$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa File: 2520E06EDC4911EEA18D6172C4F9AE02.roa (raw, json) Hash identifier: F0AbgmNxMS37ZEURZPW2vNF9aAdwISSDu6OI3boQvxc= Subject key identifier: 60:C8:76:3C:97:E7:52:66:6D:5B:15:78:DB:77:E0:09:15:09:B1:8E Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2F33 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa Signing time: Sun 31 May 2026 16:24:09 +0000 ROA not before: Sun 31 May 2026 16:24:09 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 152484 IP address blocks: 157.20.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12083 (0x2f33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:24:09 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c60a9-f993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f8:a5:b9:7b:68:71:d7:d8:25:1a:9a:13:dc: 58:cc:7c:da:ae:1a:e0:1b:9f:b2:06:d0:b9:6d:5a: 27:b2:ba:67:46:6d:26:b0:08:5c:ad:dc:7e:d5:d5: 06:7d:19:63:c3:99:05:67:28:e1:e7:c8:a6:50:d1: 1c:69:65:00:89:1f:7c:90:6d:0c:52:ee:40:5e:7f: e4:10:cd:1a:da:65:e0:66:a2:d7:1e:13:d9:29:38: f1:58:1d:2e:d0:c8:af:9f:1e:15:46:f3:99:cd:da: 80:b5:23:72:7b:00:fc:04:f0:43:b0:56:a2:65:44: 9f:dc:a0:62:6d:c7:cf:ec:ad:90:bc:0e:27:18:9e: 99:29:64:d7:75:c6:c1:84:c9:f9:bd:63:49:dc:f4: 5e:c8:41:2a:a5:4d:52:83:92:3d:ed:61:6d:7e:0e: 49:f2:17:9c:73:4a:38:76:05:e3:5e:30:ba:94:a7: 89:95:e6:68:2d:05:e7:ab:b7:71:10:4c:87:b5:01: b3:b0:38:92:72:49:6a:63:a2:67:85:a4:1b:b4:33: d3:68:37:29:e2:e5:8d:1b:ed:a0:b8:0d:3b:90:c4: 6c:54:40:26:5d:1c:88:e9:46:b2:d4:83:a4:b8:2e: 16:79:59:21:01:d5:eb:85:86:0c:65:30:43:cf:f6: fd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C8:76:3C:97:E7:52:66:6D:5B:15:78:DB:77:E0:09:15:09:B1:8E X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.180.0/23 Signature Algorithm: sha256WithRSAEncryption af:d0:85:23:de:88:3b:b3:e4:e8:f8:1d:19:0e:af:fb:d7:ad: 20:b4:20:6a:fd:84:fa:5a:4d:83:33:d2:e2:00:fd:93:30:0e: b9:7d:b4:0e:6c:38:f4:3d:ec:2e:89:7f:a2:80:b4:8a:0b:6b: e1:44:9f:4f:b5:43:bc:40:3b:37:25:36:90:f0:87:b5:13:0d: 11:f2:26:9f:13:96:85:d1:4b:40:bd:2f:f4:6f:20:33:75:ab: 7c:ac:63:c4:76:cf:b4:84:d0:4e:38:43:ef:46:03:7c:fc:50: c1:b1:d3:85:2b:b7:c0:c5:ce:e6:f9:b8:15:ed:79:27:21:1c: b0:0b:b8:5e:10:b6:19:b0:34:3a:ce:37:91:2a:dc:2e:63:a0: 07:54:64:cc:ad:ff:24:09:0b:d1:36:d5:bf:f5:aa:10:35:75: d6:b5:c0:73:fc:42:18:c6:4c:07:6a:3b:8d:f1:c5:bc:44:14: 15:75:84:96:86:53:e1:38:1c:7c:d5:fc:af:4a:3c:8b:18:0f: b4:bf:57:39:3e:e9:55:c5:2f:d2:7f:1e:ac:6a:a5:a7:e3:96: 20:0a:9a:35:42:d5:bb:18:51:76:ae:be:08:bf:bf:97:21:b6: 8a:32:ee:85:90:06:30:5c:ab:7b:9a:4d:d7:2c:9d:08:cb:d7: db:3c:70:7f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyNDA5WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjBhOS1mOTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/iluXtocdfYJRqaE9xYzHzarhrgG5+yBtC5bVonsrpnRm0msAhcrdx+1dUG fRljw5kFZyjh58imUNEcaWUAiR98kG0MUu5AXn/kEM0a2mXgZqLXHhPZKTjxWB0u 0Mivnx4VRvOZzdqAtSNyewD8BPBDsFaiZUSf3KBibcfP7K2QvA4nGJ6ZKWTXdcbB hMn5vWNJ3PReyEEqpU1Sg5I97WFtfg5J8hecc0o4dgXjXjC6lKeJleZoLQXnq7dx EEyHtQGzsDiScklqY6JnhaQbtDPTaDcp4uWNG+2guA07kMRsVEAmXRyI6Uay1IOk uC4WeVkhAdXrhYYMZTBDz/b9+wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGDIdjyX 51JmbVsVeNt34AkVCbGOMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjUyMEUwNkVE QzQ5MTFFRUExOEQ2MTcyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRS0MA0GCSqGSIb3DQEBCwUAA4IBAQCv0IUj3og7s+To+B0ZDq/7 160gtCBq/YT6Wk2DM9LiAP2TMA65fbQObDj0PewuiX+igLSKC2vhRJ9PtUO8QDs3 JTaQ8Ie1Ew0R8iafE5aF0UtAvS/0byAzdat8rGPEds+0hNBOOEPvRgN8/FDBsdOF K7fAxc7m+bgV7XknIRywC7heELYZsDQ6zjeRKtwuY6AHVGTMrf8kCQvRNtW/9aoQ NXXWtcBz/EIYxkwHajuN8cW8RBQVdYSWhlPhOBx81fyvSjyLGA+0v1c5PulVxS/S fx6saqWn45YgCpo1QtW7GFF2rr4Iv7+XIbaKMu6FkAYwXKt7mk3XLJ0Iy9fbPHB/ -----END CERTIFICATE-----Generated at Sat Jun 6 08:24:04 2026 by rpki-client