$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C3CD438DAD011EAB216C959C4F9AE02.roa File: 4C3CD438DAD011EAB216C959C4F9AE02.roa (raw, json) Hash identifier: aebhniAZE/GVkCt3AgcePEbuKDd/7htw6mGSCF8s+Ko= Subject key identifier: 0D:D9:E1:27:F5:61:95:09:6E:7F:5F:71:EE:0B:47:FE:7F:C1:31:9F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EBAB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C3CD438DAD011EAB216C959C4F9AE02.roa Signing time: Sun 31 May 2026 17:54:01 +0000 ROA not before: Sun 31 May 2026 17:54:01 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 9501 IP address blocks: 202.53.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60331 (0xebab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:54:01 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c75b8-e707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:6a:6b:4c:c2:4d:8c:c0:20:6d:64:0a:d1: ac:89:d1:78:df:31:bb:58:e9:3e:e9:e5:7b:a8:96: 09:bd:6f:46:32:73:27:5a:2b:4d:1c:1f:07:0a:e1: 83:5b:4b:94:44:58:84:d6:16:3a:a9:53:92:56:fb: 3c:aa:6d:63:de:67:6c:0e:3e:ee:d8:8b:54:6b:4f: b2:53:a9:45:35:dd:37:7d:ac:2e:38:82:ee:a0:8f: 30:3d:99:43:a5:92:49:63:d6:e5:61:65:de:d4:a3: c9:9a:f1:1e:39:18:7a:99:18:40:cb:08:15:81:14: 35:6f:19:c2:4d:0a:3e:0b:ed:25:c1:16:d6:60:aa: fe:09:bb:67:be:b2:67:f0:b3:5d:0a:c5:20:4a:85: 0b:fd:c4:6e:c2:ab:12:8b:71:b1:99:5b:7b:9f:8c: 53:b7:b2:44:a5:11:19:f6:d7:52:6d:df:de:74:ef: ab:90:89:37:47:f4:e3:92:24:3a:f8:13:ff:3c:bb: 8a:06:40:5e:91:66:47:28:f0:47:18:2e:7f:74:90: 04:7a:bb:52:02:6c:f2:46:8e:27:69:12:b8:b2:c3: 74:60:29:81:01:83:65:2e:7e:f0:36:1b:a2:62:33: 30:f6:c9:66:6a:91:c1:9b:5b:ca:92:79:3b:ae:dd: 8e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D9:E1:27:F5:61:95:09:6E:7F:5F:71:EE:0B:47:FE:7F:C1:31:9F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C3CD438DAD011EAB216C959C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.53.96.0/20 Signature Algorithm: sha256WithRSAEncryption 7b:fe:4c:19:d9:ef:00:57:ee:5e:0f:f7:3a:04:9a:6a:28:a9: 14:ef:25:02:db:77:a6:60:34:bf:3d:66:12:fb:31:e2:d3:5f: 81:1d:6e:02:1a:ae:1e:48:48:01:bb:0c:95:8f:a0:79:1c:95: 53:59:a6:cf:8a:6b:8c:8f:7b:6f:d0:0d:87:bc:e2:48:d7:79: e6:a8:66:9d:f7:35:62:0c:ff:e5:cc:29:33:98:0e:1f:01:cd: 1a:b2:ba:15:bd:ae:32:1b:7c:c9:fb:1f:43:b0:6d:e5:51:15: 7d:fc:1f:a8:c6:15:93:34:a3:f0:96:2d:5e:9a:4d:cc:01:4f: 50:1e:6c:05:cf:6e:8f:f4:b3:9b:96:89:31:d4:93:e4:ba:40: b4:e9:0f:fd:18:08:fd:36:23:00:5c:a5:9f:96:a9:7d:10:83: 41:d5:f3:f4:92:1c:bd:ab:3a:57:b8:c5:0b:d6:52:18:59:67: 71:64:4a:4b:f2:4a:50:ac:32:8b:1a:45:88:27:a9:27:9e:c5: ec:37:80:e3:26:5b:a7:bb:fe:32:02:a6:8a:6a:7f:3d:17:da: 00:41:c9:54:51:57:c0:81:14:81:bf:8e:b9:de:e8:cf:e8:6d: d2:e2:1d:39:1a:8d:e4:7a:74:d4:99:44:0d:d5:5d:bf:95:79: 50:fc:6b:1a -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDAOurMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NTQwMVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzc1YjgtZTcwNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJAamtMwk2MwCBtZArRrInReN8xu1jpPunle6iWCb1vRjJzJ1orTRwfBwrh g1tLlERYhNYWOqlTklb7PKptY95nbA4+7tiLVGtPslOpRTXdN32sLjiC7qCPMD2Z Q6WSSWPW5WFl3tSjyZrxHjkYepkYQMsIFYEUNW8Zwk0KPgvtJcEW1mCq/gm7Z76y Z/CzXQrFIEqFC/3EbsKrEotxsZlbe5+MU7eyRKURGfbXUm3f3nTvq5CJN0f045Ik OvgT/zy7igZAXpFmRyjwRxguf3SQBHq7UgJs8kaOJ2kSuLLDdGApgQGDZS5+8DYb omIzMPbJZmqRwZtbypJ5O67djlsCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBQN2eEn 9WGVCW5/X3HuC0f+f8ExnzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRDM0NENDM4 REFEMDExRUFCMjE2Qzk1OUM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBMo1YDANBgkqhkiG9w0BAQsFAAOCAQEAe/5MGdnvAFfuXg/3OgSa aiipFO8lAtt3pmA0vz1mEvsx4tNfgR1uAhquHkhIAbsMlY+geRyVU1mmz4prjI97 b9ANh7ziSNd55qhmnfc1Ygz/5cwpM5gOHwHNGrK6Fb2uMht8yfsfQ7Bt5VEVffwf qMYVkzSj8JYtXppNzAFPUB5sBc9uj/Szm5aJMdST5LpAtOkP/RgI/TYjAFyln5ap fRCDQdXz9JIcvas6V7jFC9ZSGFlncWRKS/JKUKwyixpFiCepJ57F7DeA4yZbp7v+ MgKmimp/PRfaAEHJVFFXwIEUgb+Oud7oz+ht0uIdORqN5Hp01JlEDdVdv5V5UPxr Gg== -----END CERTIFICATE-----Generated at Thu Jun 4 09:05:53 2026 by rpki-client