$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa File: 07EE827ADFEE11E7B0E71D1CC4F9AE02.roa (raw, json) Hash identifier: gnN9AveueXzB5hqJFkFpBNePJCeYbgZSGKZbZP1OHDI= Subject key identifier: F9:5D:BF:C5:64:24:2B:93:DC:CB:02:57:81:18:E6:86:F5:FB:E5:0D Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 18BB Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa Signing time: Thu 04 Jun 2026 17:19:56 +0000 ROA not before: Thu 04 Jun 2026 17:19:55 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 20940 IP address blocks: 203.198.20.0/24 maxlen: 24 219.76.11.0/24 maxlen: 24 2404:c800:8203::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 16:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6331 (0x18bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: Jun 4 17:19:55 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a21b3bb-35b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8d:aa:fc:08:63:28:53:e5:e8:bd:e5:16:8e: f1:60:42:4d:51:0c:c4:98:0d:f5:a1:fc:61:d8:41: 65:84:53:15:d5:e1:dd:35:6b:d4:a4:a4:59:23:d7: 46:f4:f2:65:51:35:2f:f5:4e:09:59:bd:27:c1:77: fa:86:2b:38:d4:64:04:aa:bb:cf:3c:90:bc:8c:9f: 95:30:2a:7f:97:a4:9f:4b:8f:2f:ec:18:c6:62:13: dc:35:a3:93:04:24:14:8d:5a:4e:7d:c2:49:19:c9: bd:0a:27:c4:fd:9f:af:42:ee:46:1c:70:84:79:34: 59:a9:56:d3:38:e3:ab:2f:b7:d7:47:0d:e5:05:4c: 2d:46:47:ee:27:4f:60:8b:5b:a9:dd:b7:89:b7:c6: 52:31:1c:07:ef:26:1a:40:61:f5:36:7f:87:95:a9: 37:38:76:4c:7f:8e:72:82:46:89:ae:42:cc:6c:33: ed:f8:eb:df:b8:49:14:91:e7:f8:ed:40:4c:2b:a1: 74:fe:2a:ca:18:a0:43:51:c8:81:2b:3a:1f:ee:08: b2:36:ee:b3:00:75:b2:b4:80:f0:cb:8e:8a:cb:c9: 73:e9:13:09:fc:6f:5e:a0:17:5d:10:9a:50:91:8b: 94:0e:ce:6e:3a:88:28:d8:10:78:e0:43:23:7b:d2: 67:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:5D:BF:C5:64:24:2B:93:DC:CB:02:57:81:18:E6:86:F5:FB:E5:0D X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.198.20.0/24 219.76.11.0/24 IPv6: 2404:c800:8203::/48 Signature Algorithm: sha256WithRSAEncryption 9d:fc:61:39:4d:e5:9f:b3:a6:e4:c6:0d:74:59:37:e3:23:89: e8:4e:ad:e7:31:b9:49:bb:36:6c:79:78:c2:39:ed:d0:13:fa: fa:44:93:20:1b:04:e1:ea:3a:c6:c0:88:b9:58:35:ce:35:16: d4:f1:07:b2:e0:43:4e:be:30:dc:53:64:71:af:4e:bb:59:2d: 51:8f:3b:e4:88:af:b4:8d:8f:8f:9e:64:5a:0e:01:62:af:a7: e4:c6:72:fe:7f:6e:1c:b7:28:61:63:b7:53:ec:fe:53:77:10: df:58:38:9e:5b:c3:39:42:e9:ee:9a:47:93:f2:1e:8b:c5:ef: 0e:c9:43:17:52:e0:26:8e:56:fc:ee:00:01:30:09:ba:0c:ac: 88:75:e4:f2:9b:4d:64:c9:af:d8:76:ea:94:b2:cb:e2:33:6f: 34:c0:29:c2:e1:8a:19:b1:f0:db:e0:83:48:7e:81:64:31:2f: 65:5b:98:28:19:06:cd:ed:15:49:42:49:f6:10:c7:bc:a3:b8: ca:02:c1:5c:c5:b5:f8:8e:c0:d6:69:2b:de:a4:32:c2:95:30: 3e:d4:e8:df:42:1a:ba:ff:2e:b2:f6:4f:fa:a8:f5:4c:46:34: 15:08:69:af:2b:cb:f5:e7:ae:44:4c:00:c3:85:43:42:71:20: 26:b9:3b:15 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICGLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjYwNjA0MTcxOTU1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxYjNiYi0zNWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4I2q/AhjKFPl6L3lFo7xYEJNUQzEmA31ofxh2EFlhFMV1eHdNWvUpKRZI9dG 9PJlUTUv9U4JWb0nwXf6his41GQEqrvPPJC8jJ+VMCp/l6SfS48v7BjGYhPcNaOT BCQUjVpOfcJJGcm9CifE/Z+vQu5GHHCEeTRZqVbTOOOrL7fXRw3lBUwtRkfuJ09g i1up3beJt8ZSMRwH7yYaQGH1Nn+Hlak3OHZMf45ygkaJrkLMbDPt+OvfuEkUkef4 7UBMK6F0/irKGKBDUciBKzof7giyNu6zAHWytIDwy46Ky8lz6RMJ/G9eoBddEJpQ kYuUDs5uOogo2BB44EMje9JnSQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFPldv8Vk JCuT3MsCV4EY5ob1++UNMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvMDdFRTgyN0FE RkVFMTFFN0IwRTcxRDFDQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAy8YUAwQA20wLMA8EAgACMAkDBwAkBMgAggMwDQYJKoZIhvcNAQEL BQADggEBAJ38YTlN5Z+zpuTGDXRZN+MjiehOrecxuUm7Nmx5eMI57dAT+vpEkyAb BOHqOsbAiLlYNc41FtTxB7LgQ06+MNxTZHGvTrtZLVGPO+SIr7SNj4+eZFoOAWKv p+TGcv5/bhy3KGFjt1Ps/lN3EN9YOJ5bwzlC6e6aR5PyHovF7w7JQxdS4CaOVvzu AAEwCboMrIh15PKbTWTJr9h26pSyy+IzbzTAKcLhihmx8Nvgg0h+gWQxL2VbmCgZ Bs3tFUlCSfYQx7yjuMoCwVzFtfiOwNZpK96kMsKVMD7U6N9CGrr/LrL2T/qo9UxG NBUIaa8ry/XnrkRMAMOFQ0JxICa5OxU= -----END CERTIFICATE-----Generated at Fri Jun 12 00:09:43 2026 by rpki-client