$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/C654C6869F1C11EEB377E239C4F9AE02.roa File: C654C6869F1C11EEB377E239C4F9AE02.roa (raw, json) Hash identifier: D2Pz6MdJy5D25SqXQeyDzcUr+PAYz/53GJhpSfF/pT4= Subject key identifier: BA:D6:8C:AB:B8:BD:DE:1A:4E:9F:11:56:53:DB:D6:7C:49:9C:27:2C Certificate issuer: /CN=A918C661/serialNumber=8BF7E2930CFC6EEB916E7390F893E0100BA93B32 Certificate serial: 0ACA Authority key identifier: 8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/C654C6869F1C11EEB377E239C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:51:02 +0000 ROA not before: Sat 08 Nov 2025 19:09:53 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138195 IP address blocks: 137.220.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2762 (0xaca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=8BF7E2930CFC6EEB916E7390F893E0100BA93B32 Validity Not Before: Nov 8 19:09:53 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47c86-efba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c6:fc:69:58:e9:8c:8b:3c:94:d5:4d:53:54: fb:31:d0:2b:f6:60:4d:b2:50:d7:51:1b:dd:28:25: 09:8a:59:60:05:fb:d0:47:60:cc:21:af:ce:2d:5d: c9:8c:ed:02:2e:62:39:cf:1a:da:75:dd:ae:65:8e: ca:e2:08:56:a0:1b:e2:a8:9e:2b:4b:3e:21:42:41: da:51:58:ac:b5:a7:1d:d2:96:b5:07:71:8d:d9:21: 6b:78:85:c6:56:6e:9e:65:8d:04:7b:19:45:64:7f: 75:41:d3:8e:04:a0:df:76:65:eb:7c:f6:9a:9e:cf: 28:8f:b4:43:40:44:b2:cb:ca:30:0c:d4:35:94:23: 58:0a:54:77:9b:73:f1:70:9f:01:d8:f3:99:69:e8: e5:a4:20:4b:98:02:74:74:2b:c7:21:b3:a7:f8:a9: 0d:fb:00:0e:c9:64:a0:47:84:44:5a:03:de:d3:de: c1:1b:e0:5b:12:8b:a8:02:ea:df:e7:58:d5:c3:dd: 07:49:ea:c9:7a:60:ba:80:11:cf:bf:43:d6:e2:83: b0:20:29:be:55:73:19:4b:f6:53:26:1a:63:39:75: e4:04:11:36:5c:43:2c:85:00:96:15:95:97:41:7e: 55:00:71:f1:aa:a1:7c:66:dc:da:7e:01:31:bf:e8: b7:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D6:8C:AB:B8:BD:DE:1A:4E:9F:11:56:53:DB:D6:7C:49:9C:27:2C X509v3 Authority Key Identifier: keyid:8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/C654C6869F1C11EEB377E239C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 137.220.130.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:ba:cf:80:08:ca:7d:0d:ef:16:2f:2f:70:d9:c5:c9:d4:45: c3:35:e1:ba:69:f9:e0:85:0a:ef:de:b9:5c:a5:71:cc:67:b4: 45:3f:0c:9c:a9:a9:ed:c8:6e:b0:90:bb:3b:1f:7b:72:47:a9: 4b:46:d0:d8:4a:91:29:e1:ff:dc:55:b5:d1:be:c3:4d:e7:98: e3:f4:9f:ac:37:56:13:2f:15:6f:d2:cd:81:84:fd:35:48:af: d3:69:fc:11:f7:db:53:32:fc:52:2b:59:b7:f9:07:e8:0c:56: 23:eb:82:18:5f:3a:53:f4:8d:bd:a2:0c:30:f2:f9:78:d6:cb: 50:50:be:34:54:de:d8:e3:a8:f1:2d:9e:17:3c:6d:96:a5:74: 4a:9e:e8:9f:21:2b:eb:84:28:c4:e2:16:34:f1:33:3b:a4:ea: f6:c0:60:8e:84:38:7b:51:5d:2e:83:0d:5f:a5:4b:3f:c8:3e: 84:e4:15:59:78:1a:87:03:94:ea:3d:f3:3e:4d:0f:8d:4b:5f: f1:9e:5e:e2:8c:eb:36:d3:b2:8d:66:26:20:32:7b:fc:12:20: f2:86:0c:b6:e5:99:7a:b0:55:58:7c:b6:9b:bc:2c:e1:88:49: d2:8d:04:9c:98:44:c3:45:9b:f7:17:88:9b:21:40:c1:ea:92: 09:fb:1b:0c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDhCRjdFMjkzMENGQzZFRUI5MTZFNzM5MEY4OTNFMDEw MEJBOTNCMzIwHhcNMjUxMTA4MTkwOTUzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2M4Ni1lZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMb8aVjpjIs8lNVNU1T7MdAr9mBNslDXURvdKCUJillgBfvQR2DMIa/OLV3J jO0CLmI5zxradd2uZY7K4ghWoBviqJ4rSz4hQkHaUVistacd0pa1B3GN2SFreIXG Vm6eZY0EexlFZH91QdOOBKDfdmXrfPaans8oj7RDQESyy8owDNQ1lCNYClR3m3Px cJ8B2POZaejlpCBLmAJ0dCvHIbOn+KkN+wAOyWSgR4REWgPe097BG+BbEouoAurf 51jVw90HSerJemC6gBHPv0PW4oOwICm+VXMZS/ZTJhpjOXXkBBE2XEMshQCWFZWX QX5VAHHxqqF8ZtzafgExv+i3yQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLrWjKu4 vd4aTp8RVlPb1nxJnCcsMB8GA1UdIwQYMBaAFIv34pMM/G7rkW5zkPiT4BALqTsy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wNEFBQjI5RTgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9pX2Zpa3d6OGJ1dVJibk9RLUpQZ0VBdXBP ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lfZmlrd3o4YnV1UmJuT1EtSlBnRUF1cE96SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM2NjEvMDRBQUIyOUU4MzZEMTFFQUI0QTJENzZEQzRGOUFFMDIvQzY1NEM2ODY5 RjFDMTFFRUIzNzdFMjM5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAidyCMA0GCSqGSIb3DQEBCwUAA4IBAQB/us+ACMp9De8WLy9w2cXJ 1EXDNeG6afnghQrv3rlcpXHMZ7RFPwycqantyG6wkLs7H3tyR6lLRtDYSpEp4f/c VbXRvsNN55jj9J+sN1YTLxVv0s2BhP01SK/TafwR99tTMvxSK1m3+QfoDFYj64IY XzpT9I29ogww8vl41stQUL40VN7Y46jxLZ4XPG2WpXRKnuifISvrhCjE4hY08TM7 pOr2wGCOhDh7UV0ugw1fpUs/yD6E5BVZeBqHA5TqPfM+TQ+NS1/xnl7ijOs207KN ZiYgMnv8EiDyhgy25Zl6sFVYfLabvCzhiEnSjQScmETDRZv3F4ibIUDB6pIJ+xsM -----END CERTIFICATE-----Generated at Mon Mar 2 07:42:21 2026 by rpki-client