$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3D8EAA0CEDF711F0A5266E793A6F56BC.roa File: 3D8EAA0CEDF711F0A5266E793A6F56BC.roa (raw, json) Hash identifier: BMMy8q5o5kj0iJyATnePC5bFaZNp8sq44JkSpPIsSgQ= Subject key identifier: 1C:51:F7:5A:72:E9:50:7A:E6:F7:52:BD:AB:1E:A5:04:16:16:35:7F Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2EF1 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3D8EAA0CEDF711F0A5266E793A6F56BC.roa Signing time: Sun 31 May 2026 16:22:03 +0000 ROA not before: Sun 31 May 2026 16:22:03 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 146902 IP address blocks: 144.79.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Jun 2026 09:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12017 (0x2ef1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:22:03 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c602a-6082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:99:a6:0a:44:d0:46:4a:7d:7a:54:c4:21:aa: be:ff:51:6b:98:33:1d:fd:57:77:ca:6c:7a:3e:39: f1:4f:e4:64:f2:77:53:3d:84:d4:6d:af:2b:54:09: f0:aa:84:5f:ae:ad:46:28:58:63:95:2d:6f:cc:4b: 88:9b:a9:2a:18:96:b1:af:11:75:f7:c8:97:de:e6: 16:e9:e5:ec:b0:f1:42:0e:3e:06:ff:67:0f:05:59: 7c:a8:f5:8c:86:04:87:28:50:77:ad:7a:83:0b:27: b3:4a:f3:f5:09:67:fa:b2:0b:ae:06:58:cf:ad:bb: b5:6e:13:23:12:46:cc:17:a8:14:3c:58:b8:86:75: 9a:05:df:0c:55:6e:80:22:83:78:dd:51:08:33:f9: 07:81:d3:79:27:a8:14:08:5e:bb:69:41:4f:d5:17: a6:a4:77:c2:2d:fa:b1:c8:fe:2d:9e:d0:90:4e:13: 72:d3:3a:11:b1:7b:53:8d:58:77:1b:a0:cb:bb:9e: bb:b9:bc:76:4e:17:1c:5d:1f:f7:dd:04:e2:66:9d: df:0e:2e:25:3c:87:fa:bd:6a:f3:5b:15:43:54:db: 6f:c2:78:33:06:e1:0c:0b:f2:ca:26:cf:d9:af:0a: 48:d0:a9:f5:9f:0a:4f:6f:72:44:5e:d1:e4:5f:c3: 56:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:51:F7:5A:72:E9:50:7A:E6:F7:52:BD:AB:1E:A5:04:16:16:35:7F X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3D8EAA0CEDF711F0A5266E793A6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 144.79.208.0/23 Signature Algorithm: sha256WithRSAEncryption 67:51:83:e7:ec:8a:9d:8c:cf:05:d6:9f:5a:97:82:c5:ee:24: 92:f5:91:9e:f5:8a:3f:27:66:96:56:ba:54:b0:b7:93:3e:66: 93:f6:d8:fc:8c:15:87:0a:7a:04:8d:1a:e1:45:fe:8b:e9:74: 05:7c:6d:d2:d3:8c:88:a0:fc:d3:51:2a:99:04:e4:e9:63:5a: 3c:4a:00:cc:6f:0b:c9:28:7d:6c:65:2c:22:62:e8:5f:55:99: 3f:38:2d:25:46:f9:48:82:c7:49:37:7a:e9:42:e4:91:bc:cd: 6d:e6:1d:5a:34:b5:eb:26:1b:db:4a:b6:6e:a8:21:8d:9e:b5: 84:b9:91:90:59:5f:02:9e:f9:06:ed:10:24:1e:bb:52:97:71: aa:72:d1:f9:85:4a:cf:25:0d:3e:e7:89:3e:d6:82:cb:f8:fb: 48:d8:b5:e5:ee:a8:2c:b3:09:bc:00:72:41:02:1f:66:24:f8: 8a:ee:eb:85:22:2e:ca:e9:67:4d:1f:93:31:e5:fd:e0:e1:70: ed:85:e8:65:8b:d8:df:ec:c3:87:40:1c:9a:ac:0b:f9:71:6d: b8:5f:91:06:6f:06:74:7d:ff:9a:1d:cc:b2:9a:ec:ee:64:5e: 20:e6:59:e4:a0:aa:95:a1:67:fb:e4:65:f9:17:70:2f:60:1a: b6:ae:71:9a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyMjAzWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjAyYS02MDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJmmCkTQRkp9elTEIaq+/1FrmDMd/Vd3ymx6PjnxT+Rk8ndTPYTUba8rVAnw qoRfrq1GKFhjlS1vzEuIm6kqGJaxrxF198iX3uYW6eXssPFCDj4G/2cPBVl8qPWM hgSHKFB3rXqDCyezSvP1CWf6sguuBljPrbu1bhMjEkbMF6gUPFi4hnWaBd8MVW6A IoN43VEIM/kHgdN5J6gUCF67aUFP1RempHfCLfqxyP4tntCQThNy0zoRsXtTjVh3 G6DLu567ubx2ThccXR/33QTiZp3fDi4lPIf6vWrzWxVDVNtvwngzBuEMC/LKJs/Z rwpI0Kn1nwpPb3JEXtHkX8NWewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBxR91py 6VB65vdSvasepQQWFjV/MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0Q4RUFBMENF REY3MTFGMEE1MjY2RTc5M0E2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBkE/QMA0GCSqGSIb3DQEBCwUAA4IBAQBnUYPn7IqdjM8F1p9al4LF 7iSS9ZGe9Yo/J2aWVrpUsLeTPmaT9tj8jBWHCnoEjRrhRf6L6XQFfG3S04yIoPzT USqZBOTpY1o8SgDMbwvJKH1sZSwiYuhfVZk/OC0lRvlIgsdJN3rpQuSRvM1t5h1a NLXrJhvbSrZuqCGNnrWEuZGQWV8CnvkG7RAkHrtSl3GqctH5hUrPJQ0+54k+1oLL +PtI2LXl7qgsswm8AHJBAh9mJPiK7uuFIi7K6WdNH5Mx5f3g4XDthehli9jf7MOH QByarAv5cW24X5EGbwZ0ff+aHcyymuzuZF4g5lnkoKqVoWf75GX5F3AvYBq2rnGa -----END CERTIFICATE-----Generated at Thu Jun 4 11:17:20 2026 by rpki-client