$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/C635D41E611411EF9B00D029C4F9AE02.roa File: C635D41E611411EF9B00D029C4F9AE02.roa (raw, json) Hash identifier: qPZmH+RzKdBapUzs7XCJ/A/488q//71nojcQCK0muRk= Subject key identifier: A6:6D:DB:B8:65:EA:DA:51:C1:1A:1E:A7:FD:E3:D0:6C:E0:4E:E9:E5 Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 01A8 Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/C635D41E611411EF9B00D029C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:40:11 +0000 ROA not before: Fri 23 May 2025 04:14:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45128 IP address blocks: 137.157.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: May 23 04:14:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3df4b-3ea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e2:d9:81:92:17:2a:ef:b7:2b:36:c7:71:c2: 04:bb:fe:c9:ef:7c:1d:fb:fa:aa:94:8e:d4:8e:a8: bd:f8:6f:83:25:53:63:92:2c:0c:ab:8a:f5:72:89: 25:ea:3d:e4:f6:ac:ba:e2:5a:e0:4e:43:53:38:e5: c0:7b:36:ac:39:89:1d:34:db:0c:d8:1c:8e:f6:4c: 28:3d:e1:2c:a1:d3:f0:e4:f9:13:f1:0a:a1:83:08: 29:de:e6:27:7a:49:f7:59:01:f9:56:13:29:45:ba: b6:ce:90:c5:d5:b5:5c:36:62:af:ac:26:88:41:9d: c8:e9:3e:49:f7:74:48:11:4b:b7:25:c4:c2:ae:a4: d0:01:b8:30:b8:c9:0e:23:1f:25:d3:31:54:f8:25: 0a:bc:bb:6c:b9:28:c8:b8:9f:90:34:83:b8:29:29: ba:78:22:51:68:03:98:2a:26:a1:21:e8:3e:26:bf: 3f:48:da:d3:50:a2:86:3f:a5:9b:57:24:d6:27:f1: 24:4a:7a:7a:21:85:92:3d:d5:f4:5a:18:36:53:04: 2b:e0:a4:9b:33:e9:ec:31:97:17:b0:bb:98:58:15: 9e:5d:42:b0:2d:47:e3:ef:75:09:86:9e:e4:00:39: 38:a3:0e:05:b8:10:74:dd:68:3f:cc:e6:6b:d2:4a: 32:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:6D:DB:B8:65:EA:DA:51:C1:1A:1E:A7:FD:E3:D0:6C:E0:4E:E9:E5 X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/C635D41E611411EF9B00D029C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 137.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption b7:a7:28:30:fb:d5:a3:74:5e:d2:39:2e:31:6e:33:a0:e9:67: b4:eb:7b:95:fd:18:b1:e1:d1:33:87:21:97:b2:74:7d:4c:ad: 37:99:4c:25:f1:c2:35:45:6d:6c:0e:4d:4e:a7:9f:02:3d:04: 40:3f:0b:c7:d0:40:26:1f:bc:b6:45:da:53:e1:34:ea:4c:2e: fa:d7:25:78:75:0e:3c:59:62:0d:dc:70:79:63:7a:01:ec:82: ef:20:fd:62:d4:62:2d:2a:e5:21:a5:a9:4d:e9:c4:e0:5a:3b: 4c:be:f4:56:d7:5a:40:7e:c8:06:fa:88:fb:eb:76:7b:bb:90: df:1a:4f:8e:da:f1:5d:56:eb:b4:b7:4e:2f:b3:45:4b:a1:d5: dd:d7:75:e3:15:db:37:c8:9a:52:b7:4a:f8:1b:4d:23:31:17: 66:50:a1:22:97:05:ef:21:e3:9f:15:5d:0a:8b:aa:2d:a9:0a: b7:92:4e:8b:7c:29:47:f3:a8:ab:c6:a6:80:85:68:3b:e9:df: b3:99:be:78:3b:fe:57:12:5c:97:d2:44:98:58:44:92:19:f5: fc:4b:02:5f:0e:e3:b1:65:69:03:91:83:0f:00:71:4a:58:91: 06:30:2b:2c:dd:ac:54:fb:16:c0:eb:0d:bb:e0:0e:b1:e1:0d: 0c:68:52:71 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUwNTIzMDQxNDQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGY0Yi0zZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseLZgZIXKu+3KzbHccIEu/7J73wd+/qqlI7Ujqi9+G+DJVNjkiwMq4r1cokl 6j3k9qy64lrgTkNTOOXAezasOYkdNNsM2ByO9kwoPeEsodPw5PkT8Qqhgwgp3uYn ekn3WQH5VhMpRbq2zpDF1bVcNmKvrCaIQZ3I6T5J93RIEUu3JcTCrqTQAbgwuMkO Ix8l0zFU+CUKvLtsuSjIuJ+QNIO4KSm6eCJRaAOYKiahIeg+Jr8/SNrTUKKGP6Wb VyTWJ/EkSnp6IYWSPdX0Whg2UwQr4KSbM+nsMZcXsLuYWBWeXUKwLUfj73UJhp7k ADk4ow4FuBB03Wg/zOZr0koyQwIDAQABo4ICXzCCAlswHQYDVR0OBBYEFKZt27hl 6tpRwRoep/3j0GzgTunlMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEMzQjcvMTU5QTRBRDA5MzI1MTFFRUJFOTg3RjYwQzRGOUFFMDIvQzYzNUQ0MUU2 MTE0MTFFRjlCMDBEMDI5QzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAiZ0wDQYJKoZIhvcNAQELBQADggEBALenKDD71aN0XtI5LjFuM6Dp Z7Tre5X9GLHh0TOHIZeydH1MrTeZTCXxwjVFbWwOTU6nnwI9BEA/C8fQQCYfvLZF 2lPhNOpMLvrXJXh1DjxZYg3ccHljegHsgu8g/WLUYi0q5SGlqU3pxOBaO0y+9FbX WkB+yAb6iPvrdnu7kN8aT47a8V1W67S3Ti+zRUuh1d3XdeMV2zfImlK3SvgbTSMx F2ZQoSKXBe8h458VXQqLqi2pCreSTot8KUfzqKvGpoCFaDvp37OZvng7/lcSXJfS RJhYRJIZ9fxLAl8O47FlaQORgw8AcUpYkQYwKyzdrFT7FsDrDbvgDrHhDQxoUnE= -----END CERTIFICATE-----Generated at Mon Mar 2 15:17:06 2026 by rpki-client