$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/3CF5A86C088211F0BB90C23EC4F9AE02.roa File: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (raw, json) Hash identifier: hjH+zU9sP1L/kx7kYtoqwAc4xuGtYd3WJlGp2RTUPCY= Subject key identifier: C3:EE:21:0E:E4:B1:C2:BE:50:4E:D4:57:9B:59:1A:A0:DF:50:59:FE Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: CA Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/3CF5A86C088211F0BB90C23EC4F9AE02.roa Signing time: Mon 13 Apr 2026 06:40:47 +0000 ROA not before: Mon 13 Apr 2026 06:40:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 152672 IP address blocks: 163.223.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Apr 13 06:40:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69dc8fef-a155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:54:f4:22:20:f7:17:ff:f4:c1:d5:ae:53:c6: 4d:07:df:b7:fd:e4:d1:62:6b:8d:ce:77:e8:fe:db: c6:72:f4:4a:1b:86:51:60:47:6f:ed:01:09:d4:ab: 10:fd:89:5d:3d:80:d2:75:73:2c:48:22:ab:8e:2e: 2a:62:05:bb:5a:cc:d5:df:2b:8b:2e:05:89:ea:a2: 57:d9:69:85:41:6b:84:3e:f5:e2:91:a5:58:65:1a: 63:47:32:19:06:d3:b5:b4:8d:92:d7:02:fe:75:a5: 37:c1:2d:ef:1a:71:7c:a2:ba:9a:70:27:f5:7b:af: 00:dd:f0:b0:8f:11:fd:d8:12:16:8e:b0:ad:27:65: ef:f8:98:08:0d:ef:71:75:08:04:c1:72:a5:ae:f3: 74:63:6d:0a:ba:21:6e:94:0c:ce:50:9b:ec:5f:eb: c7:90:3d:db:e5:22:7a:6d:32:d7:95:35:58:79:91: eb:e2:3b:17:85:30:78:ea:08:eb:41:11:6e:0f:20: 00:fc:d4:43:3b:64:03:18:22:31:50:1b:44:68:58: 3b:aa:4c:99:d2:ac:c0:24:fd:0a:ad:ff:d1:6a:10: ec:32:38:43:b7:01:2a:b6:98:d0:f2:59:37:b0:cf: f9:3f:ea:af:d5:a9:29:a2:61:23:3d:61:5d:d4:93: fb:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:EE:21:0E:E4:B1:C2:BE:50:4E:D4:57:9B:59:1A:A0:DF:50:59:FE X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/3CF5A86C088211F0BB90C23EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.182.0/23 Signature Algorithm: sha256WithRSAEncryption a0:5f:e7:55:bb:52:d5:7e:e4:4b:65:04:88:67:4c:33:31:1d: b4:57:47:9a:1e:4b:23:12:fc:d0:da:c0:f6:12:d5:fa:80:df: 44:79:c0:a2:ad:6b:57:5a:60:e8:46:03:41:b9:df:54:df:20: 9a:26:9e:df:df:81:c8:72:09:b7:ac:a0:3f:d9:59:46:30:db: 74:12:67:5c:9d:0c:fe:1c:6a:0f:73:70:8e:42:fe:54:6c:7f: b2:fa:f1:31:67:a4:87:7b:8a:a7:a2:73:28:b2:f1:18:2d:0d: 13:f9:b5:44:fe:0d:73:05:67:33:d1:30:6a:dd:9a:75:69:04: f5:f4:01:44:7f:e5:3b:51:af:f3:c5:b1:09:4a:fa:c2:9e:af: ec:b2:55:80:c8:9e:63:14:94:f4:2e:b5:05:d8:77:b6:4c:fb: fe:5c:f5:51:99:2a:c6:83:44:15:eb:99:25:c7:8a:4f:22:aa: 36:66:4d:df:17:19:80:7f:d9:95:86:1a:c9:80:0c:ff:83:2c: d9:d8:25:c0:25:0e:ba:8c:5a:38:b7:94:af:96:18:28:6a:36: 63:f4:4e:43:ed:49:67:06:0f:b4:b2:75:b3:d4:03:c6:f1:8b: 41:88:9f:26:2b:28:87:f3:33:e7:6d:02:27:e2:79:c6:64:8d: 50:ff:c9:52 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFCN0UxMTAvBgNVBAUTKDJBNkJGMDU0QUQyM0VBRDJEQjM5NTMxQjY0NjcyNkNB OTQ1QUM0OTIwHhcNMjYwNDEzMDY0MDQ3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRjOGZlZi1hMTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlT0IiD3F//0wdWuU8ZNB9+3/eTRYmuNznfo/tvGcvRKG4ZRYEdv7QEJ1KsQ /YldPYDSdXMsSCKrji4qYgW7WszV3yuLLgWJ6qJX2WmFQWuEPvXikaVYZRpjRzIZ BtO1tI2S1wL+daU3wS3vGnF8orqacCf1e68A3fCwjxH92BIWjrCtJ2Xv+JgIDe9x dQgEwXKlrvN0Y20KuiFulAzOUJvsX+vHkD3b5SJ6bTLXlTVYeZHr4jsXhTB46gjr QRFuDyAA/NRDO2QDGCIxUBtEaFg7qkyZ0qzAJP0Krf/RahDsMjhDtwEqtpjQ8lk3 sM/5P+qv1akpomEjPWFd1JP7dQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMPuIQ7k scK+UE7UV5tZGqDfUFn+MB8GA1UdIwQYMBaAFCpr8FStI+rS2zlTG2RnJsqUWsSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUI3RS9GNzU5Nzk2RTA4 ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0TGJPVk1iWkdjbXlwUmF4 SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFCN0UvRjc1OTc5NkUwODgxMTFGMEJBQzM0MTNFQzRGOUFFMDIvM0NGNUE4NkMw ODgyMTFGMEJCOTBDMjNFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBo9+2MA0GCSqGSIb3DQEBCwUAA4IBAQCgX+dVu1LVfuRLZQSIZ0wz MR20V0eaHksjEvzQ2sD2EtX6gN9EecCirWtXWmDoRgNBud9U3yCaJp7f34HIcgm3 rKA/2VlGMNt0EmdcnQz+HGoPc3COQv5UbH+y+vExZ6SHe4qnonMosvEYLQ0T+bVE /g1zBWcz0TBq3Zp1aQT19AFEf+U7Ua/zxbEJSvrCnq/sslWAyJ5jFJT0LrUF2He2 TPv+XPVRmSrGg0QV65klx4pPIqo2Zk3fFxmAf9mVhhrJgAz/gyzZ2CXAJQ66jFo4 t5SvlhgoajZj9E5D7UlnBg+0snWz1APG8YtBiJ8mKyiH8zPnbQIn4nnGZI1Q/8lS -----END CERTIFICATE-----Generated at Fri Apr 17 11:05:45 2026 by rpki-client