$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A24DB1C7D5211EEBD518553C4F9AE02.roa File: 1A24DB1C7D5211EEBD518553C4F9AE02.roa (raw, json) Hash identifier: 7/9Z8q6Q6F1m2WnSo5cMeOsZ1o5E6z5tyw//8rRYSgU= Subject key identifier: 54:DB:E0:95:C3:52:F6:DA:7A:B8:E7:29:68:B9:10:04:11:47:FE:4D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D28C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A24DB1C7D5211EEBD518553C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:20:41 +0000 ROA not before: Thu 08 May 2025 16:01:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134855 IP address blocks: 202.160.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53900 (0xd28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:01:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bbb9-2f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d4:d2:53:43:cf:7b:da:1b:5d:2d:f3:ff:fb: a6:ab:b1:d3:06:b7:90:2b:27:14:c4:43:ba:ef:5c: 42:06:42:93:1c:3d:14:57:a2:6f:7e:6d:83:f0:03: 45:0f:37:9b:42:8e:6c:79:e1:fc:1f:ec:1b:5c:fc: 81:ef:2f:b6:e5:b8:6b:20:e3:24:96:e6:e6:81:81: 0f:45:00:63:2e:b7:fa:04:47:80:d2:3e:bb:8f:c4: 33:30:23:81:d6:1c:d8:11:38:1c:7e:96:9b:32:2a: 64:9f:cf:bb:b1:af:3e:a8:7a:be:2b:ba:ad:e0:b7: 15:e2:3b:b7:63:8f:a5:27:ea:9c:4d:4c:a1:ac:b7: 51:90:40:c6:01:95:5d:ca:af:b4:3e:03:a7:f5:c4: 29:07:17:eb:30:02:e9:cb:d9:ea:40:ab:19:19:39: 09:0c:8a:b7:0b:57:2a:1b:d1:3a:fe:8e:53:3e:2e: 4b:54:42:88:15:d7:a4:16:6e:54:0d:eb:f1:9e:8f: b6:d6:2a:67:f6:48:10:eb:e0:a4:29:65:30:38:54: 7a:4e:ea:54:23:fb:37:d5:7d:12:42:62:06:3b:60: d9:5e:3a:cb:8f:ca:79:2c:9e:27:56:5e:b4:16:88: 7e:fe:4d:cb:b7:0a:01:e1:f9:8d:f8:e2:b6:48:fd: d4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DB:E0:95:C3:52:F6:DA:7A:B8:E7:29:68:B9:10:04:11:47:FE:4D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A24DB1C7D5211EEBD518553C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.160.174.0/24 Signature Algorithm: sha256WithRSAEncryption 43:19:e5:3f:ef:88:89:6b:5a:df:61:47:6d:33:8b:d9:9e:9c: 07:37:1a:b2:43:f0:7c:6c:50:be:2a:d0:f8:95:1d:8a:be:88: 6b:77:1c:8b:06:0a:0d:78:79:95:a9:6f:34:f1:61:e5:f7:7f: 06:bb:61:10:7b:31:99:14:02:43:80:0b:66:6f:ed:f8:1e:b8: ef:c0:ce:61:93:b6:c4:e6:12:4f:17:75:03:29:45:2d:7f:f5: bd:38:d0:95:89:db:d8:5c:ab:dd:22:3e:30:d8:0b:2c:15:64: 7e:ca:c0:f4:ea:ac:de:42:a9:55:59:a3:b3:47:9e:04:24:30: de:ea:95:1a:a9:fd:50:c5:85:75:7f:74:35:bf:eb:97:37:66: b0:68:e9:03:2d:7d:f9:fa:d5:71:18:39:66:b4:1e:04:05:79: d8:17:4b:fa:d9:49:a7:cb:a7:3e:d4:cb:07:3b:ea:3a:ee:b5: 92:5c:0a:a5:50:aa:a2:63:28:3f:96:a0:2d:2e:16:02:a5:59: 81:cc:e7:15:55:c2:73:a7:ac:09:16:01:ec:58:89:f0:5f:3d: 38:db:59:ac:2d:22:79:01:9a:e2:cf:2c:61:b2:a3:6f:09:e1: 26:04:21:53:1d:32:3f:86:9e:fd:1b:ab:3e:ae:07:e6:e8:34: d8:82:c8:55 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANKMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDE0OVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJiYjktMmY1ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjU0lNDz3vaG10t8//7pqux0wa3kCsnFMRDuu9cQgZCkxw9FFeib35tg/AD RQ83m0KObHnh/B/sG1z8ge8vtuW4ayDjJJbm5oGBD0UAYy63+gRHgNI+u4/EMzAj gdYc2BE4HH6WmzIqZJ/Pu7GvPqh6viu6reC3FeI7t2OPpSfqnE1Moay3UZBAxgGV XcqvtD4Dp/XEKQcX6zAC6cvZ6kCrGRk5CQyKtwtXKhvROv6OUz4uS1RCiBXXpBZu VA3r8Z6PttYqZ/ZIEOvgpCllMDhUek7qVCP7N9V9EkJiBjtg2V46y4/KeSyeJ1Ze tBaIfv5Ny7cKAeH5jfjitkj91MECAwEAAaOCAmAwggJcMB0GA1UdDgQWBBRU2+CV w1L22nq45ylouRAEEUf+TTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFBMjREQjFD N0Q1MjExRUVCRDUxODU1M0M0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMqgrjANBgkqhkiG9w0BAQsFAAOCAQEAQxnlP++IiWta32FHbTOL 2Z6cBzcaskPwfGxQvirQ+JUdir6Ia3cciwYKDXh5lalvNPFh5fd/BrthEHsxmRQC Q4ALZm/t+B6478DOYZO2xOYSTxd1AylFLX/1vTjQlYnb2Fyr3SI+MNgLLBVkfsrA 9Oqs3kKpVVmjs0eeBCQw3uqVGqn9UMWFdX90Nb/rlzdmsGjpAy19+frVcRg5ZrQe BAV52BdL+tlJp8unPtTLBzvqOu61klwKpVCqomMoP5agLS4WAqVZgcznFVXCc6es CRYB7FiJ8F89ONtZrC0ieQGa4s8sYbKjbwnhJgQhUx0yP4ae/RurPq4H5ug02ILI VQ== -----END CERTIFICATE-----Generated at Mon Mar 2 13:05:13 2026 by rpki-client