$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3933F030F6CF11F0B52F4A0C526F56BC.roa File: 3933F030F6CF11F0B52F4A0C526F56BC.roa (raw, json) Hash identifier: UGWYkYEZetV8JJj+o0jPt08PVOiNHw57wHwBDrqBEN0= Subject key identifier: 89:C4:F8:72:91:34:B4:3D:68:9E:CB:C0:67:FF:30:8F:12:F8:9D:EF Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2FDD Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3933F030F6CF11F0B52F4A0C526F56BC.roa Signing time: Sun 31 May 2026 16:29:36 +0000 ROA not before: Sun 31 May 2026 16:29:36 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 154366 IP address blocks: 138.252.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12253 (0x2fdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:29:36 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c61f0-5b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b4:e9:78:f3:11:8b:2f:3b:15:a9:68:38:40: 1d:09:68:c1:2d:6e:33:73:a1:a5:73:26:a4:c9:11: b6:69:de:00:3b:26:64:3c:bd:de:6c:8c:3a:1a:89: 77:b9:51:bd:d1:1e:65:d2:00:f4:19:8b:be:f5:9e: f3:19:83:ab:94:a4:11:13:24:b6:65:20:97:cb:41: 9f:b0:42:86:86:01:91:b9:fa:3c:2f:90:95:89:a6: f1:6f:4a:c7:24:a0:6b:52:5a:8d:20:12:76:c0:29: f1:52:76:42:d9:85:dd:90:22:ae:8c:7f:a0:dc:c6: 42:f2:16:1c:18:99:67:b8:1f:c8:a4:c5:51:bf:82: f4:6b:08:7f:28:13:ff:69:c3:d3:d7:b1:97:d3:88: c1:5a:4b:3e:a9:6a:9a:aa:49:f4:84:17:74:05:80: 42:fa:00:8e:26:ad:a0:5f:da:3e:51:cd:de:f4:95: bc:00:19:19:44:19:ac:fc:fa:f9:9e:d1:59:03:24: 4d:36:c7:01:b4:36:1a:d6:77:ce:a4:d1:4c:c4:ca: 51:a3:c1:a5:96:1c:ce:94:30:b5:5f:8e:a6:8a:f2: ac:3f:0a:7a:af:06:7d:3c:18:72:2e:7d:4f:4e:ce: 10:15:85:d1:e7:5f:35:87:f3:fe:bc:cb:ec:6b:5a: d8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C4:F8:72:91:34:B4:3D:68:9E:CB:C0:67:FF:30:8F:12:F8:9D:EF X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3933F030F6CF11F0B52F4A0C526F56BC.roa sbgp-ipAddrBlock: critical IPv4: 138.252.200.0/23 Signature Algorithm: sha256WithRSAEncryption ab:59:c3:66:66:eb:ee:1d:90:e0:11:29:e6:19:01:4f:8f:73: b8:9d:8f:7a:78:a4:31:91:1d:ff:12:eb:f6:c5:c7:54:fe:cf: f2:19:84:11:88:00:66:e3:b7:45:4c:25:18:44:cc:59:10:7b: 68:00:3e:3b:14:db:f6:3c:de:2d:3f:12:43:76:96:b4:a9:5a: 8d:6b:f9:05:39:fe:87:a4:29:b7:c1:6f:a4:4d:e8:31:d5:d8: fe:9b:a0:97:5a:e0:e7:3c:a2:39:7c:7d:de:75:89:ae:75:c9: 0f:ef:45:54:fd:46:53:58:c0:61:35:92:04:37:1d:6a:99:7c: 25:06:22:c0:c5:c8:d3:2a:d2:b7:c0:2a:80:24:4e:f1:f5:61: d0:d8:f9:7c:bc:50:ff:8c:95:8e:dc:96:4a:85:2d:a3:0e:eb: d2:cb:59:db:bf:a1:ab:f0:7e:31:0f:ca:19:6e:42:90:4e:cb: e4:47:74:68:51:d0:99:e3:4e:d5:9d:f2:a4:2f:1f:cf:b4:93: b9:f7:08:2f:fd:0b:03:49:af:78:2d:62:cf:26:3d:b0:5c:b1: 76:64:de:fd:42:19:13:fc:a6:7f:9a:59:d3:63:61:f5:f8:44: fc:37:7b:78:fa:a9:20:57:29:0c:e3:09:f9:0b:15:3c:1c:06: 70:2f:04:33 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICL90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyOTM2WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjFmMC01YjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bTpePMRiy87FaloOEAdCWjBLW4zc6GlcyakyRG2ad4AOyZkPL3ebIw6Gol3 uVG90R5l0gD0GYu+9Z7zGYOrlKQREyS2ZSCXy0GfsEKGhgGRufo8L5CViabxb0rH JKBrUlqNIBJ2wCnxUnZC2YXdkCKujH+g3MZC8hYcGJlnuB/IpMVRv4L0awh/KBP/ acPT17GX04jBWks+qWqaqkn0hBd0BYBC+gCOJq2gX9o+Uc3e9JW8ABkZRBms/Pr5 ntFZAyRNNscBtDYa1nfOpNFMxMpRo8GllhzOlDC1X46mivKsPwp6rwZ9PBhyLn1P Ts4QFYXR5181h/P+vMvsa1rYOQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFInE+HKR NLQ9aJ7LwGf/MI8S+J3vMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzkzM0YwMzBG NkNGMTFGMEI1MkY0QTBDNTI2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBivzIMA0GCSqGSIb3DQEBCwUAA4IBAQCrWcNmZuvuHZDgESnmGQFP j3O4nY96eKQxkR3/Euv2xcdU/s/yGYQRiABm47dFTCUYRMxZEHtoAD47FNv2PN4t PxJDdpa0qVqNa/kFOf6HpCm3wW+kTegx1dj+m6CXWuDnPKI5fH3edYmudckP70VU /UZTWMBhNZIENx1qmXwlBiLAxcjTKtK3wCqAJE7x9WHQ2Pl8vFD/jJWO3JZKhS2j DuvSy1nbv6Gr8H4xD8oZbkKQTsvkR3RoUdCZ407VnfKkLx/PtJO59wgv/QsDSa94 LWLPJj2wXLF2ZN79QhkT/KZ/mlnTY2H1+ET8N3t4+qkgVykM4wn5CxU8HAZwLwQz -----END CERTIFICATE-----Generated at Sat Jun 6 08:22:16 2026 by rpki-client