$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/497464A4FD5F11EEBF4BFE32C4F9AE02.roa File: 497464A4FD5F11EEBF4BFE32C4F9AE02.roa (raw, json) Hash identifier: fl9zZqoG4BiHfEdnOTm2PDlw1jD8hc83kVeqsENJAtg= Subject key identifier: 6E:1A:23:39:44:79:11:40:06:88:1D:8D:94:73:3B:91:F3:7A:5C:58 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2C6B Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/497464A4FD5F11EEBF4BFE32C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:47:42 +0000 ROA not before: Thu 08 May 2025 15:55:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55410 IP address blocks: 157.15.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11371 (0x2c6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c20e-708a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c0:cd:fc:10:5d:32:94:0c:ee:f5:ed:cc:16: 94:fd:e4:2a:18:5f:ef:1f:77:c8:5b:36:f3:d8:23: 03:3d:d8:e4:ea:f6:41:d5:b1:2e:fe:68:40:84:48: 65:30:2d:8a:f7:b4:2b:c7:e7:f3:4c:cb:80:89:35: 48:ea:5e:ed:fd:ac:e9:36:22:e2:90:81:ed:ec:6a: 9e:05:58:74:d1:6c:19:6c:09:e9:09:1f:43:ba:39: 27:c0:1d:83:69:5a:67:ef:19:1e:43:b2:45:7b:d5: 2f:18:d7:e4:58:94:3f:a8:b5:28:0b:c3:f7:bb:07: 8c:d1:80:28:4b:2d:b3:ba:e3:f1:cd:5f:df:1a:21: 38:12:06:06:d0:3c:36:7e:79:dd:20:57:cc:6a:6a: c5:d0:0d:77:3d:4e:d9:e7:d7:9c:bc:bf:2b:c3:be: c5:97:a6:0c:fd:ba:31:2c:04:61:13:5c:7f:25:55: 18:5f:1d:b9:4c:73:5d:d0:03:7c:fc:53:e3:0c:25: 40:0f:92:02:c2:74:68:f9:87:8c:96:f4:42:15:5a: a9:0e:ac:da:22:f5:a0:09:2e:24:52:50:1c:64:f7: 46:c4:ed:e4:65:3e:5a:51:be:55:4d:b3:4b:34:d8: b1:05:b7:9c:76:13:f1:de:5b:2b:66:a5:54:30:e3: 4a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1A:23:39:44:79:11:40:06:88:1D:8D:94:73:3B:91:F3:7A:5C:58 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/497464A4FD5F11EEBF4BFE32C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.158.0/24 Signature Algorithm: sha256WithRSAEncryption 28:12:2e:11:44:74:b4:df:c5:60:b6:1d:43:eb:4c:af:fd:b7: e8:9a:d8:46:fa:7f:14:28:d7:ee:3b:c8:7e:63:a1:84:e4:34: a4:a3:3d:f0:c6:97:e0:f5:91:21:62:db:34:4f:6c:90:9b:9a: 25:74:fe:08:85:3f:04:55:2b:8f:18:b9:e7:aa:b4:af:12:eb: ea:02:eb:03:a2:10:71:38:ee:c2:89:27:7e:0f:e9:fa:c9:e0: 9b:15:f1:0d:44:6a:3f:71:de:0d:be:84:ed:da:34:5d:d4:69: 6d:1c:22:a5:97:55:11:f1:3c:71:49:47:eb:48:a7:44:33:b1: 6b:12:a2:5d:d4:56:c7:ac:87:70:57:c4:d3:b3:47:8c:ef:7f: 6a:db:4f:51:f4:4c:ff:96:e3:9d:5d:c6:9f:ef:6f:8e:8c:21: 33:96:7c:4a:7e:5e:20:0b:0b:27:d3:10:f2:98:ce:b5:86:51: 27:66:ec:cb:f6:15:da:9c:83:cb:5d:4a:df:02:9b:e0:02:9e: 65:69:ea:82:af:72:99:04:a5:84:46:60:46:aa:f6:b3:a2:22: 6d:5d:1e:4d:9e:f7:65:74:bb:bb:1f:c1:1f:9f:5f:70:30:b2: 07:89:30:5f:40:b6:5b:dd:17:6e:04:3e:fa:65:98:2f:1d:b3: 7c:7d:9c:71 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzIwZS03MDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sDN/BBdMpQM7vXtzBaU/eQqGF/vH3fIWzbz2CMDPdjk6vZB1bEu/mhAhEhl MC2K97Qrx+fzTMuAiTVI6l7t/azpNiLikIHt7GqeBVh00WwZbAnpCR9DujknwB2D aVpn7xkeQ7JFe9UvGNfkWJQ/qLUoC8P3uweM0YAoSy2zuuPxzV/fGiE4EgYG0Dw2 fnndIFfMamrF0A13PU7Z59ecvL8rw77Fl6YM/boxLARhE1x/JVUYXx25THNd0AN8 /FPjDCVAD5ICwnRo+YeMlvRCFVqpDqzaIvWgCS4kUlAcZPdGxO3kZT5aUb5VTbNL NNixBbecdhPx3lsrZqVUMONKhwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFG4aIzlE eRFABogdjZRzO5HzelxYMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDk3NDY0QTRG RDVGMTFFRUJGNEJGRTMyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnQ+eMA0GCSqGSIb3DQEBCwUAA4IBAQAoEi4RRHS038Vgth1D60yv /bfomthG+n8UKNfuO8h+Y6GE5DSkoz3wxpfg9ZEhYts0T2yQm5oldP4IhT8EVSuP GLnnqrSvEuvqAusDohBxOO7CiSd+D+n6yeCbFfENRGo/cd4NvoTt2jRd1GltHCKl l1UR8TxxSUfrSKdEM7FrEqJd1FbHrIdwV8TTs0eM739q209R9Ez/luOdXcaf72+O jCEzlnxKfl4gCwsn0xDymM61hlEnZuzL9hXanIPLXUrfApvgAp5laeqCr3KZBKWE RmBGqvazoiJtXR5NnvdldLu7H8Efn19wMLIHiTBfQLZb3RduBD76ZZgvHbN8fZxx -----END CERTIFICATE-----Generated at Sat Mar 7 16:16:24 2026 by rpki-client