$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa File: D3CE622872D911E9B41E5B11C4F9AE02.roa (raw, json) Hash identifier: +R2vKpr5tg8+L2ju7HmqqYUbeLpRTOopoxqmnHWoOS0= Subject key identifier: 1A:3F:94:71:31:53:94:7D:90:AF:BC:6E:B4:FD:3B:93:5A:27:7F:E5 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 20A4 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa Signing time: Wed 27 May 2026 07:02:32 +0000 ROA not before: Wed 27 May 2026 07:02:32 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4847 IP address blocks: 115.171.0.0/16 maxlen: 16 115.171.0.0/18 maxlen: 18 115.171.64.0/18 maxlen: 18 115.171.128.0/18 maxlen: 18 115.171.192.0/18 maxlen: 18 218.30.179.0/24 maxlen: 24 218.30.180.0/24 maxlen: 24 218.30.181.0/24 maxlen: 24 218.30.182.0/24 maxlen: 24 240e:108:4001::/48 maxlen: 48 240e:108:4801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 16:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8356 (0x20a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: May 27 07:02:32 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6a169708-8ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ba:d2:c7:58:0a:ab:2c:51:0a:33:c0:55:43: ae:cf:46:44:0e:9d:28:07:09:bb:f0:85:c0:29:2f: 90:95:9c:e7:c3:be:c4:51:8d:1c:0c:3e:69:e0:68: 5b:08:d1:1f:22:8e:b8:c9:a8:04:2b:4b:c8:f5:ff: 40:f2:f5:02:81:2e:b9:1d:55:fd:13:cf:ae:b7:b8: ee:ad:91:64:7c:25:f3:08:c3:47:9c:d9:ca:bd:9c: 70:17:70:cf:3a:9f:ff:bc:c2:1a:24:f1:21:1d:9a: f7:b9:6f:a6:83:92:eb:82:cf:f0:95:1f:60:87:40: 86:15:4b:d4:0b:9f:ed:34:9c:53:ea:59:61:1f:ef: ee:68:bc:cf:ca:00:ff:17:4d:db:f3:a9:e8:5e:b0: ab:14:64:2e:21:42:32:ef:7b:82:ab:c8:7b:6a:03: e5:b8:b7:ea:41:1e:f7:ad:24:6d:1b:3f:12:7e:77: 96:90:f9:17:7f:78:07:2c:94:5d:4e:f4:13:83:31: 7a:d8:99:fc:6c:05:dd:63:a4:7f:6f:83:40:2b:a2: c4:28:5d:dd:5a:72:f5:d4:14:30:b3:18:d5:e9:c1: a4:e5:f9:4b:fd:ec:74:74:9c:b5:ae:6f:73:e1:34: f3:57:79:04:e5:d5:9e:73:9c:4c:29:dc:b6:52:4c: fd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:3F:94:71:31:53:94:7D:90:AF:BC:6E:B4:FD:3B:93:5A:27:7F:E5 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 115.171.0.0/16 218.30.179.0-218.30.182.255 IPv6: 240e:108:4001::/48 240e:108:4801::/48 Signature Algorithm: sha256WithRSAEncryption 50:26:b9:2f:35:29:7b:d9:53:e0:75:4a:45:be:a3:1f:71:ef: a4:07:88:5d:76:85:8c:d8:ab:9c:c3:18:f5:bd:73:42:6f:0c: 2c:b5:ab:bb:70:9d:b9:28:cb:b3:a3:cf:82:89:69:33:08:69: 52:12:f4:91:f2:27:f8:2f:db:ef:4a:bf:55:ab:de:d7:75:8f: ef:4b:09:02:81:fd:fc:0a:0a:4b:c6:11:84:1a:a7:ce:bd:6e: 30:a6:1c:c6:63:62:60:2a:2d:32:e5:33:98:57:1f:de:7f:22: 2a:2f:6d:39:77:45:2c:2c:5d:ca:4e:32:6d:ee:35:98:2c:ec: 66:01:74:50:50:bf:83:79:81:83:91:9b:87:f7:57:46:fe:3c: 80:5c:6f:80:5c:88:14:2c:0b:f4:b2:d6:9a:a5:43:d9:f6:e2: 36:b5:88:ed:bb:1b:44:fb:8d:4f:cd:2d:2b:b2:3f:ad:8f:79: e7:61:af:43:24:ec:df:b9:a0:13:1a:29:9e:24:de:44:b4:5e: bf:14:63:0d:3d:7f:96:ef:af:9c:de:ab:8a:af:46:fd:9d:1d: 45:de:bc:b5:56:1d:56:2c:46:cb:d2:b6:49:9e:45:70:72:4c: 9e:a3:53:80:e6:ba:3a:15:72:b6:ec:61:19:a4:f2:97:9b:39: f0:39:2f:4f -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICIKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjYwNTI3MDcwMjMyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2OTcwOC04ZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7rSx1gKqyxRCjPAVUOuz0ZEDp0oBwm78IXAKS+QlZznw77EUY0cDD5p4Ghb CNEfIo64yagEK0vI9f9A8vUCgS65HVX9E8+ut7jurZFkfCXzCMNHnNnKvZxwF3DP Op//vMIaJPEhHZr3uW+mg5Lrgs/wlR9gh0CGFUvUC5/tNJxT6llhH+/uaLzPygD/ F03b86noXrCrFGQuIUIy73uCq8h7agPluLfqQR73rSRtGz8SfneWkPkXf3gHLJRd TvQTgzF62Jn8bAXdY6R/b4NAK6LEKF3dWnL11BQwsxjV6cGk5flL/ex0dJy1rm9z 4TTzV3kE5dWec5xMKdy2Ukz9ywIDAQABo4IChzCCAoMwHQYDVR0OBBYEFBo/lHEx U5R9kK+8brT9O5NaJ3/lMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDNDRTYyMjg3 MkQ5MTFFOUI0MUU1QjExQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAZ BAIAATATAwMAc6swDAMEANoeswMEANoetjAYBAIAAjASAwcAJA4BCEABAwcAJA4B CEgBMA0GCSqGSIb3DQEBCwUAA4IBAQBQJrkvNSl72VPgdUpFvqMfce+kB4hddoWM 2Kucwxj1vXNCbwwstau7cJ25KMuzo8+CiWkzCGlSEvSR8if4L9vvSr9Vq97XdY/v SwkCgf38CgpLxhGEGqfOvW4wphzGY2JgKi0y5TOYVx/efyIqL205d0UsLF3KTjJt 7jWYLOxmAXRQUL+DeYGDkZuH91dG/jyAXG+AXIgULAv0staapUPZ9uI2tYjtuxtE +41PzS0rsj+tj3nnYa9DJOzfuaATGimeJN5EtF6/FGMNPX+W76+c3quKr0b9nR1F 3ry1Vh1WLEbL0rZJnkVwckyeo1OA5ro6FXK27GEZpPKXmznwOS9P -----END CERTIFICATE-----Generated at Thu Jun 11 23:55:50 2026 by rpki-client