$ rpki-client -vvf rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/AA73EF167DEB11EEB9699A24C4F9AE02.roa File: AA73EF167DEB11EEB9699A24C4F9AE02.roa (raw, json) Hash identifier: GCoUxXSsVbAe0WY7DuUx66j+ly/pwEQTvzaDkQp3iFo= Subject key identifier: 8F:A8:16:07:2F:55:2B:40:4E:94:63:17:1E:DF:05:71:E4:B0:BC:18 Certificate issuer: /CN=A918F00E/serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Certificate serial: 024E Authority key identifier: 18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/AA73EF167DEB11EEB9699A24C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:06:29 +0000 ROA not before: Sat 07 Feb 2026 02:21:54 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 136557 IP address blocks: 203.20.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F00E, serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Validity Not Before: Feb 7 02:21:54 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a455f5-ed0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:41:02:5d:2c:f4:5f:3d:49:25:2e:dc:b9:a2: 33:08:f9:68:37:fa:7a:39:33:f9:57:d6:54:20:65: 82:67:29:78:65:d9:8b:21:27:7d:16:22:82:be:5a: 8e:11:d1:6f:97:44:49:e4:a2:3d:6b:d8:15:b5:74: 5d:e5:fa:d6:d6:6b:ce:53:dc:47:cd:e3:bf:93:74: 69:87:60:27:7d:12:21:d8:82:02:2f:62:3f:e7:7b: 63:23:eb:e5:5e:39:0d:4c:38:29:e6:37:08:fe:3b: 66:0a:df:41:0a:91:dd:38:a7:bd:f2:7f:89:30:c4: c5:e5:1d:33:33:b9:99:b0:f9:6c:93:96:e9:06:25: df:ea:27:e3:a8:c8:1e:94:bd:05:7d:6a:6d:c9:ea: a7:4e:2f:b4:4e:16:51:09:2c:3c:2d:da:cb:60:71: f9:0e:88:fc:5f:78:55:72:d7:8a:67:9e:f7:97:3b: 91:c5:6b:df:bf:61:4a:13:e5:53:62:00:0b:40:07: d2:4e:37:fb:ee:f4:4d:a2:04:b0:67:af:ea:69:a0: 21:0a:29:40:be:c6:12:bc:59:16:e8:84:cd:2e:a0: eb:4e:26:58:ec:8d:da:84:e3:bf:91:41:1a:6c:ad: 10:00:98:31:ab:d5:25:01:93:c3:14:59:57:02:66: 35:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A8:16:07:2F:55:2B:40:4E:94:63:17:1E:DF:05:71:E4:B0:BC:18 X509v3 Authority Key Identifier: keyid:18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/AA73EF167DEB11EEB9699A24C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.20.69.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:f3:05:71:01:57:d6:bc:ad:e2:bc:59:d3:a3:9a:e1:ea:46: 06:13:94:d5:37:14:9b:80:c7:0c:e7:00:0a:fa:fd:0e:8d:6d: a3:db:96:38:00:c6:da:8c:d3:52:14:03:b7:27:9f:10:ff:43: 59:7e:8e:d5:be:01:f7:2e:ba:73:2b:5b:39:22:be:6f:98:a9: 10:ab:ba:37:32:c0:6e:5a:a2:c9:98:79:29:bf:5c:ae:2b:ed: 6e:f1:53:c6:55:0d:fd:08:4d:94:6c:4b:21:2c:84:48:fd:59: 9f:a4:97:19:5c:ae:17:e1:b7:7f:9e:c1:b6:6e:b5:34:e0:a0: 2e:4d:6f:13:ed:79:66:20:e5:2b:96:98:38:6f:44:09:72:f9: 6d:4c:73:a4:0b:9c:63:6e:4a:62:9b:1c:d0:f4:21:52:17:f6: a3:6e:3f:59:a2:81:37:e8:95:ea:ea:61:d3:12:71:40:a2:bf: c3:fc:22:eb:55:a6:35:11:cc:b8:a0:d6:e7:09:58:7b:62:6b: a4:ad:17:22:a4:a2:cf:17:1b:08:c7:5b:4a:2a:3b:5a:32:81: 36:1c:6e:b2:9f:e7:c1:2f:e2:10:ae:1c:00:fe:f2:7e:e3:0d: a7:16:df:94:04:42:8a:15:ba:80:7c:c1:4e:ac:f0:7a:c6:cd: 26:21:6c:c3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwMEUxMTAvBgNVBAUTKDE4RTFGNzMyRUZBNTNDMzk3M0ExQUNEMjJDMTM2OEE1 RTFGMkNBNTIwHhcNMjYwMjA3MDIyMTU0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTVmNS1lZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0ECXSz0Xz1JJS7cuaIzCPloN/p6OTP5V9ZUIGWCZyl4ZdmLISd9FiKCvlqO EdFvl0RJ5KI9a9gVtXRd5frW1mvOU9xHzeO/k3Rph2AnfRIh2IICL2I/53tjI+vl XjkNTDgp5jcI/jtmCt9BCpHdOKe98n+JMMTF5R0zM7mZsPlsk5bpBiXf6ifjqMge lL0FfWptyeqnTi+0ThZRCSw8LdrLYHH5Doj8X3hVcteKZ573lzuRxWvfv2FKE+VT YgALQAfSTjf77vRNogSwZ6/qaaAhCilAvsYSvFkW6ITNLqDrTiZY7I3ahOO/kUEa bK0QAJgxq9UlAZPDFFlXAmY1BwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI+oFgcv VStATpRjFx7fBXHksLwYMB8GA1UdIwQYMBaAFBjh9zLvpTw5c6Gs0iwTaKXh8spS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjAwRS81QUExODIyRUFE MzkxMUVEQTBCOUI4M0NDNEY5QUUwMi9HT0gzTXUtbFBEbHpvYXpTTEJOb3BlSHl5 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dPSDNNdS1sUERsem9helNMQk5vcGVIeXlsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEYwMEUvNUFBMTgyMkVBRDM5MTFFREEwQjlCODNDQzRGOUFFMDIvQUE3M0VGMTY3 REVCMTFFRUI5Njk5QTI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxRFMA0GCSqGSIb3DQEBCwUAA4IBAQAb8wVxAVfWvK3ivFnTo5rh 6kYGE5TVNxSbgMcM5wAK+v0OjW2j25Y4AMbajNNSFAO3J58Q/0NZfo7VvgH3Lrpz K1s5Ir5vmKkQq7o3MsBuWqLJmHkpv1yuK+1u8VPGVQ39CE2UbEshLIRI/VmfpJcZ XK4X4bd/nsG2brU04KAuTW8T7XlmIOUrlpg4b0QJcvltTHOkC5xjbkpimxzQ9CFS F/ajbj9ZooE36JXq6mHTEnFAor/D/CLrVaY1Ecy4oNbnCVh7YmukrRcipKLPFxsI x1tKKjtaMoE2HG6yn+fBL+IQrhwA/vJ+4w2nFt+UBEKKFbqAfMFOrPB6xs0mIWzD -----END CERTIFICATE-----Generated at Mon Mar 2 06:42:01 2026 by rpki-client