$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa File: FD990E7AF0B311EE9923BC84C4F9AE02.roa (raw, json) Hash identifier: n8KxMW0Aaa9rptIg6bayOha3cuq2edyW8e+5wMGI3io= Subject key identifier: F9:0C:9E:C2:1D:33:94:3B:F1:EE:7F:E7:55:AB:19:53:26:D9:2C:3E Certificate issuer: /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Certificate serial: 0182 Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa Signing time: Mon 13 Apr 2026 04:37:47 +0000 ROA not before: Mon 13 Apr 2026 04:37:47 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152604 IP address blocks: 157.20.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Validity Not Before: Apr 13 04:37:47 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69dc731a-cd3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d5:98:7a:7a:34:0c:49:9a:91:49:f2:19:b9: 4b:03:8e:8b:f0:be:5f:7c:6b:ae:54:90:82:84:39: 33:d2:05:e4:c2:23:24:e5:bb:79:a5:76:92:6a:4f: 13:91:0f:fd:07:a3:d5:45:50:63:af:e2:32:d5:81: 27:c4:3c:90:86:45:5b:20:01:61:a1:4a:ee:77:75: 52:85:7c:6b:a7:04:9f:85:8d:ac:5d:07:6b:38:f0: d5:e5:b9:46:53:60:90:a5:53:17:3d:07:78:8c:45: 6d:a1:ab:f6:74:6d:e8:51:51:a5:7f:cd:fd:c2:08: cd:8a:3e:bd:54:d4:45:0d:d0:9f:ab:a1:20:88:51: df:ce:25:a8:72:32:23:e9:d4:52:2c:30:b0:be:60: 24:5a:71:56:43:f6:57:49:62:7e:2e:ff:6b:13:20: 77:75:17:33:a8:31:67:0f:a4:b2:4e:fe:91:04:2b: 06:db:48:b3:59:d4:b5:3a:80:7e:ff:a9:c7:21:fa: 3c:32:3f:1f:58:10:ab:ae:31:0b:3c:6c:96:1d:0c: 08:22:67:9b:12:bc:ee:e2:9b:5f:75:61:95:a5:9b: e8:a0:61:f6:cb:41:e8:1d:1d:45:26:fe:22:13:9d: a0:2a:03:18:a6:f9:75:7d:0c:33:2b:a6:fa:ce:91: d2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:0C:9E:C2:1D:33:94:3B:F1:EE:7F:E7:55:AB:19:53:26:D9:2C:3E X509v3 Authority Key Identifier: keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.140.0/23 Signature Algorithm: sha256WithRSAEncryption 70:cf:d7:b1:98:c2:f2:eb:b0:d8:fd:73:a8:bc:5c:2c:2f:ff: 80:5a:27:ad:7e:86:12:4e:f8:45:d8:ad:11:71:6c:07:f4:3e: 4f:b0:c3:e4:05:80:2b:42:5f:c6:f9:2a:23:86:28:41:14:2b: f6:36:ef:ea:7e:16:b8:bc:d6:2b:cd:e1:2d:93:4e:98:db:df: ee:f0:40:6d:b0:a3:3b:4e:fe:be:bc:7e:90:cd:73:1b:e0:7b: 64:a0:10:26:d3:75:2c:2f:00:0a:78:22:77:c6:3c:ec:72:d2: bc:4a:41:e8:13:63:3b:8a:c7:68:08:03:8a:01:c1:ad:5a:68: f5:95:01:3a:5e:7e:a4:53:12:02:ad:3a:e6:9a:ce:cd:fe:62: 06:d1:d4:39:2d:71:49:1e:3f:ca:d7:35:2a:b7:3d:7a:26:cb: df:16:ea:d1:b3:d1:bf:37:86:c3:26:7c:54:db:89:e2:42:be: 9c:2f:02:42:a3:99:4c:f6:0a:46:61:f2:1f:70:4c:82:36:9e: eb:0f:36:4d:cd:fa:c4:0a:bd:7e:fd:19:98:9d:d5:8c:91:50: 6f:7c:1d:12:e2:f3:09:e4:77:dd:86:7a:69:2e:82:1c:03:99: 71:cd:f2:66:e9:35:5c:e7:75:be:a4:1c:34:3c:a2:c8:70:8c: 13:54:93:1c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDVCQzQ5NEU4OUQwQTQxNTVCNTUyNTM2M0QxMjM1QzVF REMwRkRFMkYwHhcNMjYwNDEzMDQzNzQ3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWRjNzMxYS1jZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztWYeno0DEmakUnyGblLA46L8L5ffGuuVJCChDkz0gXkwiMk5bt5pXaSak8T kQ/9B6PVRVBjr+Iy1YEnxDyQhkVbIAFhoUrud3VShXxrpwSfhY2sXQdrOPDV5blG U2CQpVMXPQd4jEVtoav2dG3oUVGlf839wgjNij69VNRFDdCfq6EgiFHfziWocjIj 6dRSLDCwvmAkWnFWQ/ZXSWJ+Lv9rEyB3dRczqDFnD6SyTv6RBCsG20izWdS1OoB+ /6nHIfo8Mj8fWBCrrjELPGyWHQwIImebErzu4ptfdWGVpZvooGH2y0HoHR1FJv4i E52gKgMYpvl1fQwzK6b6zpHS6QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPkMnsId M5Q78e5/51WrGVMm2Sw+MB8GA1UdIwQYMBaAFFvElOidCkFVtVJTY9EjXF7cD94v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9BOEMyNTFFQUYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FWVzFVbE5qMFNOY1h0d1Az aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1c4U1U2SjBLUVZXMVVsTmowU05jWHR3UDNpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4ODIvQThDMjUxRUFGMEIzMTFFRUE0QzcyRjg0QzRGOUFFMDIvRkQ5OTBFN0FG MEIzMTFFRTk5MjNCQzg0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRSMMA0GCSqGSIb3DQEBCwUAA4IBAQBwz9exmMLy67DY/XOovFws L/+AWietfoYSTvhF2K0RcWwH9D5PsMPkBYArQl/G+SojhihBFCv2Nu/qfha4vNYr zeEtk06Y29/u8EBtsKM7Tv6+vH6QzXMb4HtkoBAm03UsLwAKeCJ3xjzsctK8SkHo E2M7isdoCAOKAcGtWmj1lQE6Xn6kUxICrTrmms7N/mIG0dQ5LXFJHj/K1zUqtz16 JsvfFurRs9G/N4bDJnxU24niQr6cLwJCo5lM9gpGYfIfcEyCNp7rDzZNzfrECr1+ /RmYndWMkVBvfB0S4vMJ5HfdhnppLoIcA5lxzfJm6TVc53W+pBw0PKLIcIwTVJMc -----END CERTIFICATE-----Generated at Sat Apr 18 06:33:00 2026 by rpki-client