$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/18D6D6AAB84F11EFA5BB3E78C4F9AE02.roa File: 18D6D6AAB84F11EFA5BB3E78C4F9AE02.roa (raw, json) Hash identifier: RVgiyepKl902Bn3M72KnxtU92z/jQYODXWMLMbV+2zg= Subject key identifier: 85:24:57:15:1D:9E:A2:82:86:4F:80:AF:F0:DA:A0:89:EA:D0:D2:CE Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 0825 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/18D6D6AAB84F11EFA5BB3E78C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:54:28 +0000 ROA not before: Thu 24 Jul 2025 22:34:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 32787 IP address blocks: 162.128.3.0/24 maxlen: 24 162.128.42.0/24 maxlen: 24 162.128.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:51:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Jul 24 22:34:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48b64-2af6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:eb:60:93:37:fc:fe:59:7f:bb:58:c7:9c:c0: aa:3c:f5:b3:1e:66:70:4f:89:13:56:a3:15:28:1a: ca:35:4b:df:91:aa:cf:45:50:d2:4b:09:a6:bd:52: 71:99:bc:c7:7f:53:06:70:d1:6a:8d:21:58:16:e0: e8:03:e8:ff:58:e9:c1:4d:40:91:b3:bb:37:cc:5c: 67:8f:0e:51:c6:b0:7b:cd:3e:32:7f:85:f9:87:32: 43:5c:e4:54:fe:2c:cd:09:17:e5:3e:f6:e2:54:93: 5e:81:37:cb:7b:3c:10:89:53:07:fc:a3:3b:09:2a: aa:90:aa:8e:5b:55:99:56:f4:16:7e:67:89:66:90: e6:7b:c1:ca:71:44:b5:35:f1:26:31:3b:4c:5e:06: fd:45:16:50:b4:88:c2:8d:ec:68:32:b1:31:9e:da: 34:ab:6d:62:d4:e2:ea:db:57:61:e8:ae:d2:cd:c2: cb:3f:b5:0d:ef:86:89:f3:a9:0d:b9:07:17:82:8f: 46:c1:e2:21:bf:0b:7f:02:d1:57:a2:5c:2c:19:96: e6:40:98:f7:0e:70:60:b1:8b:ca:40:64:06:12:2e: 7d:02:26:9a:2e:51:6e:7e:a7:3a:88:5d:5c:8a:d4: d4:4a:7e:2e:10:d5:66:99:cd:c2:f7:4f:a9:54:21: 9c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:24:57:15:1D:9E:A2:82:86:4F:80:AF:F0:DA:A0:89:EA:D0:D2:CE X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/18D6D6AAB84F11EFA5BB3E78C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 162.128.3.0/24 162.128.42.0/24 162.128.156.0/24 Signature Algorithm: sha256WithRSAEncryption 41:0f:28:66:c6:bd:04:ee:ab:cf:04:ed:63:28:eb:93:19:00: f9:78:66:58:d2:f4:2d:d5:6f:cf:f6:90:cb:ff:54:47:4a:ff: fb:15:6f:fa:55:7f:ed:dd:b1:c2:f0:95:3c:44:59:fc:53:31: 37:c7:f4:b4:ee:86:9c:11:23:4b:54:32:7f:46:16:71:b8:a8: 46:fb:37:47:81:b2:a3:b9:7a:61:07:5d:73:37:cb:2d:f9:cf: d6:db:d9:75:4a:fd:44:d8:ff:db:88:bf:29:90:87:bc:42:fe: c8:73:ea:1b:10:9d:b7:63:cc:b8:3b:d2:71:9a:33:27:fe:5e: 00:0b:ee:a6:3a:3f:28:d6:86:ae:b6:a1:20:74:fc:51:67:95: a6:39:75:aa:1f:d7:a9:65:19:eb:57:ae:79:e8:27:35:7b:4c: fc:2c:8d:43:1a:03:28:cb:a7:37:14:6d:3a:ab:99:36:15:88: ca:7e:1b:02:a1:ff:b8:0c:4e:c6:f4:57:62:b3:5d:07:c1:66: 3e:24:cc:cf:4a:40:ae:1b:d7:ba:0c:e9:0f:1c:3c:93:b4:0d: 9f:03:6d:1a:ed:8e:65:2b:55:48:85:9c:3d:5b:ba:21:e3:2c: 48:73:4a:2c:7a:cb:8e:fb:29:65:93:2d:2a:47:34:09:54:7f: f9:e3:38:36 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUwNzI0MjIzNDM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGI2NC0yYWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Otgkzf8/ll/u1jHnMCqPPWzHmZwT4kTVqMVKBrKNUvfkarPRVDSSwmmvVJx mbzHf1MGcNFqjSFYFuDoA+j/WOnBTUCRs7s3zFxnjw5RxrB7zT4yf4X5hzJDXORU /izNCRflPvbiVJNegTfLezwQiVMH/KM7CSqqkKqOW1WZVvQWfmeJZpDme8HKcUS1 NfEmMTtMXgb9RRZQtIjCjexoMrExnto0q21i1OLq21dh6K7SzcLLP7UN74aJ86kN uQcXgo9GweIhvwt/AtFXolwsGZbmQJj3DnBgsYvKQGQGEi59AiaaLlFufqc6iF1c itTUSn4uENVmmc3C90+pVCGcEQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFIUkVxUd nqKChk+Ar/DaoInq0NLOMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvMThENkQ2QUFC ODRGMTFFRkE1QkIzRTc4QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAooADAwQAooAqAwQAooCcMA0GCSqGSIb3DQEBCwUAA4IBAQBBDyhm xr0E7qvPBO1jKOuTGQD5eGZY0vQt1W/P9pDL/1RHSv/7FW/6VX/t3bHC8JU8RFn8 UzE3x/S07oacESNLVDJ/RhZxuKhG+zdHgbKjuXphB11zN8st+c/W29l1Sv1E2P/b iL8pkIe8Qv7Ic+obEJ23Y8y4O9JxmjMn/l4AC+6mOj8o1oautqEgdPxRZ5WmOXWq H9epZRnrV6556Cc1e0z8LI1DGgMoy6c3FG06q5k2FYjKfhsCof+4DE7G9Fdis10H wWY+JMzPSkCuG9e6DOkPHDyTtA2fA20a7Y5lK1VIhZw9W7oh4yxIc0osesuO+yll ky0qRzQJVH/54zg2 -----END CERTIFICATE-----Generated at Mon Mar 2 15:35:15 2026 by rpki-client