$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BDE8D4DCDE0F11EF86254166C4F9AE02.roa File: BDE8D4DCDE0F11EF86254166C4F9AE02.roa (raw, json) Hash identifier: TP6E1RrVcZyWNmtlHyhlHVst4GRGP9U30FDiBqdVeas= Subject key identifier: 71:A4:D6:B2:00:9C:7F:CF:C3:66:92:91:97:C4:B8:54:8D:7F:8D:71 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2E86 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BDE8D4DCDE0F11EF86254166C4F9AE02.roa Signing time: Sun 31 May 2026 16:18:36 +0000 ROA not before: Sun 31 May 2026 16:18:36 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 134331 IP address blocks: 161.248.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11910 (0x2e86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:18:36 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c5f5c-bd48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3f:f7:70:17:66:fd:64:9c:5b:29:6a:74:77: b6:0d:75:89:85:f3:11:9d:32:3b:67:e1:8f:23:87: 79:ae:2e:b6:83:11:56:08:1f:98:58:60:06:99:39: f1:dc:be:3e:aa:d4:c4:23:24:85:15:4f:4e:01:3f: 98:95:99:0a:3a:c3:f3:63:7b:59:5e:88:6c:e0:40: 41:c3:ac:6c:6e:86:7d:d9:5e:24:59:66:81:59:b1: e3:f5:f7:d3:ea:b8:23:1c:0c:f3:c2:bc:e6:45:f8: 7a:fa:ff:db:18:a9:ce:78:9e:30:be:ca:ce:4e:6d: 7e:d7:4e:ed:7f:5b:6b:fa:bf:0d:8e:7f:88:ee:03: c6:5f:2a:21:33:05:ad:7d:8b:76:fa:4f:cc:7f:27: dd:34:86:26:12:b7:39:dc:23:c5:76:09:7c:b6:78: 87:6a:e0:0e:f2:5b:bf:3c:31:9f:8d:64:98:b8:18: 24:ae:92:6f:db:b8:f4:21:11:a8:96:af:a3:ef:6e: 33:86:0a:74:0e:de:41:4f:46:1e:b1:c4:70:dd:0a: 7f:6a:48:bf:0e:59:2f:ed:ec:eb:68:8e:45:35:b5: fb:a8:2c:a6:a1:a8:65:d3:0e:7f:a4:76:4e:01:85: 78:bc:36:08:4e:04:16:71:7e:00:24:e9:e5:e7:68: c0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A4:D6:B2:00:9C:7F:CF:C3:66:92:91:97:C4:B8:54:8D:7F:8D:71 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BDE8D4DCDE0F11EF86254166C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.64.0/23 Signature Algorithm: sha256WithRSAEncryption 68:f8:3a:a7:58:9e:d2:33:9f:cf:1d:d6:f8:06:c5:a0:c5:9e: 11:6b:2f:1b:5c:6a:c4:d7:61:59:f9:5a:85:30:5e:57:83:a6: ec:99:d9:41:64:34:dd:0d:e0:77:4b:d7:e5:80:ec:cb:b9:94: 74:70:dd:af:c5:ab:ed:f9:02:4b:fa:b9:8d:58:b6:29:07:cb: 18:9c:b7:ad:3a:e2:a0:6f:9a:c2:f4:6c:33:b8:a4:36:48:de: 68:c5:eb:bc:53:33:78:42:2b:7b:e3:0d:b1:2c:a7:bc:40:12: 07:2f:87:1c:2b:d7:1d:8b:77:f2:8d:04:26:6e:bd:74:d8:b0: 77:36:09:81:01:45:97:f4:52:b9:ef:cd:0e:84:1e:1e:3e:99: f4:67:ef:46:9b:d1:a5:c1:5f:1d:1d:ad:fe:86:0c:79:a2:c8: 49:e6:42:96:13:eb:e0:96:6a:df:56:3c:8d:3d:f8:53:a0:91: ad:f8:9c:76:5d:6c:6d:20:c6:95:ef:fc:0b:61:be:fd:a9:16: 22:df:05:ee:9a:9f:64:d8:36:0c:68:6d:ce:7a:98:d8:60:d4: 66:06:89:23:38:5b:c1:dc:1e:6b:43:42:e5:99:b4:6f:d6:4b: 43:03:f7:6f:9e:6b:e0:53:46:b2:b2:41:bc:96:ae:bd:d5:95: 4f:29:eb:43 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYxODM2WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNWY1Yy1iZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2T/3cBdm/WScWylqdHe2DXWJhfMRnTI7Z+GPI4d5ri62gxFWCB+YWGAGmTnx 3L4+qtTEIySFFU9OAT+YlZkKOsPzY3tZXohs4EBBw6xsboZ92V4kWWaBWbHj9ffT 6rgjHAzzwrzmRfh6+v/bGKnOeJ4wvsrOTm1+107tf1tr+r8Njn+I7gPGXyohMwWt fYt2+k/MfyfdNIYmErc53CPFdgl8tniHauAO8lu/PDGfjWSYuBgkrpJv27j0IRGo lq+j724zhgp0Dt5BT0YescRw3Qp/aki/Dlkv7ezraI5FNbX7qCymoahl0w5/pHZO AYV4vDYITgQWcX4AJOnl52jAuwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHGk1rIA nH/Pw2aSkZfEuFSNf41xMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQkRFOEQ0RENE RTBGMTFFRjg2MjU0MTY2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofhAMA0GCSqGSIb3DQEBCwUAA4IBAQBo+DqnWJ7SM5/PHdb4BsWg xZ4Ray8bXGrE12FZ+VqFMF5Xg6bsmdlBZDTdDeB3S9flgOzLuZR0cN2vxavt+QJL +rmNWLYpB8sYnLetOuKgb5rC9GwzuKQ2SN5oxeu8UzN4Qit74w2xLKe8QBIHL4cc K9cdi3fyjQQmbr102LB3NgmBAUWX9FK5780OhB4ePpn0Z+9Gm9GlwV8dHa3+hgx5 oshJ5kKWE+vglmrfVjyNPfhToJGt+Jx2XWxtIMaV7/wLYb79qRYi3wXump9k2DYM aG3OepjYYNRmBokjOFvB3B5rQ0LlmbRv1ktDA/dvnmvgU0ayskG8lq691ZVPKetD -----END CERTIFICATE-----Generated at Sat Jun 6 08:27:54 2026 by rpki-client