$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A9E60A0E020011EF817D143BC4F9AE02.roa File: A9E60A0E020011EF817D143BC4F9AE02.roa (raw, json) Hash identifier: NQl9q3PKbtdhzURxjzd1bfiEd9UT/iJoi1gSRY9QWdI= Subject key identifier: D9:BA:F2:3F:0A:FE:17:9C:9A:66:F5:DB:F7:C0:13:89:38:75:26:22 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2E6F Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A9E60A0E020011EF817D143BC4F9AE02.roa Signing time: Sun 31 May 2026 16:17:51 +0000 ROA not before: Sun 31 May 2026 16:17:51 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 132978 IP address blocks: 157.15.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11887 (0x2e6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:17:51 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c5f2f-6d59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:50:9b:fd:b3:de:2b:33:cf:49:f3:d5:84:e1: 8e:50:c0:49:68:c2:7a:e0:90:7b:a9:d4:47:7a:2c: 7d:1c:1f:e9:95:c9:ae:a4:16:3a:5d:b6:b2:34:c0: c6:cd:6d:76:ca:55:ff:1b:5b:62:c8:b4:6c:b8:5f: d1:2b:9f:73:a3:62:ed:f7:f6:2d:5f:7d:57:dd:37: d9:11:2e:6f:5a:63:25:b9:a9:9f:7a:cc:de:5b:fc: ba:44:c5:3d:97:dd:23:a1:aa:78:0f:13:c8:25:76: a0:6f:db:ab:d0:21:b9:ba:c1:52:c0:6e:a8:a0:b2: db:e2:70:98:e2:ef:8d:46:44:69:95:70:2a:2b:8c: 11:56:62:ba:6f:c5:56:e1:dd:ae:0a:70:c9:f9:1c: 97:27:de:85:ad:b4:cc:6a:b1:d9:98:91:40:39:28: 26:03:5a:de:31:b4:24:ae:ee:78:1a:21:bb:cd:19: b7:69:dc:fd:13:f7:9c:39:d8:e2:dd:db:d2:34:0e: 10:b1:7b:cf:37:0c:03:8c:8e:de:bc:e3:15:d8:91: 1f:2d:66:75:8d:d6:47:db:e8:1a:d2:b7:db:0c:18: 5f:c7:34:57:78:cd:39:1c:1b:4d:db:f9:2f:ad:95: 62:4a:a2:b1:fd:fa:34:8f:df:4a:e7:44:3c:4f:e3: e9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BA:F2:3F:0A:FE:17:9C:9A:66:F5:DB:F7:C0:13:89:38:75:26:22 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A9E60A0E020011EF817D143BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.8.0/23 Signature Algorithm: sha256WithRSAEncryption 93:77:a8:48:e4:9b:81:a3:12:3a:1c:b8:6d:29:83:24:2d:b5: 67:77:d6:78:2d:59:76:1e:f7:27:5b:d3:6f:fe:84:16:91:cf: 48:73:ce:30:9b:02:dc:d1:da:10:90:64:91:f1:34:1b:62:73: 3b:7e:2b:84:fe:91:08:8a:35:02:b1:7e:73:77:cf:3f:b2:5a: 9a:88:68:d0:c1:c1:51:58:8d:e8:ec:5e:18:98:8b:91:60:3d: 0c:99:a2:ec:5b:aa:fd:61:8d:21:b6:dd:8d:8d:ce:75:71:91: 60:e2:b9:a4:bf:91:c4:5f:8a:b9:9b:75:53:d2:24:6d:55:ea: 50:39:ed:2e:41:00:0f:da:6e:48:7d:27:10:02:63:2d:4f:a3: dc:5f:be:4f:43:a7:31:d4:25:d9:c0:8b:d7:fb:ce:72:bf:6b: 18:0c:c0:e8:38:a4:63:65:b0:da:bd:2f:df:8e:d4:9a:3f:ce: 2e:ee:b6:d2:4a:ec:8a:83:0e:47:0a:af:c0:7f:56:49:a1:f5: e8:18:02:76:2c:13:9e:69:19:28:ff:93:e0:67:80:d7:dd:aa: 9f:56:af:64:ac:e1:7b:c5:27:5b:32:c6:7e:b8:89:24:e6:02: 69:ce:f3:76:b4:3d:60:ac:df:c3:f1:97:83:a1:83:71:09:4a: ea:5d:b5:77 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYxNzUxWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNWYyZi02ZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslCb/bPeKzPPSfPVhOGOUMBJaMJ64JB7qdRHeix9HB/plcmupBY6XbayNMDG zW12ylX/G1tiyLRsuF/RK59zo2Lt9/YtX31X3TfZES5vWmMluamfeszeW/y6RMU9 l90joap4DxPIJXagb9ur0CG5usFSwG6ooLLb4nCY4u+NRkRplXAqK4wRVmK6b8VW 4d2uCnDJ+RyXJ96FrbTMarHZmJFAOSgmA1reMbQkru54GiG7zRm3adz9E/ecOdji 3dvSNA4QsXvPNwwDjI7evOMV2JEfLWZ1jdZH2+ga0rfbDBhfxzRXeM05HBtN2/kv rZViSqKx/fo0j99K50Q8T+PpYwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNm68j8K /hecmmb12/fAE4k4dSYiMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTlFNjBBMEUw MjAwMTFFRjgxN0QxNDNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQ8IMA0GCSqGSIb3DQEBCwUAA4IBAQCTd6hI5JuBoxI6HLhtKYMk LbVnd9Z4LVl2HvcnW9Nv/oQWkc9Ic84wmwLc0doQkGSR8TQbYnM7fiuE/pEIijUC sX5zd88/slqaiGjQwcFRWI3o7F4YmIuRYD0MmaLsW6r9YY0htt2Njc51cZFg4rmk v5HEX4q5m3VT0iRtVepQOe0uQQAP2m5IfScQAmMtT6PcX75PQ6cx1CXZwIvX+85y v2sYDMDoOKRjZbDavS/fjtSaP84u7rbSSuyKgw5HCq/Af1ZJofXoGAJ2LBOeaRko /5PgZ4DX3aqfVq9krOF7xSdbMsZ+uIkk5gJpzvN2tD1grN/D8ZeDoYNxCUrqXbV3 -----END CERTIFICATE-----Generated at Sat Jun 6 08:25:45 2026 by rpki-client