$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ECCD98A851C011F0BFF6C75FC4F9AE02.roa File: ECCD98A851C011F0BFF6C75FC4F9AE02.roa (raw, json) Hash identifier: Yl3qVfI2Gwd5i2wkt5DYX5eq+8ha1F6GPRl7Q49Jxeg= Subject key identifier: 65:4A:3A:62:14:72:09:44:BA:69:59:BD:84:D7:33:BD:B4:F8:64:16 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D945 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ECCD98A851C011F0BFF6C75FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:58:32 +0000 ROA not before: Wed 25 Jun 2025 12:35:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133388 IP address blocks: 1.7.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55621 (0xd945) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 25 12:35:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c498-3aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:2d:f0:c8:5f:f5:fe:17:9d:df:99:23:08:13: 7a:6e:8f:9a:11:a8:b2:1e:0d:99:38:5a:f1:ec:1d: 40:dd:5c:68:08:c8:d0:2d:25:e4:a4:fb:02:57:ef: 6c:fd:65:d6:15:dc:7d:c2:ab:97:f3:36:6e:ce:39: 86:be:12:c8:8b:4a:40:33:be:d2:b6:97:04:e5:56: 99:b2:2d:06:96:f8:3f:ff:3b:ff:e4:59:c3:9e:f2: b5:83:45:a7:cf:a5:33:13:fa:81:53:8f:ba:19:6c: 39:3b:41:cb:40:d0:c8:80:ec:a0:90:85:3d:a6:85: 2a:d6:4c:89:58:2d:54:5b:e4:4d:7d:13:d6:b0:b7: a7:0f:f9:30:35:e6:1f:ec:0b:2e:b8:bc:43:0e:3a: b5:08:a9:4c:7e:33:e1:82:d2:2d:60:f9:87:da:c9: 3c:c0:17:a0:73:ad:da:97:2a:03:94:4e:a4:b6:99: 8c:6e:cf:3e:14:15:46:81:f6:20:0d:07:24:13:69: c9:5b:cb:ed:61:29:be:cb:fc:39:9b:8a:4a:e7:c2: c4:0d:46:09:66:28:e8:0f:1d:f4:a9:1a:6e:d8:67: 21:7e:e6:cb:91:5a:6c:57:4e:3b:8e:22:c9:2e:41: 10:a3:4f:85:22:7f:31:3e:d6:80:5f:a1:e9:e2:0f: ed:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:4A:3A:62:14:72:09:44:BA:69:59:BD:84:D7:33:BD:B4:F8:64:16 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ECCD98A851C011F0BFF6C75FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 1.7.24.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:be:5b:7e:fe:e3:d2:30:6c:9c:3f:65:d0:f8:7f:56:b6:be: af:6f:b4:15:cb:65:98:bb:da:2d:71:8c:39:3d:fc:80:dc:4d: f2:72:35:e4:08:56:3c:0b:a4:f7:47:11:99:28:85:0e:8e:ab: f4:73:41:06:7f:32:06:8c:93:55:00:e1:fe:0c:ca:f1:d6:dd: c1:53:05:be:a9:fe:04:97:a0:50:50:1f:4a:d9:0a:54:7b:a8: ba:26:ac:b3:d3:f4:0b:24:3b:df:0a:3d:02:45:56:b3:7b:c9: 3b:26:b1:c6:49:99:e9:35:7e:20:61:40:ca:3d:96:04:22:a5: fa:c9:1d:bf:99:d4:8f:d0:af:ca:df:b3:22:3a:81:c6:35:3d: 51:49:f0:2f:c5:c7:f4:61:0a:56:01:db:99:fd:dc:df:63:fa: 76:34:83:bf:39:33:b9:72:79:0c:22:96:d3:50:c6:8e:9e:15: 2c:ef:37:9a:c8:e4:9f:c0:a2:88:d6:1b:08:ef:3b:3e:1e:34: e8:82:87:25:50:77:d2:53:d7:5e:fc:3f:d1:f2:13:6e:bf:a6: 8a:e0:b9:b5:83:99:18:09:4c:54:d8:d2:77:49:6e:69:0d:2a: b8:70:28:4a:08:86:c1:53:91:11:f7:8c:d8:81:5b:52:ca:78: 8d:cb:3b:39 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANlFMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDYyNTEyMzU1MFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM0OTgtM2FlYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIIt8Mhf9f4Xnd+ZIwgTem6PmhGosh4NmTha8ewdQN1caAjI0C0l5KT7Alfv bP1l1hXcfcKrl/M2bs45hr4SyItKQDO+0raXBOVWmbItBpb4P/87/+RZw57ytYNF p8+lMxP6gVOPuhlsOTtBy0DQyIDsoJCFPaaFKtZMiVgtVFvkTX0T1rC3pw/5MDXm H+wLLri8Qw46tQipTH4z4YLSLWD5h9rJPMAXoHOt2pcqA5ROpLaZjG7PPhQVRoH2 IA0HJBNpyVvL7WEpvsv8OZuKSufCxA1GCWYo6A8d9KkabthnIX7my5FabFdOO44i yS5BEKNPhSJ/MT7WgF+h6eIP7QcCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBRlSjpi FHIJRLppWb2E1zO9tPhkFjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VDQ0Q5OEE4 NTFDMDExRjBCRkY2Qzc1RkM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAAEHGDANBgkqhkiG9w0BAQsFAAOCAQEAHL5bfv7j0jBsnD9l0Ph/ Vra+r2+0FctlmLvaLXGMOT38gNxN8nI15AhWPAuk90cRmSiFDo6r9HNBBn8yBoyT VQDh/gzK8dbdwVMFvqn+BJegUFAfStkKVHuouiass9P0CyQ73wo9AkVWs3vJOyax xkmZ6TV+IGFAyj2WBCKl+skdv5nUj9Cvyt+zIjqBxjU9UUnwL8XH9GEKVgHbmf3c 32P6djSDvzkzuXJ5DCKW01DGjp4VLO83msjkn8CiiNYbCO87Ph406IKHJVB30lPX Xvw/0fITbr+miuC5tYOZGAlMVNjSd0luaQ0quHAoSgiGwVOREfeM2IFbUsp4jcs7 OQ== -----END CERTIFICATE-----Generated at Mon Mar 2 15:56:21 2026 by rpki-client