$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D27514A0CF5011F0A7B96743C4F9AE02.roa File: D27514A0CF5011F0A7B96743C4F9AE02.roa (raw, json) Hash identifier: fuXPHKi/WTrEs2A4YWHpRLA7wguPvj9kKN64DoPN/sg= Subject key identifier: 28:3A:E0:73:3B:E4:10:4F:AF:DD:D7:96:52:4B:D2:22:D2:E0:99:97 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CDC Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D27514A0CF5011F0A7B96743C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:50:18 +0000 ROA not before: Tue 02 Dec 2025 07:30:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150650 IP address blocks: 138.252.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11484 (0x2cdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Dec 2 07:30:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c2a9-c1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:36:5d:cd:07:24:57:b1:2b:9f:d1:5c:ec:7c: 48:89:bc:96:8d:93:f2:16:90:6b:ca:15:41:2a:0a: 30:44:69:7c:1f:d9:32:3d:e5:68:2b:d8:c9:83:17: 1e:17:19:1b:45:ea:03:3d:75:cf:4c:f8:e6:97:b9: 07:07:1b:dd:dc:02:5d:bb:39:85:69:8d:4a:22:6c: 88:a8:10:94:88:4b:05:0b:fb:18:1d:85:9a:ee:24: 81:f5:56:fe:57:cb:45:50:bb:cc:05:58:77:ce:7e: db:0f:cc:d7:1a:a7:c2:7b:5b:09:e4:f3:ea:53:af: e1:f7:3a:d1:04:31:b6:cd:e3:68:8c:7b:f2:a4:84: 4d:7e:6b:a0:e2:d7:37:53:d9:7b:25:07:c9:78:ed: 30:a7:f5:40:4d:92:b2:83:47:d6:d6:7e:0a:36:f2: 2d:1b:72:59:7b:18:87:69:3a:88:d2:77:d1:7a:c8: af:b4:6e:2e:7a:91:c0:5e:e7:08:69:4f:33:d6:af: 8b:38:88:09:2a:08:17:ab:13:05:2c:5e:67:02:e5: b8:6a:a1:90:fc:bc:70:44:40:3d:ab:9e:b2:fa:7a: 9a:f8:41:5b:32:a0:f1:2c:a4:40:20:ac:61:17:94: a1:5e:16:e4:1e:24:31:91:87:3b:99:51:b0:2c:cd: 60:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3A:E0:73:3B:E4:10:4F:AF:DD:D7:96:52:4B:D2:22:D2:E0:99:97 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D27514A0CF5011F0A7B96743C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.194.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:5e:83:60:fa:9c:ba:94:5b:01:dd:15:6e:91:95:e6:fb:b8: e1:7e:1e:10:ac:a6:06:3f:7a:49:de:26:1e:97:fd:21:01:38: d0:84:46:51:22:72:1b:69:77:1d:47:80:64:89:0f:96:d7:39: 45:88:72:22:d4:8a:ec:77:00:b8:43:eb:c2:3d:3f:d2:65:23: 57:8b:5d:2d:f6:7a:fe:05:68:17:bf:78:f7:a7:8e:1a:27:fb: f6:fa:61:b1:a8:94:10:5d:ec:e1:32:80:01:04:ef:51:1a:b8: 9b:ae:47:2b:7f:19:9d:27:30:d4:a5:68:95:63:88:24:f0:5a: 8d:c5:ab:a7:87:11:e0:0d:a3:09:53:dd:ed:05:9b:ac:51:9d: 08:95:82:e4:3a:13:9a:4f:fa:73:b0:12:f3:32:90:ae:b5:ea: a0:eb:03:c5:e9:72:df:02:cc:1e:b2:b8:05:43:72:e1:3f:6f: 30:de:8e:b1:fa:2e:32:15:8c:2e:f8:ed:c4:3d:1c:03:f9:ad: c5:3b:e7:42:d8:e2:3f:6f:4c:06:47:40:8d:21:43:83:03:b7: ff:3f:c2:6a:b7:1f:78:55:f7:db:60:0b:54:31:5f:b5:cf:e6: 11:16:ed:15:3d:f1:18:b0:85:e5:bb:20:c7:29:d7:40:52:64: 4d:61:b3:e5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMjAyMDczMDQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzJhOS1jMWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjTZdzQckV7Ern9Fc7HxIibyWjZPyFpBryhVBKgowRGl8H9kyPeVoK9jJgxce FxkbReoDPXXPTPjml7kHBxvd3AJduzmFaY1KImyIqBCUiEsFC/sYHYWa7iSB9Vb+ V8tFULvMBVh3zn7bD8zXGqfCe1sJ5PPqU6/h9zrRBDG2zeNojHvypIRNfmug4tc3 U9l7JQfJeO0wp/VATZKyg0fW1n4KNvItG3JZexiHaTqI0nfResivtG4uepHAXucI aU8z1q+LOIgJKggXqxMFLF5nAuW4aqGQ/LxwREA9q56y+nqa+EFbMqDxLKRAIKxh F5ShXhbkHiQxkYc7mVGwLM1giwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCg64HM7 5BBPr93XllJL0iLS4JmXMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDI3NTE0QTBD RjUwMTFGMEE3Qjk2NzQzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAivzCMA0GCSqGSIb3DQEBCwUAA4IBAQCNXoNg+py6lFsB3RVukZXm +7jhfh4QrKYGP3pJ3iYel/0hATjQhEZRInIbaXcdR4BkiQ+W1zlFiHIi1IrsdwC4 Q+vCPT/SZSNXi10t9nr+BWgXv3j3p44aJ/v2+mGxqJQQXezhMoABBO9RGribrkcr fxmdJzDUpWiVY4gk8FqNxaunhxHgDaMJU93tBZusUZ0IlYLkOhOaT/pzsBLzMpCu teqg6wPF6XLfAswesrgFQ3LhP28w3o6x+i4yFYwu+O3EPRwD+a3FO+dC2OI/b0wG R0CNIUODA7f/P8Jqtx94VffbYAtUMV+1z+YRFu0VPfEYsIXluyDHKddAUmRNYbPl -----END CERTIFICATE-----Generated at Mon Mar 2 16:30:10 2026 by rpki-client