$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/96C7C3E471E511F09456DC2DC4F9AE02.roa File: 96C7C3E471E511F09456DC2DC4F9AE02.roa (raw, json) Hash identifier: BEdkPnPkAtEgMiG7hAD8OWky5moMqBAESjhzrmFUuDA= Subject key identifier: 44:4F:6E:94:C7:E6:A0:BA:42:42:AF:0D:AA:B2:42:82:7B:D7:C3:62 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CAD Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/96C7C3E471E511F09456DC2DC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:49:13 +0000 ROA not before: Tue 05 Aug 2025 10:18:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141794 IP address blocks: 192.156.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11437 (0x2cad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 5 10:18:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c269-bd1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:56:db:ca:e1:5d:c4:47:13:42:1a:ec:bf:3f: 00:2f:42:bb:4d:f2:32:5e:ca:4b:2b:c2:55:5e:b3: 5a:ec:69:e0:73:c1:f3:05:30:aa:a8:c6:5c:20:51: 41:06:f3:f6:d8:a6:5a:ce:3b:51:75:ef:87:67:f3: 77:8f:f6:3a:e2:c7:84:0a:7d:94:9c:eb:c1:a2:f6: c4:99:d8:6c:e8:85:9d:04:5a:54:95:c2:58:88:d0: 40:8e:ef:2c:2a:1f:59:f6:09:5d:e3:39:6d:a8:f0: da:9e:2c:df:66:14:69:c0:a3:61:62:56:e2:e6:07: 98:44:d6:94:0a:c2:ae:0b:e5:9d:02:e5:94:32:8f: ad:6b:75:90:a5:32:c4:77:22:7a:2a:ba:7f:5e:0f: d7:19:10:98:f4:9f:78:25:c8:e2:80:2f:38:c5:51: 3f:03:f7:af:af:40:7d:fb:eb:ad:11:b3:c3:bc:4d: f2:9d:e0:0a:28:8a:74:00:c1:d1:be:1a:c5:ba:b0: 52:c0:09:14:4c:e7:bb:9b:9c:dc:41:23:b4:b2:95: 40:72:fb:dc:aa:dd:ab:12:c8:7d:82:00:3a:c7:f2: 73:cd:b3:42:50:f8:ef:2b:d2:ea:58:92:cc:bd:40: 9c:11:c5:17:8e:f5:0f:ee:45:cc:d2:5c:ab:e5:4d: 18:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:4F:6E:94:C7:E6:A0:BA:42:42:AF:0D:AA:B2:42:82:7B:D7:C3:62 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/96C7C3E471E511F09456DC2DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.156.152.0/24 Signature Algorithm: sha256WithRSAEncryption 15:3d:c2:f7:e3:d5:48:1e:24:c8:48:46:56:76:75:75:d0:f8: 3a:a9:0e:48:e5:25:b1:66:a3:98:bf:eb:04:6f:78:60:8e:78: 03:ac:c8:d0:8d:be:34:9e:c3:d9:66:2b:5a:6a:d3:62:1c:a0: 96:17:eb:02:af:8b:1a:31:2d:b8:16:c5:03:13:21:59:ae:ad: 19:8b:5a:ff:97:b8:db:48:01:0d:9a:d8:b0:de:98:75:bc:2c: 99:e7:2f:38:a8:fe:af:91:69:e1:8f:e6:c7:c3:53:2b:d4:f8: 79:7d:a6:d6:b7:aa:91:4a:86:db:88:df:e0:28:ce:35:66:e7: ca:ab:a4:d0:3f:1a:c3:8a:5b:35:e0:5d:9c:1c:99:41:57:ee: 42:fc:63:59:d3:b8:77:95:f6:9f:b3:a0:fc:28:04:34:23:8e: 67:a2:69:d7:20:46:71:43:36:3a:9f:77:5b:0a:6d:79:9f:94: c9:d5:ba:5e:3f:18:1e:fd:5a:77:55:ef:f0:1e:f6:7f:e2:78: b6:01:02:1a:18:f4:3d:e5:23:a2:cb:d4:76:55:12:1f:83:5b: 17:12:8b:a7:ee:dd:44:49:97:6b:49:1d:2d:c1:f2:18:6c:60: 00:1f:c4:bc:41:84:97:3b:f8:da:68:39:02:57:d8:3e:2e:4a: 56:99:4d:93 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwODA1MTAxODU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzI2OS1iZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1bbyuFdxEcTQhrsvz8AL0K7TfIyXspLK8JVXrNa7Gngc8HzBTCqqMZcIFFB BvP22KZazjtRde+HZ/N3j/Y64seECn2UnOvBovbEmdhs6IWdBFpUlcJYiNBAju8s Kh9Z9gld4zltqPDanizfZhRpwKNhYlbi5geYRNaUCsKuC+WdAuWUMo+ta3WQpTLE dyJ6Krp/Xg/XGRCY9J94JcjigC84xVE/A/evr0B9++utEbPDvE3yneAKKIp0AMHR vhrFurBSwAkUTOe7m5zcQSO0spVAcvvcqt2rEsh9ggA6x/JzzbNCUPjvK9LqWJLM vUCcEcUXjvUP7kXM0lyr5U0YyQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFERPbpTH 5qC6QkKvDaqyQoJ718NiMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTZDN0MzRTQ3 MUU1MTFGMDk0NTZEQzJEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAwJyYMA0GCSqGSIb3DQEBCwUAA4IBAQAVPcL349VIHiTISEZWdnV1 0Pg6qQ5I5SWxZqOYv+sEb3hgjngDrMjQjb40nsPZZitaatNiHKCWF+sCr4saMS24 FsUDEyFZrq0Zi1r/l7jbSAENmtiw3ph1vCyZ5y84qP6vkWnhj+bHw1Mr1Ph5fabW t6qRSobbiN/gKM41ZufKq6TQPxrDils14F2cHJlBV+5C/GNZ07h3lfafs6D8KAQ0 I45nomnXIEZxQzY6n3dbCm15n5TJ1bpePxge/Vp3Ve/wHvZ/4ni2AQIaGPQ95SOi y9R2VRIfg1sXEoun7t1ESZdrSR0twfIYbGAAH8S8QYSXO/jaaDkCV9g+LkpWmU2T -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:56 2026 by rpki-client