$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEE0F80A0ECC11F08C313C71C4F9AE02.roa File: FEE0F80A0ECC11F08C313C71C4F9AE02.roa (raw, json) Hash identifier: TaSkJTYF69DeADgHsHi4+s3u+DxzP5s4TVQsQOasB18= Subject key identifier: FF:CF:FB:3B:5C:64:2E:C5:4A:11:08:A0:46:61:7A:31:3C:27:85:20 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D85E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEE0F80A0ECC11F08C313C71C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:54:34 +0000 ROA not before: Thu 08 May 2025 16:29:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153734 IP address blocks: 163.223.194.0/23 maxlen: 24 2401:f920::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55390 (0xd85e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:29:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c3aa-eb17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:eb:e1:86:09:41:42:98:19:78:3a:62:8b:9b: a6:0e:ef:70:9a:b2:25:18:2a:0e:3b:47:4b:d9:65: 8a:03:61:1e:3b:8d:6b:8f:4f:5a:7a:45:fe:12:11: 07:50:40:b1:1d:ec:5a:19:2f:b5:84:e9:33:ec:fb: 91:71:f5:00:ce:9e:e1:be:3b:cc:50:ea:3e:c2:13: 7e:05:35:ff:4d:f4:12:6d:8b:a3:b0:d6:f9:b2:14: 37:d5:74:1d:a6:46:12:2b:71:11:4d:2d:a1:b6:78: a3:9e:7f:c0:1d:25:68:92:cb:a4:2b:76:34:87:30: 1f:fe:7a:ae:cd:8b:9a:53:d1:f5:d5:ff:a2:fe:f0: 5d:e1:fe:02:10:57:54:9b:3b:cf:0f:32:69:ea:39: d0:fd:91:97:e6:fa:68:0c:48:0e:be:2a:fb:d8:12: ad:ff:f8:da:e6:2d:77:ad:7f:18:c0:b2:09:a7:c0: 18:45:74:e7:49:9e:41:fd:d3:5e:e8:56:77:50:fb: f0:42:b0:c7:0a:8a:e0:18:63:d0:34:d8:12:01:57: fd:e8:4d:dc:4e:89:ed:5c:f2:8d:77:68:55:b2:a4: 98:af:2a:b0:e3:8a:d1:6f:a3:13:c7:b3:69:4b:52: b5:21:d4:2a:8c:9e:25:1d:1f:d2:57:c5:b7:f1:81: ea:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CF:FB:3B:5C:64:2E:C5:4A:11:08:A0:46:61:7A:31:3C:27:85:20 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEE0F80A0ECC11F08C313C71C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.194.0/23 IPv6: 2401:f920::/32 Signature Algorithm: sha256WithRSAEncryption 01:8f:44:6f:41:df:04:14:3d:b5:38:77:25:c4:c9:83:aa:6d: 1e:c5:8b:b4:d9:0f:0b:d8:01:97:36:47:c2:b0:ad:f8:f9:e2: 32:c5:7d:aa:7c:78:6b:b0:93:33:37:46:84:3d:89:f1:6c:c5: ae:d3:7a:c0:b8:86:16:a3:2d:f4:7d:a3:ef:33:98:74:2a:b0: 4b:4c:b0:59:99:5b:62:32:39:1c:a2:50:6e:70:af:14:f7:02: b6:5f:35:be:d3:64:a0:77:3e:de:5d:ae:36:95:60:28:b4:77: 19:be:ba:b3:6f:11:db:9d:04:79:7d:6b:a0:a7:26:60:25:80: d8:dc:27:62:5e:7c:70:62:70:5a:3b:79:ff:37:b3:f0:1d:1b: f9:5a:03:16:70:0b:d2:e9:97:10:79:c5:9a:63:d7:5e:06:44: 10:40:a6:a7:8c:be:1f:98:9a:24:6e:84:e2:c6:75:9d:06:d2: 53:7f:cc:d1:1a:09:05:98:b5:a8:70:d4:bc:40:9f:d0:45:7d: 64:d2:8a:92:f8:3f:0a:eb:3b:a3:2d:b2:b8:4a:b3:a1:3d:c8: 8d:9d:5f:38:30:83:b0:8a:68:e3:18:72:00:b1:1a:d6:e3:50: 33:5b:38:24:64:30:28:09:a1:bf:3f:ea:56:18:e6:5b:49:28: 26:bf:8a:e7 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDANheMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjkzN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMzYWEtZWIxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOzr4YYJQUKYGXg6Youbpg7vcJqyJRgqDjtHS9lligNhHjuNa49PWnpF/hIR B1BAsR3sWhkvtYTpM+z7kXH1AM6e4b47zFDqPsITfgU1/030Em2Lo7DW+bIUN9V0 HaZGEitxEU0tobZ4o55/wB0laJLLpCt2NIcwH/56rs2LmlPR9dX/ov7wXeH+AhBX VJs7zw8yaeo50P2Rl+b6aAxIDr4q+9gSrf/42uYtd61/GMCyCafAGEV050meQf3T XuhWd1D78EKwxwqK4Bhj0DTYEgFX/ehN3E6J7VzyjXdoVbKkmK8qsOOK0W+jE8ez aUtStSHUKoyeJR0f0lfFt/GB6lMCAwEAAaOCAm8wggJrMB0GA1UdDgQWBBT/z/s7 XGQuxUoRCKBGYXoxPCeFIDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZFRTBGODBB MEVDQzExRjA4QzMxM0M3MUM0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAaPfwjANBAIAAjAHAwUAJAH5IDANBgkqhkiG9w0BAQsFAAOCAQEA AY9Eb0HfBBQ9tTh3JcTJg6ptHsWLtNkPC9gBlzZHwrCt+PniMsV9qnx4a7CTMzdG hD2J8WzFrtN6wLiGFqMt9H2j7zOYdCqwS0ywWZlbYjI5HKJQbnCvFPcCtl81vtNk oHc+3l2uNpVgKLR3Gb66s28R250EeX1roKcmYCWA2NwnYl58cGJwWjt5/zez8B0b +VoDFnAL0umXEHnFmmPXXgZEEECmp4y+H5iaJG6E4sZ1nQbSU3/M0RoJBZi1qHDU vECf0EV9ZNKKkvg/Cus7oy2yuEqzoT3IjZ1fODCDsIpo4xhyALEa1uNQM1s4JGQw KAmhvz/qVhjmW0koJr+K5w== -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:18 2026 by rpki-client