$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DB7FFDD0E02D11EEBE91895FC4F9AE02.roa File: DB7FFDD0E02D11EEBE91895FC4F9AE02.roa (raw, json) Hash identifier: pCCFkfl+kjOxS/YGsfUXVTmPtGLQgpdRoXl30VWtDa8= Subject key identifier: 7C:6E:CB:DB:CE:08:AF:28:BB:EE:C2:98:B0:0B:09:98:E1:3F:E5:70 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2EB6 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DB7FFDD0E02D11EEBE91895FC4F9AE02.roa Signing time: Sun 31 May 2026 16:20:08 +0000 ROA not before: Sun 31 May 2026 16:20:08 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 138244 IP address blocks: 157.20.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11958 (0x2eb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:20:08 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c5fb8-bacb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3c:25:b7:3a:91:46:9b:fa:cb:92:47:79:06: ee:e8:f6:aa:56:9d:54:9c:84:ca:88:df:93:fd:ff: 7e:d0:41:8b:13:27:cd:e7:12:1c:fa:d5:04:ec:a6: 4b:08:4a:31:f2:81:a9:cf:d1:81:f2:d4:96:9e:0a: 8e:15:d3:7d:96:b3:07:a1:a3:50:45:e3:52:a1:df: 17:82:bc:49:b4:6f:fb:99:df:f6:c6:7f:c5:df:09: f9:29:75:38:c8:fa:82:99:05:40:7f:c2:cd:60:96: bd:7d:ed:da:4f:80:ea:62:61:c6:22:ba:43:ac:0c: e9:cc:42:97:6b:06:33:e6:13:5a:31:44:fe:67:b0: e8:01:4a:ec:08:78:40:14:b5:ce:d2:0f:ae:9e:5b: 5c:cd:d8:78:b2:95:45:98:d6:6f:b3:e1:86:ea:9c: 72:06:c3:1e:50:39:c2:d1:26:33:8b:e8:d5:5a:89: ad:c5:09:73:0a:f9:29:f8:76:b4:b4:04:cd:00:3e: 36:bc:2d:4d:75:fd:d3:55:80:16:c7:1e:22:5d:c7: 82:7d:d6:13:9a:42:91:d1:78:98:66:76:68:ad:69: c0:01:41:96:e5:7a:79:a1:be:b4:40:2c:16:19:28: 83:a7:72:d7:9d:30:d2:c7:d7:fe:1c:aa:a6:e9:e1: ba:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:6E:CB:DB:CE:08:AF:28:BB:EE:C2:98:B0:0B:09:98:E1:3F:E5:70 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DB7FFDD0E02D11EEBE91895FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.172.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:72:6a:b4:74:14:04:87:93:f6:1d:d8:0b:79:a4:a3:b7:e2: c3:19:2a:5b:d1:aa:e0:d4:97:3b:bc:76:7a:37:a3:bd:2d:af: f4:8f:89:75:33:cd:7c:ac:0d:54:b5:c7:54:b8:6b:a1:8b:19: bb:7e:ed:28:4c:64:a2:87:f4:5e:d3:e4:9d:ef:e3:56:91:94: 44:a6:14:d3:b6:9e:22:05:0e:55:28:1e:ba:31:ef:b7:0d:06: 94:a2:d7:55:0d:d7:33:3e:71:9e:72:b7:35:06:dc:81:a5:d2: 6e:a0:1d:08:09:de:19:0b:c1:76:0c:02:a4:94:c2:7f:e3:6c: fd:29:fb:7b:ca:4c:e1:c4:85:d3:7e:ff:9b:72:44:ba:bb:09: 48:0b:0d:a7:1e:b2:49:33:4f:9b:fc:6e:07:48:b0:fd:2a:cc: 9e:53:c5:e1:c1:20:7e:1e:97:ea:a8:c5:66:40:8c:d2:ac:47: 1a:af:7c:74:3a:09:8d:ba:31:e5:e2:b5:d5:9b:a0:b3:82:65: d6:e6:48:63:bd:e0:f5:50:f7:27:c7:16:a4:04:5c:c7:d2:57: 7f:53:67:83:c6:a0:26:89:dd:0f:74:cc:35:4b:cb:52:c0:03: 69:60:be:58:bc:bc:da:f0:50:e0:a1:77:dc:fa:3d:e5:74:45: 18:09:f6:5a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyMDA4WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNWZiOC1iYWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzwltzqRRpv6y5JHeQbu6PaqVp1UnITKiN+T/f9+0EGLEyfN5xIc+tUE7KZL CEox8oGpz9GB8tSWngqOFdN9lrMHoaNQReNSod8XgrxJtG/7md/2xn/F3wn5KXU4 yPqCmQVAf8LNYJa9fe3aT4DqYmHGIrpDrAzpzEKXawYz5hNaMUT+Z7DoAUrsCHhA FLXO0g+unltczdh4spVFmNZvs+GG6pxyBsMeUDnC0SYzi+jVWomtxQlzCvkp+Ha0 tATNAD42vC1Ndf3TVYAWxx4iXceCfdYTmkKR0XiYZnZorWnAAUGW5Xp5ob60QCwW GSiDp3LXnTDSx9f+HKqm6eG6aQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHxuy9vO CK8ou+7CmLALCZjhP+VwMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREI3RkZERDBF MDJEMTFFRUJFOTE4OTVGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRSsMA0GCSqGSIb3DQEBCwUAA4IBAQA6cmq0dBQEh5P2HdgLeaSj t+LDGSpb0arg1Jc7vHZ6N6O9La/0j4l1M818rA1UtcdUuGuhixm7fu0oTGSih/Re 0+Sd7+NWkZREphTTtp4iBQ5VKB66Me+3DQaUotdVDdczPnGecrc1BtyBpdJuoB0I Cd4ZC8F2DAKklMJ/42z9Kft7ykzhxIXTfv+bckS6uwlICw2nHrJJM0+b/G4HSLD9 KsyeU8XhwSB+HpfqqMVmQIzSrEcar3x0OgmNujHl4rXVm6CzgmXW5khjveD1UPcn xxakBFzH0ld/U2eDxqAmid0PdMw1S8tSwANpYL5YvLza8FDgoXfc+j3ldEUYCfZa -----END CERTIFICATE-----Generated at Sat Jun 6 08:21:46 2026 by rpki-client