$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/A2C8B57074B711EB8491BC63C4F9AE02.roa File: A2C8B57074B711EB8491BC63C4F9AE02.roa (raw, json) Hash identifier: BQasbmm7gH9FLXB//y+7TV+3WpDo2lQ196P3jl4F0nc= Subject key identifier: F1:FD:A4:DE:50:C4:71:4C:F5:10:4B:E7:0F:73:10:2F:0D:EC:B3:7C Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 18B9 Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/A2C8B57074B711EB8491BC63C4F9AE02.roa Signing time: Thu 04 Jun 2026 17:19:51 +0000 ROA not before: Thu 04 Jun 2026 17:19:51 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 134963 IP address blocks: 203.198.4.0/24 maxlen: 24 203.198.7.0/24 maxlen: 24 218.102.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 16:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6329 (0x18b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: Jun 4 17:19:51 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a21b3b7-3252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:59:ac:bd:33:19:11:cb:5a:d9:2d:29:b1:c7: fc:fa:c6:27:79:69:dc:d0:84:09:51:3f:b6:23:2c: 93:a1:28:76:30:2c:f7:ee:9c:d8:64:00:92:40:0d: 8d:e7:7b:8c:ac:3b:04:fe:6d:25:9b:0b:58:b1:d5: 38:d8:68:98:b9:68:93:bc:ac:9c:1d:2d:00:7a:0d: eb:85:78:be:e4:65:af:94:63:26:69:44:f0:fb:c7: 80:16:6c:67:e7:bb:e9:24:78:1c:ed:9c:9d:6a:63: 3a:e5:b1:0d:30:3a:c2:80:bf:33:ca:12:6e:71:4c: 14:18:92:fe:3d:df:89:83:a4:e0:01:39:f7:76:aa: 5a:e9:70:dd:e2:87:86:7c:be:8f:a0:eb:30:c4:2c: b7:1a:e8:d7:40:76:c1:bc:da:62:4f:77:ec:9e:63: 8d:19:2f:67:ce:08:90:6d:63:76:b1:d4:ee:aa:d1: e8:f5:a3:07:20:fe:cb:5c:87:70:fe:37:be:ce:97: 6d:6c:86:03:d3:08:e9:d3:cb:00:71:26:c4:d0:9e: 7b:88:3d:46:40:51:92:d6:cd:78:e7:02:b1:e9:1a: c9:5a:a8:a8:fa:b9:7b:c4:b7:44:a7:46:58:1a:1a: 0a:31:f5:fb:69:38:23:2f:63:de:b2:c8:96:c9:77: 4a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FD:A4:DE:50:C4:71:4C:F5:10:4B:E7:0F:73:10:2F:0D:EC:B3:7C X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/A2C8B57074B711EB8491BC63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.198.4.0/24 203.198.7.0/24 218.102.23.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:9d:d8:73:e4:86:71:fb:89:ee:4e:d3:94:46:88:ed:e4:95: f5:fa:a6:20:ee:6e:57:f2:0e:bb:b1:d6:65:b8:23:6f:8e:c4: 88:fa:16:60:fd:77:1b:4d:7e:6b:a9:09:32:0b:45:ae:72:70: d8:98:ac:3e:ea:a6:da:a5:f2:f3:d9:cd:56:f6:e7:84:5f:c6: b9:d3:63:47:b8:18:75:2c:b6:d1:37:0e:9a:5f:ab:16:9f:22: 1c:12:6d:cf:92:ea:3c:88:24:0b:0b:51:c7:ee:3b:0a:6b:6c: c1:74:81:a9:d6:ba:df:0d:48:82:f5:ca:49:f9:df:e7:22:f8: b2:d5:b8:c6:26:a1:cf:8e:32:da:f7:8b:e7:08:a6:d9:5b:63: 78:69:4d:d7:93:51:4f:f6:0f:c8:b3:d6:76:40:c1:92:bf:23: 94:6a:21:11:9e:85:2d:03:94:f6:5a:2f:52:f4:ab:84:fe:e9: 6e:49:05:ac:d5:13:89:f4:d5:6f:78:a5:6e:8e:07:ca:c6:41: a4:13:22:72:d5:32:e7:83:a8:00:58:8d:fb:d9:f7:32:f0:07: 4c:c2:c7:f3:4a:ac:f7:be:a9:9e:a2:87:a8:ad:9f:52:00:c1: 85:fe:90:20:19:d9:7c:f1:d2:93:a2:c6:5d:21:81:79:2a:9e: 34:29:54:6e -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICGLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjYwNjA0MTcxOTUxWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxYjNiNy0zMjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFmsvTMZEcta2S0pscf8+sYneWnc0IQJUT+2IyyToSh2MCz37pzYZACSQA2N 53uMrDsE/m0lmwtYsdU42GiYuWiTvKycHS0Aeg3rhXi+5GWvlGMmaUTw+8eAFmxn 57vpJHgc7ZydamM65bENMDrCgL8zyhJucUwUGJL+Pd+Jg6TgATn3dqpa6XDd4oeG fL6PoOswxCy3GujXQHbBvNpiT3fsnmONGS9nzgiQbWN2sdTuqtHo9aMHIP7LXIdw /je+zpdtbIYD0wjp08sAcSbE0J57iD1GQFGS1s145wKx6RrJWqio+rl7xLdEp0ZY GhoKMfX7aTgjL2PessiWyXdKewIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFPH9pN5Q xHFM9RBL5w9zEC8N7LN8MB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvQTJDOEI1NzA3 NEI3MTFFQjg0OTFCQzYzQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAy8YEAwQAy8YHAwQA2mYXMA0GCSqGSIb3DQEBCwUAA4IBAQCNndhz 5IZx+4nuTtOURojt5JX1+qYg7m5X8g67sdZluCNvjsSI+hZg/XcbTX5rqQkyC0Wu cnDYmKw+6qbapfLz2c1W9ueEX8a502NHuBh1LLbRNw6aX6sWnyIcEm3Pkuo8iCQL C1HH7jsKa2zBdIGp1rrfDUiC9cpJ+d/nIviy1bjGJqHPjjLa94vnCKbZW2N4aU3X k1FP9g/Is9Z2QMGSvyOUaiERnoUtA5T2Wi9S9KuE/uluSQWs1ROJ9NVveKVujgfK xkGkEyJy1TLng6gAWI372fcy8AdMwsfzSqz3vqmeooeorZ9SAMGF/pAgGdl88dKT osZdIYF5Kp40KVRu -----END CERTIFICATE-----Generated at Fri Jun 12 00:11:34 2026 by rpki-client