$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BAFD0D461B9F11F19A4D8F4F033D8C67.roa File: BAFD0D461B9F11F19A4D8F4F033D8C67.roa (raw, json) Hash identifier: ox+rIAl5IqU6sNVuIRPbNqIMRl4FV1s9nzrg3qYiCoU= Subject key identifier: DD:0B:79:2D:E3:DB:3F:AF:EA:07:01:21:54:4F:EB:38:B9:1C:7B:D0 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2F53 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BAFD0D461B9F11F19A4D8F4F033D8C67.roa Signing time: Sun 31 May 2026 16:25:10 +0000 ROA not before: Sun 31 May 2026 16:25:10 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 152524 IP address blocks: 160.22.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Jun 2026 09:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12115 (0x2f53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:25:10 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c60e6-773e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b6:a1:9d:be:86:70:b4:38:a1:8c:df:84:b5: 2c:0c:a6:9e:03:4f:ba:6b:9a:38:0a:24:2a:92:e1: 8b:4a:7d:16:bc:99:e7:80:5b:c7:e4:0d:11:f2:c6: 8c:53:cb:3e:fd:5c:20:d7:03:f3:71:94:00:8a:4b: d1:7e:e3:d1:60:64:c6:0b:6f:94:ba:83:75:04:07: 26:d2:b2:f9:f3:7f:df:e5:76:25:35:51:99:6b:aa: 23:be:e3:43:d0:a3:2e:8b:67:00:da:f1:fb:d0:92: 88:20:f5:c0:aa:21:cb:0d:25:bf:fa:1f:e0:48:4c: 33:e3:1e:55:7e:2e:0e:2e:54:99:56:39:e8:96:f5: 5c:8c:72:e8:3c:8e:82:af:85:ca:0a:a4:9b:b4:da: 34:d1:dc:e6:62:e1:8d:4d:54:e5:83:7e:21:21:2d: be:c9:10:d0:1f:45:03:42:94:2e:19:f1:71:63:49: 49:20:f5:c1:ab:b8:42:5c:46:5f:df:a0:2a:8a:72: eb:c6:70:bb:a5:39:f2:a5:53:18:8f:b6:cb:05:fb: 80:d5:83:31:c2:5e:57:f9:1f:32:f9:b9:92:b6:8f: 0c:61:55:9c:5a:5b:70:ea:f0:05:40:24:07:a4:98: cc:f8:c5:d6:a9:a8:c9:39:5e:e7:8e:21:07:be:a1: b0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0B:79:2D:E3:DB:3F:AF:EA:07:01:21:54:4F:EB:38:B9:1C:7B:D0 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BAFD0D461B9F11F19A4D8F4F033D8C67.roa sbgp-ipAddrBlock: critical IPv4: 160.22.248.0/23 Signature Algorithm: sha256WithRSAEncryption 24:39:07:58:b9:60:db:aa:0f:82:03:cc:b9:7a:e1:8a:43:a1: e9:7c:c7:4c:d0:a5:9f:bc:78:c0:e0:3b:74:05:83:0c:2c:fd: e1:36:67:d5:12:0a:b9:8c:74:2a:ba:ee:69:8c:25:26:6d:fe: 4c:2e:87:00:05:54:78:f2:cf:0f:58:f2:21:7c:2b:1a:fe:6d: 05:af:86:cd:86:d8:ca:11:1e:64:06:a6:12:b5:7f:0c:80:ff: c8:ca:a3:3c:a5:5b:ab:94:38:b5:23:f8:01:20:3f:07:fe:14: f2:28:a5:d6:36:d5:0f:1c:b7:1c:ec:77:cb:8a:58:2d:81:8b: 55:92:5e:f5:35:73:41:eb:f2:f9:2d:6f:81:f1:07:1e:f1:a7: 3f:27:f5:20:a2:4e:8e:87:4d:cf:81:c3:7e:c1:9b:28:d3:6b: 7a:85:e9:bb:b7:58:9a:07:b8:77:5a:02:17:2d:72:d1:e0:c5: 89:0d:11:10:df:5c:ae:e1:3f:b3:61:15:8e:4e:af:73:e3:3c: ea:00:e4:8f:4f:b7:9c:35:47:09:48:ff:01:b4:ad:45:ba:93: db:a2:35:92:93:fd:50:3d:b3:5a:19:b0:5f:31:10:ff:5f:61: 7d:0f:9b:3d:aa:2e:36:4d:06:9e:67:64:14:30:fb:dc:60:28: af:41:c8:7e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICL1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyNTEwWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjBlNi03NzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7ahnb6GcLQ4oYzfhLUsDKaeA0+6a5o4CiQqkuGLSn0WvJnngFvH5A0R8saM U8s+/Vwg1wPzcZQAikvRfuPRYGTGC2+UuoN1BAcm0rL583/f5XYlNVGZa6ojvuND 0KMui2cA2vH70JKIIPXAqiHLDSW/+h/gSEwz4x5Vfi4OLlSZVjnolvVcjHLoPI6C r4XKCqSbtNo00dzmYuGNTVTlg34hIS2+yRDQH0UDQpQuGfFxY0lJIPXBq7hCXEZf 36AqinLrxnC7pTnypVMYj7bLBfuA1YMxwl5X+R8y+bmSto8MYVWcWltw6vAFQCQH pJjM+MXWqajJOV7njiEHvqGwkwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN0LeS3j 2z+v6gcBIVRP6zi5HHvQMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQkFGRDBENDYx QjlGMTFGMTlBNEQ4RjRGMDMzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBb4MA0GCSqGSIb3DQEBCwUAA4IBAQAkOQdYuWDbqg+CA8y5euGK Q6HpfMdM0KWfvHjA4Dt0BYMMLP3hNmfVEgq5jHQquu5pjCUmbf5MLocABVR48s8P WPIhfCsa/m0Fr4bNhtjKER5kBqYStX8MgP/IyqM8pVurlDi1I/gBID8H/hTyKKXW NtUPHLcc7HfLilgtgYtVkl71NXNB6/L5LW+B8Qce8ac/J/Ugok6Oh03PgcN+wZso 02t6hem7t1iaB7h3WgIXLXLR4MWJDREQ31yu4T+zYRWOTq9z4zzqAOSPT7ecNUcJ SP8BtK1FupPbojWSk/1QPbNaGbBfMRD/X2F9D5s9qi42TQaeZ2QUMPvcYCivQch+ -----END CERTIFICATE-----Generated at Thu Jun 4 11:16:40 2026 by rpki-client