$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/4A68B404EF5A11EEB09CEA53C4F9AE02.roa File: 4A68B404EF5A11EEB09CEA53C4F9AE02.roa (raw, json) Hash identifier: BbXQvxTlfHdgvbDIHREA9MrezDGy2u1sVN3VMyfnT0A= Subject key identifier: F1:74:55:93:2C:79:C0:42:2B:BF:08:E2:F0:E9:FE:76:CA:44:40:96 Certificate issuer: /CN=A918C661/serialNumber=8BF7E2930CFC6EEB916E7390F893E0100BA93B32 Certificate serial: 0ACC Authority key identifier: 8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/4A68B404EF5A11EEB09CEA53C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:51:04 +0000 ROA not before: Sat 08 Nov 2025 19:09:55 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 152194 IP address blocks: 134.122.128.0/17 maxlen: 24 137.220.128.0/17 maxlen: 24 143.92.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2764 (0xacc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=8BF7E2930CFC6EEB916E7390F893E0100BA93B32 Validity Not Before: Nov 8 19:09:55 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47c88-91d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0f:f3:83:f3:8a:31:bc:3b:bd:95:2b:bf:38: 84:2d:cd:a9:79:fe:50:08:62:d7:57:e2:f0:aa:2b: bb:a0:03:eb:f2:c6:b3:ef:87:05:86:e8:d5:90:db: 40:f6:e2:4b:ad:cf:7e:a1:ab:06:6c:88:00:6d:01: 80:17:ca:de:c5:54:75:89:1c:20:5e:4f:fe:22:65: bc:1a:02:86:be:0f:c5:28:6d:08:bf:a6:60:72:fe: 8a:e4:df:92:74:33:b0:17:32:a2:31:dd:dc:55:fa: 70:6f:3b:31:cf:b6:bf:20:fa:cf:d9:8a:70:f0:23: 22:27:90:7f:40:da:c2:d1:36:c3:5e:6f:b7:c9:f9: 14:5d:51:47:b4:2d:b9:90:6c:77:29:df:1b:01:53: 85:54:4e:b4:84:cc:c6:07:ae:51:7f:48:95:63:57: 25:eb:59:82:19:9c:31:3f:f9:35:d6:b1:e9:af:18: c7:c3:7f:61:ff:80:6b:12:69:e4:0e:56:bb:0c:fe: dd:8a:ce:5b:f9:c1:13:f6:20:de:3b:24:ad:69:53: bc:9c:7a:f0:28:22:94:aa:eb:e6:1e:8a:ed:34:c6: 2b:24:5b:36:cc:b6:14:a4:d3:e3:2a:fc:86:a0:4d: 86:3e:3d:b0:09:cf:71:d7:b6:33:53:38:71:24:c1: a7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:74:55:93:2C:79:C0:42:2B:BF:08:E2:F0:E9:FE:76:CA:44:40:96 X509v3 Authority Key Identifier: keyid:8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/4A68B404EF5A11EEB09CEA53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 134.122.128.0/17 137.220.128.0/17 143.92.32.0/19 Signature Algorithm: sha256WithRSAEncryption 97:05:de:59:a9:08:ae:89:51:05:34:e6:0a:6f:56:13:0e:f3: 86:a0:c3:32:bb:7a:56:63:7f:86:fd:cf:64:95:2c:09:f0:e6: ea:73:15:fd:82:ae:b4:94:54:47:6c:0f:9d:6b:7d:6f:0b:bc: 7c:07:63:0e:43:58:8c:c5:e9:6f:3f:a0:b1:b9:90:b7:db:4f: 2d:b6:77:f5:5c:20:83:b5:98:2f:84:40:d2:b5:90:65:f1:a5: 44:5c:dc:28:a3:0e:64:3d:f6:c7:a2:24:a5:38:f8:38:3a:d8: 91:c2:df:b8:77:4f:fb:17:34:39:db:db:49:6b:4f:ed:11:03: 3c:82:f1:33:9b:ab:68:5c:79:33:4e:f3:49:19:9c:cc:07:30: 9b:4c:e2:ae:42:6d:63:c3:c7:fb:ed:10:88:d8:1a:6c:f3:9d: a9:dd:4b:b5:44:cd:3d:b5:4f:e4:c9:d3:61:e6:f7:5c:17:8d: 92:e6:43:2c:1f:00:83:ae:55:34:d7:df:cf:03:97:11:74:47: d1:e4:75:5a:c1:7a:44:b3:1c:82:45:04:40:8a:ff:d0:e2:2c: b8:21:cc:c3:27:2e:07:29:4b:d4:46:e1:00:f2:1a:a8:e8:fe: b1:24:09:f1:4e:b2:58:43:cd:a4:b5:60:b4:8b:0b:3f:0b:fd: 0c:b4:ea:40 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDhCRjdFMjkzMENGQzZFRUI5MTZFNzM5MEY4OTNFMDEw MEJBOTNCMzIwHhcNMjUxMTA4MTkwOTU1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2M4OC05MWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0w/zg/OKMbw7vZUrvziELc2pef5QCGLXV+Lwqiu7oAPr8saz74cFhujVkNtA 9uJLrc9+oasGbIgAbQGAF8rexVR1iRwgXk/+ImW8GgKGvg/FKG0Iv6Zgcv6K5N+S dDOwFzKiMd3cVfpwbzsxz7a/IPrP2Ypw8CMiJ5B/QNrC0TbDXm+3yfkUXVFHtC25 kGx3Kd8bAVOFVE60hMzGB65Rf0iVY1cl61mCGZwxP/k11rHprxjHw39h/4BrEmnk Dla7DP7dis5b+cET9iDeOyStaVO8nHrwKCKUquvmHortNMYrJFs2zLYUpNPjKvyG oE2GPj2wCc9x17YzUzhxJMGnrQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFPF0VZMs ecBCK78I4vDp/nbKRECWMB8GA1UdIwQYMBaAFIv34pMM/G7rkW5zkPiT4BALqTsy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wNEFBQjI5RTgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9pX2Zpa3d6OGJ1dVJibk9RLUpQZ0VBdXBP ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lfZmlrd3o4YnV1UmJuT1EtSlBnRUF1cE96SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM2NjEvMDRBQUIyOUU4MzZEMTFFQUI0QTJENzZEQzRGOUFFMDIvNEE2OEI0MDRF RjVBMTFFRUIwOUNFQTUzQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQHhnqAAwQHidyAAwQFj1wgMA0GCSqGSIb3DQEBCwUAA4IBAQCXBd5Z qQiuiVEFNOYKb1YTDvOGoMMyu3pWY3+G/c9klSwJ8ObqcxX9gq60lFRHbA+da31v C7x8B2MOQ1iMxelvP6CxuZC3208ttnf1XCCDtZgvhEDStZBl8aVEXNwoow5kPfbH oiSlOPg4OtiRwt+4d0/7FzQ529tJa0/tEQM8gvEzm6toXHkzTvNJGZzMBzCbTOKu Qm1jw8f77RCI2Bps852p3Uu1RM09tU/kydNh5vdcF42S5kMsHwCDrlU019/PA5cR dEfR5HVawXpEsxyCRQRAiv/Q4iy4IczDJy4HKUvURuEA8hqo6P6xJAnxTrJYQ82k tWC0iws/C/0MtOpA -----END CERTIFICATE-----Generated at Mon Mar 2 06:32:14 2026 by rpki-client