$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/10F08AB6EB6C11EBAC530B2FC4F9AE02.roa File: 10F08AB6EB6C11EBAC530B2FC4F9AE02.roa (raw, json) Hash identifier: 6Czr0NB+4e7s3Og18LhPbKnRL7lhjY+6RYf2qZpap4A= Subject key identifier: 2A:49:6C:EE:9B:F5:B9:35:3C:E5:85:15:28:29:00:3A:27:AA:2A:C2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E37E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/10F08AB6EB6C11EBAC530B2FC4F9AE02.roa Signing time: Sun 31 May 2026 16:45:56 +0000 ROA not before: Sun 31 May 2026 16:45:56 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 134933 IP address blocks: 115.42.44.0/23 maxlen: 24 2404:b1c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58238 (0xe37e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:45:56 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c65c4-f89d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0e:a2:90:cc:e2:de:42:5a:c6:b6:1f:9e:80: fc:a1:25:a3:a6:9f:8b:29:20:7b:18:d6:a5:22:68: 31:68:98:97:79:7e:88:38:24:a8:1b:4b:18:2a:db: 37:aa:11:64:90:65:d8:02:f7:0d:30:24:67:dd:d3: e0:fc:25:d9:5b:19:fb:79:76:c5:dc:a1:d9:ef:1a: e6:a7:f8:82:71:26:7f:32:93:d7:84:30:5e:47:9a: 0a:cf:01:30:aa:e1:1f:f1:a4:a6:40:f2:73:2a:5a: 7b:d2:01:2d:5b:41:1b:6d:fb:93:6a:0b:bc:79:8c: 69:81:00:d5:a8:01:37:3f:af:4f:84:91:12:11:5e: 1c:bf:4b:5a:88:d5:ce:26:a4:ce:70:f8:9b:6f:4f: 92:5a:5b:4f:aa:cd:04:4d:1d:9d:b2:07:01:54:ac: 18:b5:ef:c3:ff:d4:54:76:da:60:03:2d:35:04:32: 97:60:59:d8:b0:94:f4:90:fc:7b:ea:f7:01:7f:bf: 2c:8d:1a:6f:f5:8f:a0:28:b8:fb:79:cc:da:ba:91: 6e:b4:9b:b1:88:59:55:8b:0c:8a:f8:65:65:87:5e: 63:4b:de:6b:54:00:5d:cc:e1:49:de:68:74:9c:0d: 60:e9:59:bd:f3:e3:86:16:b9:d3:a9:31:2e:31:9e: b8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:49:6C:EE:9B:F5:B9:35:3C:E5:85:15:28:29:00:3A:27:AA:2A:C2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/10F08AB6EB6C11EBAC530B2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 115.42.44.0/23 IPv6: 2404:b1c0::/32 Signature Algorithm: sha256WithRSAEncryption 10:fa:9d:00:0a:53:70:cb:4a:46:71:ff:33:b7:ad:7b:e2:d5: fd:7b:7e:78:5a:fe:af:14:a2:bf:c9:c1:59:41:27:fc:8e:1e: 18:3e:dc:cd:b4:b5:e5:f5:a0:8d:54:3d:33:9e:f5:0c:f4:36: 09:46:25:04:62:8c:93:0d:38:01:1b:00:35:0e:0b:8f:57:2f: ae:90:7c:98:da:7a:6a:ac:a5:8d:e2:9e:c2:bb:aa:bd:b4:cb: 34:82:1a:77:41:7e:a9:c1:cd:b6:f0:14:4e:00:76:be:1c:61: c7:3c:3a:33:e0:d4:29:25:ed:2b:d3:3d:99:9a:f7:60:18:35: 32:94:25:ad:ef:4a:44:bd:ac:00:42:ef:fc:0b:0d:c8:85:58: 12:9d:d2:12:40:d1:c3:8a:ba:ed:b6:c9:4b:f3:19:cf:36:68: ff:43:7b:f6:d3:b4:2f:1b:62:35:4b:32:f9:f9:34:65:c4:34: be:a4:07:d7:50:52:1e:af:07:40:ae:3c:23:d7:1b:0f:b9:a3: f4:9c:c2:84:39:3d:16:d7:e0:35:ad:17:fa:70:8d:32:47:58: ec:db:c1:ae:e8:0b:b6:5b:70:ac:9f:08:de:66:7c:92:20:66: 7f:f3:25:cc:57:76:06:6a:60:db:0f:74:c2:80:6a:dd:95:d8: f5:29:49:05 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDAON+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDU1NloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY1YzQtZjg5ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANoOopDM4t5CWsa2H56A/KElo6afiykgexjWpSJoMWiYl3l+iDgkqBtLGCrb N6oRZJBl2AL3DTAkZ93T4Pwl2VsZ+3l2xdyh2e8a5qf4gnEmfzKT14QwXkeaCs8B MKrhH/GkpkDycypae9IBLVtBG237k2oLvHmMaYEA1agBNz+vT4SREhFeHL9LWojV ziakznD4m29PklpbT6rNBE0dnbIHAVSsGLXvw//UVHbaYAMtNQQyl2BZ2LCU9JD8 e+r3AX+/LI0ab/WPoCi4+3nM2rqRbrSbsYhZVYsMivhlZYdeY0vea1QAXczhSd5o dJwNYOlZvfPjhha506kxLjGeuO0CAwEAAaOCAm8wggJrMB0GA1UdDgQWBBQqSWzu m/W5NTzlhRUoKQA6J6oqwjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzEwRjA4QUI2 RUI2QzExRUJBQzUzMEIyRkM0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAXMqLDANBAIAAjAHAwUAJASxwDANBgkqhkiG9w0BAQsFAAOCAQEA EPqdAApTcMtKRnH/M7ete+LV/Xt+eFr+rxSiv8nBWUEn/I4eGD7czbS15fWgjVQ9 M571DPQ2CUYlBGKMkw04ARsANQ4Lj1cvrpB8mNp6aqyljeKewruqvbTLNIIad0F+ qcHNtvAUTgB2vhxhxzw6M+DUKSXtK9M9mZr3YBg1MpQlre9KRL2sAELv/AsNyIVY Ep3SEkDRw4q67bbJS/MZzzZo/0N79tO0LxtiNUsy+fk0ZcQ0vqQH11BSHq8HQK48 I9cbD7mj9JzChDk9FtfgNa0X+nCNMkdY7NvBrugLtltwrJ8I3mZ8kiBmf/MlzFd2 Bmpg2w90woBq3ZXY9SlJBQ== -----END CERTIFICATE-----Generated at Thu Jun 4 10:04:26 2026 by rpki-client