$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/221CA28E9CC111EF9A7F886BC4F9AE02.roa File: 221CA28E9CC111EF9A7F886BC4F9AE02.roa (raw, json) Hash identifier: kLPuuzGHBiIMEE5/ZO6YYFS/ueOZ6muOwR+nOc8btqw= Subject key identifier: 04:80:22:AC:29:F5:CB:A3:06:69:71:33:52:9E:14:32:97:CB:F6:5A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2BC4 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/221CA28E9CC111EF9A7F886BC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:43:34 +0000 ROA not before: Thu 08 May 2025 15:52:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138778 IP address blocks: 157.20.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11204 (0x2bc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:53 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c116-d716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8c:4c:ad:48:51:27:80:c2:08:8a:ef:17:1b: fe:c2:c4:32:4d:29:97:51:1e:00:da:fc:37:bc:3e: 07:7c:e0:08:97:70:11:bd:0a:98:53:8e:f1:4f:40: d1:61:d9:f4:31:71:45:a5:28:a5:c2:c8:83:b1:06: 9c:bd:77:74:e6:e0:0d:29:d8:8d:e0:4b:64:e6:60: 24:e2:d8:97:7f:fa:80:6c:5a:92:5b:f8:01:b5:30: 5f:ad:4d:6d:52:89:90:2d:2c:8b:1a:f7:7b:7d:23: 9e:b2:01:ae:b7:33:87:b7:38:eb:98:6e:b6:49:a7: 6d:b3:a4:5c:b3:10:b0:4b:e4:3a:2c:68:fb:da:2f: a1:98:b6:3d:6e:09:bb:82:46:01:ff:49:2c:66:15: 69:f9:e9:af:57:61:c5:b3:52:54:49:15:10:37:59: 93:42:20:9d:71:db:e2:74:13:fd:d5:eb:24:0e:1a: 6d:f3:17:d2:b5:74:85:9b:64:ea:50:aa:92:2e:ef: 35:c8:3d:34:d0:9f:65:39:40:71:c9:97:37:d0:20: 43:ef:80:2d:12:44:14:ef:62:48:c2:fc:47:01:31: 8d:bc:d4:3d:fc:f3:78:a8:7f:21:4e:24:e8:56:cc: 31:65:2b:62:39:f8:1d:da:ea:d8:2c:e3:15:9d:d7: 25:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:80:22:AC:29:F5:CB:A3:06:69:71:33:52:9E:14:32:97:CB:F6:5A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/221CA28E9CC111EF9A7F886BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.138.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:46:c0:68:e6:20:77:71:9d:4e:67:12:69:b8:c0:98:51:74: 2f:a9:d3:66:fb:d7:e6:da:b8:e7:23:09:46:a8:a1:40:f7:6b: c8:43:2c:f6:48:3f:07:5a:80:b9:a8:af:3a:11:17:31:57:66: 25:65:25:07:9c:09:29:3d:ea:54:02:3e:35:e8:d4:d3:41:05: e1:c4:43:1a:e0:5b:f5:fa:57:b8:19:8b:12:c6:ab:52:d3:3c: d7:1e:d0:dc:04:d1:af:12:30:d8:ff:24:aa:78:5a:98:d7:c0: 89:8a:0d:52:03:af:8d:60:96:50:35:07:2b:ab:e1:72:23:d3: 30:38:88:42:78:93:54:5f:88:66:6b:0b:b2:df:90:70:62:b3: ed:37:67:a5:d2:b7:ef:77:b3:3c:d4:21:fc:91:69:74:18:73: 15:07:aa:36:52:d9:3e:1f:4f:ec:45:4b:ad:2b:85:a3:08:c8: f5:03:ca:a0:da:14:8a:a8:bf:5e:36:9b:13:da:c1:ef:f6:ef: f9:7b:3d:d9:1d:47:8e:ae:8a:2d:42:17:6d:60:5b:ba:19:a2: 72:a3:8d:86:04:9d:1a:a7:d3:e8:2c:68:c9:20:3f:72:7d:e5: 04:8b:cc:02:d2:cf:9b:a6:c1:22:4c:d3:64:3a:ca:cc:99:c0: 65:2e:d8:bd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICK8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjUzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzExNi1kNzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoxMrUhRJ4DCCIrvFxv+wsQyTSmXUR4A2vw3vD4HfOAIl3ARvQqYU47xT0DR Ydn0MXFFpSilwsiDsQacvXd05uANKdiN4Etk5mAk4tiXf/qAbFqSW/gBtTBfrU1t UomQLSyLGvd7fSOesgGutzOHtzjrmG62Sadts6RcsxCwS+Q6LGj72i+hmLY9bgm7 gkYB/0ksZhVp+emvV2HFs1JUSRUQN1mTQiCdcdvidBP91eskDhpt8xfStXSFm2Tq UKqSLu81yD000J9lOUBxyZc30CBD74AtEkQU72JIwvxHATGNvNQ9/PN4qH8hTiTo VswxZStiOfgd2urYLOMVndclwwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFASAIqwp 9cujBmlxM1KeFDKXy/ZaMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjIxQ0EyOEU5 Q0MxMTFFRjlBN0Y4ODZCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRSKMA0GCSqGSIb3DQEBCwUAA4IBAQCPRsBo5iB3cZ1OZxJpuMCY UXQvqdNm+9fm2rjnIwlGqKFA92vIQyz2SD8HWoC5qK86ERcxV2YlZSUHnAkpPepU Aj416NTTQQXhxEMa4Fv1+le4GYsSxqtS0zzXHtDcBNGvEjDY/ySqeFqY18CJig1S A6+NYJZQNQcrq+FyI9MwOIhCeJNUX4hmawuy35BwYrPtN2el0rfvd7M81CH8kWl0 GHMVB6o2Utk+H0/sRUutK4WjCMj1A8qg2hSKqL9eNpsT2sHv9u/5ez3ZHUeOroot QhdtYFu6GaJyo42GBJ0ap9PoLGjJID9yfeUEi8wC0s+bpsEiTNNkOsrMmcBlLti9 -----END CERTIFICATE-----Generated at Mon Mar 2 16:45:05 2026 by rpki-client