$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/22A5298E53C811EFA7F6D30AC4F9AE02.roa File: 22A5298E53C811EFA7F6D30AC4F9AE02.roa (raw, json) Hash identifier: q4F+WXNr+Wc3Va+LMAx7DlXZ4rlROSX1/V3SHGmSNN0= Subject key identifier: 5B:58:65:DB:14:58:7F:AD:65:99:AF:2B:D8:A6:38:A4:A5:68:9C:37 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2F57 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/22A5298E53C811EFA7F6D30AC4F9AE02.roa Signing time: Sun 31 May 2026 16:25:18 +0000 ROA not before: Sun 31 May 2026 16:25:18 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 152530 IP address blocks: 157.66.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12119 (0x2f57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:25:18 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c60ed-711b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:29:e8:45:cd:1d:87:dc:2e:b8:cb:83:80: 5f:49:48:23:bc:85:25:43:48:8c:0e:5d:03:fe:75: fb:48:8c:fa:27:6b:56:e9:ce:f5:1a:13:86:f0:fd: 3d:7b:93:60:1a:d3:03:fc:7b:d0:66:0d:a0:8d:54: 69:2d:2e:0c:d5:80:bd:b7:c0:39:24:31:9c:82:fc: 9f:60:70:4a:6c:8f:dd:aa:2d:cb:b9:57:d9:11:c8: b2:c6:3c:7d:0a:c1:45:2b:36:2b:b4:eb:19:a1:41: 7a:59:ce:fa:e1:68:e4:a5:f8:c7:44:fc:f9:ac:88: e8:9e:82:bf:28:fa:8d:25:18:4d:2b:6b:64:c9:09: 31:27:a5:45:6a:12:b3:09:16:8f:b2:e7:dd:ae:6d: b0:e9:08:85:f2:fa:00:0e:3f:ed:01:e4:30:d4:23: e5:85:77:6b:8a:c6:12:66:aa:79:5e:99:15:a3:27: 7b:fd:f4:73:bf:ce:ca:46:f4:8d:b4:7f:be:84:39: eb:8d:6e:a9:8c:60:60:8b:f9:c2:03:cd:f8:55:34: a5:b1:8b:6a:53:e3:61:38:dc:e1:33:75:a4:8a:01: 37:3b:bb:6a:8e:e6:dc:e3:71:ff:fc:8a:cb:df:96: 59:50:4f:a5:ee:c0:1a:a9:93:ef:15:27:29:e5:3b: 7e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:58:65:DB:14:58:7F:AD:65:99:AF:2B:D8:A6:38:A4:A5:68:9C:37 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/22A5298E53C811EFA7F6D30AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.66.102.0/23 Signature Algorithm: sha256WithRSAEncryption 33:b9:8e:80:03:2a:ff:3e:b1:92:e2:a6:3a:2b:0d:1a:34:d1: 31:2c:91:15:cb:12:2b:03:c4:7e:2d:f0:0c:93:0e:04:09:73: 8f:f7:05:2c:8f:d6:53:9d:2e:bf:a4:ea:a6:6b:c1:87:1b:1c: 08:99:fc:d8:e7:6f:e1:d1:8b:e2:a1:89:6f:13:a8:94:4e:6e: 34:c7:6a:9d:45:9c:5e:f3:44:62:55:db:3f:9a:0c:4c:dd:61: 48:10:71:5c:24:b6:b5:d3:23:4e:9d:b5:44:46:0c:35:a4:b6: 2a:9f:85:b5:30:30:0e:3c:2a:d7:9a:07:84:7d:f6:b0:7a:d5: bc:0a:da:21:4a:65:f9:9a:1b:fc:2e:89:90:fe:00:a9:e5:07: 26:9a:6a:ad:30:89:f6:57:42:b7:65:d4:f8:99:a8:94:bf:f7: 6a:68:8c:d5:c9:a3:fe:ae:b4:b9:32:ea:6c:ea:33:3d:10:6c: a9:90:3c:31:63:c6:56:54:d1:a6:0c:aa:f4:11:04:4b:3c:d7: ac:77:4a:f4:65:b4:01:22:e7:0b:9c:87:83:62:bd:18:46:87: 42:9a:5c:76:e0:97:45:d5:94:2f:79:a4:2b:4a:ca:1a:ac:07: 16:bf:ac:31:16:57:04:ac:aa:77:7f:63:0c:03:f6:e2:ea:e6: 75:88:0f:a7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICL1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyNTE4WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjBlZC03MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq00p6EXNHYfcLrjLg4BfSUgjvIUlQ0iMDl0D/nX7SIz6J2tW6c71GhOG8P09 e5NgGtMD/HvQZg2gjVRpLS4M1YC9t8A5JDGcgvyfYHBKbI/dqi3LuVfZEciyxjx9 CsFFKzYrtOsZoUF6Wc764WjkpfjHRPz5rIjonoK/KPqNJRhNK2tkyQkxJ6VFahKz CRaPsufdrm2w6QiF8voADj/tAeQw1CPlhXdrisYSZqp5XpkVoyd7/fRzv87KRvSN tH++hDnrjW6pjGBgi/nCA834VTSlsYtqU+NhONzhM3WkigE3O7tqjubc43H//IrL 35ZZUE+l7sAaqZPvFScp5Tt+cwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFtYZdsU WH+tZZmvK9imOKSlaJw3MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjJBNTI5OEU1 M0M4MTFFRkE3RjZEMzBBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnUJmMA0GCSqGSIb3DQEBCwUAA4IBAQAzuY6AAyr/PrGS4qY6Kw0a NNExLJEVyxIrA8R+LfAMkw4ECXOP9wUsj9ZTnS6/pOqma8GHGxwImfzY52/h0Yvi oYlvE6iUTm40x2qdRZxe80RiVds/mgxM3WFIEHFcJLa10yNOnbVERgw1pLYqn4W1 MDAOPCrXmgeEffawetW8CtohSmX5mhv8LomQ/gCp5QcmmmqtMIn2V0K3ZdT4maiU v/dqaIzVyaP+rrS5Mups6jM9EGypkDwxY8ZWVNGmDKr0EQRLPNesd0r0ZbQBIucL nIeDYr0YRodCmlx24JdF1ZQveaQrSsoarAcWv6wxFlcErKp3f2MMA/bi6uZ1iA+n -----END CERTIFICATE-----Generated at Sat Jun 6 08:25:03 2026 by rpki-client