$ rpki-client -vvf rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/28C6AB84C0E411EEAFFB100BC4F9AE02.roa File: 28C6AB84C0E411EEAFFB100BC4F9AE02.roa (raw, json) Hash identifier: Lqj3OiAEZ1NUj5c3pIE9yhxwkfOhtjVIBdNf9vQb1eQ= Subject key identifier: 4D:72:DA:90:D2:15:9F:C9:D2:9F:B0:F5:2A:1D:F3:3B:47:1E:C0:05 Certificate issuer: /CN=A918E79C/serialNumber=B52C54D46A68ADECC37D5F6F27228C6DEA73E85C Certificate serial: 018B Authority key identifier: B5:2C:54:D4:6A:68:AD:EC:C3:7D:5F:6F:27:22:8C:6D:EA:73:E8:5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tSxU1GporezDfV9vJyKMbepz6Fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/28C6AB84C0E411EEAFFB100BC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:03:53 +0000 ROA not before: Tue 27 Jan 2026 03:23:26 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 32110 IP address blocks: 157.10.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.crl rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tSxU1GporezDfV9vJyKMbepz6Fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E79C, serialNumber=B52C54D46A68ADECC37D5F6F27228C6DEA73E85C Validity Not Before: Jan 27 03:23:26 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a41d19-b051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6d:f1:49:92:cc:40:c4:60:f2:6c:81:9a:9e: 0d:7b:9a:f8:33:40:c0:b7:0b:a9:31:15:bf:57:ec: de:d3:c4:09:b9:a9:2f:1a:18:b8:8e:a7:bd:c9:c2: 88:c9:a7:9b:7b:5e:61:0e:62:f7:8d:db:7d:08:13: 67:80:79:2d:2e:a7:b1:b9:f9:fd:2a:38:cc:45:dc: 85:1a:43:e5:c9:df:a5:c0:a4:eb:dd:ca:a8:65:84: 71:9d:cd:35:d7:eb:0a:b7:d1:19:12:2b:8b:b3:f0: 87:98:b3:59:e4:60:72:d9:fc:63:a0:3a:1d:27:6d: 5e:2c:ca:73:9a:66:44:05:f0:1d:a8:89:2b:56:5f: 53:63:25:ae:c5:2d:08:e0:ca:9f:88:fc:61:80:28: 07:02:db:62:ba:a4:9a:a7:34:51:6c:5f:1b:a0:d1: 2a:4e:34:60:32:81:42:b0:fb:84:a7:4d:3a:94:a4: a3:85:42:4e:5a:0c:9a:5c:4e:85:7d:57:01:2a:7e: 1a:f5:e7:b4:64:f9:5c:a7:b6:43:a0:35:68:2c:1a: 31:87:eb:c9:56:9f:f3:6c:7c:33:fd:be:d6:61:50: 62:36:bb:f1:bf:90:e5:c3:1c:e0:c6:70:09:a6:f8: 39:6b:0e:68:fc:c8:49:fb:0a:6d:8a:48:e4:35:ef: 3b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:72:DA:90:D2:15:9F:C9:D2:9F:B0:F5:2A:1D:F3:3B:47:1E:C0:05 X509v3 Authority Key Identifier: keyid:B5:2C:54:D4:6A:68:AD:EC:C3:7D:5F:6F:27:22:8C:6D:EA:73:E8:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tSxU1GporezDfV9vJyKMbepz6Fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/28C6AB84C0E411EEAFFB100BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.206.0/24 Signature Algorithm: sha256WithRSAEncryption 03:a8:2c:91:39:b8:2f:66:06:12:79:da:e8:b5:1a:ed:79:b4: 0b:5a:62:ec:71:bb:15:71:86:c1:9e:10:7b:c1:06:bb:80:ca: fd:14:29:48:c4:05:e6:52:a5:db:b0:c4:3c:34:a1:14:a0:4b: 6d:39:80:6c:bf:5f:98:ca:82:25:3a:ca:e7:d1:f2:72:1d:35: 7b:a7:b9:b6:da:58:aa:7b:04:9b:82:69:9e:0e:5b:aa:1a:44: e5:9c:f1:1d:77:11:93:8d:4e:f6:ac:33:f0:8f:8d:40:8d:53: 42:48:8f:ec:7f:66:29:23:6d:37:fd:6b:db:11:e0:4d:df:a1: 0f:25:c0:94:04:e6:48:60:0d:3c:de:0b:b3:39:7f:6b:a8:6d: 78:7a:c6:73:e4:58:9e:ff:e5:d8:10:67:fc:d9:ff:85:69:f1: 84:cf:96:94:96:59:71:9c:1d:00:26:dc:f0:4d:c6:4f:9e:90: e3:96:7e:df:1e:ed:38:96:00:db:bb:4d:bf:3f:81:59:8c:a1: 54:0e:a8:f6:b5:da:b6:5f:c4:16:d1:9c:f2:a4:14:60:b1:b9: f6:6c:26:23:ca:d8:47:7f:6d:c1:c0:cf:f8:f4:4a:17:9a:5e: 01:c8:56:19:7f:9d:55:cb:8d:53:5a:30:31:67:54:91:bc:a9: 01:dc:d5:bd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU3OUMxMTAvBgNVBAUTKEI1MkM1NEQ0NkE2OEFERUNDMzdENUY2RjI3MjI4QzZE RUE3M0U4NUMwHhcNMjYwMTI3MDMyMzI2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWQxOS1iMDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6W3xSZLMQMRg8myBmp4Ne5r4M0DAtwupMRW/V+ze08QJuakvGhi4jqe9ycKI yaebe15hDmL3jdt9CBNngHktLqexufn9KjjMRdyFGkPlyd+lwKTr3cqoZYRxnc01 1+sKt9EZEiuLs/CHmLNZ5GBy2fxjoDodJ21eLMpzmmZEBfAdqIkrVl9TYyWuxS0I 4MqfiPxhgCgHAttiuqSapzRRbF8boNEqTjRgMoFCsPuEp006lKSjhUJOWgyaXE6F fVcBKn4a9ee0ZPlcp7ZDoDVoLBoxh+vJVp/zbHwz/b7WYVBiNrvxv5DlwxzgxnAJ pvg5aw5o/MhJ+wptikjkNe87jQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE1y2pDS FZ/J0p+w9Sod8ztHHsAFMB8GA1UdIwQYMBaAFLUsVNRqaK3sw31fbycijG3qc+hc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTc5Qy81OEE4MTE4RUMw RTAxMUVFOTAwMDkyMDlDNEY5QUUwMi90U3hVMUdwb3JlekRmVjl2SnlLTWJlcHo2 RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RTeFUxR3BvcmV6RGZWOXZKeUtNYmVwejZGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU3OUMvNThBODExOEVDMEUwMTFFRTkwMDA5MjA5QzRGOUFFMDIvMjhDNkFCODRD MEU0MTFFRUFGRkIxMDBCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnQrOMA0GCSqGSIb3DQEBCwUAA4IBAQADqCyRObgvZgYSedrotRrt ebQLWmLscbsVcYbBnhB7wQa7gMr9FClIxAXmUqXbsMQ8NKEUoEttOYBsv1+YyoIl Osrn0fJyHTV7p7m22liqewSbgmmeDluqGkTlnPEddxGTjU72rDPwj41AjVNCSI/s f2YpI203/WvbEeBN36EPJcCUBOZIYA083guzOX9rqG14esZz5Fie/+XYEGf82f+F afGEz5aUlllxnB0AJtzwTcZPnpDjln7fHu04lgDbu02/P4FZjKFUDqj2tdq2X8QW 0ZzypBRgsbn2bCYjythHf23BwM/49EoXml4ByFYZf51Vy41TWjAxZ1SRvKkB3NW9 -----END CERTIFICATE-----Generated at Mon Mar 2 15:28:11 2026 by rpki-client