$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5E2DFFA0F30411EE9E863142C4F9AE02.roa File: 5E2DFFA0F30411EE9E863142C4F9AE02.roa (raw, json) Hash identifier: Jqg0QG+pHowXcBZid4LV6zEAloZuOriGditaeBG/avA= Subject key identifier: 0B:08:FF:83:8A:72:50:F3:45:99:5B:30:8F:DF:D5:A1:E1:78:1A:AF Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2C6A Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5E2DFFA0F30411EE9E863142C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:47:40 +0000 ROA not before: Thu 08 May 2025 15:55:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45536 IP address blocks: 157.20.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11370 (0x2c6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c20c-dfda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:70:4a:47:e9:26:98:8c:2b:41:87:51:c3: 6f:55:05:b8:76:f9:fc:ff:e1:6e:de:93:96:a4:40: 75:bf:4b:d2:01:e7:b5:3a:f6:2d:d7:e7:4c:3d:0c: 29:24:32:92:7a:50:18:f7:ce:d7:c0:e2:2d:fe:82: bf:ab:43:79:81:63:ad:23:af:6d:f8:4d:84:33:e8: 03:0e:30:99:9a:89:09:15:0a:e7:fb:e3:c4:c5:e7: 43:a4:ac:54:18:b5:87:42:31:d2:f0:92:d2:0b:6d: 13:2b:81:12:fb:7c:28:ff:b2:b1:f4:8d:69:a1:3e: 82:5f:00:8e:b0:df:4c:a8:a3:65:01:39:c7:a0:60: ec:ea:b6:c3:68:39:c7:fb:8f:0c:eb:eb:df:85:85: 41:b2:22:e5:bb:ef:3d:ee:e3:1d:72:17:69:df:60: 30:85:f6:56:b2:0d:14:83:f4:a6:a3:ec:2b:49:ad: 75:ab:d7:28:16:38:4e:ee:75:7b:86:f2:37:e8:50: 4b:b5:76:78:d6:89:66:fb:59:5b:53:16:01:39:82: 16:56:16:d3:2b:d7:8a:44:fe:21:8f:fb:c1:df:5f: e3:94:d6:51:90:26:19:83:ec:3a:25:8f:38:81:bd: 7b:46:06:23:47:cc:31:87:35:8b:e4:14:c0:1b:77: cc:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:08:FF:83:8A:72:50:F3:45:99:5B:30:8F:DF:D5:A1:E1:78:1A:AF X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5E2DFFA0F30411EE9E863142C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.226.0/23 Signature Algorithm: sha256WithRSAEncryption cc:1d:74:31:32:67:08:c6:97:41:b4:f3:a8:20:7b:b4:5e:9a: 41:31:0a:bb:88:bd:f4:a5:8a:89:7d:a0:8f:58:9a:e0:4d:7a: 88:c2:7b:21:2a:39:15:98:45:a4:2d:32:59:ce:65:71:bf:07: 36:6e:47:80:f7:21:ff:d0:da:d2:2e:a0:2a:e2:e0:21:fb:b8: e0:d4:40:f2:0f:2f:11:27:67:31:01:25:1a:11:1e:1c:29:8a: 59:e5:80:5c:1d:a7:4e:ee:ee:b2:2d:6a:6f:05:d8:2d:70:f1: 1f:6f:f3:14:01:2e:61:5e:43:a7:a8:68:85:68:81:2c:61:08: fc:c4:b3:bf:68:7e:9d:9e:f1:b1:17:8f:b0:48:cd:aa:36:54: dc:d4:f2:85:9b:f4:4a:05:90:44:68:fa:c8:80:fc:5d:f0:52: 33:aa:35:c6:ff:1e:82:18:f1:16:80:be:b9:ba:cd:b4:d2:e7: 22:6d:01:75:c3:a6:f9:f7:7a:b5:f3:70:d0:88:d9:82:63:d6: 4f:5e:5a:aa:b0:47:eb:ab:28:84:9c:bb:0a:89:08:0d:35:fc: 01:d3:bc:99:a2:cd:00:9b:37:9f:a6:cb:aa:84:19:e0:be:3d: 8d:b2:fa:5d:af:32:64:98:ed:ca:5d:bd:8a:2a:4c:5e:60:36: f4:8f:08:dc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTQwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzIwYy1kZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG9wSkfpJpiMK0GHUcNvVQW4dvn8/+Fu3pOWpEB1v0vSAee1OvYt1+dMPQwp JDKSelAY987XwOIt/oK/q0N5gWOtI69t+E2EM+gDDjCZmokJFQrn++PExedDpKxU GLWHQjHS8JLSC20TK4ES+3wo/7Kx9I1poT6CXwCOsN9MqKNlATnHoGDs6rbDaDnH +48M6+vfhYVBsiLlu+897uMdchdp32AwhfZWsg0Ug/Smo+wrSa11q9coFjhO7nV7 hvI36FBLtXZ41olm+1lbUxYBOYIWVhbTK9eKRP4hj/vB31/jlNZRkCYZg+w6JY84 gb17RgYjR8wxhzWL5BTAG3fMIwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAsI/4OK clDzRZlbMI/f1aHheBqvMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUUyREZGQTBG MzA0MTFFRTlFODYzMTQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRTiMA0GCSqGSIb3DQEBCwUAA4IBAQDMHXQxMmcIxpdBtPOoIHu0 XppBMQq7iL30pYqJfaCPWJrgTXqIwnshKjkVmEWkLTJZzmVxvwc2bkeA9yH/0NrS LqAq4uAh+7jg1EDyDy8RJ2cxASUaER4cKYpZ5YBcHadO7u6yLWpvBdgtcPEfb/MU AS5hXkOnqGiFaIEsYQj8xLO/aH6dnvGxF4+wSM2qNlTc1PKFm/RKBZBEaPrIgPxd 8FIzqjXG/x6CGPEWgL65us200ucibQF1w6b593q183DQiNmCY9ZPXlqqsEfrqyiE nLsKiQgNNfwB07yZos0AmzefpsuqhBngvj2NsvpdrzJkmO3KXb2KKkxeYDb0jwjc -----END CERTIFICATE-----Generated at Mon Mar 2 18:12:48 2026 by rpki-client