$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/865FBC3A1E9F11F0A098BB6AC4F9AE02.roa File: 865FBC3A1E9F11F0A098BB6AC4F9AE02.roa (raw, json) Hash identifier: 69TpBDQKCs0uYQ0RWIqfXpDyYVA8cR0knXyAlNMgbLI= Subject key identifier: B9:ED:12:E5:B5:B8:7B:7F:3E:05:A0:4A:72:1A:CE:32:08:51:C5:77 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E5E6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/865FBC3A1E9F11F0A098BB6AC4F9AE02.roa Signing time: Sun 31 May 2026 17:05:56 +0000 ROA not before: Sun 31 May 2026 17:05:56 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 138719 IP address blocks: 2001:df6:7980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58854 (0xe5e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:05:56 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6a73-dd7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f2:f1:cd:42:a1:09:9e:c3:19:1e:75:c1:72: 2c:91:da:56:bd:b6:b8:7a:f3:f1:f8:84:c2:cc:e1: 27:8c:f0:52:c7:e7:01:d6:d9:31:60:79:be:a4:c6: d4:c5:cd:dd:a4:af:71:0a:a3:19:8c:19:12:22:b2: a5:13:45:3d:5d:fe:99:49:a6:a1:8d:4d:cd:21:14: e8:aa:b6:79:02:82:c3:c2:a8:d1:d4:93:e5:e1:16: 24:68:34:8f:f2:98:95:f0:a3:5c:63:53:95:e8:d5: 94:16:24:bc:cd:05:87:7e:86:49:cc:17:53:d2:0d: 87:16:79:6c:b4:6e:96:8a:a0:9f:04:50:90:45:e9: 7d:1c:2f:8f:7d:a2:68:74:49:3e:a5:b9:66:ed:90: f3:a2:b7:cd:78:bc:fd:23:73:ee:7f:eb:9e:7a:49: 0a:c0:d7:4a:8c:ef:4b:53:1b:59:c3:c4:0f:ad:9d: 8a:4c:d0:8b:d4:8e:e9:f0:a3:3c:04:3c:d1:73:b3: 6c:35:56:19:61:88:f7:74:be:6c:28:a8:86:fe:48: d2:f5:5e:67:ba:49:8d:62:5d:93:69:9a:91:fe:15: b8:75:d9:82:b7:c2:6f:90:2c:cc:a3:7e:bd:46:32: dd:1b:30:7b:59:e1:5b:d6:cf:42:4b:c1:70:ab:de: 56:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:ED:12:E5:B5:B8:7B:7F:3E:05:A0:4A:72:1A:CE:32:08:51:C5:77 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/865FBC3A1E9F11F0A098BB6AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:7980::/48 Signature Algorithm: sha256WithRSAEncryption 2a:b9:91:41:48:d7:b7:83:fc:c2:2d:19:45:61:25:3f:ce:bf: c7:98:95:cf:e8:42:a0:62:8c:1e:54:e2:05:89:90:1b:f5:7a: 8d:a5:b5:93:af:24:64:3d:ec:1c:8d:cd:21:81:03:df:0d:c0: eb:9e:aa:71:c4:a6:ef:50:c8:70:95:63:3d:3f:84:52:39:ba: 6c:0f:71:f1:67:fe:1a:c8:80:7f:bd:15:ff:00:83:a4:7f:7a: 63:aa:4f:1b:b1:5a:05:d3:bf:d4:6d:44:09:15:33:93:c6:bf: e6:c0:cf:77:c0:7b:34:ce:bc:4f:fd:a9:8a:9c:9b:ea:ab:d2: 5c:ac:68:8b:bf:5e:2c:c2:35:16:d5:3e:b5:ac:83:f9:60:82: 03:f2:85:0e:e3:7e:aa:2a:d4:ec:c6:a1:9e:ab:aa:75:72:b1: 21:5c:2e:02:ec:4f:7d:a7:32:7b:0d:92:c2:b3:bc:0d:6a:57: 56:ab:80:ff:e0:a2:b9:9a:e0:48:24:70:9f:65:6a:ef:d6:9c: b0:2d:0a:b2:af:16:81:51:8f:8e:2a:d4:15:b6:e2:be:f6:b6: 1a:2f:34:91:6a:b0:02:83:f8:f0:26:10:09:08:78:43:c0:e8: 74:7c:79:10:f8:96:c8:dd:04:d9:92:27:ef:d5:27:5e:54:4f: 97:5e:84:d6 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDAOXmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MDU1NloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZhNzMtZGQ3YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7y8c1CoQmewxkedcFyLJHaVr22uHrz8fiEwszhJ4zwUsfnAdbZMWB5vqTG 1MXN3aSvcQqjGYwZEiKypRNFPV3+mUmmoY1NzSEU6Kq2eQKCw8Ko0dST5eEWJGg0 j/KYlfCjXGNTlejVlBYkvM0Fh36GScwXU9INhxZ5bLRuloqgnwRQkEXpfRwvj32i aHRJPqW5Zu2Q86K3zXi8/SNz7n/rnnpJCsDXSozvS1MbWcPED62dikzQi9SO6fCj PAQ80XOzbDVWGWGI93S+bCiohv5I0vVeZ7pJjWJdk2makf4VuHXZgrfCb5AszKN+ vUYy3Rswe1nhW9bPQkvBcKveVu8CAwEAAaOCAmMwggJfMB0GA1UdDgQWBBS57RLl tbh7fz4FoEpyGs4yCFHFdzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg2NUZCQzNB MUU5RjExRjBBMDk4QkI2QUM0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfZ5gDANBgkqhkiG9w0BAQsFAAOCAQEAKrmRQUjXt4P8wi0Z RWElP86/x5iVz+hCoGKMHlTiBYmQG/V6jaW1k68kZD3sHI3NIYED3w3A656qccSm 71DIcJVjPT+EUjm6bA9x8Wf+GsiAf70V/wCDpH96Y6pPG7FaBdO/1G1ECRUzk8a/ 5sDPd8B7NM68T/2pipyb6qvSXKxoi79eLMI1FtU+tayD+WCCA/KFDuN+qirU7Mah nquqdXKxIVwuAuxPfacyew2SwrO8DWpXVquA/+CiuZrgSCRwn2Vq79acsC0Ksq8W gVGPjirUFbbivva2Gi80kWqwAoP48CYQCQh4Q8DodHx5EPiWyN0E2ZIn79UnXlRP l16E1g== -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:35 2026 by rpki-client