61:2a: 5f:79:08:03:50:37:d5:c0:5a:6d:9d:0a:48:6d:ac:b6:5e:97: 2c:fc:3c:01:33:1d:11:90:b9:4c:34:bc:09:25:ef:74:8a:b2: 06:5f:e4:fb:f9:82:dc:02:fb:2e:35:9b:8e:f4:7d:5d:b7:59: 3c:e2:c9:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVBRTQxMTAvBgNVBAUTKDNDRjkxNjA4MjI2ODE5QzNFOURBODREMTE5NUI1MzI2 RjkyNDlGQkQwHhcNMjYwNTExMDQyNDMzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAxNWEwMS0zNTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMivs6jV7OUXXBEuFPkJhl1E+l1SHIGLY2i6mEZ+ulXte8ymO6NTKqLCbGM1 fyHYqv0fLIfPDGfbTKtCSYMbeFbsWmZFqzkw04bwcwyJ96ikRFkieFZOU4Y048LO GqdotWmqdk0Q5hh65r0YTs8Ji1k0OwBk17TxSw2ABz92OQAyvH6hjDguFa6j2SvW LmkIih9YVRFijUY4up3FhVRszWMetI6alUATPtmnR0gJcTQUnUyVBL1LmK157kAW ALt2u3ZdHdKBYZPI6NpFaPHro40xfjkAhYqVEPEUD6kxB8DUMzxFyhBJ8N0ooCap 1+ZevcxFF9kNx08bTQDIXSJD4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN8Xn9Nh QuwKLV4+0eAQsyNOhFr8MB8GA1UdIwQYMBaAFDz5FggiaBnD6dqE0RlbUyb5JJ+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUFFNC9FNUQ2RDBBQzA2 NTMxMUVEODI3QkVGNTRDNEY5QUUwMi9QUGtXQ0NKb0djUHAyb1RSR1Z0VEp2a2tu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQa1dDQ0pvR2NQcDJvVFJHVnRUSnZra243MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTVBRTQvRTVENkQwQUMwNjUzMTFFRDgyN0JFRjU0QzRGOUFFMDIvRTgzNDNBMTQy ODBBMTFFRDgwRUI3RjJGQzRGOUFFMDIucm9hMFQGCCsGAQUFBwEHAQH/BEUwQzBB BAIAATA7AwQDygrwAwQByxEaMAwDBADLEu0DBATLEuAwCwMDAcsWAwQAyxYCAwQA yxYGMAwDBAHLFgoDBATLFgAwDQYJKoZIhvcNAQELBQADggEBAD28pQ8eItlCltyK aWs0P9sSTc1ZCra37/J92EijiVdphl7LR4ccLTVYgkrb0OTiSbhFQWqPT5rsezbH UbqkaL4i9PWSMvxaFicDY/Cm0o17DEU+QvONc6HiKxilxej/htYtTXYd5XylFbBr btcNp+jkywaYwfPVp4CzJly8ini2htOdAeoteT7sJ6ttxgcBda1OM8DHqY40vbNC MM6LfyBnPKf48EyziYWqlBJpOLN2HzAHvgNVoVPGTOvQQNnizMrtkvRhKl95CANQ N9XAWm2dCkhtrLZelyz8PAEzHRGQuUw0vAkl73SKsgZf5Pv5gtwC+y41m470fV23 WTziyXk= -----END CERTIFICATE-----Generated at Thu May 21 11:14:11 2026 by rpki-client