$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2D8A40E1D711EEA0F9737AC4F9AE02.roa File: 4A2D8A40E1D711EEA0F9737AC4F9AE02.roa (raw, json) Hash identifier: UiPw5Pk9uve6LPj9qoTXgFdXnX/lJZW3v6OaS+cKc7s= Subject key identifier: 53:57:1A:62:81:E0:0D:CA:2F:07:99:BC:79:C0:77:3A:4B:AB:B4:3F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EA57 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2D8A40E1D711EEA0F9737AC4F9AE02.roa Signing time: Sun 31 May 2026 17:43:25 +0000 ROA not before: Sun 31 May 2026 17:43:24 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 152581 IP address blocks: 2001:df3:8840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59991 (0xea57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:43:24 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c733c-fc4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:85:66:8a:a8:0e:2c:46:d9:c2:7b:6e:17:28: 46:8a:e2:55:56:78:ae:5e:22:aa:fb:00:71:24:2e: b1:1c:b6:fa:a5:6a:eb:bb:7a:56:0a:27:b4:38:ed: 74:29:fd:a0:1b:f5:30:ae:33:fd:87:5a:e7:21:80: 56:61:95:53:32:f4:ea:d3:c0:c9:81:87:91:49:37: 95:2e:e5:45:7c:ef:b2:75:ee:4c:6a:09:2b:02:c6: c1:1c:59:55:e0:ad:0f:20:5e:ba:c4:ef:e6:c2:3b: 5f:c5:68:87:a4:3d:5b:bb:10:f6:b6:68:0c:ac:9a: c5:8a:83:9c:48:21:38:70:f5:4f:ad:b6:a2:8a:de: 23:1d:b4:73:f7:91:48:af:79:96:f1:19:cc:2d:d9: 6c:eb:f2:e5:ba:f5:11:15:57:e7:0c:8f:97:1f:5f: 08:a8:ab:cc:cc:fa:a8:c9:0f:65:3d:8d:8e:3d:09: e5:70:29:59:2d:0d:d5:c5:c7:45:94:bc:6e:45:09: 83:f5:21:0b:8e:df:29:3c:83:dd:d6:56:37:20:54: 25:99:d5:cd:a4:4c:3a:48:fc:b6:ff:38:61:9f:55: 16:51:3f:85:4b:e1:6d:72:4d:08:51:df:94:f9:d2: 06:6f:5e:60:3e:ad:89:17:ba:14:f5:cd:1e:7b:89: 9e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:57:1A:62:81:E0:0D:CA:2F:07:99:BC:79:C0:77:3A:4B:AB:B4:3F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2D8A40E1D711EEA0F9737AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:8840::/48 Signature Algorithm: sha256WithRSAEncryption 24:53:8c:a0:df:cb:c5:61:62:bc:46:cd:d7:c4:6e:1f:8f:51: 72:55:80:bf:e4:d9:b8:68:7f:b0:4f:a9:8e:00:eb:53:41:56: 97:a4:ad:00:38:f9:51:a8:b3:c8:9e:b4:34:20:8b:a2:90:2e: 90:50:81:7e:d0:48:c5:be:e4:66:e0:1a:3a:d4:50:e1:a0:94: 77:2e:33:35:bf:3d:39:89:d8:4b:75:bc:ed:01:9c:b1:73:81: 17:7a:f4:ad:31:e0:60:0e:26:8d:71:6d:98:a7:d0:13:5c:b9: 92:0a:8f:0e:c7:c8:1d:c6:ac:10:27:e5:1a:6d:3d:bc:7a:50: e8:f9:22:70:98:be:2e:95:1f:b5:d4:d5:c9:e9:ef:78:9f:2b: 8e:ec:40:54:ba:a7:a3:fa:c3:e3:ff:0b:36:4e:07:60:de:b9: 48:fd:5b:7a:9c:7a:25:e5:a8:e5:8a:60:a3:a8:79:76:13:ff: cc:57:90:61:2f:13:6b:66:fe:e4:f1:11:a2:04:de:a4:ad:14: 8f:37:11:e6:b0:cd:e7:38:68:6a:07:2b:d6:2c:93:00:ac:1b: 48:38:fc:47:c2:a6:c2:e1:42:59:2e:85:a6:c7:41:b1:ec:8b: b5:84:be:62:0e:f5:cf:b0:30:9a:2a:f0:f6:17:ec:f5:7f:39: 50:d8:46:53 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDAOpXMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NDMyNFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzczM2MtZmM0YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJKFZoqoDixG2cJ7bhcoRoriVVZ4rl4iqvsAcSQusRy2+qVq67t6VgontDjt dCn9oBv1MK4z/Yda5yGAVmGVUzL06tPAyYGHkUk3lS7lRXzvsnXuTGoJKwLGwRxZ VeCtDyBeusTv5sI7X8Voh6Q9W7sQ9rZoDKyaxYqDnEghOHD1T622ooreIx20c/eR SK95lvEZzC3ZbOvy5br1ERVX5wyPlx9fCKirzMz6qMkPZT2Njj0J5XApWS0N1cXH RZS8bkUJg/UhC47fKTyD3dZWNyBUJZnVzaRMOkj8tv84YZ9VFlE/hUvhbXJNCFHf lPnSBm9eYD6tiRe6FPXNHnuJnm8CAwEAAaOCAmMwggJfMB0GA1UdDgQWBBRTVxpi geANyi8Hmbx5wHc6S6u0PzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRBMkQ4QTQw RTFENzExRUVBMEY5NzM3QUM0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfOIQDANBgkqhkiG9w0BAQsFAAOCAQEAJFOMoN/LxWFivEbN 18RuH49RclWAv+TZuGh/sE+pjgDrU0FWl6StADj5UaizyJ60NCCLopAukFCBftBI xb7kZuAaOtRQ4aCUdy4zNb89OYnYS3W87QGcsXOBF3r0rTHgYA4mjXFtmKfQE1y5 kgqPDsfIHcasECflGm09vHpQ6PkicJi+LpUftdTVyenveJ8rjuxAVLqno/rD4/8L Nk4HYN65SP1bepx6JeWo5Ypgo6h5dhP/zFeQYS8Ta2b+5PERogTepK0UjzcR5rDN 5zhoagcr1iyTAKwbSDj8R8KmwuFCWS6FpsdBseyLtYS+Yg71z7Awmirw9hfs9X85 UNhGUw== -----END CERTIFICATE-----Generated at Thu Jun 4 10:06:48 2026 by rpki-client