$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D43EBED0613C11F0B60AFC14C4F9AE02.roa File: D43EBED0613C11F0B60AFC14C4F9AE02.roa (raw, json) Hash identifier: tBEfXdAWmQ2Tg04prtEgFdBwGiGW505srfPEk1P9xH4= Subject key identifier: 98:AB:1B:5D:24:5E:CF:3B:12:EE:BB:21:8F:E4:E6:28:6C:B3:CF:46 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CFC Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D43EBED0613C11F0B60AFC14C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:51:02 +0000 ROA not before: Sat 17 Jan 2026 10:00:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132770 IP address blocks: 160.22.232.0/24 maxlen: 24 160.22.233.0/24 maxlen: 24 165.99.226.0/23 maxlen: 24 165.101.109.0/24 maxlen: 24 165.101.204.0/24 maxlen: 24 165.101.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11516 (0x2cfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jan 17 10:00:29 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c2d6-98b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:94:cf:21:c0:01:65:ed:95:d3:43:7e:ae:f7: be:30:20:5f:4e:01:8e:b9:86:d7:a4:d5:95:29:fe: 10:04:68:24:ad:42:29:25:fd:73:cb:98:51:65:c3: dc:eb:78:aa:9e:d1:42:2c:d6:82:ec:27:af:b1:cc: 64:ee:db:57:7b:bc:a8:a9:55:dc:f4:02:e1:ea:4e: dd:a6:2e:ae:b3:e4:a4:14:00:1e:7c:e7:9b:ef:8f: 31:89:93:2b:61:e7:21:d9:08:fc:95:0a:7a:b3:6b: 7d:3b:c1:d2:4f:cf:4b:20:04:c6:b9:6f:4f:e6:f9: ef:71:5a:39:e1:82:62:d8:48:a6:f0:81:55:f9:18: a6:4a:07:3b:71:83:a5:16:bd:63:ce:f3:6b:36:91: f7:90:d9:c3:92:f4:e7:a9:45:c1:b1:4e:db:ee:c4: 0c:c5:a5:36:ba:ae:af:b4:87:62:22:49:84:c7:f8: c0:53:8f:c8:3c:7a:5f:18:99:d4:f8:31:7e:12:b9: bd:4c:04:4e:13:dd:66:f1:ce:95:b1:0a:38:b8:b3: 64:84:c6:cb:41:5b:50:f6:47:27:61:f2:60:0e:3e: 7e:fd:42:77:61:29:00:23:0b:0b:c3:30:cb:74:d2: 71:08:2f:e6:23:a1:20:8c:bf:48:e7:72:5f:75:75: 29:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AB:1B:5D:24:5E:CF:3B:12:EE:BB:21:8F:E4:E6:28:6C:B3:CF:46 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D43EBED0613C11F0B60AFC14C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.22.232.0/23 165.99.226.0/23 165.101.109.0/24 165.101.204.0/24 165.101.229.0/24 Signature Algorithm: sha256WithRSAEncryption 00:8c:13:6b:7e:77:8c:38:6d:d7:67:0c:b4:05:89:e0:90:dc: f1:d7:a8:6e:dc:4f:63:aa:fd:01:1b:ab:2f:17:0f:3a:b9:c8: b6:d8:79:d0:6b:d1:c9:1d:57:4c:e5:96:e6:59:e8:c8:4c:db: 3c:42:f5:86:fb:40:9e:63:77:8a:73:c2:ba:18:cb:0f:0f:81: 9a:27:bc:89:5b:d9:92:d8:ef:8d:f7:04:25:ac:ec:03:b5:33: a9:e7:9f:a9:a6:c6:d0:13:9d:df:b7:28:a8:e0:2f:d4:2a:b2: db:28:c3:b7:dc:58:83:3d:6b:3d:cf:d3:61:63:aa:8f:7d:79: 29:dd:f1:c3:d8:e5:cd:a9:04:45:23:b2:72:b3:ec:9a:16:cc: 58:eb:98:fe:ca:da:3b:33:47:cf:00:c3:cf:3a:a1:43:7a:b4: 85:7d:62:ab:78:74:07:2a:78:de:98:aa:90:a8:4a:8f:9a:12: 55:6b:af:cd:95:2c:f0:32:80:09:29:90:e7:02:50:6f:15:3c: da:52:c1:11:d9:4e:58:74:d8:81:56:bc:0e:af:5b:88:a4:84: d9:84:aa:61:e5:34:ca:17:60:85:ab:c7:3e:5e:3d:4b:37:71: e8:cb:43:94:29:27:c1:f2:11:0f:9a:b7:2b:d4:02:75:cb:26: 91:64:55:67 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICLPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwMTE3MTAwMDI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzJkNi05OGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJTPIcABZe2V00N+rve+MCBfTgGOuYbXpNWVKf4QBGgkrUIpJf1zy5hRZcPc 63iqntFCLNaC7Cevscxk7ttXe7yoqVXc9ALh6k7dpi6us+SkFAAefOeb748xiZMr Yech2Qj8lQp6s2t9O8HST89LIATGuW9P5vnvcVo54YJi2Eim8IFV+RimSgc7cYOl Fr1jzvNrNpH3kNnDkvTnqUXBsU7b7sQMxaU2uq6vtIdiIkmEx/jAU4/IPHpfGJnU +DF+Erm9TAROE91m8c6VsQo4uLNkhMbLQVtQ9kcnYfJgDj5+/UJ3YSkAIwsLwzDL dNJxCC/mI6EgjL9I53JfdXUpqQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFJirG10k Xs87Eu67IY/k5ihss89GMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDQzRUJFRDA2 MTNDMTFGMEI2MEFGQzE0QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQBoBboAwQBpWPiAwQApWVtAwQApWXMAwQApWXlMA0GCSqGSIb3DQEB CwUAA4IBAQAAjBNrfneMOG3XZwy0BYngkNzx16hu3E9jqv0BG6svFw86uci22HnQ a9HJHVdM5ZbmWejITNs8QvWG+0CeY3eKc8K6GMsPD4GaJ7yJW9mS2O+N9wQlrOwD tTOp55+ppsbQE53ftyio4C/UKrLbKMO33FiDPWs9z9NhY6qPfXkp3fHD2OXNqQRF I7Jys+yaFsxY65j+yto7M0fPAMPPOqFDerSFfWKreHQHKnjemKqQqEqPmhJVa6/N lSzwMoAJKZDnAlBvFTzaUsER2U5YdNiBVrwOr1uIpITZhKph5TTKF2CFq8c+Xj1L N3Hoy0OUKSfB8hEPmrcr1AJ1yyaRZFVn -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:42 2026 by rpki-client