$ rpki-client -vvf rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/2EA5BC6EE71811F0B23E26476E6F56BC.roa File: 2EA5BC6EE71811F0B23E26476E6F56BC.roa (raw, json) Hash identifier: lCmAQOrZ2kPo2z1WrTRR5Ga4bExHmOCUErDXwba52rk= Subject key identifier: 02:83:DA:D7:1A:03:96:1B:9D:C8:A2:54:87:07:48:92:55:68:BF:92 Certificate issuer: /CN=A918DAC5/serialNumber=4701CF2D282009D6C6EAF4556FB0DC1B0D5557EF Certificate serial: FE Authority key identifier: 47:01:CF:2D:28:20:09:D6:C6:EA:F4:55:6F:B0:DC:1B:0D:55:57:EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwHPLSggCdbG6vRVb7DcGw1VV-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/2EA5BC6EE71811F0B23E26476E6F56BC.roa Signing time: Sun 01 Mar 2026 17:17:53 +0000 ROA not before: Thu 01 Jan 2026 13:45:50 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133894 IP address blocks: 160.191.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/RwHPLSggCdbG6vRVb7DcGw1VV-8.crl rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/RwHPLSggCdbG6vRVb7DcGw1VV-8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwHPLSggCdbG6vRVb7DcGw1VV-8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DAC5, serialNumber=4701CF2D282009D6C6EAF4556FB0DC1B0D5557EF Validity Not Before: Jan 1 13:45:50 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a474c1-3feb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ec:21:4e:bf:c8:92:c0:2f:82:f2:01:f8:0d: ba:9a:e2:2e:c7:cd:1d:b5:5b:40:ee:28:ff:dc:4a: 02:7b:4b:bc:7f:d6:95:2a:03:f0:eb:04:62:6e:00: a0:2e:02:b6:fe:2b:53:9b:b9:7e:b1:f1:ee:8b:9b: 47:b2:64:7f:82:dd:e9:a6:b4:40:47:c5:e5:9c:44: fa:c2:e0:c0:99:84:4c:ca:07:37:5b:5e:af:18:7f: c0:d8:ef:1f:47:37:37:ff:63:ff:6b:61:ba:8e:cd: 06:a4:c9:80:67:9d:66:fe:43:06:d7:55:94:e6:32: d1:05:9a:2a:2a:a1:de:71:70:4b:28:5d:02:23:ee: 4d:b0:e2:2e:36:db:b1:35:44:11:8e:ca:31:3b:43: 9b:bb:3e:2a:be:e0:29:c6:03:d9:1b:05:72:fc:fe: d9:6d:7f:86:6b:27:18:e2:12:dd:1e:66:67:ed:71: 49:b0:24:38:9f:92:2f:97:0a:e0:fc:90:64:95:b9: 03:de:d3:f5:94:2e:7b:eb:b4:fe:c5:bf:a9:40:19: fc:57:8e:3f:a5:66:80:41:72:dd:6f:77:14:58:a0: 70:71:47:9b:32:46:2a:70:21:77:7a:2d:df:2a:2c: 11:a6:b6:b4:82:33:2a:f6:da:89:63:7a:c8:f3:42: db:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:83:DA:D7:1A:03:96:1B:9D:C8:A2:54:87:07:48:92:55:68:BF:92 X509v3 Authority Key Identifier: keyid:47:01:CF:2D:28:20:09:D6:C6:EA:F4:55:6F:B0:DC:1B:0D:55:57:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/RwHPLSggCdbG6vRVb7DcGw1VV-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwHPLSggCdbG6vRVb7DcGw1VV-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/2EA5BC6EE71811F0B23E26476E6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 160.191.140.0/24 Signature Algorithm: sha256WithRSAEncryption 68:42:c7:31:cd:d8:ed:60:6e:fb:20:ab:d8:05:45:8f:64:e5: c6:17:4e:a0:bb:95:ec:5e:b1:4e:4f:5f:cb:90:58:b9:70:29: 6d:5a:1b:1a:72:37:b9:ba:84:34:a6:c2:4a:18:14:14:3c:87: 7e:14:2a:65:85:57:4e:11:e8:79:51:61:f3:1d:cb:cb:a7:35: 8f:2e:44:d2:21:d7:f8:5d:3c:f4:34:79:48:86:de:35:2d:cd: 8f:2c:4a:5f:41:3b:8b:f6:7c:ff:2e:fa:7e:1a:ea:51:ac:2c: 66:24:e4:70:d2:ee:d7:6a:6a:44:bc:76:21:8c:b7:e6:86:33: f1:17:9e:76:72:9e:45:fb:f3:12:41:1d:99:f7:bd:63:60:77: 4a:96:38:b5:c3:02:1b:7a:5c:55:91:ea:ae:ee:ef:b1:e9:8e: bf:31:76:2c:81:76:36:94:7f:af:3a:a5:05:92:89:d9:94:d7: 5d:1f:88:66:f3:5a:e9:38:cb:a5:db:16:8f:01:64:38:da:5c: e3:0b:09:2d:2f:be:db:d2:d7:ea:12:1d:88:62:6d:79:a0:24: ac:33:b8:5c:47:37:5e:eb:1d:4f:f0:60:fb:d7:ac:5f:42:5a: c2:8a:c7:d4:7e:bb:95:3a:3b:cf:ad:7a:0f:ca:cc:e1:54:37: 7d:47:61:22 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERBQzUxMTAvBgNVBAUTKDQ3MDFDRjJEMjgyMDA5RDZDNkVBRjQ1NTZGQjBEQzFC MEQ1NTU3RUYwHhcNMjYwMTAxMTM0NTUwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzRjMS0zZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OwhTr/IksAvgvIB+A26muIux80dtVtA7ij/3EoCe0u8f9aVKgPw6wRibgCg LgK2/itTm7l+sfHui5tHsmR/gt3pprRAR8XlnET6wuDAmYRMygc3W16vGH/A2O8f Rzc3/2P/a2G6js0GpMmAZ51m/kMG11WU5jLRBZoqKqHecXBLKF0CI+5NsOIuNtux NUQRjsoxO0Obuz4qvuApxgPZGwVy/P7ZbX+GaycY4hLdHmZn7XFJsCQ4n5Ivlwrg /JBklbkD3tP1lC5767T+xb+pQBn8V44/pWaAQXLdb3cUWKBwcUebMkYqcCF3ei3f KiwRpra0gjMq9tqJY3rI80LbAwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAKD2tca A5YbnciiVIcHSJJVaL+SMB8GA1UdIwQYMBaAFEcBzy0oIAnWxur0VW+w3BsNVVfv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REFDNS9DMzk1ODJDMEFC REExMUVGQTFDMTRFNzZDNEY5QUUwMi9Sd0hQTFNnZ0NkYkc2dlJWYjdEY0d3MVZW LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J3SFBMU2dnQ2RiRzZ2UlZiN0RjR3cxVlYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OERBQzUvQzM5NTgyQzBBQkRBMTFFRkExQzE0RTc2QzRGOUFFMDIvMkVBNUJDNkVF NzE4MTFGMEIyM0UyNjQ3NkU2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoL+MMA0GCSqGSIb3DQEBCwUAA4IBAQBoQscxzdjtYG77IKvYBUWP ZOXGF06gu5XsXrFOT1/LkFi5cCltWhsacje5uoQ0psJKGBQUPId+FCplhVdOEeh5 UWHzHcvLpzWPLkTSIdf4XTz0NHlIht41Lc2PLEpfQTuL9nz/Lvp+GupRrCxmJORw 0u7XampEvHYhjLfmhjPxF552cp5F+/MSQR2Z971jYHdKlji1wwIbelxVkequ7u+x 6Y6/MXYsgXY2lH+vOqUFkonZlNddH4hm81rpOMul2xaPAWQ42lzjCwktL77b0tfq Eh2IYm15oCSsM7hcRzde6x1P8GD716xfQlrCisfUfruVOjvPrXoPyszhVDd9R2Ei -----END CERTIFICATE-----Generated at Mon Mar 2 06:34:30 2026 by rpki-client