$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/67421A14E1D811EE8E6B407CC4F9AE02.roa File: 67421A14E1D811EE8E6B407CC4F9AE02.roa (raw, json) Hash identifier: j7USBOVp7+JSfCM1NQzNDSK8ZzJvqCnNq2o7Al5DLjw= Subject key identifier: 8B:C0:4A:09:77:DB:14:D1:BD:2C:6D:5E:50:3C:71:EF:D8:CC:66:7C Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2F77 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/67421A14E1D811EE8E6B407CC4F9AE02.roa Signing time: Sun 31 May 2026 16:26:18 +0000 ROA not before: Sun 31 May 2026 16:26:18 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 152581 IP address blocks: 157.20.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12151 (0x2f77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:26:18 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c612a-9a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:90:fa:60:4d:30:35:54:cf:8b:30:b0:77:ee: 80:cd:9a:16:a2:e7:04:f1:b6:aa:7f:a9:4c:e4:f9: 8b:5f:92:2d:20:63:b6:c2:9e:f2:6a:57:cb:29:c4: 28:91:dd:a7:09:4f:f4:2b:4d:c2:39:b9:46:31:5d: 2c:6b:58:e4:0b:8e:d2:37:70:13:c9:0e:92:4e:a1: f5:8f:4f:3c:4a:52:90:e4:37:a5:7f:79:62:23:bc: f3:c7:a7:3b:fe:b8:4f:06:d8:c8:49:51:47:8c:ac: 5f:9a:ff:92:32:b0:66:33:66:7b:49:76:22:f5:e9: 3b:dc:54:08:47:de:b0:26:a8:03:2c:11:ae:f7:43: 40:b1:e2:08:72:31:91:99:54:45:91:d9:98:12:9e: 36:da:b5:4e:ac:ed:51:29:86:5f:ae:7f:38:42:28: 52:b8:f5:ef:85:01:ed:a3:07:fe:d8:a4:41:dd:43: 22:77:af:0c:e1:62:0e:93:88:36:4d:43:9f:0f:97: a8:6d:ca:21:1f:0d:a0:f7:21:62:f4:2d:90:d3:5f: 9d:eb:6b:58:ec:d8:bb:4a:9e:55:f5:93:b5:82:59: 98:21:af:aa:46:00:85:4e:29:e5:a5:4a:7a:09:54: 83:05:e6:da:33:c5:14:9f:bc:9e:bd:4d:8e:8c:c3: c4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C0:4A:09:77:DB:14:D1:BD:2C:6D:5E:50:3C:71:EF:D8:CC:66:7C X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/67421A14E1D811EE8E6B407CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.186.0/23 Signature Algorithm: sha256WithRSAEncryption 77:05:bf:ee:eb:a7:4a:8a:61:3d:5f:08:ce:43:bc:d1:6f:7f: ff:2a:57:2f:7c:27:c9:ed:f3:07:a9:39:9e:ec:6b:68:ad:e4: f5:cd:66:c0:6c:95:e2:89:9d:2c:42:0a:26:f3:1b:cf:2e:c9: 05:21:c3:92:1d:3a:59:2a:51:18:62:29:a4:bd:62:c5:fe:38: 2f:d8:e2:88:da:cc:e0:a8:27:22:d3:82:6b:88:ea:00:1b:10: 85:82:6c:d1:b8:74:03:02:ba:a1:1c:6d:3a:02:91:01:00:1b: 7c:f4:bb:81:75:70:9f:29:5b:76:e2:93:7b:ff:b9:22:d2:b1: f0:20:31:01:9d:e7:f9:4f:cc:a8:f6:3a:68:9f:c8:91:1e:ca: 20:27:4c:19:39:35:14:b7:f9:f5:95:63:57:7b:d1:e6:4d:f1: ab:97:02:e2:fb:cf:ef:30:40:9c:02:9c:12:a0:16:79:80:a7: a5:24:84:f3:f7:14:d4:a0:7c:d2:9f:f3:f0:12:0f:bd:76:81: 4e:b8:80:b9:f3:a6:07:ab:11:c7:66:3b:aa:1a:cc:44:8a:96: 8e:40:d0:74:af:91:ae:ac:08:2e:8c:56:92:f3:14:50:c4:1a: 26:55:29:d4:fb:71:af:e0:50:89:a0:0c:cc:5f:15:ad:ff:a7: 5d:60:f1:e8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICL3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyNjE4WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjEyYS05YTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5D6YE0wNVTPizCwd+6AzZoWoucE8baqf6lM5PmLX5ItIGO2wp7yalfLKcQo kd2nCU/0K03COblGMV0sa1jkC47SN3ATyQ6STqH1j088SlKQ5Delf3liI7zzx6c7 /rhPBtjISVFHjKxfmv+SMrBmM2Z7SXYi9ek73FQIR96wJqgDLBGu90NAseIIcjGR mVRFkdmYEp422rVOrO1RKYZfrn84QihSuPXvhQHtowf+2KRB3UMid68M4WIOk4g2 TUOfD5eobcohHw2g9yFi9C2Q01+d62tY7Ni7Sp5V9ZO1glmYIa+qRgCFTinlpUp6 CVSDBebaM8UUn7yevU2OjMPEBwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIvASgl3 2xTRvSxtXlA8ce/YzGZ8MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjc0MjFBMTRF MUQ4MTFFRThFNkI0MDdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRS6MA0GCSqGSIb3DQEBCwUAA4IBAQB3Bb/u66dKimE9XwjOQ7zR b3//KlcvfCfJ7fMHqTme7GtoreT1zWbAbJXiiZ0sQgom8xvPLskFIcOSHTpZKlEY YimkvWLF/jgv2OKI2szgqCci04JriOoAGxCFgmzRuHQDArqhHG06ApEBABt89LuB dXCfKVt24pN7/7ki0rHwIDEBnef5T8yo9jpon8iRHsogJ0wZOTUUt/n1lWNXe9Hm TfGrlwLi+8/vMECcApwSoBZ5gKelJITz9xTUoHzSn/PwEg+9doFOuIC586YHqxHH ZjuqGsxEipaOQNB0r5GurAgujFaS8xRQxBomVSnU+3Gv4FCJoAzMXxWt/6ddYPHo -----END CERTIFICATE-----Generated at Sat Jun 6 09:43:24 2026 by rpki-client