$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D43EBED0613C11F0B60AFC14C4F9AE02.roa File: D43EBED0613C11F0B60AFC14C4F9AE02.roa (raw, json) Hash identifier: Wo0W3tr+KevsOwUmhpgbdUXO8P0n8J7GQATm90wMACk= Subject key identifier: 52:45:EF:05:11:64:50:33:6C:6A:7D:C2:64:FC:EE:B6:DB:C1:6A:26 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2D74 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D43EBED0613C11F0B60AFC14C4F9AE02.roa Signing time: Mon 06 Apr 2026 08:45:18 +0000 ROA not before: Mon 06 Apr 2026 08:45:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132770 IP address blocks: 157.10.150.0/23 maxlen: 24 160.22.232.0/24 maxlen: 24 160.22.233.0/24 maxlen: 24 160.30.72.0/23 maxlen: 24 165.99.226.0/23 maxlen: 24 165.101.109.0/24 maxlen: 24 165.101.204.0/24 maxlen: 24 165.101.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11636 (0x2d74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Apr 6 08:45:18 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69d3729e-da16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:94:a4:56:fa:c7:e9:e9:ed:21:52:31:79:ef: 34:3f:00:ca:3f:6a:5b:20:8d:33:60:cc:c9:c5:05: aa:e9:f4:01:c9:4a:49:48:2a:b7:fb:8d:15:ea:fd: b8:3e:32:58:58:3c:1f:10:f4:ae:8c:26:36:1c:3a: d9:04:a8:cf:65:b2:e8:f2:e9:89:b5:72:38:e7:c6: a7:94:d5:14:1e:34:46:7e:a1:0f:69:e4:90:d2:a6: 1c:63:03:6e:7a:51:1f:66:66:f5:52:19:c7:2f:01: 9c:18:08:74:00:57:f1:7d:55:a0:18:2b:0f:3f:c9: 02:89:ff:bf:55:10:ab:47:f9:fa:0c:07:da:fd:50: 42:6c:52:e4:03:e4:84:2b:41:70:dd:65:78:bd:7e: 7a:96:e0:81:e1:e7:b8:4c:6d:7e:2d:e0:49:89:a0: a3:06:ed:5a:c9:89:0f:a3:a2:fb:76:f7:d7:17:7b: 7b:92:53:51:43:6b:30:71:79:22:61:ca:e4:b2:0d: 6b:56:b2:c5:af:11:82:8a:43:9c:4c:9e:27:20:94: f1:12:2a:b5:af:d4:26:76:8c:82:f4:b0:c6:68:1f: 7b:19:7f:eb:6c:fa:59:9d:ba:be:0e:91:95:b0:6b: c2:58:d3:2a:c7:6e:6b:6e:8c:6b:9f:62:94:c4:59: ef:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:45:EF:05:11:64:50:33:6C:6A:7D:C2:64:FC:EE:B6:DB:C1:6A:26 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D43EBED0613C11F0B60AFC14C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.150.0/23 160.22.232.0/23 160.30.72.0/23 165.99.226.0/23 165.101.109.0/24 165.101.204.0/24 165.101.229.0/24 Signature Algorithm: sha256WithRSAEncryption aa:fa:c3:e7:2c:b5:65:8f:13:81:78:88:b5:6f:ef:d6:66:bd: 6a:19:86:7d:04:81:38:17:4f:df:ac:cb:81:44:8c:78:b0:fb: b0:ab:d6:3d:7c:ff:26:91:d0:cd:8d:2a:bb:cc:84:08:51:0d: ae:c0:04:85:63:38:96:0b:98:95:b8:db:61:f9:3e:31:08:ce: 2b:d7:27:17:a5:f6:09:f3:62:ff:fd:0e:f3:78:36:50:71:fb: ee:9b:0c:31:24:15:88:15:7f:69:a6:d0:22:5c:ef:00:db:dd: 04:43:9d:1a:83:6a:3e:2d:17:b6:77:4a:ee:0b:53:42:64:ad: f4:f5:94:7e:76:07:04:22:c3:c7:e5:23:e1:85:f9:08:90:1d: e3:74:35:40:d8:87:1b:6e:ce:6d:c7:03:9f:78:68:ec:9c:95: ee:19:4a:00:a9:75:59:49:f0:6b:6a:b2:ac:f0:af:83:c7:19: 48:73:ab:7b:02:67:72:9e:dd:a8:1d:84:81:10:a0:74:2b:1d: da:0e:a6:c6:34:f6:bc:c6:42:a2:86:f2:03:05:cd:00:8b:de: 40:83:c3:68:2a:85:84:23:72:0c:74:8e:65:3b:02:2b:07:09: 1b:74:c0:5e:83:e7:30:95:52:25:3d:a9:c4:21:ce:36:56:6c: 1e:dc:ca:76 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICLXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNDA2MDg0NTE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQzNzI5ZS1kYTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZSkVvrH6entIVIxee80PwDKP2pbII0zYMzJxQWq6fQByUpJSCq3+40V6v24 PjJYWDwfEPSujCY2HDrZBKjPZbLo8umJtXI458anlNUUHjRGfqEPaeSQ0qYcYwNu elEfZmb1UhnHLwGcGAh0AFfxfVWgGCsPP8kCif+/VRCrR/n6DAfa/VBCbFLkA+SE K0Fw3WV4vX56luCB4ee4TG1+LeBJiaCjBu1ayYkPo6L7dvfXF3t7klNRQ2swcXki Ycrksg1rVrLFrxGCikOcTJ4nIJTxEiq1r9QmdoyC9LDGaB97GX/rbPpZnbq+DpGV sGvCWNMqx25rboxrn2KUxFnvTwIDAQABo4IChDCCAoAwHQYDVR0OBBYEFFJF7wUR ZFAzbGp9wmT87rbbwWomMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDQzRUJFRDA2 MTNDMTFGMEI2MEFGQzE0QzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQBnQqWAwQBoBboAwQBoB5IAwQBpWPiAwQApWVtAwQApWXMAwQApWXl MA0GCSqGSIb3DQEBCwUAA4IBAQCq+sPnLLVljxOBeIi1b+/WZr1qGYZ9BIE4F0/f rMuBRIx4sPuwq9Y9fP8mkdDNjSq7zIQIUQ2uwASFYziWC5iVuNth+T4xCM4r1ycX pfYJ82L//Q7zeDZQcfvumwwxJBWIFX9pptAiXO8A290EQ50ag2o+LRe2d0ruC1NC ZK309ZR+dgcEIsPH5SPhhfkIkB3jdDVA2Icbbs5txwOfeGjsnJXuGUoAqXVZSfBr arKs8K+DxxlIc6t7Amdynt2oHYSBEKB0Kx3aDqbGNPa8xkKihvIDBc0Ai95Ag8No KoWEI3IMdI5lOwIrBwkbdMBeg+cwlVIlPanEIc42Vmwe3Mp2 -----END CERTIFICATE-----Generated at Fri Apr 17 23:38:17 2026 by rpki-client