$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B3DA6A4CBDDE11EA9977C550C4F9AE02.roa File: B3DA6A4CBDDE11EA9977C550C4F9AE02.roa (raw, json) Hash identifier: jkf+WzYR5X0im+Kw0KbhI7VwfcihNKQTJ6PWHfvRex8= Subject key identifier: F4:DB:A5:C5:ED:46:0C:CD:05:1E:18:45:98:CB:C5:BD:DF:1E:08:E1 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 3001 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B3DA6A4CBDDE11EA9977C550C4F9AE02.roa Signing time: Sun 31 May 2026 16:30:50 +0000 ROA not before: Sun 31 May 2026 16:30:50 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 58758 IP address blocks: 158.144.42.0/23 maxlen: 23 158.144.42.0/24 maxlen: 24 158.144.43.0/24 maxlen: 24 158.144.44.0/24 maxlen: 24 158.144.183.0/24 maxlen: 24 158.144.185.0/24 maxlen: 24 158.144.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Jun 2026 09:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12289 (0x3001) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:30:50 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c623a-aab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7e:5a:48:ba:4f:fc:da:e6:62:33:b5:e3:f0: 01:e7:87:c9:32:bf:05:21:06:a9:f1:47:b9:0d:dd: d0:5c:89:9d:58:ef:5e:ad:95:5b:fb:b6:65:f4:bb: 27:1d:1a:41:d3:d2:92:6e:2f:f3:8d:a2:8b:d7:3d: 8e:5e:0e:5a:72:e0:80:ff:a8:f0:20:29:89:80:bb: e5:b0:42:2c:fd:f0:ad:28:a3:89:ff:20:7d:be:8d: ef:ee:f6:dc:19:b8:3d:f3:22:70:4a:a6:34:6b:d2: fb:fc:e7:50:1e:0b:50:7e:3d:f6:6d:c9:b8:e8:2b: 49:bb:f9:cd:3b:6e:5b:86:23:7a:b1:62:21:b9:78: 66:fd:a8:b4:73:e1:dc:d9:77:93:e2:1d:ca:2e:7c: 43:81:1b:f1:68:58:97:db:37:fe:39:4b:a7:b2:13: ad:d0:01:b7:fd:dd:61:5b:1a:8f:56:25:6d:84:30: ef:12:98:c9:86:40:fe:8f:fb:81:87:22:ce:c2:5c: b4:34:5c:3a:ef:1c:95:c2:c0:ab:35:ee:9d:a8:bd: ad:c1:b7:1c:f1:92:50:ac:a6:8d:ab:0b:d7:7f:36: ca:af:0b:cd:72:0c:76:ff:a3:ea:9d:bd:4e:3a:1c: 47:d2:d3:16:70:83:29:fb:84:8b:9a:25:dd:f4:35: 3d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DB:A5:C5:ED:46:0C:CD:05:1E:18:45:98:CB:C5:BD:DF:1E:08:E1 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B3DA6A4CBDDE11EA9977C550C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 158.144.42.0-158.144.44.255 158.144.183.0/24 158.144.185.0/24 158.144.194.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:4b:cf:b8:e8:96:56:1c:c7:d8:ba:f9:ef:0b:31:93:28:b2: 86:10:29:23:1c:0b:c8:98:87:89:47:e5:c5:72:10:d1:8c:d7: 7e:50:b9:9f:ed:82:8a:ba:a9:36:06:f5:46:82:b3:4b:62:63: 77:34:9f:82:67:3e:59:ce:f0:35:9a:2c:7f:8e:25:b5:0f:b9: ed:c8:36:df:d3:d8:4b:9c:91:3f:8f:4b:87:67:63:ee:d4:80: 63:6e:5e:a6:10:07:e1:33:22:19:0f:70:66:7b:43:40:b5:a7: 43:17:be:1e:55:e8:37:fa:76:87:d0:cf:65:a5:e4:da:f5:92: 34:12:73:98:de:1d:90:df:ee:fb:7c:26:04:0d:ac:4d:b6:f3: 15:d9:4b:68:ed:60:4c:87:4a:c4:01:ae:35:18:27:7c:ee:8b: a0:41:61:b1:0f:e1:aa:cb:1a:94:bc:23:f1:f7:0d:7a:8f:52: 50:fe:a8:f8:60:85:1a:ce:50:57:ab:c3:e5:46:cb:f9:78:2d: 4f:0b:f1:e7:7c:d7:80:02:16:af:b7:5d:d2:85:1f:8a:76:82: c5:8e:1d:96:6d:46:cd:04:e1:61:28:47:c8:f2:5d:27:c7:cb: ea:3a:3f:1f:64:9d:20:5f:e7:83:5a:ee:2f:0d:58:bd:b2:ae: a4:15:28:13 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICMAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYzMDUwWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjIzYS1hYWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3n5aSLpP/NrmYjO14/AB54fJMr8FIQap8Ue5Dd3QXImdWO9erZVb+7Zl9Lsn HRpB09KSbi/zjaKL1z2OXg5acuCA/6jwICmJgLvlsEIs/fCtKKOJ/yB9vo3v7vbc Gbg98yJwSqY0a9L7/OdQHgtQfj32bcm46CtJu/nNO25bhiN6sWIhuXhm/ai0c+Hc 2XeT4h3KLnxDgRvxaFiX2zf+OUunshOt0AG3/d1hWxqPViVthDDvEpjJhkD+j/uB hyLOwly0NFw67xyVwsCrNe6dqL2twbcc8ZJQrKaNqwvXfzbKrwvNcgx2/6Pqnb1O OhxH0tMWcIMp+4SLmiXd9DU9jwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFPTbpcXt RgzNBR4YRZjLxb3fHgjhMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjNEQTZBNENC RERFMTFFQTk5NzdDNTUwQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAm BAIAATAgMAwDBAGekCoDBACekCwDBACekLcDBACekLkDBAGekMIwDQYJKoZIhvcN AQELBQADggEBAFpLz7jollYcx9i6+e8LMZMosoYQKSMcC8iYh4lH5cVyENGM135Q uZ/tgoq6qTYG9UaCs0tiY3c0n4JnPlnO8DWaLH+OJbUPue3INt/T2EuckT+PS4dn Y+7UgGNuXqYQB+EzIhkPcGZ7Q0C1p0MXvh5V6Df6dofQz2Wl5Nr1kjQSc5jeHZDf 7vt8JgQNrE228xXZS2jtYEyHSsQBrjUYJ3zui6BBYbEP4arLGpS8I/H3DXqPUlD+ qPhghRrOUFerw+VGy/l4LU8L8ed814ACFq+3XdKFH4p2gsWOHZZtRs0E4WEoR8jy XSfHy+o6Px9knSBf54Na7i8NWL2yrqQVKBM= -----END CERTIFICATE-----Generated at Thu Jun 4 11:06:56 2026 by rpki-client