$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5EC43E1A213C11EE9DC66056C4F9AE02.roa File: 5EC43E1A213C11EE9DC66056C4F9AE02.roa (raw, json) Hash identifier: UuWF6KeypCIEZVIGweXbl7BvzcdwOy44XbTHZZwKzr8= Subject key identifier: 21:3B:86:50:4E:90:D9:CB:F4:A2:EC:C8:1A:44:0E:E5:81:ED:B8:5F Certificate issuer: /CN=A918E6B7/serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708 Certificate serial: 10E3 Authority key identifier: BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5EC43E1A213C11EE9DC66056C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:26:52 +0000 ROA not before: Fri 02 May 2025 17:57:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 2764 IP address blocks: 147.76.28.0/24 maxlen: 24 147.76.52.0/24 maxlen: 24 147.76.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.crl rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4323 (0x10e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7, serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708 Validity Not Before: May 2 17:57:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a468cc-53a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:71:a2:c6:a5:6e:6a:78:22:1b:69:5e:51:1b: ee:a6:8c:61:0d:e8:9e:79:db:59:33:79:c7:fa:cf: 29:38:01:4e:f3:90:f7:9c:2f:1b:7e:1a:14:b2:e2: 74:54:2a:a0:e8:38:88:c3:e1:05:2d:ac:e4:4a:f3: 89:d5:2a:18:df:5f:84:da:a9:ae:62:fa:ed:d2:c1: 24:9a:63:56:a2:9f:29:8f:1c:84:98:7b:77:12:8a: 4d:47:6f:e3:84:1e:bc:0a:67:c3:53:e5:44:f9:33: 77:ab:47:02:d0:f3:97:9a:43:04:cb:b1:e6:ea:ea: 81:4a:0c:dc:57:99:55:95:c6:a2:ff:39:e0:d9:61: 04:ce:74:d5:47:27:3b:1b:0e:8b:cf:d0:8d:bf:36: d0:5c:e5:ea:c3:37:d7:e3:56:b9:0a:76:f0:37:ae: 6e:c6:a0:ce:80:32:53:79:45:cb:38:53:f8:44:35: c4:aa:2b:0f:44:29:51:60:12:52:36:ad:74:7f:fd: 8b:7e:36:93:8c:6a:d3:68:bc:06:4e:df:7d:30:25: 17:50:bf:0a:cd:82:ef:86:46:c0:9f:b8:81:85:31: bf:c0:b3:bc:4b:4b:d8:ae:36:d7:b1:68:1f:5e:1a: 74:88:88:60:e2:90:3d:4d:91:9c:32:09:66:50:f2: d2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:3B:86:50:4E:90:D9:CB:F4:A2:EC:C8:1A:44:0E:E5:81:ED:B8:5F X509v3 Authority Key Identifier: keyid:BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5EC43E1A213C11EE9DC66056C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 147.76.28.0/24 147.76.52.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:a6:b3:a1:37:11:97:5c:69:31:65:88:b6:03:1e:b4:4e:75: 92:52:28:b0:39:2b:39:64:8e:f4:2a:dd:c5:38:44:20:d8:00: 9b:9c:86:92:46:61:7c:c4:3c:70:55:61:75:8c:61:b4:6a:f4: 94:61:ff:7c:7a:2a:3b:ba:32:e1:18:1c:94:c5:af:25:40:ac: af:01:76:44:a0:d7:88:54:67:86:b8:f6:99:fd:de:55:9d:95: 19:8d:4a:e7:84:9d:70:0b:19:ca:22:4b:da:91:16:1d:a0:9f: 3c:a4:c4:fb:e9:65:94:65:95:13:6c:b2:eb:ac:d4:06:ce:33: f6:76:dd:b3:92:4d:e0:dd:a2:1a:cf:b5:d4:09:30:7c:9e:9a: 92:2d:43:1d:a9:6f:e4:92:3a:65:ab:5c:4d:3a:03:6a:04:b3: 2d:f0:87:eb:8f:6b:70:db:31:a0:15:e5:6e:27:7f:2c:09:b0: 1d:2e:f8:a4:62:55:c7:31:7e:d8:e8:8b:83:34:4c:b4:0f:a9: 15:93:17:42:c6:c8:5e:36:24:50:28:10:50:8d:f5:d7:05:7f: a3:d0:4c:26:8a:a3:98:a4:e3:6d:3b:06:04:ef:6e:1a:13:14: b0:2e:15:bf:bc:15:f6:07:b0:fc:3f:b0:6e:f4:df:9a:52:36: 3e:f2:a9:9d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICEOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKEJFNzI1NDg0QjhDRDBEMUQ4RDc3RUQ4N0NDQ0VGQURG NzkzRjQ3MDgwHhcNMjUwNTAyMTc1NzEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjhjYy01M2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunGixqVuangiG2leURvupoxhDeieedtZM3nH+s8pOAFO85D3nC8bfhoUsuJ0 VCqg6DiIw+EFLazkSvOJ1SoY31+E2qmuYvrt0sEkmmNWop8pjxyEmHt3EopNR2/j hB68CmfDU+VE+TN3q0cC0POXmkMEy7Hm6uqBSgzcV5lVlcai/zng2WEEznTVRyc7 Gw6Lz9CNvzbQXOXqwzfX41a5CnbwN65uxqDOgDJTeUXLOFP4RDXEqisPRClRYBJS Nq10f/2LfjaTjGrTaLwGTt99MCUXUL8KzYLvhkbAn7iBhTG/wLO8S0vYrjbXsWgf Xhp0iIhg4pA9TZGcMglmUPLS2wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCE7hlBO kNnL9KLsyBpEDuWB7bhfMB8GA1UdIwQYMBaAFL5yVIS4zQ0djXfth8zO+t95P0cI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9BRTdENEQ0RTQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi92bkpVaExqTkRSMk5kLTJIek03NjMza19S d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZuSlVoTGpORFIyTmQtMkh6TTc2MzNrX1J3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU2QjcvQUU3RDRENEU0NkFDMTFFOTk2MDg4MzQ4QzRGOUFFMDIvNUVDNDNFMUEy MTNDMTFFRTlEQzY2MDU2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAk0wcAwQBk0w0MA0GCSqGSIb3DQEBCwUAA4IBAQCMprOhNxGXXGkx ZYi2Ax60TnWSUiiwOSs5ZI70Kt3FOEQg2ACbnIaSRmF8xDxwVWF1jGG0avSUYf98 eio7ujLhGByUxa8lQKyvAXZEoNeIVGeGuPaZ/d5VnZUZjUrnhJ1wCxnKIkvakRYd oJ88pMT76WWUZZUTbLLrrNQGzjP2dt2zkk3g3aIaz7XUCTB8npqSLUMdqW/kkjpl q1xNOgNqBLMt8Ifrj2tw2zGgFeVuJ38sCbAdLvikYlXHMX7Y6IuDNEy0D6kVkxdC xsheNiRQKBBQjfXXBX+j0EwmiqOYpONtOwYE724aExSwLhW/vBX2B7D8P7Bu9N+a UjY+8qmd -----END CERTIFICATE-----Generated at Mon Mar 2 18:09:27 2026 by rpki-client