$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/549F91E8C44E11F0A5A9C62AC4F9AE02.roa File: 549F91E8C44E11F0A5A9C62AC4F9AE02.roa (raw, json) Hash identifier: BzLL5zWE5QAaHRolO8jjush+Qnz8xljmhhQ+z6H9rWg= Subject key identifier: 4C:9A:C9:A7:48:52:02:D6:18:8F:E6:3A:A8:9C:EF:DA:01:B5:B0:7E Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2FDB Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/549F91E8C44E11F0A5A9C62AC4F9AE02.roa Signing time: Sun 31 May 2026 16:29:32 +0000 ROA not before: Sun 31 May 2026 16:29:31 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 154333 IP address blocks: 138.252.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12251 (0x2fdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:29:31 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c61eb-463a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:19:c5:ea:b0:8f:85:6e:ad:82:96:94:19:47: f4:7e:8a:de:40:0a:dd:90:3b:1e:76:ef:4d:9f:be: af:70:a3:7d:90:7b:59:a9:c8:04:00:84:1d:9e:f1: 58:7e:5e:a5:bb:f7:55:c8:b8:8b:9a:2c:86:f6:8a: 02:27:2a:a7:4a:09:e1:b9:0a:df:77:28:c5:b0:0e: a8:f2:5f:1e:e7:8d:bc:c1:26:9f:2b:b9:b9:be:02: 24:34:6e:10:47:dd:91:25:5e:d6:9a:aa:44:94:48: 5a:e9:57:e0:2f:27:44:03:7c:92:68:03:4a:5c:7e: f6:f1:ba:d4:3a:5d:21:c1:52:56:5c:1c:97:d9:79: 0d:8f:0c:9c:f4:c9:29:47:c3:03:ca:eb:d3:a1:05: aa:7b:52:2c:70:ef:25:e9:ed:2d:d6:7b:8b:37:2f: 9c:09:58:2c:7d:5e:69:11:8a:41:5e:62:39:67:72: 4a:cf:76:38:c8:7a:46:8f:e1:69:9f:70:e2:9e:60: 3f:40:ef:d1:df:2f:9f:9e:95:c6:5c:27:2d:52:73: fc:2e:15:43:ba:8e:0c:4d:81:09:9a:e2:91:c9:56: ff:8f:bf:df:97:1e:8e:06:05:75:8c:e4:60:04:c9: b3:78:a6:d8:ca:ec:86:29:58:66:f3:33:3f:97:7f: d5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:9A:C9:A7:48:52:02:D6:18:8F:E6:3A:A8:9C:EF:DA:01:B5:B0:7E X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/549F91E8C44E11F0A5A9C62AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.68.0/24 Signature Algorithm: sha256WithRSAEncryption a2:cd:16:67:ac:bb:4d:c5:6b:f5:88:b7:cf:ac:dc:03:0e:58: 99:7e:00:30:71:a8:41:1a:a8:bf:93:bc:c0:2c:be:ca:5e:a9: fd:e4:00:a1:1d:e9:2e:ad:7a:4a:ad:a3:03:85:ab:ae:86:f7: 3e:a3:c1:98:45:c3:1e:4c:da:e5:64:a1:2d:31:82:2c:98:73: d0:2c:04:18:df:cf:f2:d4:95:c2:9b:14:8c:64:5d:f0:bd:58: 5b:95:28:37:39:b5:52:77:05:75:8e:eb:60:fe:0f:5c:47:d4: 69:ab:1b:0a:27:09:7c:df:03:a8:c9:2c:50:38:f9:38:42:25: 10:59:51:0c:76:47:4e:f4:7a:52:4b:d7:7e:d9:23:e2:3a:9b: eb:1c:13:d1:0a:09:87:f6:e6:74:d0:d5:af:7b:e2:ff:0e:a1: f2:5f:e6:b3:46:08:ad:77:8d:c7:10:45:8a:9d:d7:2e:8d:3a: 52:48:1c:18:d1:ba:33:4d:02:91:83:1d:d9:1f:27:ca:7b:cc: d3:6c:3c:4a:3d:4d:0a:0c:65:5b:81:c6:cd:20:2b:b3:8f:e3: a4:4a:7b:d3:68:eb:fb:63:59:33:4e:1c:c7:a1:6c:82:d0:1b: 8a:87:46:6f:ec:b5:7e:f9:5c:90:d8:d8:a3:41:36:5d:02:4d: 40:cb:5d:2a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICL9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyOTMxWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjFlYi00NjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4RnF6rCPhW6tgpaUGUf0foreQArdkDsedu9Nn76vcKN9kHtZqcgEAIQdnvFY fl6lu/dVyLiLmiyG9ooCJyqnSgnhuQrfdyjFsA6o8l8e5428wSafK7m5vgIkNG4Q R92RJV7WmqpElEha6VfgLydEA3ySaANKXH728brUOl0hwVJWXByX2XkNjwyc9Mkp R8MDyuvToQWqe1IscO8l6e0t1nuLNy+cCVgsfV5pEYpBXmI5Z3JKz3Y4yHpGj+Fp n3DinmA/QO/R3y+fnpXGXCctUnP8LhVDuo4MTYEJmuKRyVb/j7/flx6OBgV1jORg BMmzeKbYyuyGKVhm8zM/l3/VswIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEyayadI UgLWGI/mOqic79oBtbB+MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTQ5RjkxRThD NDRFMTFGMEE1QTlDNjJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAivxEMA0GCSqGSIb3DQEBCwUAA4IBAQCizRZnrLtNxWv1iLfPrNwD DliZfgAwcahBGqi/k7zALL7KXqn95AChHekurXpKraMDhauuhvc+o8GYRcMeTNrl ZKEtMYIsmHPQLAQY38/y1JXCmxSMZF3wvVhblSg3ObVSdwV1jutg/g9cR9RpqxsK Jwl83wOoySxQOPk4QiUQWVEMdkdO9HpSS9d+2SPiOpvrHBPRCgmH9uZ00NWve+L/ DqHyX+azRgitd43HEEWKndcujTpSSBwY0bozTQKRgx3ZHyfKe8zTbDxKPU0KDGVb gcbNICuzj+OkSnvTaOv7Y1kzThzHoWyC0BuKh0Zv7LV++VyQ2NijQTZdAk1Ay10q -----END CERTIFICATE-----Generated at Sat Jun 6 10:52:52 2026 by rpki-client