$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/FF20DEA0767511F0A9F58113C4F9AE02.roa File: FF20DEA0767511F0A9F58113C4F9AE02.roa (raw, json) Hash identifier: Rat3wSS6fWdqpmKOZKn72lbVnemClSWAZJe0NC/ZzKg= Subject key identifier: 54:C2:B6:F7:11:D4:A8:95:AA:C1:F4:55:D0:6B:CA:16:F6:72:B6:8A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CB1 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/FF20DEA0767511F0A9F58113C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:49:19 +0000 ROA not before: Mon 11 Aug 2025 05:42:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154108 IP address blocks: 192.172.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11441 (0x2cb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 11 05:42:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c26e-9389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:81:35:be:cb:7a:2e:e8:26:ad:0d:a9:a3:b3: 37:79:3f:9c:ca:dc:71:73:6b:e9:d0:8b:d1:71:6a: dc:94:04:f4:bb:e1:6e:41:f7:59:f5:b5:0d:06:fc: 43:ac:67:55:ca:c7:8c:91:a6:30:15:34:d9:63:41: 2e:cd:8f:6d:32:a6:57:3e:76:a2:94:a0:32:c4:ad: 0a:b1:da:b4:36:7c:ec:c5:7f:82:da:37:02:04:71: ce:c5:c0:0c:07:fe:68:ad:37:5c:a8:55:29:07:a5: 1d:0f:ca:57:09:fe:21:4b:f5:d7:1f:bc:04:e6:61: 2f:e7:50:ab:7d:31:21:01:7f:22:2e:16:9f:90:67: 02:63:fb:e6:3c:00:18:fe:bd:10:16:33:d8:41:62: c7:83:6d:43:68:ca:15:03:91:7d:99:bb:58:e5:c5: 17:7a:c8:f9:e2:a7:d1:8e:aa:07:77:a0:90:58:4f: 39:62:fd:4b:66:50:9a:a6:e4:e6:2a:8e:94:0d:bc: fc:2c:b9:db:82:8e:d5:89:d3:84:c4:c8:8a:8d:bf: 9f:7c:7a:0e:f7:b0:79:dd:33:90:8d:ab:48:63:10: 21:2d:27:f5:f3:77:b5:32:9e:54:eb:2a:e8:3c:ae: 57:98:82:0e:3e:ed:6b:65:79:7a:ca:97:bf:37:ed: fe:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C2:B6:F7:11:D4:A8:95:AA:C1:F4:55:D0:6B:CA:16:F6:72:B6:8A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/FF20DEA0767511F0A9F58113C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.172.245.0/24 Signature Algorithm: sha256WithRSAEncryption 30:ba:95:56:d1:ea:99:49:59:1f:37:91:c7:e4:8c:c9:5b:a4: 4c:ff:cb:26:d1:23:49:48:b3:c0:b8:ac:c1:54:90:91:d1:1f: ad:72:d1:5d:6f:4e:52:eb:d1:8f:60:9f:90:e8:25:6e:a4:df: 2e:2b:1b:c8:d0:40:e8:4b:06:ce:21:cd:44:06:36:cf:4b:66: e8:44:7c:ea:24:9b:3d:0c:77:12:f0:86:05:f0:9d:f6:5e:94: 64:50:fe:63:3b:16:40:d1:af:68:6a:30:90:fa:80:d3:70:1f: 67:46:19:76:68:f9:5a:27:e4:90:03:52:68:21:d7:7b:83:b4: 4b:73:17:59:0b:4d:af:cb:79:27:0f:6a:4d:70:7e:8a:ff:d4: a0:30:a4:9a:0f:3a:97:2b:52:fc:05:1d:c4:a0:91:00:e6:5b: 85:36:54:a3:0d:26:7e:4d:4e:07:8c:cc:da:3d:38:38:35:e0: ad:15:eb:a3:35:f5:0d:b9:47:5b:4a:fb:5d:53:59:77:6c:82: bf:77:97:7f:70:85:dd:72:11:3c:94:20:d7:c1:62:5e:0a:74: c7:38:8e:f5:71:f3:66:26:78:d6:71:2e:2b:24:dc:a1:76:b6: 22:1f:de:e8:f1:50:84:a0:24:d5:23:3a:e3:68:98:ee:81:cf: 3c:a7:8e:fb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwODExMDU0MjQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzI2ZS05Mzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIE1vst6LugmrQ2po7M3eT+cytxxc2vp0IvRcWrclAT0u+FuQfdZ9bUNBvxD rGdVyseMkaYwFTTZY0EuzY9tMqZXPnailKAyxK0Ksdq0NnzsxX+C2jcCBHHOxcAM B/5orTdcqFUpB6UdD8pXCf4hS/XXH7wE5mEv51CrfTEhAX8iLhafkGcCY/vmPAAY /r0QFjPYQWLHg21DaMoVA5F9mbtY5cUXesj54qfRjqoHd6CQWE85Yv1LZlCapuTm Ko6UDbz8LLnbgo7VidOExMiKjb+ffHoO97B53TOQjatIYxAhLSf183e1Mp5U6yro PK5XmIIOPu1rZXl6ype/N+3+CQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFTCtvcR 1KiVqsH0VdBryhb2craKMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRkYyMERFQTA3 Njc1MTFGMEE5RjU4MTEzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAwKz1MA0GCSqGSIb3DQEBCwUAA4IBAQAwupVW0eqZSVkfN5HH5IzJ W6RM/8sm0SNJSLPAuKzBVJCR0R+tctFdb05S69GPYJ+Q6CVupN8uKxvI0EDoSwbO Ic1EBjbPS2boRHzqJJs9DHcS8IYF8J32XpRkUP5jOxZA0a9oajCQ+oDTcB9nRhl2 aPlaJ+SQA1JoIdd7g7RLcxdZC02vy3knD2pNcH6K/9SgMKSaDzqXK1L8BR3EoJEA 5luFNlSjDSZ+TU4HjMzaPTg4NeCtFeujNfUNuUdbSvtdU1l3bIK/d5d/cIXdchE8 lCDXwWJeCnTHOI71cfNmJnjWcS4rJNyhdrYiH97o8VCEoCTVIzrjaJjugc88p477 -----END CERTIFICATE-----Generated at Mon Mar 2 15:00:32 2026 by rpki-client