$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/007686A0D3DD11F08C79D853C4F9AE02.roa File: 007686A0D3DD11F08C79D853C4F9AE02.roa (raw, json) Hash identifier: u0M66qh4o7knuILMykFw4eLMQQ390tee1LvBxu3LBIs= Subject key identifier: 67:91:F9:37:19:05:02:F0:6A:AF:40:E9:61:0A:24:ED:91:DA:79:09 Certificate issuer: /CN=A917B520/serialNumber=024D8F15AA39772175883A2EDC165014E1928A1A Certificate serial: 9A Authority key identifier: 02:4D:8F:15:AA:39:77:21:75:88:3A:2E:DC:16:50:14:E1:92:8A:1A Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/Ak2PFao5dyF1iDou3BZQFOGSiho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/007686A0D3DD11F08C79D853C4F9AE02.roa Signing time: Wed 27 May 2026 03:33:13 +0000 ROA not before: Wed 27 May 2026 03:33:12 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 150436 IP address blocks: 187.42.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.crl rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/Ak2PFao5dyF1iDou3BZQFOGSiho.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 03:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=024D8F15AA39772175883A2EDC165014E1928A1A Validity Not Before: May 27 03:33:12 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1665f8-3bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:42:95:ec:cc:86:30:7e:57:55:81:07:c5:9e: ba:be:7d:f2:33:b1:3a:8c:24:18:87:7c:d5:f0:69: a3:41:33:18:98:7d:2c:93:55:d8:84:b7:ad:da:26: 41:7f:51:9e:0a:07:e9:2a:0f:67:e1:1a:22:d3:fd: 52:6f:0b:23:95:03:5c:af:ca:84:d2:ef:d9:91:8a: b8:3f:ae:24:ad:d4:0d:68:8c:7a:bf:42:a8:44:e5: 54:70:12:c1:87:52:74:07:1a:73:25:11:fb:d3:27: 5f:70:47:9b:cb:d8:bb:22:99:95:8a:3b:ad:c2:19: 37:4f:f3:31:1e:4b:95:99:a2:9a:0d:16:66:1a:59: d7:fd:ed:66:cf:bf:2d:97:d7:5a:34:46:17:88:0f: 53:0e:2e:fd:ed:a2:c7:51:fa:a9:27:84:20:92:c1: 4d:8f:4f:0b:41:99:7b:8e:0c:d6:79:2e:16:60:c6: ba:25:82:a6:77:06:36:74:4d:c2:cb:00:4e:99:e9: 0f:e9:dd:72:66:88:bb:bf:5f:c0:cd:6c:dd:3b:68: a5:7e:5d:7a:a3:96:42:e3:1b:e2:25:05:3f:99:d2: 7b:24:71:81:65:c1:78:74:7e:6e:9e:41:83:34:3e: 5c:9e:c2:24:ea:21:de:dc:43:ea:cb:7f:f6:35:fc: 0a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:91:F9:37:19:05:02:F0:6A:AF:40:E9:61:0A:24:ED:91:DA:79:09 X509v3 Authority Key Identifier: keyid:02:4D:8F:15:AA:39:77:21:75:88:3A:2E:DC:16:50:14:E1:92:8A:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/Ak2PFao5dyF1iDou3BZQFOGSiho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/007686A0D3DD11F08C79D853C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 187.42.0.0/17 Signature Algorithm: sha256WithRSAEncryption 2a:ab:89:cf:83:e1:30:8d:a3:21:be:1e:82:10:2a:51:97:f1: ce:bf:33:81:6a:9c:37:b9:0c:53:f1:b9:d3:bf:ca:78:94:ae: db:9e:7f:95:c9:27:a8:e3:b0:49:3a:b3:ac:73:f8:62:a1:29: b8:af:00:50:9f:94:5f:d1:f4:0f:38:a6:82:c8:21:75:2a:c4: f3:83:74:85:44:2f:d9:a9:9f:9c:0f:4d:b7:c3:42:ab:bd:c0: 63:94:75:f0:ca:3d:d6:b8:48:38:d8:d2:bc:e9:3f:b5:1c:14: 9c:97:e8:1d:89:5c:2c:0d:a7:e7:4c:18:43:4e:04:c6:e7:ac: 79:69:62:cf:53:3c:56:da:8d:85:78:d1:32:07:34:2d:4d:61: 1b:36:65:25:45:0e:0c:a8:7e:a7:a6:cb:4d:26:49:c3:74:ad: b2:80:1a:7d:44:61:b1:c1:a9:e1:1c:7f:35:8d:31:7d:47:88: ee:f0:1e:eb:5e:14:4e:07:b9:2d:0f:2e:6b:56:23:74:f8:53: 6d:98:41:bb:3f:f2:96:fc:fb:b4:24:31:3b:08:5f:7f:7a:3e: a0:4a:8a:cc:2f:48:b1:17:09:26:38:80:1e:a1:b3:f5:bb:6e: 9f:ce:98:4d:ef:54:1e:ab:f3:01:c4:f1:92:74:f8:39:c7:cd: a3:7c:8e:92 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDAyNEQ4RjE1QUEzOTc3MjE3NTg4M0EyRURDMTY1MDE0 RTE5MjhBMUEwHhcNMjYwNTI3MDMzMzEyWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2NjVmOC0zYmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEKV7MyGMH5XVYEHxZ66vn3yM7E6jCQYh3zV8GmjQTMYmH0sk1XYhLet2iZB f1GeCgfpKg9n4Roi0/1SbwsjlQNcr8qE0u/ZkYq4P64krdQNaIx6v0KoROVUcBLB h1J0BxpzJRH70ydfcEeby9i7IpmVijutwhk3T/MxHkuVmaKaDRZmGlnX/e1mz78t l9daNEYXiA9TDi797aLHUfqpJ4QgksFNj08LQZl7jgzWeS4WYMa6JYKmdwY2dE3C ywBOmekP6d1yZoi7v1/AzWzdO2ilfl16o5ZC4xviJQU/mdJ7JHGBZcF4dH5unkGD ND5cnsIk6iHe3EPqy3/2NfwKvwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGeR+TcZ BQLwaq9A6WEKJO2R2nkJMB8GA1UdIwQYMBaAFAJNjxWqOXchdYg6LtwWUBThkooa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80QTEyQTMzQzgy RjQxMUYwOUI3NDM1NEVDNEY5QUUwMi9BazJQRmFvNWR5RjFpRG91M0JaUUZPR1Np aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyL0FrMlBGYW81ZHlGMWlEb3UzQlpRRk9HU2loby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvNEExMkEzM0M4MkY0MTFGMDlCNzQzNTRFQzRGOUFFMDIvMDA3Njg2QTBE M0REMTFGMDhDNzlEODUzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQHuyoAMA0GCSqGSIb3DQEBCwUAA4IBAQAqq4nPg+EwjaMhvh6CECpR l/HOvzOBapw3uQxT8bnTv8p4lK7bnn+VySeo47BJOrOsc/hioSm4rwBQn5Rf0fQP OKaCyCF1KsTzg3SFRC/ZqZ+cD023w0KrvcBjlHXwyj3WuEg42NK86T+1HBScl+gd iVwsDafnTBhDTgTG56x5aWLPUzxW2o2FeNEyBzQtTWEbNmUlRQ4MqH6npstNJknD dK2ygBp9RGGxwanhHH81jTF9R4ju8B7rXhROB7ktDy5rViN0+FNtmEG7P/KW/Pu0 JDE7CF9/ej6gSorML0ixFwkmOIAeobP1u26fzphN71Qeq/MBxPGSdPg5x82jfI6S -----END CERTIFICATE-----Generated at Thu May 28 18:04:11 2026 by rpki-client