$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3B609732DF1411F0A54B68C45F6F56BC.roa File: 3B609732DF1411F0A54B68C45F6F56BC.roa (raw, json) Hash identifier: uvfU1whjOyG/8cmoLn0GFPrrIkh84ifYengrgRzzUM8= Subject key identifier: 2F:47:85:93:B1:90:D8:1D:6B:44:D5:52:A9:87:77:05:C3:8A:DC:B6 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2FD5 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3B609732DF1411F0A54B68C45F6F56BC.roa Signing time: Sun 31 May 2026 16:29:20 +0000 ROA not before: Sun 31 May 2026 16:29:20 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 154297 IP address blocks: 138.252.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12245 (0x2fd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:29:20 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c61e0-95d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3b:2f:97:2a:f7:03:db:95:71:15:c1:e6:8b: f1:f2:7d:9b:0d:21:45:dd:ac:99:c7:1d:c2:08:10: be:e8:67:ab:72:6c:26:f4:ed:44:f5:0d:c0:c4:2b: 8e:b3:b0:66:17:55:6d:77:c4:2e:bf:3a:00:f9:e9: 75:58:1d:8f:9a:bc:26:94:e5:95:c9:ec:8e:7c:0e: eb:5c:28:df:d5:9f:b4:68:68:b6:83:2f:f7:8d:c0: 3f:b4:60:66:ab:79:27:76:7c:d2:9b:d7:69:10:67: 2c:6c:f6:dc:55:e1:89:cf:5d:a9:01:c3:43:06:eb: 7b:3e:5e:c2:2d:92:bf:17:5f:03:61:df:a9:06:54: 45:46:ff:22:b1:82:bf:f3:44:29:56:77:6f:98:f0: cd:75:fb:b7:00:3a:e6:95:01:c3:2b:c2:02:12:8a: 39:74:e5:7c:93:c7:1a:a7:f5:59:c9:04:14:ee:d5: f7:ff:5f:3f:95:a2:c8:8d:bd:fa:7a:f4:8c:b2:d7: 6c:78:a6:0b:51:50:89:e2:48:ce:f7:95:93:24:2f: 51:f7:4a:5d:45:39:d9:22:0a:b1:b5:47:12:ac:08: 9f:e8:27:6c:11:62:f2:ff:95:cd:66:61:a3:7b:48: 80:c8:1d:45:a1:a4:e7:2b:9b:02:30:93:9a:f6:b3: 0d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:47:85:93:B1:90:D8:1D:6B:44:D5:52:A9:87:77:05:C3:8A:DC:B6 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3B609732DF1411F0A54B68C45F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 138.252.34.0/23 Signature Algorithm: sha256WithRSAEncryption 34:10:4c:e6:9c:1a:81:b2:7f:3f:39:9b:23:ee:a5:09:c2:e2: 9b:8e:9f:30:9c:73:a4:61:96:95:3b:fc:62:09:6d:96:12:3e: 07:5b:17:c3:b5:7e:de:c6:2e:7e:9d:42:d8:cb:a9:75:7a:47: b9:24:c0:34:7e:e7:53:71:1e:88:2f:6d:6e:ad:cb:2b:3d:45: 96:ac:d0:d0:02:d8:4f:20:ce:cb:29:64:67:9f:8b:5c:d9:33: 4a:4a:19:27:06:88:43:3e:f3:23:3d:01:38:cf:59:b1:52:1c: 91:37:f0:95:37:64:e8:05:44:ee:b4:55:ff:be:a7:7c:15:19: 38:7a:88:4b:26:0b:a8:84:bb:72:fc:71:c8:b9:85:19:f8:10: 67:a0:e9:fc:b9:dd:ec:4b:c8:c2:08:98:7d:a5:20:87:f3:98: f8:ca:7d:c4:4e:30:09:33:ed:89:dd:20:ee:de:ec:44:49:e4: 4a:43:56:cc:af:dd:97:f4:3b:3e:fe:9c:46:d5:c2:73:d0:33: 39:48:4e:da:f7:4f:4c:68:d9:5e:c2:60:31:9b:9b:11:1d:17: 49:c4:e9:d3:d3:fe:e2:b3:65:4b:de:ef:ea:ac:6d:33:d6:cd: b9:37:da:a0:54:51:d4:06:cf:93:44:28:13:0a:0a:25:4c:3f: bc:77:8f:d0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICL9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyOTIwWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjFlMC05NWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzsvlyr3A9uVcRXB5ovx8n2bDSFF3ayZxx3CCBC+6Gercmwm9O1E9Q3AxCuO s7BmF1Vtd8QuvzoA+el1WB2PmrwmlOWVyeyOfA7rXCjf1Z+0aGi2gy/3jcA/tGBm q3kndnzSm9dpEGcsbPbcVeGJz12pAcNDBut7Pl7CLZK/F18DYd+pBlRFRv8isYK/ 80QpVndvmPDNdfu3ADrmlQHDK8ICEoo5dOV8k8cap/VZyQQU7tX3/18/laLIjb36 evSMstdseKYLUVCJ4kjO95WTJC9R90pdRTnZIgqxtUcSrAif6CdsEWLy/5XNZmGj e0iAyB1FoaTnK5sCMJOa9rMNdwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC9HhZOx kNgda0TVUqmHdwXDity2MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0I2MDk3MzJE RjE0MTFGMEE1NEI2OEM0NUY2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBivwiMA0GCSqGSIb3DQEBCwUAA4IBAQA0EEzmnBqBsn8/OZsj7qUJ wuKbjp8wnHOkYZaVO/xiCW2WEj4HWxfDtX7exi5+nULYy6l1eke5JMA0fudTcR6I L21urcsrPUWWrNDQAthPIM7LKWRnn4tc2TNKShknBohDPvMjPQE4z1mxUhyRN/CV N2ToBUTutFX/vqd8FRk4eohLJguohLty/HHIuYUZ+BBnoOn8ud3sS8jCCJh9pSCH 85j4yn3ETjAJM+2J3SDu3uxESeRKQ1bMr92X9Ds+/pxG1cJz0DM5SE7a909MaNle wmAxm5sRHRdJxOnT0/7is2VL3u/qrG0z1s25N9qgVFHUBs+TRCgTCgolTD+8d4/Q -----END CERTIFICATE-----Generated at Sat Jun 6 09:39:04 2026 by rpki-client