$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DFB2D738F37C11F0BD8551326C6F56BC.roa File: DFB2D738F37C11F0BD8551326C6F56BC.roa (raw, json) Hash identifier: u0slnU29X/8d8kCl9Dji/J/xErKl8+IBMuaeuuZT1Mw= Subject key identifier: 1D:CF:FF:B5:AF:D2:DA:0C:8C:DA:04:CA:0C:F2:6A:8E:84:75:BB:88 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2ECE Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DFB2D738F37C11F0BD8551326C6F56BC.roa Signing time: Sun 31 May 2026 16:20:55 +0000 ROA not before: Sun 31 May 2026 16:20:54 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 141169 IP address blocks: 144.79.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11982 (0x2ece) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:20:54 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c5fe6-0121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:90:c2:95:79:64:15:c9:1b:b8:47:aa:71:4a: 4a:d0:9b:04:bb:69:43:f0:c9:e0:f2:db:ac:51:0b: 82:fb:8b:c2:bf:d8:32:e2:09:d5:97:64:4f:50:25: 08:cb:c1:24:2d:dc:4e:ae:f1:2c:a2:a9:de:35:09: d8:12:73:9c:82:74:07:cb:d4:bf:30:d7:09:a1:82: dc:3d:a9:38:6a:e1:d3:58:2f:53:d2:12:8f:a5:ae: fe:18:67:d9:35:7d:39:1a:80:ab:9a:bf:f1:0e:4e: 8b:23:e7:0c:58:43:b1:23:6a:97:82:53:9d:37:18: c8:bf:36:f1:a2:49:54:c6:68:35:8e:88:97:b0:87: c2:6c:15:76:e6:64:e1:2d:09:eb:08:32:c6:7e:1e: df:83:62:be:e2:e3:e5:c2:8d:04:a7:d9:14:ff:4a: 9d:62:b2:91:27:72:84:10:34:6b:57:f3:58:9a:a3: dd:e2:38:06:79:01:17:8e:a5:06:e5:a1:dc:0a:29: 67:e3:94:55:cb:23:6e:32:f3:69:cf:f7:34:d0:dc: d4:86:ea:54:66:65:8a:00:c2:d0:37:b9:b2:b5:8c: c6:d2:54:c0:2c:ea:34:79:a9:02:63:93:5e:55:c1: 37:5d:68:70:3c:52:82:c5:6d:1a:16:c3:f5:db:a8: 1a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:CF:FF:B5:AF:D2:DA:0C:8C:DA:04:CA:0C:F2:6A:8E:84:75:BB:88 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DFB2D738F37C11F0BD8551326C6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 144.79.215.0/24 Signature Algorithm: sha256WithRSAEncryption 42:5f:80:bb:9b:85:af:cc:8c:70:9d:17:01:41:b8:60:ce:1f: fe:69:d0:00:13:a8:c3:e7:64:83:00:f0:41:f6:1a:d5:74:bf: eb:4d:0f:a8:4d:72:a6:b6:68:9d:01:16:74:41:57:00:26:b6: de:e2:d3:fa:09:d8:74:36:cc:42:63:34:07:31:ae:e5:88:cc: 6e:f8:7e:f9:e9:82:22:ef:00:65:ea:90:eb:72:13:1a:3e:20: da:a8:4b:4b:0c:ba:79:e6:12:4d:f1:d0:d6:31:36:24:4b:2b: d3:9e:aa:b7:1f:ec:f8:20:15:9a:22:9a:0b:64:53:f4:8d:45: a1:d1:ff:7f:36:f3:74:8b:9c:9f:27:81:d4:76:6d:d0:cb:0b: df:09:49:86:c3:93:37:3a:33:b2:b9:d8:85:94:a6:0c:a2:2e: b7:8d:b7:3c:55:6b:6f:6d:f8:9a:73:06:f6:d7:29:b4:9d:ac: f7:e6:2a:5e:b9:18:0e:ba:f2:a1:54:38:4d:f6:28:7b:4d:ee: a3:b2:bc:52:7f:99:0e:e5:51:fb:0b:b2:f3:83:33:95:ba:25: 14:c3:48:1d:ad:bd:d1:e6:3a:2a:e6:fa:2c:ec:ee:09:49:2c: 4a:38:8c:65:fc:d4:f2:b7:42:4b:8f:b0:d7:ee:01:2e:1e:d4: 69:d0:0c:46 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyMDU0WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNWZlNi0wMTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJDClXlkFckbuEeqcUpK0JsEu2lD8Mng8tusUQuC+4vCv9gy4gnVl2RPUCUI y8EkLdxOrvEsoqneNQnYEnOcgnQHy9S/MNcJoYLcPak4auHTWC9T0hKPpa7+GGfZ NX05GoCrmr/xDk6LI+cMWEOxI2qXglOdNxjIvzbxoklUxmg1joiXsIfCbBV25mTh LQnrCDLGfh7fg2K+4uPlwo0Ep9kU/0qdYrKRJ3KEEDRrV/NYmqPd4jgGeQEXjqUG 5aHcCiln45RVyyNuMvNpz/c00NzUhupUZmWKAMLQN7mytYzG0lTALOo0eakCY5Ne VcE3XWhwPFKCxW0aFsP126gaOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB3P/7Wv 0toMjNoEygzyao6EdbuIMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREZCMkQ3MzhG MzdDMTFGMEJEODU1MTMyNkM2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAkE/XMA0GCSqGSIb3DQEBCwUAA4IBAQBCX4C7m4WvzIxwnRcBQbhg zh/+adAAE6jD52SDAPBB9hrVdL/rTQ+oTXKmtmidARZ0QVcAJrbe4tP6Cdh0NsxC YzQHMa7liMxu+H756YIi7wBl6pDrchMaPiDaqEtLDLp55hJN8dDWMTYkSyvTnqq3 H+z4IBWaIpoLZFP0jUWh0f9/NvN0i5yfJ4HUdm3QywvfCUmGw5M3OjOyudiFlKYM oi63jbc8VWtvbfiacwb21ym0naz35ipeuRgOuvKhVDhN9ih7Te6jsrxSf5kO5VH7 C7LzgzOVuiUUw0gdrb3R5joq5vos7O4JSSxKOIxl/NTyt0JLj7DX7gEuHtRp0AxG -----END CERTIFICATE-----Generated at Sat Jun 6 09:39:07 2026 by rpki-client