$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8A2B6B620AEE11F0B76AA736C4F9AE02.roa File: 8A2B6B620AEE11F0B76AA736C4F9AE02.roa (raw, json) Hash identifier: tWNSFfXB6G3cNjnLLKoX//w+zOHQf63H0mie4HLa88s= Subject key identifier: 67:72:75:D3:5B:68:35:F4:6C:DB:20:44:26:4D:5D:62:58:82:0D:43 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EA94 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8A2B6B620AEE11F0B76AA736C4F9AE02.roa Signing time: Sun 31 May 2026 17:45:17 +0000 ROA not before: Sun 31 May 2026 17:45:17 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 153714 IP address blocks: 163.223.154.0/23 maxlen: 24 2001:df5:4440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 09:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60052 (0xea94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:45:17 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c73ad-5eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:cf:f6:d2:80:32:24:ed:f3:94:1e:0d:1c:94: 20:9b:d7:f1:09:65:bd:4e:4d:02:eb:e8:a9:02:12: b2:75:2b:34:6d:6e:e0:bd:ba:e4:ab:7e:1a:a7:e6: 5f:7a:44:82:85:bf:f8:e9:3d:17:06:80:0d:2b:82: f2:c7:7a:ac:79:db:14:08:66:a6:df:24:5f:b4:56: 95:cc:2c:68:15:78:d9:eb:72:ad:39:bc:7d:08:68: 11:bf:84:d7:79:c3:a5:bb:49:14:70:b9:69:8a:95: 1f:cc:69:e7:2f:f5:90:33:0b:5c:60:f1:c1:61:06: 39:ac:3a:eb:db:84:a7:48:6b:4f:81:f3:3b:6f:96: 94:0a:d1:94:ed:3c:32:36:6d:30:f5:42:20:88:4c: 74:70:af:45:de:ac:35:cd:3c:2f:b3:6d:36:00:ab: 67:4a:14:f5:f8:e3:c4:c8:1e:12:9f:54:4a:f3:c4: 08:6c:e0:4d:75:4f:8e:43:a6:57:a8:3c:40:2b:f4: 7b:0f:09:89:67:8d:9f:10:48:c8:89:45:fb:c0:71: 84:42:d2:5a:9a:6a:64:20:e7:c6:30:78:9f:6f:46: 1d:e0:59:db:07:cd:0f:25:f4:d5:f7:ed:0f:91:5b: 39:b3:6f:be:eb:b9:96:3f:41:dd:f2:eb:24:45:5a: 08:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:72:75:D3:5B:68:35:F4:6C:DB:20:44:26:4D:5D:62:58:82:0D:43 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8A2B6B620AEE11F0B76AA736C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.154.0/23 IPv6: 2001:df5:4440::/48 Signature Algorithm: sha256WithRSAEncryption 17:47:5e:48:99:63:5a:bb:dd:95:61:de:3b:94:4d:98:4a:ab: 95:52:47:73:6e:f4:04:ab:58:96:09:23:11:bb:8b:9e:36:15: 36:3f:50:39:16:89:74:e1:ae:f2:7a:40:9b:a1:30:ac:63:8b: 84:32:c5:7d:7e:1d:9c:c0:46:96:af:3b:ac:21:c8:61:65:38: 5c:d6:5b:ec:92:ca:d5:d9:ae:ba:91:3c:b4:b5:2a:a7:87:fc: 66:a6:7f:66:c8:19:90:cb:c6:a1:6b:ec:0a:48:86:7f:1d:4c: f7:8d:6b:e6:27:e5:61:a0:ef:e0:07:5f:79:2d:03:52:88:7e: 4c:4d:5c:c9:8a:5b:6f:99:76:52:05:60:2f:3c:d7:5d:01:16: 16:85:c0:d4:b5:13:d4:77:a8:81:50:5e:2f:13:92:18:6d:06: ae:bd:4c:b0:e6:31:bc:d4:7b:a1:c2:02:ec:19:15:de:15:1c: 20:a8:40:bf:7f:03:3c:f9:61:aa:4a:00:35:b9:b8:27:6b:64: 2e:42:8e:da:05:f8:e4:ef:11:a4:23:43:6f:2d:a6:ef:19:ac: 57:47:6b:72:eb:9b:b9:cd:4f:ce:0a:bb:be:95:fe:dc:51:60: 0b:44:35:f0:05:ee:77:7e:7f:f8:f9:59:93:f8:49:a8:d8:98: f0:04:b5:39 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDAOqUMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NDUxN1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzczYWQtNWViNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJfP9tKAMiTt85QeDRyUIJvX8QllvU5NAuvoqQISsnUrNG1u4L265Kt+Gqfm X3pEgoW/+Ok9FwaADSuC8sd6rHnbFAhmpt8kX7RWlcwsaBV42etyrTm8fQhoEb+E 13nDpbtJFHC5aYqVH8xp5y/1kDMLXGDxwWEGOaw669uEp0hrT4HzO2+WlArRlO08 MjZtMPVCIIhMdHCvRd6sNc08L7NtNgCrZ0oU9fjjxMgeEp9USvPECGzgTXVPjkOm V6g8QCv0ew8JiWeNnxBIyIlF+8BxhELSWppqZCDnxjB4n29GHeBZ2wfNDyX01fft D5FbObNvvuu5lj9B3fLrJEVaCJkCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBRncnXT W2g19GzbIEQmTV1iWIINQzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhBMkI2QjYy MEFFRTExRjBCNzZBQTczNkM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaPfmjAPBAIAAjAJAwcAIAEN9URAMA0GCSqGSIb3DQEBCwUAA4IB AQAXR15ImWNau92VYd47lE2YSquVUkdzbvQEq1iWCSMRu4ueNhU2P1A5Fol04a7y ekCboTCsY4uEMsV9fh2cwEaWrzusIchhZThc1lvsksrV2a66kTy0tSqnh/xmpn9m yBmQy8aha+wKSIZ/HUz3jWvmJ+VhoO/gB195LQNSiH5MTVzJiltvmXZSBWAvPNdd ARYWhcDUtRPUd6iBUF4vE5IYbQauvUyw5jG81HuhwgLsGRXeFRwgqEC/fwM8+WGq SgA1ubgna2QuQo7aBfjk7xGkI0NvLabvGaxXR2ty65u5zU/OCru+lf7cUWALRDXw Be53fn/4+VmT+Emo2JjwBLU5 -----END CERTIFICATE-----Generated at Thu Jun 4 11:17:39 2026 by rpki-client