$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/D2E6AC6A60F111EFB97DD57AC4F9AE02.roa File: D2E6AC6A60F111EFB97DD57AC4F9AE02.roa (raw, json) Hash identifier: OGS7kothoGMH+yaC65N0JwDK5xda0eTO+FWqDV0QyPE= Subject key identifier: 3F:FA:05:1C:34:E6:DD:F2:C1:65:7F:17:B4:4E:7F:4F:E2:07:A9:B4 Certificate issuer: /CN=A915F89C/serialNumber=D697BB6F3F99E94480EE0BBAD3D26800AB416260 Certificate serial: 35FA Authority key identifier: D6:97:BB:6F:3F:99:E9:44:80:EE:0B:BA:D3:D2:68:00:AB:41:62:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1pe7bz-Z6USA7gu609JoAKtBYmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/D2E6AC6A60F111EFB97DD57AC4F9AE02.roa Signing time: Thu 14 May 2026 09:56:28 +0000 ROA not before: Thu 14 May 2026 09:56:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 19905 IP address blocks: 128.106.0.0/18 maxlen: 24 128.106.64.0/18 maxlen: 24 128.106.128.0/17 maxlen: 24 165.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/1pe7bz-Z6USA7gu609JoAKtBYmA.crl rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/1pe7bz-Z6USA7gu609JoAKtBYmA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1pe7bz-Z6USA7gu609JoAKtBYmA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 14:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13818 (0x35fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C, serialNumber=D697BB6F3F99E94480EE0BBAD3D26800AB416260 Validity Not Before: May 14 09:56:28 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6a059c4c-3b67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:24:d4:30:f5:f1:c2:fc:d7:93:4e:c9:1e:18: 7f:f6:e4:fa:1e:92:3e:04:e7:7b:bb:29:0a:86:cc: c9:f4:00:51:4b:54:41:d1:37:c6:2d:6f:f6:19:39: 2f:85:2f:b3:04:98:1e:e2:97:fc:c9:ff:36:76:ec: 2b:f6:15:ba:35:09:ac:51:3a:96:71:1e:af:29:a2: 57:a3:5b:1a:44:87:33:a4:dc:ca:2c:59:72:75:86: 12:b1:87:8f:d1:44:9c:54:92:8d:d1:8a:04:b3:95: d8:23:8c:25:8c:e5:97:2d:73:c8:23:c3:0f:77:ac: 60:91:3f:c7:85:cd:cf:56:18:d9:a2:11:46:00:38: fc:d3:ca:9c:df:7f:80:36:f8:d4:bc:b9:a7:b6:a3: a8:ca:80:0b:29:ae:f1:6b:bf:08:fd:2b:c6:7e:fa: 37:b6:06:0d:16:87:bc:44:1b:b1:35:76:c4:a1:56: 4c:86:59:17:55:df:6b:67:32:8d:9d:ec:dc:93:43: 70:b6:64:63:13:1b:db:4e:7e:cb:89:95:46:13:04: c5:49:6c:9d:c2:2e:07:36:6b:2e:8a:b2:8d:87:40: aa:0a:b7:fa:8f:f3:cf:ad:63:d9:bb:59:97:70:c3: 48:83:93:5d:bb:d4:19:cd:c0:4e:c7:c7:28:f3:74: 79:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FA:05:1C:34:E6:DD:F2:C1:65:7F:17:B4:4E:7F:4F:E2:07:A9:B4 X509v3 Authority Key Identifier: keyid:D6:97:BB:6F:3F:99:E9:44:80:EE:0B:BA:D3:D2:68:00:AB:41:62:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/1pe7bz-Z6USA7gu609JoAKtBYmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1pe7bz-Z6USA7gu609JoAKtBYmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/D2E6AC6A60F111EFB97DD57AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 128.106.0.0/16 165.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5f:ba:7b:b7:d2:5f:4b:cf:a6:5a:1c:f5:3d:bf:2f:89:ac:50: 93:d5:1a:36:5c:d5:19:5f:26:d3:16:2d:04:35:ba:73:d7:b7: a7:40:f3:e8:cb:8f:db:60:23:2b:01:fb:dc:03:3f:f8:39:88: 7c:14:3b:05:8a:bf:22:81:a8:68:eb:df:a1:47:e3:f5:fd:16: a6:e0:8b:72:c3:a8:1b:9a:5d:a6:f3:40:98:64:10:d5:d1:56: 40:40:a0:de:2e:ce:73:a7:44:4c:2a:e5:d6:c1:09:73:a6:90: e2:aa:2d:43:de:e0:6a:0e:2f:45:b0:37:23:7f:b7:45:79:79: 04:12:94:aa:48:ce:81:e2:7a:96:ed:76:9e:63:5a:08:47:1d: 00:e0:df:da:e1:51:db:3f:44:8d:0c:d4:ab:7f:51:fb:e6:0f: 28:48:b2:b3:a1:b5:fa:0d:ca:da:6c:3a:e6:c8:b0:f4:70:26: 0b:e8:23:d4:83:d4:b8:7b:41:bb:34:53:52:fa:a1:ca:10:38: 56:d8:cd:03:e9:22:65:54:5b:31:a3:55:c2:a2:11:1a:94:d7: 3b:ae:89:db:f9:2d:54:5d:5e:6d:d7:92:fb:fb:5a:0e:c3:fa: 11:73:87:d7:79:c6:b2:9c:bf:b0:9d:55:6d:a7:9c:fb:72:78: 38:47:d0:84 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgICNfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEQ2OTdCQjZGM0Y5OUU5NDQ4MEVFMEJCQUQzRDI2ODAw QUI0MTYyNjAwHhcNMjYwNTE0MDk1NjI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA1OWM0Yy0zYjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviTUMPXxwvzXk07JHhh/9uT6HpI+BOd7uykKhszJ9ABRS1RB0TfGLW/2GTkv hS+zBJge4pf8yf82duwr9hW6NQmsUTqWcR6vKaJXo1saRIczpNzKLFlydYYSsYeP 0UScVJKN0YoEs5XYI4wljOWXLXPII8MPd6xgkT/Hhc3PVhjZohFGADj808qc33+A NvjUvLmntqOoyoALKa7xa78I/SvGfvo3tgYNFoe8RBuxNXbEoVZMhlkXVd9rZzKN nezck0NwtmRjExvbTn7LiZVGEwTFSWydwi4HNmsuirKNh0CqCrf6j/PPrWPZu1mX cMNIg5Ndu9QZzcBOx8co83R5IQIDAQABo4ICZDCCAmAwHQYDVR0OBBYEFD/6BRw0 5t3ywWV/F7ROf0/iB6m0MB8GA1UdIwQYMBaAFNaXu28/melEgO4LutPSaACrQWJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy81QjA3RjNBQzFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi8xcGU3YnotWjZVU0E3Z3U2MDlKb0FLdEJZ bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFwZTdiei1aNlVTQTdndTYwOUpvQUt0QlltQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNUIwN0YzQUMxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvRDJFNkFDNkE2 MEYxMTFFRkI5N0RENTdBQzRGOUFFMDIucm9hMCMGCCsGAQUFBwEHAQH/BBQwEjAQ BAIAATAKAwMAgGoDAwClFTANBgkqhkiG9w0BAQsFAAOCAQEAX7p7t9JfS8+mWhz1 Pb8viaxQk9UaNlzVGV8m0xYtBDW6c9e3p0Dz6MuP22AjKwH73AM/+DmIfBQ7BYq/ IoGoaOvfoUfj9f0WpuCLcsOoG5pdpvNAmGQQ1dFWQECg3i7Oc6dETCrl1sEJc6aQ 4qotQ97gag4vRbA3I3+3RXl5BBKUqkjOgeJ6lu12nmNaCEcdAODf2uFR2z9EjQzU q39R++YPKEiys6G1+g3K2mw65siw9HAmC+gj1IPUuHtBuzRTUvqhyhA4VtjNA+ki ZVRbMaNVwqIRGpTXO66J2/ktVF1ebdeS+/taDsP6EXOH13nGspy/sJ1Vbaec+3J4 OEfQhA== -----END CERTIFICATE-----Generated at Sat Jun 6 14:15:14 2026 by rpki-client