$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BD4059A6F59311EF83B6E92CC4F9AE02.roa File: BD4059A6F59311EF83B6E92CC4F9AE02.roa (raw, json) Hash identifier: H2lTrkJyCFB99JPZ8+wPjFg9GGzJLE5Wdk4yISU8f9I= Subject key identifier: D6:5F:D7:1C:97:47:A4:A6:AF:E5:78:E6:04:D9:F4:EE:A3:9D:75:85 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D852 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BD4059A6F59311EF83B6E92CC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:54:20 +0000 ROA not before: Thu 08 May 2025 16:29:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153605 IP address blocks: 163.61.142.0/23 maxlen: 24 2401:efe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55378 (0xd852) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:29:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c39c-9798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e9:09:2c:44:92:4e:c2:be:e1:9c:3f:85:67: 39:95:f8:ed:20:0c:97:96:98:13:99:1b:56:be:2b: ba:07:98:45:1a:86:34:02:90:49:39:4b:fa:82:a3: b4:b3:1a:50:40:79:f4:e7:c2:b3:5b:68:69:0b:2e: 33:ac:60:89:31:04:fd:b5:b4:01:e2:09:34:7c:90: 36:cc:28:62:bb:16:9d:da:e7:6e:68:29:92:76:c8: 28:10:8c:2b:b6:dc:cd:76:1f:bb:94:34:b9:01:48: 12:09:14:9f:1d:67:fc:9b:ea:92:df:d2:82:27:62: b4:3e:df:7a:39:27:56:04:f1:50:85:79:4e:44:ac: 2c:31:32:c9:f8:50:7e:bd:9e:70:4f:fa:06:79:82: 54:e7:a0:a6:91:37:27:9a:0a:6d:ee:69:2c:97:67: f0:46:55:42:8f:53:69:37:eb:dc:5d:24:ed:1e:48: 47:45:66:c8:9a:f6:20:9e:6f:dc:d0:54:cf:bb:b1: 24:a5:3a:96:84:da:d1:c6:00:2c:df:92:25:f4:dd: e9:27:45:e3:56:c2:95:ea:97:d1:85:03:9b:94:33: bf:ab:f3:19:f5:9d:93:af:a7:2c:d6:e3:08:dc:22: 9c:11:3f:9e:38:d8:53:04:ff:3a:ab:04:7f:d3:36: 83:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:5F:D7:1C:97:47:A4:A6:AF:E5:78:E6:04:D9:F4:EE:A3:9D:75:85 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BD4059A6F59311EF83B6E92CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.61.142.0/23 IPv6: 2401:efe0::/32 Signature Algorithm: sha256WithRSAEncryption ba:d2:2b:2f:66:c6:ff:2d:7c:21:4c:a5:21:89:7a:75:89:fd: f8:39:de:a6:33:2a:d7:dc:1a:83:87:04:c2:c2:1b:fa:e7:4d: 58:41:ab:02:f3:c5:43:35:f0:d8:9b:c6:a7:f8:c0:1f:92:f4: f2:8d:f7:63:c3:70:00:f5:a7:8c:7b:a9:0c:fc:bf:07:62:d9: 01:99:86:17:40:dd:b2:b7:70:ab:89:65:6d:ca:b0:38:90:d8: e6:c3:04:ad:01:e2:6c:2a:7f:c0:5e:ca:d7:11:4d:4b:ca:0e: df:5e:0d:3b:06:8f:ec:37:8e:54:8b:44:a4:79:0a:1a:c0:c1: d3:33:22:2b:57:ce:48:05:30:5c:3f:ca:02:63:3a:1b:15:9b: f6:e4:d6:94:32:5f:00:b2:e6:48:9f:3b:c8:62:ef:60:38:49: fe:35:e9:0b:71:56:e3:f1:36:65:2a:f7:1f:68:0c:e4:5b:be: 29:71:0d:a3:89:c5:ee:d2:82:05:45:65:af:e7:ef:78:64:35: 94:38:6f:9a:82:4f:97:bf:47:16:ec:5e:f4:18:ba:af:38:b6: b4:be:23:ee:95:dd:a5:7e:c7:67:a8:43:09:8c:de:f3:a9:3f: 51:18:e5:e4:77:a2:db:6d:45:f9:b2:2e:ca:ed:01:d8:6f:91: b7:2f:bf:bc -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDANhSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjkyNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMzOWMtOTc5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKXpCSxEkk7CvuGcP4VnOZX47SAMl5aYE5kbVr4rugeYRRqGNAKQSTlL+oKj tLMaUEB59OfCs1toaQsuM6xgiTEE/bW0AeIJNHyQNswoYrsWndrnbmgpknbIKBCM K7bczXYfu5Q0uQFIEgkUnx1n/Jvqkt/SgiditD7fejknVgTxUIV5TkSsLDEyyfhQ fr2ecE/6BnmCVOegppE3J5oKbe5pLJdn8EZVQo9TaTfr3F0k7R5IR0VmyJr2IJ5v 3NBUz7uxJKU6loTa0cYALN+SJfTd6SdF41bCleqX0YUDm5Qzv6vzGfWdk6+nLNbj CNwinBE/njjYUwT/OqsEf9M2gwECAwEAAaOCAm8wggJrMB0GA1UdDgQWBBTWX9cc l0ekpq/leOYE2fTuo511hTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0JENDA1OUE2 RjU5MzExRUY4M0I2RTkyQ0M0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAaM9jjANBAIAAjAHAwUAJAHv4DANBgkqhkiG9w0BAQsFAAOCAQEA utIrL2bG/y18IUylIYl6dYn9+DnepjMq19wag4cEwsIb+udNWEGrAvPFQzXw2JvG p/jAH5L08o33Y8NwAPWnjHupDPy/B2LZAZmGF0Ddsrdwq4llbcqwOJDY5sMErQHi bCp/wF7K1xFNS8oO314NOwaP7DeOVItEpHkKGsDB0zMiK1fOSAUwXD/KAmM6GxWb 9uTWlDJfALLmSJ87yGLvYDhJ/jXpC3FW4/E2ZSr3H2gM5Fu+KXENo4nF7tKCBUVl r+fveGQ1lDhvmoJPl79HFuxe9Bi6rzi2tL4j7pXdpX7HZ6hDCYze86k/URjl5Hei 221F+bIuyu0B2G+Rty+/vA== -----END CERTIFICATE-----Generated at Mon Mar 2 18:30:31 2026 by rpki-client