$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa File: D161B1F0EA0411EE98A86A13C4F9AE02.roa (raw, json) Hash identifier: DKo1dNSY0/MC6eYJVV90BVwNV83Azf/Byd1oG5pYyiY= Subject key identifier: AF:16:34:80:68:38:FB:58:78:9A:BE:D5:48:64:D1:86:9D:41:72:CD Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: 016D Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:44:58 +0000 ROA not before: Sun 27 Apr 2025 04:41:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152593 IP address blocks: 157.20.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Apr 27 04:41:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5945a-c837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:3a:3d:87:19:ba:60:f5:29:e7:a2:7a:25: 35:e7:ce:ce:49:20:4e:fb:5b:d4:ec:e5:26:e5:6c: b0:e4:ca:3d:b9:33:96:e8:23:1d:3e:46:23:99:1b: ca:21:ff:80:dc:00:da:c8:49:2e:ea:1d:64:a9:b9: 20:7e:44:38:2c:97:4b:82:1f:fa:e9:dc:e4:3d:9c: 45:28:c1:dc:2c:d1:c0:55:19:20:3f:d4:d4:7a:25: 4b:65:46:8d:77:4b:7b:44:9b:82:a8:da:59:df:20: 45:50:66:d4:91:e1:9a:50:58:60:ae:d1:ca:f9:df: 7b:35:f9:3c:25:b3:8a:97:3a:ca:2f:2a:8c:5b:fc: 40:30:3f:9f:e4:8a:2a:69:19:62:64:6c:18:8e:29: 02:32:ea:c9:ec:7c:50:05:e7:2d:a7:71:a5:cc:c9: 0e:5f:4b:f1:87:13:ac:d3:9b:7f:1f:ca:2b:a3:a0: 2d:b1:37:51:1f:df:9c:bc:7b:a9:84:97:8b:99:9d: 61:f1:77:28:4c:fe:81:54:c8:6f:b3:ea:1a:66:53: cf:45:d9:59:61:f2:56:75:03:5a:0d:dd:fe:4d:2e: d7:2f:f0:30:98:93:24:58:77:80:15:8f:f5:06:b7: 13:e9:c7:98:21:d1:d3:69:ff:1c:75:01:23:26:8d: 87:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:16:34:80:68:38:FB:58:78:9A:BE:D5:48:64:D1:86:9D:41:72:CD X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.116.0/23 Signature Algorithm: sha256WithRSAEncryption b4:20:cc:ce:61:a9:29:68:fc:18:48:c6:9e:8b:ec:04:1f:20: 0d:fa:15:a4:0d:4d:47:67:27:fd:61:03:49:83:51:b0:55:f7: 1c:d8:9f:ed:d4:74:36:0b:48:7c:f6:0c:83:90:d6:a0:c8:5c: 19:64:ae:bf:de:29:ed:9f:a4:e8:02:6a:85:93:01:79:34:30: 9b:73:1a:bf:4e:79:78:1b:45:5e:cd:c8:0b:9a:a0:ac:f1:14: b3:bb:a2:a1:fe:cf:f3:ee:31:c7:53:b6:0f:8d:03:81:b0:fa: 52:24:e2:23:94:aa:8a:eb:17:e0:41:37:4c:e0:5f:b4:4c:91: a8:92:ba:7a:7c:ff:e1:7e:16:2f:e0:33:21:02:63:ad:ac:a9: b6:04:3f:c3:74:ab:a3:26:9c:77:99:cf:7a:fe:7a:76:9a:d3: 01:dd:1b:b5:42:14:ae:dd:92:57:bc:5d:5b:f9:bc:a2:85:a6: a5:e2:50:3b:5f:62:da:ef:1e:14:b5:b7:78:e6:04:1e:2d:18: e9:cc:7c:5d:78:45:61:38:ca:5e:0b:0a:c2:ad:4b:bb:3e:d5: 28:c0:f0:49:5d:7a:94:9f:7c:ad:fd:1d:83:9f:ab:b6:00:3b: 12:2e:2a:b6:b6:65:b7:30:df:76:bf:4e:fb:1d:8d:0c:50:51: b6:2f:53:de -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUwNDI3MDQ0MTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTQ1YS1jODM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqY6PYcZumD1KeeieiU1587OSSBO+1vU7OUm5Wyw5Mo9uTOW6CMdPkYjmRvK If+A3ADayEku6h1kqbkgfkQ4LJdLgh/66dzkPZxFKMHcLNHAVRkgP9TUeiVLZUaN d0t7RJuCqNpZ3yBFUGbUkeGaUFhgrtHK+d97Nfk8JbOKlzrKLyqMW/xAMD+f5Ioq aRliZGwYjikCMurJ7HxQBectp3GlzMkOX0vxhxOs05t/H8oro6AtsTdRH9+cvHup hJeLmZ1h8XcoTP6BVMhvs+oaZlPPRdlZYfJWdQNaDd3+TS7XL/AwmJMkWHeAFY/1 BrcT6ceYIdHTaf8cdQEjJo2HewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFK8WNIBo OPtYeJq+1Uhk0YadQXLNMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OENGQUQvNEM5MDBGMUNFQTA0MTFFRTkyRDEwNjExQzRGOUFFMDIvRDE2MUIxRjBF QTA0MTFFRTk4QTg2QTEzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRR0MA0GCSqGSIb3DQEBCwUAA4IBAQC0IMzOYakpaPwYSMaei+wE HyAN+hWkDU1HZyf9YQNJg1GwVfcc2J/t1HQ2C0h89gyDkNagyFwZZK6/3intn6To AmqFkwF5NDCbcxq/Tnl4G0VezcgLmqCs8RSzu6Kh/s/z7jHHU7YPjQOBsPpSJOIj lKqK6xfgQTdM4F+0TJGokrp6fP/hfhYv4DMhAmOtrKm2BD/DdKujJpx3mc96/np2 mtMB3Ru1QhSu3ZJXvF1b+byihaal4lA7X2La7x4Utbd45gQeLRjpzHxdeEVhOMpe CwrCrUu7PtUowPBJXXqUn3yt/R2Dn6u2ADsSLiq2tmW3MN92v077HY0MUFG2L1Pe -----END CERTIFICATE-----Generated at Mon Mar 2 17:08:10 2026 by rpki-client