$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/DD145D6E023A11EBBDF8B35FC4F9AE02.roa File: DD145D6E023A11EBBDF8B35FC4F9AE02.roa (raw, json) Hash identifier: lZcyVDDVJyd5OvuVGY95kXjcbsnkRLyU3AWruCDQaBw= Subject key identifier: AE:92:8A:B5:F3:E6:41:78:4E:DC:81:D9:14:1A:82:F8:CE:57:E1:60 Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 18BF Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/DD145D6E023A11EBBDF8B35FC4F9AE02.roa Signing time: Thu 04 Jun 2026 17:20:04 +0000 ROA not before: Thu 04 Jun 2026 17:20:04 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 9444 IP address blocks: 1.65.190.0/23 maxlen: 24 116.48.208.0/21 maxlen: 21 116.48.213.0/24 maxlen: 24 116.48.214.0/23 maxlen: 23 116.48.215.0/24 maxlen: 24 116.48.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 16:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6335 (0x18bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: Jun 4 17:20:04 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a21b3c4-3f3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:56:af:2a:d7:ff:53:a2:bf:c8:45:79:75:d8: 42:26:5a:40:bf:cd:40:9f:81:c8:25:33:dd:86:4e: fc:db:2a:a5:7c:8b:8f:f8:91:3f:f0:23:71:4a:e9: a7:c3:27:95:87:f4:e3:07:1b:38:6b:97:08:2b:1c: 65:62:ec:49:d5:e4:b0:d8:ed:2d:98:58:f4:ff:51: da:bf:ab:d3:8c:1c:84:41:0d:77:2d:6a:f0:2e:2a: e5:9a:a5:1a:c5:b5:e0:dc:79:fa:e2:47:89:a6:1d: 02:29:14:4e:33:df:61:0b:ba:15:82:48:de:d3:05: e0:09:dc:f8:0d:d1:c3:4c:df:ca:f5:9d:07:bb:b8: bb:84:03:1a:9e:b4:b7:bd:26:c9:65:da:ac:ea:94: 68:70:48:60:85:7e:f8:bd:73:b3:24:0e:08:fc:10: 76:88:7b:8b:7a:36:75:3d:b6:b7:70:c7:3e:fb:fc: 68:fa:bd:75:5b:d6:ba:45:dc:ab:d9:e8:96:f3:35: a6:2c:d0:34:dc:2c:82:13:b8:08:35:d9:fd:1d:a4: de:e8:16:ef:f3:e5:3b:01:ad:4c:62:7c:a5:ba:50: 5d:c0:b6:80:2d:e5:0f:3c:a3:00:99:c6:26:c4:06: 1c:c1:07:e7:53:30:22:c7:6f:de:36:66:a4:1f:f8: 58:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:92:8A:B5:F3:E6:41:78:4E:DC:81:D9:14:1A:82:F8:CE:57:E1:60 X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/DD145D6E023A11EBBDF8B35FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 1.65.190.0/23 116.48.208.0/21 116.48.224.0/22 Signature Algorithm: sha256WithRSAEncryption b8:62:44:5d:7d:4e:e5:4c:da:da:e8:49:91:8a:fc:3e:69:b7: aa:fb:b3:95:24:46:bc:79:2b:4d:41:88:38:0d:b0:df:14:93: 92:d2:84:20:72:a4:a7:e1:4b:ca:9e:54:0a:11:28:a8:d7:3a: 56:23:cf:ab:31:4a:b2:c6:05:f3:4e:58:6f:02:91:78:60:79: 6f:a1:ff:08:3d:17:2c:a6:c8:76:6b:f7:bd:4b:16:31:e6:62: 5d:25:19:11:3d:df:44:48:06:60:56:22:25:03:e4:f7:07:9e: 66:57:f3:51:3f:ac:f0:8a:e2:98:a1:31:b6:c5:3a:65:83:9e: aa:85:02:82:a6:76:2b:60:bc:17:79:45:0d:00:de:95:aa:3f: 3c:05:e2:37:82:72:b3:4d:13:a0:81:00:ff:41:99:ab:fe:40: 0a:f1:b8:f1:f3:38:cd:63:f0:72:6e:67:28:57:5f:3f:31:ee: f4:de:b1:a3:ad:e0:34:ab:28:92:b7:fe:6d:24:7a:e4:3e:22: 38:a3:f7:6b:70:01:0f:d4:3b:f0:50:eb:3a:ca:87:26:de:b6: 39:b2:25:c7:06:c6:c0:0c:30:4a:1f:8e:28:68:fb:52:0d:9d: 7a:65:1f:57:1b:5f:35:b5:4f:97:84:f0:d9:de:3f:54:57:c1: 1f:4b:31:de -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICGL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjYwNjA0MTcyMDA0WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxYjNjNC0zZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31avKtf/U6K/yEV5ddhCJlpAv81An4HIJTPdhk782yqlfIuP+JE/8CNxSumn wyeVh/TjBxs4a5cIKxxlYuxJ1eSw2O0tmFj0/1Hav6vTjByEQQ13LWrwLirlmqUa xbXg3Hn64keJph0CKRROM99hC7oVgkje0wXgCdz4DdHDTN/K9Z0Hu7i7hAManrS3 vSbJZdqs6pRocEhghX74vXOzJA4I/BB2iHuLejZ1Pba3cMc++/xo+r11W9a6Rdyr 2eiW8zWmLNA03CyCE7gINdn9HaTe6Bbv8+U7Aa1MYnylulBdwLaALeUPPKMAmcYm xAYcwQfnUzAix2/eNmakH/hYUwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFK6SirXz 5kF4TtyB2RQagvjOV+FgMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvREQxNDVENkUw MjNBMTFFQkJERjhCMzVGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBAUG+AwQDdDDQAwQCdDDgMA0GCSqGSIb3DQEBCwUAA4IBAQC4YkRd fU7lTNra6EmRivw+abeq+7OVJEa8eStNQYg4DbDfFJOS0oQgcqSn4UvKnlQKESio 1zpWI8+rMUqyxgXzTlhvApF4YHlvof8IPRcspsh2a/e9SxYx5mJdJRkRPd9ESAZg ViIlA+T3B55mV/NRP6zwiuKYoTG2xTplg56qhQKCpnYrYLwXeUUNAN6Vqj88BeI3 gnKzTROggQD/QZmr/kAK8bjx8zjNY/BybmcoV18/Me703rGjreA0qyiSt/5tJHrk PiI4o/drcAEP1DvwUOs6yocm3rY5siXHBsbADDBKH44oaPtSDZ16ZR9XG181tU+X hPDZ3j9UV8EfSzHe -----END CERTIFICATE-----Generated at Fri Jun 12 00:12:15 2026 by rpki-client