$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2B4EDAD439FB11F088B20470C4F9AE02.roa File: 2B4EDAD439FB11F088B20470C4F9AE02.roa (raw, json) Hash identifier: 58Dkqr8BUJ0VMfooeKsMC4Opydqi206QmqQMhKbZKNE= Subject key identifier: 97:2A:C3:92:05:43:D4:1F:04:0B:56:FE:BE:B2:1E:FB:51:59:C1:F3 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2E96 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2B4EDAD439FB11F088B20470C4F9AE02.roa Signing time: Sun 31 May 2026 16:19:08 +0000 ROA not before: Sun 31 May 2026 16:19:08 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 135685 IP address blocks: 165.99.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11926 (0x2e96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:19:08 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c5f7c-ffc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8a:41:2c:1c:24:ed:33:25:ca:d8:de:d1:6c: 1c:b6:cb:0d:85:68:30:23:a9:87:6c:e0:0e:e4:ac: f6:1c:14:93:5a:d9:86:62:75:40:4d:f5:17:c1:3b: f3:73:8e:5d:eb:fa:f3:da:80:a0:1f:1b:06:18:4b: 1e:c8:96:65:1a:27:0e:34:4e:2b:93:19:10:8f:68: 57:55:27:68:cf:77:84:8c:fd:47:83:85:8a:1d:54: f6:52:8d:50:f5:87:60:8d:af:ab:67:4d:d9:88:49: 79:65:05:15:7c:01:8f:37:fa:09:97:b0:03:2c:f9: 3a:e3:b0:81:a7:05:66:e8:a1:57:bc:97:e0:15:3f: 9a:eb:53:8e:7b:2e:68:48:7d:1f:4e:5c:11:12:f6: 3b:33:05:f5:bb:eb:4e:85:5a:e2:dc:05:da:cd:31: ab:aa:67:8c:ad:75:aa:9c:53:99:1a:dd:ca:47:40: f0:b5:33:3f:0b:99:0a:f7:40:ac:57:4f:40:18:32: e7:a2:1a:2d:09:82:eb:fb:9a:03:40:05:f7:e6:f3: e4:c1:8c:43:aa:1b:2b:8a:29:93:41:b5:e7:d3:ce: 6f:b0:ea:8f:3c:c3:c9:86:98:b1:68:ed:b8:bf:6a: e8:d5:54:7b:6c:80:e6:62:b5:9d:d4:52:a5:3b:d7: 2d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:2A:C3:92:05:43:D4:1F:04:0B:56:FE:BE:B2:1E:FB:51:59:C1:F3 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2B4EDAD439FB11F088B20470C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.52.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:c1:aa:14:65:04:90:87:a2:31:17:a8:a1:0e:a9:11:72:3c: 10:e4:7b:b2:27:92:b3:22:b0:6d:de:ac:43:4a:be:98:86:fa: 84:9f:d9:51:52:e5:7e:a0:6e:de:25:4d:5d:9f:67:5c:2b:4d: b4:28:e3:f7:ab:6d:16:b8:58:59:1b:a5:55:cb:dc:5e:7a:ad: cd:db:99:de:83:e7:96:24:99:0b:45:bb:b8:58:51:10:a0:5a: 53:b1:89:7d:47:90:1a:03:0d:d7:7c:03:58:82:db:8e:f6:4d: ab:41:af:7a:2b:9e:7a:ae:42:13:e7:1f:80:61:91:28:5e:c4: b6:12:d9:29:f9:30:7d:8b:03:59:98:a0:dd:ef:5a:03:9c:9c: f1:26:ae:8c:c8:7b:69:42:de:a0:dc:a6:a4:26:3b:87:ed:6b: 37:ef:c7:37:8e:0d:bc:67:f5:c4:f7:0f:ba:9c:27:0f:9b:11: cc:42:f9:29:5d:17:df:36:71:cd:04:89:63:8a:80:de:06:4b: 44:87:4a:10:28:3c:fe:1b:55:62:54:b8:77:29:9f:fe:82:87: ea:15:9c:db:0e:4f:a5:36:c2:ac:bd:c2:f3:7d:87:47:cd:1b: 0e:ca:68:f6:3f:84:51:9d:27:79:80:b4:f1:e2:3a:15:0d:09: c3:cf:3f:11 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYxOTA4WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNWY3Yy1mZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYpBLBwk7TMlytje0WwctssNhWgwI6mHbOAO5Kz2HBSTWtmGYnVATfUXwTvz c45d6/rz2oCgHxsGGEseyJZlGicONE4rkxkQj2hXVSdoz3eEjP1Hg4WKHVT2Uo1Q 9Ydgja+rZ03ZiEl5ZQUVfAGPN/oJl7ADLPk647CBpwVm6KFXvJfgFT+a61OOey5o SH0fTlwREvY7MwX1u+tOhVri3AXazTGrqmeMrXWqnFOZGt3KR0DwtTM/C5kK90Cs V09AGDLnohotCYLr+5oDQAX35vPkwYxDqhsriimTQbXn085vsOqPPMPJhpixaO24 v2ro1VR7bIDmYrWd1FKlO9ctEQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJcqw5IF Q9QfBAtW/r6yHvtRWcHzMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkI0RURBRDQz OUZCMTFGMDg4QjIwNDcwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWM0MA0GCSqGSIb3DQEBCwUAA4IBAQA6waoUZQSQh6IxF6ihDqkR cjwQ5HuyJ5KzIrBt3qxDSr6YhvqEn9lRUuV+oG7eJU1dn2dcK020KOP3q20WuFhZ G6VVy9xeeq3N25neg+eWJJkLRbu4WFEQoFpTsYl9R5AaAw3XfANYgtuO9k2rQa96 K556rkIT5x+AYZEoXsS2Etkp+TB9iwNZmKDd71oDnJzxJq6MyHtpQt6g3KakJjuH 7Ws378c3jg28Z/XE9w+6nCcPmxHMQvkpXRffNnHNBIljioDeBktEh0oQKDz+G1Vi VLh3KZ/+gofqFZzbDk+lNsKsvcLzfYdHzRsOymj2P4RRnSd5gLTx4joVDQnDzz8R -----END CERTIFICATE-----Generated at Sat Jun 6 09:39:01 2026 by rpki-client