$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B341065EBDDE11EA9977C550C4F9AE02.roa File: B341065EBDDE11EA9977C550C4F9AE02.roa (raw, json) Hash identifier: ZjG240r09SqB7m0mL9WFOSzV6C4P/+s0GBo1bdw07IQ= Subject key identifier: 32:7A:9A:E9:5D:E4:56:CE:0C:27:77:38:F3:F9:E0:AA:C9:57:1E:E5 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2FFE Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B341065EBDDE11EA9977C550C4F9AE02.roa Signing time: Sun 31 May 2026 16:30:42 +0000 ROA not before: Sun 31 May 2026 16:30:42 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 55824 IP address blocks: 157.15.12.0/23 maxlen: 24 157.15.158.0/24 maxlen: 24 158.144.12.0/24 maxlen: 24 158.144.15.0/24 maxlen: 24 158.144.18.0/24 maxlen: 24 158.144.182.0/24 maxlen: 24 158.144.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12286 (0x2ffe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:30:42 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6232-a22a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f6:88:62:e8:a9:05:35:9f:16:ba:a7:0b:bb: 2a:f8:5c:67:06:fb:b2:6d:3e:9c:e5:a0:5b:21:9d: ed:f8:d9:d9:64:e1:f3:e1:5e:f8:5f:72:41:24:c0: 1f:a5:eb:20:8a:f0:fe:d9:e6:8f:1b:be:45:2c:c0: 7c:aa:d2:67:77:af:06:4c:2f:12:a9:80:e0:d3:a9: f1:19:d4:dc:25:08:6f:cc:2c:15:85:af:87:1b:bc: b8:68:8b:2b:00:cd:c0:a7:c5:7f:50:1a:06:b1:ca: ac:db:e7:24:7d:d0:b1:db:00:a7:f8:58:43:cd:c2: 93:31:4d:bc:26:05:66:cf:fe:5f:59:dc:d1:04:39: 16:18:7c:3c:84:1b:f7:47:3c:01:a8:30:26:47:dc: 32:eb:3c:90:e8:65:84:86:9b:88:d5:a9:cd:ec:7a: ea:1e:30:ad:75:e8:eb:0c:d3:65:7f:01:0e:67:31: 41:a6:c4:36:3f:2b:fc:bf:c1:d3:a4:01:79:38:f2: 62:09:8c:65:26:9d:63:ab:31:8f:2c:8c:63:32:a6: 66:71:78:ff:e3:ef:37:72:31:2f:bd:f0:0c:d2:f5: d2:02:ce:36:b9:86:4c:eb:a7:e6:b1:5b:95:41:e2: 17:c9:e7:ce:54:3e:d5:09:21:24:e1:39:17:9c:1c: 84:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:7A:9A:E9:5D:E4:56:CE:0C:27:77:38:F3:F9:E0:AA:C9:57:1E:E5 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B341065EBDDE11EA9977C550C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.12.0/23 157.15.158.0/24 158.144.12.0/24 158.144.15.0/24 158.144.18.0/24 158.144.182.0/24 158.144.186.0/23 Signature Algorithm: sha256WithRSAEncryption 48:71:43:2b:d5:04:16:5d:32:f5:1a:a7:7d:21:53:91:f0:4a: 2e:6f:d8:18:8c:7c:d5:81:ee:13:b9:b5:d5:fc:be:57:42:95: ff:a8:78:c4:62:68:68:bf:d5:cf:72:67:42:59:f3:72:12:f8: 2f:69:31:64:24:54:63:3c:77:a4:e2:b6:44:5d:ed:28:a8:31: 4c:f4:45:38:60:56:ee:da:6e:ce:26:fd:e1:21:09:22:e4:ae: fe:6c:a9:69:63:52:3e:2a:1b:49:50:66:3e:ea:fb:e5:05:7f: 2f:5f:41:6a:69:d9:df:e0:81:f7:8f:e6:bd:8e:28:65:1e:56: a3:ad:e0:49:fd:d4:36:28:88:57:61:38:e6:34:1f:cb:b1:ca: 74:38:eb:fa:2a:2f:4d:00:8c:cc:e0:e4:b5:0e:0d:1c:25:b6: f7:58:36:f7:87:7b:8f:56:dc:d5:30:6b:26:4d:07:66:62:a4: 69:4f:67:d5:db:b5:39:bc:90:39:b8:9b:ac:6b:93:a4:7d:c3: e7:97:a3:76:b7:d9:c5:9f:27:ad:7a:0f:8b:6e:f8:43:ad:dd: a7:4f:59:3c:dc:26:54:c9:69:08:88:23:a9:e8:e0:f4:86:e2: fd:2a:a0:bc:53:64:e9:85:39:77:97:0c:9f:8d:94:d2:ff:65: 21:19:4d:31 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICL/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYzMDQyWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjIzMi1hMjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvaIYuipBTWfFrqnC7sq+FxnBvuybT6c5aBbIZ3t+NnZZOHz4V74X3JBJMAf pesgivD+2eaPG75FLMB8qtJnd68GTC8SqYDg06nxGdTcJQhvzCwVha+HG7y4aIsr AM3Ap8V/UBoGscqs2+ckfdCx2wCn+FhDzcKTMU28JgVmz/5fWdzRBDkWGHw8hBv3 RzwBqDAmR9wy6zyQ6GWEhpuI1anN7HrqHjCtdejrDNNlfwEOZzFBpsQ2Pyv8v8HT pAF5OPJiCYxlJp1jqzGPLIxjMqZmcXj/4+83cjEvvfAM0vXSAs42uYZM66fmsVuV QeIXyefOVD7VCSEk4TkXnByEWwIDAQABo4IChDCCAoAwHQYDVR0OBBYEFDJ6muld 5FbODCd3OPP54KrJVx7lMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjM0MTA2NUVC RERFMTFFQTk5NzdDNTUwQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQBnQ8MAwQAnQ+eAwQAnpAMAwQAnpAPAwQAnpASAwQAnpC2AwQBnpC6 MA0GCSqGSIb3DQEBCwUAA4IBAQBIcUMr1QQWXTL1Gqd9IVOR8Eoub9gYjHzVge4T ubXV/L5XQpX/qHjEYmhov9XPcmdCWfNyEvgvaTFkJFRjPHek4rZEXe0oqDFM9EU4 YFbu2m7OJv3hIQki5K7+bKlpY1I+KhtJUGY+6vvlBX8vX0Fqadnf4IH3j+a9jihl HlajreBJ/dQ2KIhXYTjmNB/Lscp0OOv6Ki9NAIzM4OS1Dg0cJbb3WDb3h3uPVtzV MGsmTQdmYqRpT2fV27U5vJA5uJusa5OkfcPnl6N2t9nFnyeteg+LbvhDrd2nT1k8 3CZUyWkIiCOp6OD0huL9KqC8U2TphTl3lwyfjZTS/2UhGU0x -----END CERTIFICATE-----Generated at Sat Jun 6 11:16:02 2026 by rpki-client