$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B4FD31B6797311EFABA1ED3DC4F9AE02.roa File: B4FD31B6797311EFABA1ED3DC4F9AE02.roa (raw, json) Hash identifier: t6ACZQMpBP+JUPLKV3HWlnyJgCMhQeDgFBeWSUOnvc4= Subject key identifier: D7:E3:4D:C2:29:5D:77:E1:04:D5:A6:07:67:C5:84:50:FC:1B:16:45 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2F8E Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B4FD31B6797311EFABA1ED3DC4F9AE02.roa Signing time: Sun 31 May 2026 16:27:02 +0000 ROA not before: Sun 31 May 2026 16:27:02 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 153241 IP address blocks: 160.187.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12174 (0x2f8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:27:02 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6156-9486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c3:2f:a4:40:4b:69:f7:d5:3b:21:c0:e2:76: 5b:7f:57:eb:5e:19:d5:8c:a6:cb:9d:a9:d2:fd:14: 3f:e4:0c:6f:42:e6:21:11:95:9d:39:19:31:0e:b1: be:ee:d6:13:53:b5:ac:aa:20:22:a1:d0:ba:d2:96: 48:9a:dc:e1:11:4e:47:ef:60:8a:b2:74:54:9e:e8: d2:32:b4:96:a6:2b:c7:61:b7:91:ef:d1:10:6a:ef: d2:63:68:1d:d6:a6:b0:d3:31:30:74:5f:61:05:14: ab:61:c0:41:20:a2:c3:8c:8a:71:c0:39:5f:d9:9d: 68:01:0d:1e:80:f8:04:fe:e2:09:e2:cb:4c:91:43: c9:ac:88:80:25:41:e9:2b:d7:a9:f1:55:d8:9a:34: a6:63:77:32:25:ea:1c:66:c2:0d:56:32:7d:59:09: 0d:8a:65:dc:f3:e4:b9:27:09:79:33:8c:c7:df:1a: 5f:29:80:32:ef:1d:90:33:6e:fd:73:7e:5c:b2:81: 92:94:79:fd:30:12:34:9f:a2:e3:18:cc:c2:ec:f7: 41:55:93:3e:26:70:7b:3e:88:63:40:59:26:e9:cb: 0c:c2:27:29:b2:e1:3e:02:85:d8:14:47:d2:42:49: 5e:a6:48:0a:3d:a9:87:dd:4a:ec:14:ba:90:d5:5c: e5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E3:4D:C2:29:5D:77:E1:04:D5:A6:07:67:C5:84:50:FC:1B:16:45 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B4FD31B6797311EFABA1ED3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.187.76.0/23 Signature Algorithm: sha256WithRSAEncryption 53:bf:ab:4d:a5:3f:26:d9:53:13:68:5e:34:0b:e3:f0:29:5b: be:b1:76:c4:53:5b:05:ff:57:cc:82:55:7a:d0:29:e1:c0:2b: ae:da:26:fa:95:66:fc:7e:af:1b:76:f3:80:78:a2:a9:69:d0: da:43:36:8e:b8:58:19:d6:63:b6:b8:b6:d1:56:ba:7d:15:fe: a3:01:4a:cb:c4:90:58:bc:fa:cd:9e:b1:bf:6e:cf:e8:b4:6d: 05:19:49:d0:4d:9d:48:b2:c6:12:5f:f1:ce:03:4e:ea:d1:1c: 73:1b:e2:d9:29:3e:ae:37:98:a4:2d:f1:a7:61:4f:f0:ea:c9: 9e:a3:98:25:51:f3:0c:e4:d9:5b:23:2c:e4:bc:37:83:af:b6: 58:a1:ba:30:ce:de:0b:f0:6e:d9:ea:ef:4a:42:c6:4e:c1:54: 49:52:c0:25:07:f3:df:fa:72:e4:36:18:c1:af:5d:c6:f4:20: 6e:24:1e:93:11:b2:ac:5e:7e:6d:b2:0f:7f:e2:67:f0:e5:d6: e0:9c:6d:d9:00:71:62:ff:55:8d:ae:a7:1d:c2:d0:4a:3b:b1: fd:2f:34:d4:85:bb:2a:e3:6b:20:05:13:be:66:25:16:a7:d0: ce:92:a9:f8:b8:7c:54:26:19:e6:c4:bd:cf:af:76:7d:3f:b5: 79:de:c8:40 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICL44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyNzAyWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjE1Ni05NDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcMvpEBLaffVOyHA4nZbf1frXhnVjKbLnanS/RQ/5AxvQuYhEZWdORkxDrG+ 7tYTU7WsqiAiodC60pZImtzhEU5H72CKsnRUnujSMrSWpivHYbeR79EQau/SY2gd 1qaw0zEwdF9hBRSrYcBBIKLDjIpxwDlf2Z1oAQ0egPgE/uIJ4stMkUPJrIiAJUHp K9ep8VXYmjSmY3cyJeocZsINVjJ9WQkNimXc8+S5Jwl5M4zH3xpfKYAy7x2QM279 c35csoGSlHn9MBI0n6LjGMzC7PdBVZM+JnB7PohjQFkm6csMwicpsuE+AoXYFEfS QklepkgKPamH3UrsFLqQ1VzlQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNfjTcIp XXfhBNWmB2fFhFD8GxZFMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjRGRDMxQjY3 OTczMTFFRkFCQTFFRDNEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoLtMMA0GCSqGSIb3DQEBCwUAA4IBAQBTv6tNpT8m2VMTaF40C+Pw KVu+sXbEU1sF/1fMglV60CnhwCuu2ib6lWb8fq8bdvOAeKKpadDaQzaOuFgZ1mO2 uLbRVrp9Ff6jAUrLxJBYvPrNnrG/bs/otG0FGUnQTZ1IssYSX/HOA07q0RxzG+LZ KT6uN5ikLfGnYU/w6smeo5glUfMM5NlbIyzkvDeDr7ZYobowzt4L8G7Z6u9KQsZO wVRJUsAlB/Pf+nLkNhjBr13G9CBuJB6TEbKsXn5tsg9/4mfw5dbgnG3ZAHFi/1WN rqcdwtBKO7H9LzTUhbsq42sgBRO+ZiUWp9DOkqn4uHxUJhnmxL3Pr3Z9P7V53shA -----END CERTIFICATE-----Generated at Sat Jun 6 08:22:19 2026 by rpki-client