$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BE7D2D5AC23611EC89B7DA53C4F9AE02.roa File: BE7D2D5AC23611EC89B7DA53C4F9AE02.roa (raw, json) Hash identifier: 35tnBbC0+afkBGaN5rcTyyjTLjSoPtjeFSeN47st1hU= Subject key identifier: F3:0F:B7:8C:AC:C3:3F:57:23:FA:5D:9A:F0:B7:CE:DE:6F:94:8C:09 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D6EA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BE7D2D5AC23611EC89B7DA53C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:47:01 +0000 ROA not before: Thu 08 May 2025 16:22:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149556 IP address blocks: 43.227.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55018 (0xd6ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:22:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c1e4-8439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:66:df:ab:91:20:88:06:5a:94:3e:5e:c4:88: f4:7e:0b:06:5a:22:d0:95:f3:30:c6:d7:65:f6:f0: bd:31:b5:24:6a:ab:d8:98:db:6f:26:c3:26:96:61: 27:03:98:5c:cd:27:d0:1a:ed:1e:cd:8f:3f:c2:9a: 26:dc:7e:ff:83:22:dd:50:97:7e:46:96:cc:da:c8: e6:bc:6c:70:3c:98:52:bb:c3:45:3a:35:88:dc:40: ec:a9:51:c8:f4:8c:f1:04:86:18:d6:ba:34:df:8e: 35:ec:66:67:03:83:35:11:e9:e4:7e:5c:cd:d3:cd: c5:2a:b3:cf:61:72:00:cd:f1:9d:8f:fd:5b:5b:c0: 10:ee:90:c9:73:c9:43:de:3a:70:b2:71:07:58:73: 6f:63:eb:c3:e9:9b:a2:61:cf:c9:af:43:9d:ff:a9: b2:8d:b4:f0:ee:72:49:fd:df:bc:93:54:66:a1:de: ac:af:d1:97:84:3c:d0:0e:31:95:7e:d1:fd:2b:f7: fb:1c:bd:6c:fd:f9:eb:2d:55:76:96:6e:9d:5d:5a: 81:18:14:a5:a3:46:4d:e8:b0:8d:1b:17:87:c2:65: ff:87:9f:5e:79:63:8d:c7:c6:c8:8a:58:db:be:b4: da:23:d8:57:db:e2:48:e8:c8:11:ed:23:1b:5c:b0: 00:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:0F:B7:8C:AC:C3:3F:57:23:FA:5D:9A:F0:B7:CE:DE:6F:94:8C:09 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BE7D2D5AC23611EC89B7DA53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.227.17.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:99:89:cc:ed:a5:e7:97:51:2b:22:03:29:76:68:30:8b:e1: 40:cc:20:49:60:b6:e5:d1:d4:30:65:ab:40:5b:b4:33:62:d0: 9d:bb:81:5f:7c:98:64:1d:8f:67:55:b3:d5:fd:1f:de:f8:5d: ac:26:c2:14:a8:18:ec:d9:cb:bd:e8:35:8e:67:5e:9a:b5:b2: 16:d7:40:51:fa:21:6c:9a:ef:d9:4e:8c:3f:03:26:3c:5d:79: 6f:a6:0e:e8:07:a6:ff:00:c0:7c:cc:b7:40:ba:f1:59:9d:58: 58:a7:13:cc:c4:96:eb:6a:89:c5:c9:9f:23:16:e7:3c:4f:35: d6:71:51:24:8a:2f:be:dc:c0:26:fc:15:70:1a:21:46:47:fd: 7e:91:ad:8b:05:9d:b5:43:d8:02:ce:0e:68:9a:fb:33:68:22: 1e:23:94:92:a0:ea:98:8d:e1:fa:9c:1c:d5:b3:93:7b:8c:16: 0d:94:c1:7e:e1:86:6e:e0:02:db:00:04:9e:39:8c:0e:0a:c7: a7:e6:ac:53:2f:6a:d3:4f:66:41:14:e5:45:68:57:58:4f:e4: c0:8f:55:e5:9c:80:6d:49:c5:84:40:eb:db:d4:c9:66:9f:17: ca:24:b3:b3:56:e5:d7:01:ac:d9:00:ee:e9:59:d9:a4:97:30: d9:57:1f:61 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANbqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjI1NloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMxZTQtODQzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANRm36uRIIgGWpQ+XsSI9H4LBloi0JXzMMbXZfbwvTG1JGqr2JjbbybDJpZh JwOYXM0n0BrtHs2PP8KaJtx+/4Mi3VCXfkaWzNrI5rxscDyYUrvDRTo1iNxA7KlR yPSM8QSGGNa6NN+ONexmZwODNRHp5H5czdPNxSqzz2FyAM3xnY/9W1vAEO6QyXPJ Q946cLJxB1hzb2Prw+mbomHPya9Dnf+pso208O5ySf3fvJNUZqHerK/Rl4Q80A4x lX7R/Sv3+xy9bP356y1VdpZunV1agRgUpaNGTeiwjRsXh8Jl/4efXnljjcfGyIpY 27602iPYV9viSOjIEe0jG1ywANsCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBTzD7eM rMM/VyP6XZrwt87eb5SMCTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0JFN0QyRDVB QzIzNjExRUM4OUI3REE1M0M0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACvjETANBgkqhkiG9w0BAQsFAAOCAQEAepmJzO2l55dRKyIDKXZo MIvhQMwgSWC25dHUMGWrQFu0M2LQnbuBX3yYZB2PZ1Wz1f0f3vhdrCbCFKgY7NnL veg1jmdemrWyFtdAUfohbJrv2U6MPwMmPF15b6YO6Aem/wDAfMy3QLrxWZ1YWKcT zMSW62qJxcmfIxbnPE811nFRJIovvtzAJvwVcBohRkf9fpGtiwWdtUPYAs4OaJr7 M2giHiOUkqDqmI3h+pwc1bOTe4wWDZTBfuGGbuAC2wAEnjmMDgrHp+asUy9q009m QRTlRWhXWE/kwI9V5ZyAbUnFhEDr29TJZp8XyiSzs1bl1wGs2QDu6VnZpJcw2Vcf YQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:53 2026 by rpki-client