$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/599239543B9411EC80D49544C4F9AE02.roa File: 599239543B9411EC80D49544C4F9AE02.roa (raw, json) Hash identifier: 4Gk1vVGH9pDn1TAWV3dkUwQkmwz/eJrGXQ4Fe+IzTvc= Subject key identifier: 95:9E:9F:C8:FE:BD:B5:31:3F:EB:A1:C6:10:02:D5:C9:D1:CD:A3:5E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EB3B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/599239543B9411EC80D49544C4F9AE02.roa Signing time: Sun 31 May 2026 17:50:33 +0000 ROA not before: Sun 31 May 2026 17:50:33 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 396421 IP address blocks: 1.7.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60219 (0xeb3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:50:33 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c74e9-8ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5b:5a:cc:71:32:fb:db:9f:35:ce:f5:35:bc: 68:86:c2:91:2e:48:10:7e:56:25:2b:d3:5a:45:fc: b4:13:93:31:9e:8b:f8:9e:0e:9a:cc:84:db:dd:cb: 0b:82:98:d1:90:76:15:17:b9:57:d4:3b:dd:46:db: 31:be:55:96:db:6d:cb:c8:1e:1a:98:82:a1:4d:eb: 97:59:5d:dc:9a:3d:91:a7:e3:96:20:cd:7c:fc:4c: f0:6d:60:d9:64:bc:64:2f:92:87:40:ad:49:86:f3: 9b:f5:8b:44:e3:b4:ab:dd:0e:7d:48:95:67:ea:df: 85:b6:14:e8:29:3d:47:d8:8d:00:c3:d0:8c:59:79: cb:fb:4e:15:f6:73:ee:2e:19:bc:35:a5:f3:29:a9: 0a:c3:3c:2d:4d:dd:2c:ce:e7:90:47:b3:be:77:4e: 9b:e7:90:67:19:9d:a9:85:f0:45:50:e2:e3:09:a5: 04:9e:2b:34:31:c8:e4:17:56:07:ed:95:89:0b:1c: 3f:20:db:d0:7c:33:1a:ff:0c:c7:d8:78:49:76:75: f2:96:b5:5e:4a:e6:d7:b4:0c:d9:89:5d:bd:de:72: 2f:4f:f0:84:44:8e:ec:69:ec:7d:5c:91:a4:f5:2a: 3b:f1:d5:c2:09:14:be:86:29:74:f4:52:f7:a5:3f: 8e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9E:9F:C8:FE:BD:B5:31:3F:EB:A1:C6:10:02:D5:C9:D1:CD:A3:5E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/599239543B9411EC80D49544C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 1.7.225.0/24 Signature Algorithm: sha256WithRSAEncryption 63:67:30:27:ef:f1:73:e2:dd:f8:83:0b:5a:2e:1d:10:7d:59: e2:ca:3e:aa:8e:2b:fd:51:2a:8b:34:59:5d:e3:f7:d2:d9:f8: 10:7c:72:f3:44:54:04:3e:c7:64:d3:3f:52:40:4e:bc:d7:7b: e6:1f:bd:c6:97:5a:37:95:32:ac:88:99:87:cf:70:34:99:20: f6:5f:8d:0e:8a:40:ef:ae:b7:ff:92:03:ad:86:99:dd:08:b0: fd:7b:17:64:bd:de:cd:c0:18:4c:1d:b1:8d:d4:60:80:de:75: e8:9b:bd:cd:83:6f:78:da:e9:e5:8f:0e:8d:e3:93:e6:ea:ed: f0:27:a7:c3:48:4d:2e:98:87:9a:b1:28:47:8e:56:84:99:e0: 36:a6:fa:90:29:11:0a:17:07:fe:da:34:fb:06:e9:5b:0a:1f: 22:16:8c:c1:0f:63:78:9a:4c:73:b2:92:d9:71:94:3a:0d:41: c8:84:8c:44:a8:92:20:35:1b:13:17:9e:59:9d:22:1e:4f:af: 81:33:8c:16:10:05:13:78:e9:f0:c9:72:a0:3c:b8:63:f1:6d: 6d:9c:f9:37:18:7c:7e:5d:df:68:64:f1:1b:ee:ac:5f:2f:04: 3d:a7:a8:92:aa:e7:6d:04:71:0f:de:07:7c:4e:d6:f2:25:10: 0f:23:bd:66 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDAOs7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NTAzM1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzc0ZTktOGFkNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKpbWsxxMvvbnzXO9TW8aIbCkS5IEH5WJSvTWkX8tBOTMZ6L+J4OmsyE293L C4KY0ZB2FRe5V9Q73UbbMb5Vlttty8geGpiCoU3rl1ld3Jo9kafjliDNfPxM8G1g 2WS8ZC+Sh0CtSYbzm/WLROO0q90OfUiVZ+rfhbYU6Ck9R9iNAMPQjFl5y/tOFfZz 7i4ZvDWl8ympCsM8LU3dLM7nkEezvndOm+eQZxmdqYXwRVDi4wmlBJ4rNDHI5BdW B+2ViQscPyDb0HwzGv8Mx9h4SXZ18pa1Xkrm17QM2Yldvd5yL0/whESO7GnsfVyR pPUqO/HVwgkUvoYpdPRS96U/jk0CAwEAAaOCAmAwggJcMB0GA1UdDgQWBBSVnp/I /r21MT/rocYQAtXJ0c2jXjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU5OTIzOTU0 M0I5NDExRUM4MEQ0OTU0NEM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAAEH4TANBgkqhkiG9w0BAQsFAAOCAQEAY2cwJ+/xc+Ld+IMLWi4d EH1Z4so+qo4r/VEqizRZXeP30tn4EHxy80RUBD7HZNM/UkBOvNd75h+9xpdaN5Uy rIiZh89wNJkg9l+NDopA7663/5IDrYaZ3Qiw/XsXZL3ezcAYTB2xjdRggN516Ju9 zYNveNrp5Y8OjeOT5urt8Cenw0hNLpiHmrEoR45WhJngNqb6kCkRChcH/to0+wbp WwofIhaMwQ9jeJpMc7KS2XGUOg1ByISMRKiSIDUbExeeWZ0iHk+vgTOMFhAFE3jp 8MlyoDy4Y/FtbZz5Nxh8fl3faGTxG+6sXy8EPaeokqrnbQRxD94HfE7W8iUQDyO9 Zg== -----END CERTIFICATE-----Generated at Thu Jun 4 09:09:10 2026 by rpki-client