$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5BCE91243F8F11F0AB847F13C4F9AE02.roa File: 5BCE91243F8F11F0AB847F13C4F9AE02.roa (raw, json) Hash identifier: IfnmL8riKTs0Fxbyj8ptpsbRUtqeF1oZ04oRGUzCVR8= Subject key identifier: 8C:8C:96:7F:BB:C2:89:EE:52:98:A8:6E:44:11:C5:3C:81:1B:13:9B Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2E8F Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5BCE91243F8F11F0AB847F13C4F9AE02.roa Signing time: Sun 31 May 2026 16:18:55 +0000 ROA not before: Sun 31 May 2026 16:18:55 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 135183 IP address blocks: 165.99.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11919 (0x2e8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:18:55 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c5f6e-0f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:56:f6:7d:2e:22:7d:6f:be:20:57:fa:ca:ce: d9:e5:16:88:af:ed:b4:f3:94:1d:8f:23:11:d7:67: 99:d7:92:b8:44:cd:b3:89:9d:0b:60:da:0d:d8:96: a8:0c:89:67:80:46:f5:cc:55:e3:3e:58:9e:76:13: ea:f5:1b:68:2a:c7:0d:3e:e5:d4:67:5c:4a:5a:17: fb:f4:7c:69:ed:c0:5e:b1:b5:0b:e4:35:29:46:f2: d4:dc:c1:98:9a:2e:26:25:b7:0c:94:ee:f5:13:d7: 13:60:68:9d:d1:0f:a1:1f:b7:e5:72:30:2e:ab:d4: 6a:86:de:5e:83:92:27:4d:e7:d1:a3:6e:71:d7:ba: 9a:b4:3b:33:4b:68:15:36:60:6e:1f:6d:b2:c8:35: d3:7d:1d:99:da:2e:ae:87:44:2f:eb:74:70:5e:bc: b1:24:9d:00:ae:ce:5f:eb:e9:f6:56:84:32:c9:19: 51:ae:fe:01:de:9e:8d:46:a5:6b:1e:6e:4a:87:a8: 8b:3b:a2:13:0f:ae:9d:07:a8:70:36:2b:3b:e7:b9: 79:8a:d5:77:7a:b0:8e:e4:ab:49:35:bc:9b:c4:f0: a1:a9:c6:3d:75:ba:aa:01:8e:ac:47:77:06:c3:89: ad:8b:2d:35:e6:b5:ca:56:89:a4:fe:72:0f:ef:2f: 88:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:8C:96:7F:BB:C2:89:EE:52:98:A8:6E:44:11:C5:3C:81:1B:13:9B X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5BCE91243F8F11F0AB847F13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.172.0/23 Signature Algorithm: sha256WithRSAEncryption 07:48:c4:b0:91:60:3b:22:af:24:6b:b0:28:4a:5e:51:82:af: e6:6c:8b:1b:e1:db:fb:a5:bc:58:65:cc:bc:0c:cc:2a:83:6c: bd:51:27:8a:6b:46:0f:fe:c3:1e:f8:bb:30:3b:8c:89:06:8f: e7:bf:25:42:e8:fc:2e:db:0e:63:8c:f0:b1:30:c1:ca:20:9d: f3:6e:27:4a:34:6e:76:2c:81:d3:31:57:a0:36:4b:5a:2a:70: 02:f7:9d:9b:92:d3:03:ac:c9:75:f5:53:a4:26:e9:1e:86:85: bc:00:df:a8:70:5c:bb:61:4f:b4:0f:74:4f:6c:6d:04:f6:cb: 1b:34:34:bb:85:01:25:9b:3f:63:a7:da:8d:35:21:82:76:eb: f5:64:9b:d0:ce:fc:1b:1c:0b:d7:84:f9:c2:dd:10:35:bc:f7: 59:ef:06:45:0f:45:df:4d:22:36:ac:93:9e:b6:d8:86:53:74: 2b:9d:93:35:fa:ac:fa:03:b2:6c:91:86:dc:17:eb:c1:eb:05: d1:df:8e:1c:47:ce:d5:98:4b:7c:d8:a1:4c:8f:96:e5:00:3b: 8f:72:c3:85:3f:6a:48:d7:58:ba:b8:1b:ca:e4:ed:e6:94:1a: 6a:2c:08:ca:fa:cb:09:ed:0a:c1:b5:9d:ec:f7:72:d8:06:87: 2c:c8:75:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYxODU1WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNWY2ZS0wZjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVb2fS4ifW++IFf6ys7Z5RaIr+2085QdjyMR12eZ15K4RM2ziZ0LYNoN2Jao DIlngEb1zFXjPliedhPq9RtoKscNPuXUZ1xKWhf79Hxp7cBesbUL5DUpRvLU3MGY mi4mJbcMlO71E9cTYGid0Q+hH7flcjAuq9Rqht5eg5InTefRo25x17qatDszS2gV NmBuH22yyDXTfR2Z2i6uh0Qv63RwXryxJJ0Ars5f6+n2VoQyyRlRrv4B3p6NRqVr Hm5Kh6iLO6ITD66dB6hwNis757l5itV3erCO5KtJNbybxPChqcY9dbqqAY6sR3cG w4mtiy015rXKVomk/nIP7y+ILwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIyMln+7 wonuUpiobkQRxTyBGxObMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUJDRTkxMjQz RjhGMTFGMEFCODQ3RjEzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWOsMA0GCSqGSIb3DQEBCwUAA4IBAQAHSMSwkWA7Iq8ka7AoSl5R gq/mbIsb4dv7pbxYZcy8DMwqg2y9USeKa0YP/sMe+LswO4yJBo/nvyVC6Pwu2w5j jPCxMMHKIJ3zbidKNG52LIHTMVegNktaKnAC952bktMDrMl19VOkJukehoW8AN+o cFy7YU+0D3RPbG0E9ssbNDS7hQElmz9jp9qNNSGCduv1ZJvQzvwbHAvXhPnC3RA1 vPdZ7wZFD0XfTSI2rJOettiGU3QrnZM1+qz6A7JskYbcF+vB6wXR344cR87VmEt8 2KFMj5blADuPcsOFP2pI11i6uBvK5O3mlBpqLAjK+ssJ7QrBtZ3s93LYBocsyHUj -----END CERTIFICATE-----Generated at Sat Jun 6 09:39:06 2026 by rpki-client