$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa File: AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: tirpzoVyKOHPmHCBwgEXjgsgVN+72h1c1Jdjf2MA7uA= Subject key identifier: 9B:79:F2:54:21:51:BF:03:D2:13:05:4C:A5:8D:B7:0B:40:BD:46:83 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 09AE Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:13:35 +0000 ROA not before: Tue 20 May 2025 21:50:51 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 23644 IP address blocks: 203.151.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2478 (0x9ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:51 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48fdf-771b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ce:4f:ed:a7:ea:5b:fa:0c:ea:0c:27:7e:d2: e1:f5:c0:e1:58:ae:03:b3:72:26:96:9a:eb:57:0a: 3c:be:31:88:53:41:aa:4c:e5:72:34:73:62:c5:a7: da:60:31:0b:f8:93:ba:22:a4:09:31:e6:85:f1:a6: 18:e4:b6:b9:29:fa:57:fa:00:cd:94:33:e3:a6:9f: 6c:78:e2:08:fd:fd:92:ba:03:70:fe:80:ba:c0:10: 08:84:91:6f:04:c9:b1:92:a5:1d:a8:4d:80:fe:0c: 78:25:d8:d5:3a:90:18:e3:bb:56:87:9a:5c:d3:b2: 89:9d:2f:3a:a8:0d:dc:19:76:36:36:a6:a4:55:67: 64:a8:21:c4:10:51:f7:74:7f:c0:16:8c:47:47:50: b6:65:24:63:62:ed:e7:e8:d1:e7:7e:0f:05:c7:07: 00:a9:fe:92:66:36:88:f2:48:1c:da:0f:51:09:d6: ac:9a:a8:ee:b7:e8:1b:bd:f1:10:e6:2c:1c:97:1f: 4b:dc:61:97:ec:5f:3e:f9:60:ee:70:30:d3:75:8e: 4a:b6:08:d9:cc:d9:17:b6:09:54:96:da:56:c5:e2: 81:18:76:dd:41:84:e0:25:79:59:39:2f:7c:f4:ce: 00:4e:3d:ac:69:05:5e:af:ca:21:77:ce:09:62:f4: fd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:79:F2:54:21:51:BF:03:D2:13:05:4C:A5:8D:B7:0B:40:BD:46:83 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.151.18.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:96:06:5f:66:60:c7:74:1e:2b:e4:ff:df:3a:06:66:d6:6d: a7:f4:7d:2c:71:78:40:b5:42:60:f3:cd:db:2e:ee:74:cc:65: 86:4f:72:c0:6f:aa:64:63:fe:67:f0:99:0d:72:bc:71:65:51: f4:9c:6f:88:5d:2b:01:2e:d5:57:e4:90:54:14:0c:84:2a:bd: f4:5d:98:60:08:ac:00:06:24:ae:e3:cd:83:be:17:06:12:a1: 07:93:16:c0:ea:2e:d5:c7:93:1f:36:f1:25:cf:91:a4:ea:d3: f1:81:c2:a0:93:5e:35:22:e6:94:2f:3a:55:72:f6:de:26:54: e6:ff:9b:b0:fa:0d:b9:dd:c9:04:5f:32:51:96:eb:73:e7:ec: ab:82:e2:c5:10:a7:0f:65:8b:f7:79:0c:9e:2d:66:fa:d3:63: 7c:86:64:43:93:97:10:3c:3e:50:16:e1:b4:a4:8b:6c:7e:ff: 6f:6c:fa:09:69:54:77:f7:3b:b8:fc:7f:08:25:0b:16:23:a4: ed:11:75:b8:b2:95:28:f4:20:17:22:c9:e2:73:5e:a9:f3:fc: 6b:0f:df:33:27:c8:a9:81:31:87:ad:8c:d6:81:fb:fc:87:f0: 1f:a9:dd:be:60:73:fa:99:60:4a:63:0c:59:56:6a:eb:ec:27: 79:d2:ab:08 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDUxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGZkZi03NzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAts5P7afqW/oM6gwnftLh9cDhWK4Ds3ImlprrVwo8vjGIU0GqTOVyNHNixafa YDEL+JO6IqQJMeaF8aYY5La5KfpX+gDNlDPjpp9seOII/f2SugNw/oC6wBAIhJFv BMmxkqUdqE2A/gx4JdjVOpAY47tWh5pc07KJnS86qA3cGXY2NqakVWdkqCHEEFH3 dH/AFoxHR1C2ZSRjYu3n6NHnfg8FxwcAqf6SZjaI8kgc2g9RCdasmqjut+gbvfEQ 5iwclx9L3GGX7F8++WDucDDTdY5KtgjZzNkXtglUltpWxeKBGHbdQYTgJXlZOS98 9M4ATj2saQVer8ohd84JYvT9+QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJt58lQh Ub8D0hMFTKWNtwtAvUaDMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUVGNTZEN0My QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy5cSMA0GCSqGSIb3DQEBCwUAA4IBAQA6lgZfZmDHdB4r5P/fOgZm 1m2n9H0scXhAtUJg883bLu50zGWGT3LAb6pkY/5n8JkNcrxxZVH0nG+IXSsBLtVX 5JBUFAyEKr30XZhgCKwABiSu482DvhcGEqEHkxbA6i7Vx5MfNvElz5Gk6tPxgcKg k141IuaULzpVcvbeJlTm/5uw+g253ckEXzJRlutz5+yrguLFEKcPZYv3eQyeLWb6 02N8hmRDk5cQPD5QFuG0pItsfv9vbPoJaVR39zu4/H8IJQsWI6TtEXW4spUo9CAX Isnic16p8/xrD98zJ8ipgTGHrYzWgfv8h/Afqd2+YHP6mWBKYwxZVmrr7Cd50qsI -----END CERTIFICATE-----Generated at Mon Mar 2 02:10:59 2026 by rpki-client