$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/255842A2EFF411EE853CC833C4F9AE02.roa File: 255842A2EFF411EE853CC833C4F9AE02.roa (raw, json) Hash identifier: LehxYUyNY+Aih3/gKb031XwxWefiznlK8xHHelOl+ms= Subject key identifier: 8D:26:D0:4A:09:95:E7:F4:79:98:AE:96:BB:90:A9:E7:C5:4B:D1:EC Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 017B Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/255842A2EFF411EE853CC833C4F9AE02.roa Signing time: Tue 31 Mar 2026 04:37:54 +0000 ROA not before: Tue 31 Mar 2026 04:37:54 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 38203 IP address blocks: 157.20.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Mar 31 04:37:54 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cb4fa2-3aa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8b:e4:40:04:18:77:2f:65:c5:f7:99:21:f5: 0b:43:13:1f:a8:ac:d2:f7:a1:c7:3e:07:51:55:c3: 66:d2:5e:cf:cd:0a:75:3e:78:cd:3e:e9:a0:cc:3e: 03:9c:7e:9f:6b:cb:52:27:32:15:20:d4:1b:07:d1: 77:85:d6:cf:83:19:b1:fc:61:b9:ff:db:5e:25:93: f8:11:ab:66:ac:98:5c:8b:0c:74:5b:91:d2:71:1d: d2:08:7f:c1:b5:f9:fc:81:51:6c:3a:c4:f2:f1:53: 07:40:fd:50:da:b1:02:bb:92:a1:07:eb:10:a1:f0: 75:28:68:6c:cb:f6:ca:c9:9c:8d:6e:97:f4:e9:d8: bb:59:67:f9:45:ba:f6:8a:f2:b2:f0:b7:6a:16:ed: e4:2e:dd:1d:86:25:87:6b:a2:69:bb:da:42:57:1b: 1d:4f:3c:67:71:16:be:ac:7e:da:fc:c5:fb:59:05: c6:4d:7c:8a:4f:e0:f8:a9:81:71:d6:7b:77:69:44: 23:98:0c:53:4d:a7:72:04:06:48:4b:40:fe:3f:59: 0e:5e:aa:56:d3:c7:af:0f:13:a0:f8:c6:5d:fc:1e: 88:56:3b:05:0f:a4:0d:7a:ea:3f:a6:db:fd:9e:5b: 68:f2:d2:91:83:11:f4:3f:18:48:1a:a0:69:fa:03: 73:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:26:D0:4A:09:95:E7:F4:79:98:AE:96:BB:90:A9:E7:C5:4B:D1:EC X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/255842A2EFF411EE853CC833C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.148.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:6b:2b:38:30:a2:99:e7:2a:14:8e:c3:83:8b:9f:ad:bd:ea: 53:82:a1:a2:76:91:12:3e:b7:21:3d:3a:61:88:2b:69:ed:9e: 9c:8a:03:75:c9:c9:d0:24:39:aa:19:d9:d3:64:d8:ca:1b:81: 9f:a4:b2:28:5d:25:54:32:16:a5:90:11:19:03:de:03:b4:2b: 1c:1e:bf:a0:dc:21:f3:8e:bc:4f:db:3f:40:04:c3:6f:68:97: 17:f3:f3:0f:d1:d1:cd:fe:ae:7a:d8:95:64:8e:61:06:40:b7: a6:b3:86:25:5c:42:5e:f3:b5:df:19:9f:21:7b:e3:f7:66:a6: 73:db:d5:1a:b0:05:ce:7f:db:72:75:cc:64:ad:78:22:1a:c4: ab:2e:70:da:d3:40:8c:f2:23:90:37:06:1b:9f:b6:e8:11:0d: b7:83:b8:cb:f0:3f:7c:04:12:a1:ca:40:97:77:8a:67:1e:af: fd:20:49:48:1f:bc:1d:62:c7:4a:4a:ec:4e:59:06:e2:c4:82: 0f:33:26:cb:c8:6a:48:e1:05:77:c3:4e:13:48:38:5b:2f:8a: f4:38:1f:3d:66:7c:c1:a8:2a:98:2c:3d:a9:fa:94:e0:70:f8: 90:4c:75:82:29:cb:9c:e3:f6:5d:38:75:80:8b:7b:b3:81:f5: 29:c6:2f:84 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjYwMzMxMDQzNzU0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiNGZhMi0zYWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4vkQAQYdy9lxfeZIfULQxMfqKzS96HHPgdRVcNm0l7PzQp1PnjNPumgzD4D nH6fa8tSJzIVINQbB9F3hdbPgxmx/GG5/9teJZP4EatmrJhciwx0W5HScR3SCH/B tfn8gVFsOsTy8VMHQP1Q2rECu5KhB+sQofB1KGhsy/bKyZyNbpf06di7WWf5Rbr2 ivKy8LdqFu3kLt0dhiWHa6Jpu9pCVxsdTzxncRa+rH7a/MX7WQXGTXyKT+D4qYFx 1nt3aUQjmAxTTadyBAZIS0D+P1kOXqpW08evDxOg+MZd/B6IVjsFD6QNeuo/ptv9 nlto8tKRgxH0PxhIGqBp+gNzQwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI0m0EoJ lef0eZiulruQqefFS9HsMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU4NUUvNUJDMTI2N0FFRkYzMTFFRTk3N0NBQzMxQzRGOUFFMDIvMjU1ODQyQTJF RkY0MTFFRTg1M0NDODMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRSUMA0GCSqGSIb3DQEBCwUAA4IBAQCaays4MKKZ5yoUjsODi5+t vepTgqGidpESPrchPTphiCtp7Z6cigN1ycnQJDmqGdnTZNjKG4GfpLIoXSVUMhal kBEZA94DtCscHr+g3CHzjrxP2z9ABMNvaJcX8/MP0dHN/q562JVkjmEGQLems4Yl XEJe87XfGZ8he+P3ZqZz29UasAXOf9tydcxkrXgiGsSrLnDa00CM8iOQNwYbn7bo EQ23g7jL8D98BBKhykCXd4pnHq/9IElIH7wdYsdKSuxOWQbixIIPMybLyGpI4QV3 w04TSDhbL4r0OB89ZnzBqCqYLD2p+pTgcPiQTHWCKcuc4/ZdOHWAi3uzgfUpxi+E -----END CERTIFICATE-----Generated at Fri Apr 17 12:45:46 2026 by rpki-client