$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa File: D161B1F0EA0411EE98A86A13C4F9AE02.roa (raw, json) Hash identifier: BV9XfPuDyzg+pUATxcOqBJ05a9l83d0h3SXHTFR+g1Q= Subject key identifier: D5:94:E9:48:47:CC:BB:7A:A6:CD:E2:94:F7:5A:A9:FB:BF:4C:93:33 Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: 019C Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa Signing time: Thu 21 May 2026 04:35:52 +0000 ROA not before: Thu 21 May 2026 04:35:52 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152593 IP address blocks: 157.20.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 04:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: May 21 04:35:52 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a0e8ba8-4ee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:12:9d:3f:f5:bf:42:f6:04:fc:a9:8d:ad:ff: df:5f:67:d5:0d:e6:1d:fa:c0:a4:75:77:0d:01:08: 25:47:e8:a5:0a:84:7c:da:99:84:e9:66:0e:9f:f3: b2:db:54:d8:65:2a:ba:01:f4:19:61:26:28:be:1d: e4:aa:4e:c7:64:96:d1:fc:49:8c:54:e1:6b:85:f0: 7a:36:f6:26:c1:05:b7:21:6f:3f:f9:17:fa:c9:87: 65:81:c7:ed:56:1d:1f:8c:f0:82:66:b5:36:66:dc: 4c:43:24:b5:5c:fb:2d:8a:a5:72:c0:fb:7d:99:6a: 57:5b:a6:af:ee:35:ba:75:ec:a7:22:0a:f0:b8:33: 4e:54:51:e2:f5:0e:95:1a:f6:6c:0d:33:d6:da:53: 69:55:c2:a0:b7:38:c8:a7:3f:e6:e0:ef:fb:2d:41: 3e:dd:1e:0d:cb:b5:fa:d7:1b:d3:7f:03:35:a0:84: 9c:94:de:55:1a:4e:79:60:cc:6b:71:28:3e:09:bc: aa:85:0c:29:bf:15:33:f3:9e:d9:79:bd:d9:38:4c: a2:8b:2e:9a:aa:cd:19:35:11:af:4e:ef:a6:c6:94: 1c:06:a4:2d:c7:39:c1:50:c6:92:db:1d:cd:37:ed: 4e:7a:c1:42:41:4b:39:75:7c:54:b7:fd:38:8f:b7: 7e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:94:E9:48:47:CC:BB:7A:A6:CD:E2:94:F7:5A:A9:FB:BF:4C:93:33 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.116.0/23 Signature Algorithm: sha256WithRSAEncryption 51:e2:47:f8:15:67:b2:75:38:6c:35:83:8f:f7:cc:dc:e0:07: a0:dc:ba:a0:13:65:68:de:a2:13:61:49:65:7d:ce:62:e5:2a: 94:44:fe:7f:3a:e1:c0:dc:9f:70:5a:d1:9b:d1:36:92:91:91: 5d:e9:a4:5a:36:1d:51:e7:37:26:11:43:5d:89:16:1e:38:50: 60:3f:44:29:67:32:7a:de:a3:53:42:72:75:ad:13:7a:05:54: d4:71:74:e1:cb:52:8a:98:40:8b:69:c9:62:1d:59:3e:d6:76: 54:70:57:bc:3c:4b:8c:cf:72:28:da:42:ba:b5:3c:70:a7:5c: b0:06:49:35:b7:0a:72:9b:bf:d4:8d:16:c7:3a:e1:a5:d0:e7: cf:b4:61:be:13:95:43:5e:bd:c8:30:fd:16:4e:c3:81:f1:44: e8:b8:99:e9:ab:33:5d:9c:ef:cc:c0:a4:46:35:91:ba:68:3d: 6d:d9:42:50:d3:e9:1c:cd:64:d2:72:45:6b:85:8d:70:b8:7e: 49:17:20:b0:54:ae:dd:bb:4b:6f:0a:0d:9b:7e:db:25:d5:60: ec:12:4c:27:0c:23:52:a8:26:78:16:7d:a1:3d:98:d3:e7:c5: 81:3c:79:a2:42:64:85:9e:88:bc:1f:88:52:a6:61:1d:e0:55: 3a:02:01:6a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjYwNTIxMDQzNTUyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02YTBlOGJhOC00ZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xKdP/W/QvYE/KmNrf/fX2fVDeYd+sCkdXcNAQglR+ilCoR82pmE6WYOn/Oy 21TYZSq6AfQZYSYovh3kqk7HZJbR/EmMVOFrhfB6NvYmwQW3IW8/+Rf6yYdlgcft Vh0fjPCCZrU2ZtxMQyS1XPstiqVywPt9mWpXW6av7jW6deynIgrwuDNOVFHi9Q6V GvZsDTPW2lNpVcKgtzjIpz/m4O/7LUE+3R4Ny7X61xvTfwM1oISclN5VGk55YMxr cSg+CbyqhQwpvxUz857Zeb3ZOEyiiy6aqs0ZNRGvTu+mxpQcBqQtxznBUMaS2x3N N+1OesFCQUs5dXxUt/04j7d+/wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNWU6UhH zLt6ps3ilPdaqfu/TJMzMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OENGQUQvNEM5MDBGMUNFQTA0MTFFRTkyRDEwNjExQzRGOUFFMDIvRDE2MUIxRjBF QTA0MTFFRTk4QTg2QTEzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRR0MA0GCSqGSIb3DQEBCwUAA4IBAQBR4kf4FWeydThsNYOP98zc 4Aeg3LqgE2Vo3qITYUllfc5i5SqURP5/OuHA3J9wWtGb0TaSkZFd6aRaNh1R5zcm EUNdiRYeOFBgP0QpZzJ63qNTQnJ1rRN6BVTUcXThy1KKmECLacliHVk+1nZUcFe8 PEuMz3Io2kK6tTxwp1ywBkk1twpym7/UjRbHOuGl0OfPtGG+E5VDXr3IMP0WTsOB 8UTouJnpqzNdnO/MwKRGNZG6aD1t2UJQ0+kczWTSckVrhY1wuH5JFyCwVK7du0tv Cg2bftsl1WDsEkwnDCNSqCZ4Fn2hPZjT58WBPHmiQmSFnoi8H4hSpmEd4FU6AgFq -----END CERTIFICATE-----Generated at Sat Jun 13 20:36:00 2026 by rpki-client