$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/BD3FF814A49811EEAD789D2AC4F9AE02.roa File: BD3FF814A49811EEAD789D2AC4F9AE02.roa (raw, json) Hash identifier: THnuk88BmBSAnI45lh48WjXHbq0OqH6ZzkCu47KlOw0= Subject key identifier: FB:85:7A:28:28:3A:B6:31:1E:1E:F4:67:78:8C:C3:88:4F:24:CC:85 Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Certificate serial: 2A04 Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/BD3FF814A49811EEAD789D2AC4F9AE02.roa Signing time: Sat 30 May 2026 16:17:59 +0000 ROA not before: Sat 30 May 2026 16:17:59 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 38193 IP address blocks: 218.100.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10756 (0x2a04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Validity Not Before: May 30 16:17:59 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1b0db7-1500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9c:83:cc:a7:ca:7e:af:bb:8f:00:ff:0a:f2: 80:7b:29:12:2c:a9:eb:34:e5:fe:68:d2:42:3d:1a: 3d:84:9d:bb:d5:7f:af:5e:cf:ed:d1:2b:a0:cd:5f: bf:e3:ea:09:b2:2f:33:e1:ed:b9:73:a2:98:5e:1f: 03:32:67:df:fe:fa:0c:54:38:b8:b4:f5:92:9f:46: df:ca:84:9f:df:6a:69:b0:55:d5:fd:dd:db:99:2b: af:65:a5:37:d0:1d:55:dc:b1:af:29:dd:d2:20:9c: 81:07:c1:3a:7b:b1:f5:66:fc:d0:06:8a:64:d3:4d: 85:c2:05:f5:85:54:7d:bc:5d:71:99:93:a1:36:67: 65:ff:0d:46:f7:86:a9:ef:53:ee:22:46:94:ff:6c: 6a:ca:b5:e6:b7:f4:8e:1e:82:d6:e2:0b:64:0b:14: ce:76:5c:99:c5:66:91:1f:02:1a:7e:1a:40:f4:50: 4e:7e:21:44:d5:1c:5d:1f:9d:c7:4d:f5:c6:db:e8: 9c:20:69:9d:6a:38:c3:ff:97:8e:4d:ef:d9:7f:ed: 8c:fb:d2:5a:39:08:57:66:d4:d4:b1:0a:82:d4:40: d0:b8:d5:f4:6c:2c:b7:e6:aa:40:02:49:dc:37:f8: 0b:68:73:20:7c:08:ad:5f:6f:ec:b8:2f:23:c8:8c: e0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:85:7A:28:28:3A:B6:31:1E:1E:F4:67:78:8C:C3:88:4F:24:CC:85 X509v3 Authority Key Identifier: keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/BD3FF814A49811EEAD789D2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 218.100.85.0/24 Signature Algorithm: sha256WithRSAEncryption 79:5b:4b:3d:78:d5:08:83:83:af:3c:12:72:25:0f:2b:54:f1: d7:41:ba:e5:b1:32:55:9a:07:d2:e3:0f:a3:ab:4b:e5:c6:c1: 50:b3:13:6a:b3:c9:fc:50:39:bb:4a:ba:5d:a3:0c:91:4d:2f: 6a:d0:ba:a6:99:36:9e:ed:f6:27:3b:02:cd:29:ea:03:f3:16: fc:5a:fb:7f:6f:5a:12:f8:4c:c5:82:b3:d6:12:d6:d4:a3:66: 02:f1:54:dc:5b:14:73:d5:91:96:52:eb:5b:5e:50:12:56:3e: b6:e8:19:0b:b4:91:31:98:c6:c0:51:65:ed:90:9b:c9:20:f8: 24:37:eb:c2:9d:5f:ea:73:44:b0:f5:61:be:7e:57:26:bd:55: 5b:7a:c3:32:81:4e:60:30:d8:44:70:53:21:ea:9d:7a:5c:d3: bc:bb:7b:dc:a0:a4:24:69:70:67:1e:8a:da:a9:f1:e2:4f:4f: 0b:32:09:57:04:69:27:65:5d:b1:de:18:92:3b:96:e7:34:8b: 47:93:60:08:c3:97:cc:df:e8:96:38:65:a7:6d:ac:df:d2:a0: e1:c6:d5:21:a2:ad:00:43:09:a0:07:35:d4:0b:47:86:93:56: 42:26:e7:06:de:b0:34:78:9d:97:f6:da:a5:15:b7:2a:d8:2f: 59:26:b6:4e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKDkwMDlFNzQxOTZENDhCMDM5NjRGMUZDNTZDRkU0NDZF QzUwNDhDRjcwHhcNMjYwNTMwMTYxNzU5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFiMGRiNy0xNTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpyDzKfKfq+7jwD/CvKAeykSLKnrNOX+aNJCPRo9hJ271X+vXs/t0SugzV+/ 4+oJsi8z4e25c6KYXh8DMmff/voMVDi4tPWSn0bfyoSf32ppsFXV/d3bmSuvZaU3 0B1V3LGvKd3SIJyBB8E6e7H1ZvzQBopk002FwgX1hVR9vF1xmZOhNmdl/w1G94ap 71PuIkaU/2xqyrXmt/SOHoLW4gtkCxTOdlyZxWaRHwIafhpA9FBOfiFE1RxdH53H TfXG2+icIGmdajjD/5eOTe/Zf+2M+9JaOQhXZtTUsQqC1EDQuNX0bCy35qpAAknc N/gLaHMgfAitX2/suC8jyIzgPwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPuFeigo OrYxHh70Z3iMw4hPJMyFMB8GA1UdIwQYMBaAFJAJ50GW1IsDlk8fxWz+RG7FBIz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni9CQzFEQzFGNkMx NzUxMUU0QTJDN0I3NENDNEY5QUUwMi9rQW5uUVpiVWl3T1dUeF9GYlA1RWJzVUVq UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tBbm5RWmJVaXdPV1R4X0ZiUDVFYnNVRWpQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvQkMxREMxRjZDMTc1MTFFNEEyQzdCNzRDQzRGOUFFMDIvQkQzRkY4MTRB NDk4MTFFRUFENzg5RDJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA2mRVMA0GCSqGSIb3DQEBCwUAA4IBAQB5W0s9eNUIg4OvPBJyJQ8r VPHXQbrlsTJVmgfS4w+jq0vlxsFQsxNqs8n8UDm7SrpdowyRTS9q0LqmmTae7fYn OwLNKeoD8xb8Wvt/b1oS+EzFgrPWEtbUo2YC8VTcWxRz1ZGWUutbXlASVj626BkL tJExmMbAUWXtkJvJIPgkN+vCnV/qc0Sw9WG+flcmvVVbesMygU5gMNhEcFMh6p16 XNO8u3vcoKQkaXBnHoraqfHiT08LMglXBGknZV2x3hiSO5bnNItHk2AIw5fM3+iW OGWnbazf0qDhxtUhoq0AQwmgBzXUC0eGk1ZCJucG3rA0eJ2X9tqlFbcq2C9ZJrZO -----END CERTIFICATE-----Generated at Sat Jun 6 18:04:11 2026 by rpki-client