$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/C635D41E611411EF9B00D029C4F9AE02.roa File: C635D41E611411EF9B00D029C4F9AE02.roa (raw, json) Hash identifier: ZO33tan/7WjO4vuazxAnxsvyNrqefIDo+9LACZXGkpw= Subject key identifier: AE:56:53:2E:B2:52:59:73:61:35:11:F1:14:87:A5:1C:FC:A0:A7:52 Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 01AE Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/C635D41E611411EF9B00D029C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:11:18 +0000 ROA not before: Fri 23 May 2025 04:14:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45128 IP address blocks: 137.157.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 03:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: May 23 04:14:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a51bf6-6d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:35:06:2d:a9:fa:67:bc:36:41:ab:c4:5b:5a: 2c:a2:ca:85:02:d6:e2:ea:03:4b:25:5a:68:18:05: bf:9c:d4:d8:0e:66:bc:48:18:bc:ed:fe:77:a3:30: ca:e7:4c:34:c3:d7:05:87:ed:6b:2c:c7:dc:2c:0c: 8e:32:d1:d9:10:9c:ea:09:da:e8:2c:d1:32:98:8e: db:72:68:93:43:da:12:5a:61:f6:03:c0:df:b0:8d: fb:5d:2b:69:a7:7d:c4:07:ec:ae:66:a9:b4:2e:52: 56:55:3c:e7:2e:f0:a3:ca:dd:67:d8:fb:d6:f7:51: 41:8f:c7:28:b6:c8:22:df:46:dd:91:31:16:63:d6: 33:c8:50:a0:0e:77:89:49:4c:8b:06:60:86:28:3c: c4:8c:0a:3b:6d:4f:1e:18:66:f4:b7:6d:2f:ae:eb: dc:b4:5d:83:c7:26:52:f7:15:f3:06:97:23:7f:02: 01:bd:f0:e9:6b:3e:3d:cc:eb:67:82:d3:78:52:9a: 93:dd:7a:f8:f3:88:c7:cf:84:42:4f:10:09:0c:8c: 4d:62:40:a7:0c:60:38:14:d8:bb:4d:7c:fa:b4:57: 65:f2:d4:8e:88:78:d5:ae:7f:bb:26:e1:3a:ae:a2: 48:26:58:0a:a2:96:99:af:b6:e7:be:2e:0d:85:dc: ef:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:56:53:2E:B2:52:59:73:61:35:11:F1:14:87:A5:1C:FC:A0:A7:52 X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/C635D41E611411EF9B00D029C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 137.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption cc:fa:00:d2:13:c3:25:83:bd:9d:49:ff:80:6f:f8:3c:76:98: b6:a9:9f:b9:0f:17:ae:b9:96:9a:83:ac:4e:d4:b3:34:a7:e7: 82:78:8c:cc:93:97:75:50:25:cf:d5:a9:53:fb:e6:78:36:9d: 31:03:fa:aa:bd:46:35:33:4c:30:47:13:ae:0f:9e:79:e6:2f: 64:9b:fa:f7:f4:a8:b9:f3:be:05:38:dc:e3:a6:05:9e:0d:9b: 78:34:1e:20:46:95:82:3b:58:9d:c0:86:48:42:2a:c6:a0:93: 84:db:a3:3b:0d:82:11:3b:07:ca:3a:e7:4a:20:f8:aa:a4:f8: e2:8b:d3:4d:8c:7d:33:29:ae:44:3e:09:d8:04:57:4a:27:44: 64:07:2e:ea:05:90:e2:74:b2:1e:cb:9e:f4:4c:2e:99:f7:2c: fb:51:a5:70:82:05:0f:4c:12:7a:a4:fd:04:df:25:99:64:a6: 9d:20:6f:b1:88:72:b3:40:7c:39:05:05:f3:b0:8c:1a:8b:40: a8:ac:7f:7f:9f:19:f6:13:0a:64:b6:c6:1c:ae:14:8a:66:11: 49:93:da:13:0f:a4:5b:43:57:00:ba:ba:44:33:ae:82:8c:d9: c0:92:33:ff:ad:04:20:cb:f3:19:20:99:d6:76:73:18:b9:7f: c8:19:7e:78 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUwNTIzMDQxNDQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWJmNi02ZDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zUGLan6Z7w2QavEW1ososqFAtbi6gNLJVpoGAW/nNTYDma8SBi87f53ozDK 50w0w9cFh+1rLMfcLAyOMtHZEJzqCdroLNEymI7bcmiTQ9oSWmH2A8DfsI37XStp p33EB+yuZqm0LlJWVTznLvCjyt1n2PvW91FBj8cotsgi30bdkTEWY9YzyFCgDneJ SUyLBmCGKDzEjAo7bU8eGGb0t20vruvctF2DxyZS9xXzBpcjfwIBvfDpaz49zOtn gtN4UpqT3Xr484jHz4RCTxAJDIxNYkCnDGA4FNi7TXz6tFdl8tSOiHjVrn+7JuE6 rqJIJlgKopaZr7bnvi4NhdzveQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFK5WUy6y UllzYTUR8RSHpRz8oKdSMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEMzQjcvMTU5QTRBRDA5MzI1MTFFRUJFOTg3RjYwQzRGOUFFMDIvQzYzNUQ0MUU2 MTE0MTFFRjlCMDBEMDI5QzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAiZ0wDQYJKoZIhvcNAQELBQADggEBAMz6ANITwyWDvZ1J/4Bv+Dx2 mLapn7kPF665lpqDrE7UszSn54J4jMyTl3VQJc/VqVP75ng2nTED+qq9RjUzTDBH E64PnnnmL2Sb+vf0qLnzvgU43OOmBZ4Nm3g0HiBGlYI7WJ3AhkhCKsagk4TbozsN ghE7B8o650og+Kqk+OKL002MfTMprkQ+CdgEV0onRGQHLuoFkOJ0sh7LnvRMLpn3 LPtRpXCCBQ9MEnqk/QTfJZlkpp0gb7GIcrNAfDkFBfOwjBqLQKisf3+fGfYTCmS2 xhyuFIpmEUmT2hMPpFtDVwC6ukQzroKM2cCSM/+tBCDL8xkgmdZ2cxi5f8gZfng= -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:40 2026 by rpki-client