$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/FDA89E2CA33511EBA984863CC4F9AE02.roa File: FDA89E2CA33511EBA984863CC4F9AE02.roa (raw, json) Hash identifier: G1K2oOJN8JSdZJH7sAiV+vdZ3tm2/QChp9HUt6nzUkw= Subject key identifier: AB:9F:75:90:64:BD:DB:EC:30:B5:64:CD:98:68:14:3D:9D:7F:9E:A6 Certificate issuer: /CN=A918495F/serialNumber=0C5A542A1E9B3FB5C8E49686EBEBCFC050CCE4A5 Certificate serial: 17F2 Authority key identifier: 0C:5A:54:2A:1E:9B:3F:B5:C8:E4:96:86:EB:EB:CF:C0:50:CC:E4:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/FDA89E2CA33511EBA984863CC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:14:57 +0000 ROA not before: Thu 08 May 2025 17:17:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4515 IP address blocks: 168.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.crl rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6130 (0x17f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=0C5A542A1E9B3FB5C8E49686EBEBCFC050CCE4A5 Validity Not Before: May 8 17:17:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42dc1-277d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ad:90:21:34:44:38:80:23:da:a6:2a:52:2d: f7:53:08:62:2c:2c:35:c4:ab:88:70:ba:36:3d:f4: b7:8b:74:f7:f1:00:80:c8:53:7a:72:cc:1f:f9:87: d2:75:23:8c:20:7c:69:f8:54:0a:49:d7:37:8a:94: 00:53:c4:f7:f0:e0:ff:fb:02:0a:74:84:83:7b:0f: 8d:47:8a:34:19:3f:d1:99:6c:6c:a5:96:63:c5:ba: 2d:cd:5a:4e:6e:bc:51:99:78:e3:1c:94:db:70:1c: eb:88:f4:63:24:f9:66:d1:a9:4c:00:aa:e7:4b:5f: 27:cc:9f:64:be:05:c6:29:e1:7b:64:bb:72:ba:a7: da:25:b9:5d:1c:a4:45:57:a1:de:61:71:28:e4:c2: e2:58:94:1c:fd:15:4e:37:01:1e:73:0b:79:cb:95: 2c:ed:a2:37:34:f9:7e:9f:99:96:3d:2c:ee:8e:bb: 06:06:d9:49:e9:17:25:55:14:7e:3d:53:f9:a9:c1: 2f:c6:3e:d7:af:0c:97:91:80:e1:63:90:7e:9a:eb: d7:bf:ff:22:4c:85:c9:bc:98:8b:2d:02:46:ab:81: ee:0c:37:f7:c4:e5:65:7f:94:d1:af:c3:f8:6e:bf: 2d:f5:62:52:9d:6b:a7:50:21:f1:69:f0:3a:a8:90: e0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9F:75:90:64:BD:DB:EC:30:B5:64:CD:98:68:14:3D:9D:7F:9E:A6 X509v3 Authority Key Identifier: keyid:0C:5A:54:2A:1E:9B:3F:B5:C8:E4:96:86:EB:EB:CF:C0:50:CC:E4:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/FDA89E2CA33511EBA984863CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 168.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:73:c0:44:79:e5:ff:d2:b6:28:44:3b:7c:e2:5a:e7:f6:8a: fe:e8:36:aa:21:45:7f:9d:af:04:8f:a1:58:72:c8:ba:53:38: c4:46:c5:9c:89:79:ac:0b:da:12:60:b9:2b:5c:42:48:c8:09: 01:0d:ae:dd:ce:da:06:26:c3:ea:e0:1e:c0:c7:43:4f:a6:0d: a3:3b:aa:4d:9f:cf:78:22:1b:a6:e1:81:d0:2a:4a:d2:d9:69: 98:ce:d5:96:6e:1d:1d:c5:2c:8a:4e:9d:a2:e0:b4:26:ca:c8: 56:86:b2:27:cd:2b:78:dc:88:62:93:95:4d:b6:45:99:d0:f7: a7:ef:57:d3:8e:81:9c:e0:72:f9:a3:61:4a:0e:2f:4d:75:03: 09:41:38:ab:f0:c9:63:f1:b1:ff:1e:06:5b:06:16:86:a0:d5: 83:a6:f3:e1:41:46:9d:eb:de:a0:bd:e2:d7:0f:cc:28:59:f3: dd:ee:66:9f:9a:23:61:13:76:f6:bc:21:2a:50:29:eb:e4:e1: 56:6b:83:ad:f7:1b:99:16:29:97:7f:db:b8:82:27:69:0f:bf: 68:a1:61:0f:3f:18:92:da:8c:48:76:18:28:cc:67:f5:4d:ee: 6d:0c:6c:23:74:0e:24:04:f1:ca:22:11:b7:c6:12:ea:ac:af: c2:33:c2:64 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICF/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDBDNUE1NDJBMUU5QjNGQjVDOEU0OTY4NkVCRUJDRkMw NTBDQ0U0QTUwHhcNMjUwNTA4MTcxNzQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmRjMS0yNzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqq2QITREOIAj2qYqUi33UwhiLCw1xKuIcLo2PfS3i3T38QCAyFN6cswf+YfS dSOMIHxp+FQKSdc3ipQAU8T38OD/+wIKdISDew+NR4o0GT/RmWxspZZjxbotzVpO brxRmXjjHJTbcBzriPRjJPlm0alMAKrnS18nzJ9kvgXGKeF7ZLtyuqfaJbldHKRF V6HeYXEo5MLiWJQc/RVONwEecwt5y5Us7aI3NPl+n5mWPSzujrsGBtlJ6RclVRR+ PVP5qcEvxj7XrwyXkYDhY5B+muvXv/8iTIXJvJiLLQJGq4HuDDf3xOVlf5TRr8P4 br8t9WJSnWunUCHxafA6qJDgiQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFKufdZBk vdvsMLVkzZhoFD2df56mMB8GA1UdIwQYMBaAFAxaVCoemz+1yOSWhuvrz8BQzOSl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri83OEQ1RDg5NkRG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9ERnBVS2g2YlA3WEk1SmFHNi12UHdGRE01 S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0RGcFVLaDZiUDdYSTVKYUc2LXZQd0ZETTVLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvNzhENUQ4OTZERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvRkRBODlFMkNB MzM1MTFFQkE5ODQ4NjNDQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAqEYwDQYJKoZIhvcNAQELBQADggEBAItzwER55f/StihEO3ziWuf2 iv7oNqohRX+drwSPoVhyyLpTOMRGxZyJeawL2hJguStcQkjICQENrt3O2gYmw+rg HsDHQ0+mDaM7qk2fz3giG6bhgdAqStLZaZjO1ZZuHR3FLIpOnaLgtCbKyFaGsifN K3jciGKTlU22RZnQ96fvV9OOgZzgcvmjYUoOL011AwlBOKvwyWPxsf8eBlsGFoag 1YOm8+FBRp3r3qC94tcPzChZ893uZp+aI2ETdva8ISpQKevk4VZrg633G5kWKZd/ 27iCJ2kPv2ihYQ8/GJLajEh2GCjMZ/VN7m0MbCN0DiQE8coiEbfGEuqsr8IzwmQ= -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:13 2026 by rpki-client