$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D9FBD5C2711511F0B3EA3787C4F9AE02.roa File: D9FBD5C2711511F0B3EA3787C4F9AE02.roa (raw, json) Hash identifier: IVOxyOIKrIdGMEbc41ogwQK+8FomdhStzNpH2LAkpNE= Subject key identifier: 1A:57:08:77:65:C1:CE:93:7A:7A:E8:E7:13:B0:EC:14:DF:07:A1:83 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CAB Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D9FBD5C2711511F0B3EA3787C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:49:10 +0000 ROA not before: Mon 04 Aug 2025 09:31:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151720 IP address blocks: 157.10.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11435 (0x2cab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 4 09:31:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c266-b7d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b5:e3:08:b1:7c:99:e2:28:5d:33:a3:e7:e0: 4a:b6:a3:ea:8f:61:d2:14:49:ea:aa:7e:7b:c1:96: b6:7b:eb:54:17:ec:89:22:0c:a3:1e:31:7a:73:b1: 3a:d6:ab:5d:ae:ba:25:bf:33:55:b7:d4:cf:55:00: 31:48:93:a9:69:a6:67:8d:a3:f5:d6:cc:ea:bc:7f: 48:a1:31:ad:ec:5b:19:4a:4f:3f:24:0c:98:f5:07: 73:7a:7f:1c:76:3d:91:cf:9d:72:4c:65:f8:8e:90: 46:4b:36:7e:dc:e8:62:80:d1:3f:09:ad:38:ea:b3: 08:3d:18:e5:0e:24:7d:f4:38:20:6b:fe:77:1f:26: 42:03:87:bd:ed:0a:f7:0c:de:e6:36:dc:fa:13:30: 02:94:49:ea:f2:92:3d:63:78:3f:b0:5e:70:96:38: 73:18:25:5f:dd:ce:ad:88:3a:ef:62:da:fc:37:58: 83:fe:b9:ba:1c:cf:42:4d:8f:5e:2c:56:73:46:ae: 08:1c:7a:e6:91:cc:4d:a3:60:a6:33:98:e3:30:04: 7e:25:54:5c:44:51:11:7a:61:9b:a8:09:d0:66:99: 6d:7c:72:8f:cd:28:fb:bf:e9:3d:22:82:a6:6f:ee: 31:8b:92:c7:17:5d:ed:d2:62:30:d5:20:15:9d:73: d0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:57:08:77:65:C1:CE:93:7A:7A:E8:E7:13:B0:EC:14:DF:07:A1:83 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D9FBD5C2711511F0B3EA3787C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.14.0/23 Signature Algorithm: sha256WithRSAEncryption bb:9e:ff:48:3b:7b:be:d2:92:84:7a:07:ee:03:91:d2:88:23: 67:53:f9:70:80:4a:62:97:20:9c:83:8b:a7:be:1e:d2:f2:89: 11:8b:65:1f:a8:5d:b3:7b:4e:e4:72:9e:e3:d8:4d:e6:cb:f3: c0:87:3c:4d:9f:6a:d3:c6:4b:97:6d:e2:8c:f4:c6:aa:7a:5d: f7:c0:5a:42:4f:1d:b3:34:0b:f8:9b:b6:d3:b0:16:a4:7a:f3: d2:ec:30:fa:b2:d3:84:da:e0:2e:6c:00:27:65:c1:cf:80:47: f0:a2:6f:58:24:7b:d7:df:83:31:72:04:4a:fc:8a:ea:e3:d6: 99:65:15:e2:78:f3:0b:63:f3:6d:52:2a:2d:10:3a:fe:7e:d0: 9b:d7:1c:f6:9d:85:5d:59:60:42:25:fd:c9:fd:ce:e9:27:97: b8:ae:aa:80:f9:ae:4c:58:31:f4:00:12:8a:4d:4b:45:e4:95: b3:ea:98:2b:c6:bc:62:1d:29:41:25:ba:d2:0f:92:9e:1e:94: ab:6f:a7:e9:1a:37:13:c9:94:b2:61:cb:c2:12:9d:48:43:04: 83:7f:48:79:ff:60:d1:0d:e3:eb:e1:d7:30:c0:98:bb:6f:dd: 5e:38:2c:61:16:41:11:6b:90:4d:46:84:b4:22:78:f5:15:cc: 35:6b:ca:6c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwODA0MDkzMTUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzI2Ni1iN2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbXjCLF8meIoXTOj5+BKtqPqj2HSFEnqqn57wZa2e+tUF+yJIgyjHjF6c7E6 1qtdrrolvzNVt9TPVQAxSJOpaaZnjaP11szqvH9IoTGt7FsZSk8/JAyY9Qdzen8c dj2Rz51yTGX4jpBGSzZ+3OhigNE/Ca046rMIPRjlDiR99Dgga/53HyZCA4e97Qr3 DN7mNtz6EzAClEnq8pI9Y3g/sF5wljhzGCVf3c6tiDrvYtr8N1iD/rm6HM9CTY9e LFZzRq4IHHrmkcxNo2CmM5jjMAR+JVRcRFERemGbqAnQZpltfHKPzSj7v+k9IoKm b+4xi5LHF13t0mIw1SAVnXPQxwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBpXCHdl wc6Tenro5xOw7BTfB6GDMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDlGQkQ1QzI3 MTE1MTFGMEIzRUEzNzg3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQoOMA0GCSqGSIb3DQEBCwUAA4IBAQC7nv9IO3u+0pKEegfuA5HS iCNnU/lwgEpilyCcg4unvh7S8okRi2UfqF2ze07kcp7j2E3my/PAhzxNn2rTxkuX beKM9Maqel33wFpCTx2zNAv4m7bTsBakevPS7DD6stOE2uAubAAnZcHPgEfwom9Y JHvX34MxcgRK/Irq49aZZRXiePMLY/NtUiotEDr+ftCb1xz2nYVdWWBCJf3J/c7p J5e4rqqA+a5MWDH0ABKKTUtF5JWz6pgrxrxiHSlBJbrSD5KeHpSrb6fpGjcTyZSy YcvCEp1IQwSDf0h5/2DRDePr4dcwwJi7b91eOCxhFkERa5BNRoS0Inj1Fcw1a8ps -----END CERTIFICATE-----Generated at Mon Mar 2 16:45:08 2026 by rpki-client