$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D43EBED0613C11F0B60AFC14C4F9AE02.roa File: D43EBED0613C11F0B60AFC14C4F9AE02.roa (raw, json) Hash identifier: 94ne7HbQOod2FOL66Agmnzv63Rxmaq0k1COXIXG5WlE= Subject key identifier: 77:6C:CC:7F:0D:BF:4F:68:40:F6:00:29:42:22:1C:83:3D:F4:24:5B Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2E6B Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D43EBED0613C11F0B60AFC14C4F9AE02.roa Signing time: Sun 31 May 2026 16:17:43 +0000 ROA not before: Sun 31 May 2026 16:17:43 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 132770 IP address blocks: 157.10.150.0/23 maxlen: 24 160.22.232.0/24 maxlen: 24 160.22.233.0/24 maxlen: 24 160.30.72.0/23 maxlen: 24 165.99.226.0/23 maxlen: 24 165.101.109.0/24 maxlen: 24 165.101.204.0/24 maxlen: 24 165.101.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11883 (0x2e6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:17:43 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c5f27-eefa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:98:f3:60:ca:b7:a4:58:e7:3d:0d:ef:a4:84: 81:40:7a:77:a3:54:c9:7c:78:f0:4d:ac:3b:91:22: da:15:de:13:79:3d:2f:b0:e9:76:fb:2c:18:ff:90: a2:ba:55:f4:17:ec:4e:bf:b0:84:ea:cf:6a:a8:92: 63:11:1e:1c:c1:14:ad:c5:e6:ba:bb:4c:06:d8:35: 84:63:7a:bf:f4:70:9d:89:0e:ae:76:51:d8:ea:68: 78:b0:3e:75:20:fd:b7:21:e7:72:55:91:96:0f:7c: 91:fc:c2:ff:ea:72:1b:a7:83:03:10:91:50:90:d4: c7:2c:97:de:08:3d:53:61:17:99:9a:e5:bd:8c:80: d2:44:34:a1:29:80:fb:3e:90:d6:12:8d:68:6e:ad: 40:4b:03:96:d6:30:99:a9:b5:cc:13:c0:5a:0d:26: c7:99:8f:e9:60:42:6f:d0:81:70:5e:43:43:a7:ab: 27:78:eb:0e:39:18:e2:8a:23:96:03:1a:c2:5c:3a: c5:be:b0:8a:e6:55:0f:8c:47:72:f8:72:46:d3:d0: 3c:34:23:de:5f:4a:14:77:35:af:a9:e4:83:56:3e: e5:29:7f:60:35:e7:5f:71:48:cb:4c:77:cf:4f:b3: 23:ad:d7:53:dc:96:d0:df:a6:19:26:4d:e7:36:a1: b7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:6C:CC:7F:0D:BF:4F:68:40:F6:00:29:42:22:1C:83:3D:F4:24:5B X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D43EBED0613C11F0B60AFC14C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.150.0/23 160.22.232.0/23 160.30.72.0/23 165.99.226.0/23 165.101.109.0/24 165.101.204.0/24 165.101.229.0/24 Signature Algorithm: sha256WithRSAEncryption c7:3b:a7:6a:c6:e6:1f:80:71:59:34:6d:fd:9a:bb:21:92:18: 29:d2:e1:3f:c6:06:99:65:7c:36:c3:dd:cb:de:36:28:58:37: 9f:f1:05:ac:09:34:a5:f3:83:62:d7:8c:26:08:3a:52:dd:2c: c7:bb:3b:90:fd:34:5f:0f:5d:82:a1:03:f0:55:49:42:8c:aa: 8d:2f:d7:5b:d9:a4:95:99:aa:60:0e:c5:34:74:39:7b:19:53: d9:44:87:07:e8:d9:75:51:30:21:f1:82:34:db:20:99:4a:28: e3:f8:4e:c0:00:65:6b:2c:91:9d:a3:64:f9:ea:7c:32:15:f2: 79:41:4a:59:d4:28:cf:82:ac:5b:83:3b:86:42:e4:b4:7f:28: 54:38:53:35:7c:51:8b:81:03:3b:17:1c:93:a4:ba:7b:bc:8d: 1f:0b:6f:6d:40:0e:6e:0a:a6:ff:5f:79:9c:3e:99:25:59:a7: bb:68:b7:0e:a6:5d:01:17:5a:68:33:f4:5d:6c:09:8c:8d:c6: 2f:b7:f7:45:1d:a6:7b:11:70:2c:ff:ae:9d:ac:ac:88:03:55: 06:54:8b:40:95:e4:63:ca:fc:b8:46:74:44:4d:71:24:1e:5a: bf:58:24:7e:66:98:94:0e:6d:c0:63:22:dd:4b:0f:b7:c0:18: 1d:3f:78:a5 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICLmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYxNzQzWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNWYyNy1lZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJjzYMq3pFjnPQ3vpISBQHp3o1TJfHjwTaw7kSLaFd4TeT0vsOl2+ywY/5Ci ulX0F+xOv7CE6s9qqJJjER4cwRStxea6u0wG2DWEY3q/9HCdiQ6udlHY6mh4sD51 IP23IedyVZGWD3yR/ML/6nIbp4MDEJFQkNTHLJfeCD1TYReZmuW9jIDSRDShKYD7 PpDWEo1obq1ASwOW1jCZqbXME8BaDSbHmY/pYEJv0IFwXkNDp6sneOsOORjiiiOW AxrCXDrFvrCK5lUPjEdy+HJG09A8NCPeX0oUdzWvqeSDVj7lKX9gNedfcUjLTHfP T7MjrddT3JbQ36YZJk3nNqG3ewIDAQABo4IChDCCAoAwHQYDVR0OBBYEFHdszH8N v09oQPYAKUIiHIM99CRbMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDQzRUJFRDA2 MTNDMTFGMEI2MEFGQzE0QzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQBnQqWAwQBoBboAwQBoB5IAwQBpWPiAwQApWVtAwQApWXMAwQApWXl MA0GCSqGSIb3DQEBCwUAA4IBAQDHO6dqxuYfgHFZNG39mrshkhgp0uE/xgaZZXw2 w93L3jYoWDef8QWsCTSl84Ni14wmCDpS3SzHuzuQ/TRfD12CoQPwVUlCjKqNL9db 2aSVmapgDsU0dDl7GVPZRIcH6Nl1UTAh8YI02yCZSijj+E7AAGVrLJGdo2T56nwy FfJ5QUpZ1CjPgqxbgzuGQuS0fyhUOFM1fFGLgQM7FxyTpLp7vI0fC29tQA5uCqb/ X3mcPpklWae7aLcOpl0BF1poM/RdbAmMjcYvt/dFHaZ7EXAs/66drKyIA1UGVItA leRjyvy4RnRETXEkHlq/WCR+ZpiUDm3AYyLdSw+3wBgdP3il -----END CERTIFICATE-----Generated at Sat Jun 6 08:22:16 2026 by rpki-client