$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0CF90768BDE011EAAEA46554C4F9AE02.roa File: 0CF90768BDE011EAAEA46554C4F9AE02.roa (raw, json) Hash identifier: c+NBQYDojMb8VcjO/ZWx2zEUNy8irxQgUXspVYhwnTU= Subject key identifier: CE:E5:31:FE:62:DD:1C:A5:9E:47:4C:E1:F4:03:C0:AB:D4:52:28:6D Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 3005 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0CF90768BDE011EAAEA46554C4F9AE02.roa Signing time: Sun 31 May 2026 16:30:59 +0000 ROA not before: Sun 31 May 2026 16:30:59 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 9430 IP address blocks: 157.15.159.0/24 maxlen: 24 161.248.26.0/24 maxlen: 24 164.164.32.0/24 maxlen: 24 164.164.123.0/24 maxlen: 24 164.164.124.0/24 maxlen: 24 164.164.126.0/24 maxlen: 24 164.164.127.0/24 maxlen: 24 164.164.184.0/24 maxlen: 24 164.164.187.0/24 maxlen: 24 164.164.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12293 (0x3005) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:30:59 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6243-1db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:72:cb:18:3d:34:66:8a:b3:bf:34:12:33:19: 72:62:65:3d:e8:36:9b:07:31:34:f8:3c:b5:62:e1: 37:c0:7a:8e:a4:dc:50:2a:1c:37:73:5f:25:66:0e: 4d:69:27:67:9f:ee:c0:4c:77:df:79:d4:38:15:a0: e2:d6:2e:d3:ef:f9:60:9e:1b:58:32:f1:04:fe:61: c0:09:d6:82:30:44:94:f7:84:4a:39:29:c6:d6:92: 3a:bf:7c:b3:6d:57:59:48:ed:6b:a6:fd:fc:60:e7: 39:26:7c:3b:42:2e:64:72:ad:6b:0e:5c:fe:c4:dc: 72:65:39:76:a7:e8:4d:16:68:a0:8b:ee:5f:f0:5b: 47:ce:ff:0b:00:0a:77:05:f8:f1:87:f9:e1:dd:98: 1b:18:fc:1a:cb:03:9c:03:85:77:8d:fc:fd:52:f3: 9e:f3:d3:2e:1b:59:92:ce:e6:6c:d3:1c:ec:b1:41: e2:1b:0f:4c:44:ca:91:41:d2:24:7c:f3:37:f9:f1: 2e:f9:44:f4:72:23:f5:4d:48:d8:45:c1:23:11:63: 75:ec:6b:f3:1c:f2:ec:ac:b9:28:06:3e:27:88:49: 75:c8:ac:13:fe:92:71:cf:e1:69:8b:56:e3:d2:cf: 13:66:17:6c:b5:8f:5d:49:5a:82:89:83:2b:67:25: 5b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E5:31:FE:62:DD:1C:A5:9E:47:4C:E1:F4:03:C0:AB:D4:52:28:6D X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0CF90768BDE011EAAEA46554C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.159.0/24 161.248.26.0/24 164.164.32.0/24 164.164.123.0-164.164.124.255 164.164.126.0/23 164.164.184.0/24 164.164.187.0/24 164.164.192.0/24 Signature Algorithm: sha256WithRSAEncryption 52:f8:ab:3e:2d:0b:3a:52:7d:f5:be:5d:2c:d3:4d:8e:a2:84: de:16:b5:df:48:77:87:bd:4e:18:9a:ba:6c:c8:02:45:04:16: 67:81:e9:f0:77:37:c0:c9:c1:09:46:b4:96:0a:cd:54:7a:df: af:50:27:e1:19:23:34:48:78:4f:92:8d:8e:1f:53:44:8d:18: e0:63:36:ed:49:44:04:9c:b1:9b:ab:85:5d:93:94:4d:b1:b2: cf:d5:c6:ff:3a:70:85:7b:c1:d5:eb:60:89:12:05:44:2a:79: ac:f4:2a:12:2c:9f:07:b1:42:98:e2:85:34:9c:6a:e3:aa:95: 00:a0:78:5d:a9:e6:25:e0:1d:2b:f8:02:87:69:7b:f5:44:7c: 7f:34:85:52:d0:01:45:e5:8c:43:62:33:45:12:ee:4a:b4:00: 8f:26:19:bb:bd:0e:fa:74:8d:15:9c:fa:2c:73:17:82:87:cd: 58:37:5c:94:cc:03:6d:30:a8:41:e3:e7:f4:8c:dc:da:16:70: ed:ec:19:0e:30:87:60:66:13:d2:4d:c7:15:b3:1a:f9:88:c2: 02:d0:c2:77:b2:58:7f:b2:89:ae:4a:4c:9f:4b:41:78:ec:6a: 56:26:57:61:00:8a:7e:4a:d3:39:7b:9d:23:91:a6:43:ca:a4: e0:b5:de:22 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICMAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYzMDU5WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjI0My0xZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHLLGD00ZoqzvzQSMxlyYmU96DabBzE0+Dy1YuE3wHqOpNxQKhw3c18lZg5N aSdnn+7ATHffedQ4FaDi1i7T7/lgnhtYMvEE/mHACdaCMESU94RKOSnG1pI6v3yz bVdZSO1rpv38YOc5Jnw7Qi5kcq1rDlz+xNxyZTl2p+hNFmigi+5f8FtHzv8LAAp3 Bfjxh/nh3ZgbGPwaywOcA4V3jfz9UvOe89MuG1mSzuZs0xzssUHiGw9MRMqRQdIk fPM3+fEu+UT0ciP1TUjYRcEjEWN17GvzHPLsrLkoBj4niEl1yKwT/pJxz+Fpi1bj 0s8TZhdstY9dSVqCiYMrZyVbNQIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFM7lMf5i 3RylnkdM4fQDwKvUUihtMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMENGOTA3NjhC REUwMTFFQUFFQTQ2NTU0QzRGOUFFMDIucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDA+ BAIAATA4AwQAnQ+fAwQAofgaAwQApKQgMAwDBACkpHsDBACkpHwDBAGkpH4DBACk pLgDBACkpLsDBACkpMAwDQYJKoZIhvcNAQELBQADggEBAFL4qz4tCzpSffW+XSzT TY6ihN4Wtd9Id4e9ThiaumzIAkUEFmeB6fB3N8DJwQlGtJYKzVR6369QJ+EZIzRI eE+SjY4fU0SNGOBjNu1JRAScsZurhV2TlE2xss/Vxv86cIV7wdXrYIkSBUQqeaz0 KhIsnwexQpjihTScauOqlQCgeF2p5iXgHSv4Aodpe/VEfH80hVLQAUXljENiM0US 7kq0AI8mGbu9Dvp0jRWc+ixzF4KHzVg3XJTMA20wqEHj5/SM3NoWcO3sGQ4wh2Bm E9JNxxWzGvmIwgLQwneyWH+yia5KTJ9LQXjsalYmV2EAin5K0zl7nSORpkPKpOC1 3iI= -----END CERTIFICATE-----Generated at Sat Jun 6 08:30:08 2026 by rpki-client