$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DD5C0CA3CF111EF9B00241AC4F9AE02.roa File: 9DD5C0CA3CF111EF9B00241AC4F9AE02.roa (raw, json) Hash identifier: IAZxeFlSEPqu9rp9+G2oDY5l9HbnCt7TyD8+/zK0xGs= Subject key identifier: BD:82:BF:CD:DC:B5:A1:32:EF:6B:78:89:2F:55:AB:69:BB:B1:38:96 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EA49 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DD5C0CA3CF111EF9B00241AC4F9AE02.roa Signing time: Sun 31 May 2026 17:42:59 +0000 ROA not before: Sun 31 May 2026 17:42:59 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 152539 IP address blocks: 2001:df3:fdc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59977 (0xea49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:42:59 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c7323-5a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e6:bd:eb:4f:45:70:2d:df:f8:68:c4:09:38: e0:4a:c9:7a:a8:9b:13:79:ea:fa:cb:fd:49:48:53: aa:5d:f4:02:26:26:c2:cd:4b:d5:05:10:5d:04:b8: 20:19:d1:34:ba:48:37:a7:77:66:87:2d:10:68:79: 67:8c:5f:e7:32:bf:4b:6f:3d:48:ca:34:92:1a:5c: 03:a2:da:13:e3:c9:9e:c8:5d:cc:e0:41:97:77:1f: 91:bb:02:f6:05:d8:1b:95:d6:81:67:fc:37:28:f5: 2c:62:b0:47:e2:c9:5e:98:19:b7:2a:46:69:1d:cb: 57:a0:98:a9:07:30:f0:cf:79:c9:6f:08:e4:19:f9: 76:28:46:35:9a:b3:5a:a9:93:db:92:b8:2c:b9:f3: 5a:47:6d:a2:dc:2e:e4:f2:ac:a0:18:6a:99:a8:fc: c0:f8:9b:13:6d:86:b7:89:60:79:4d:b5:8b:23:45: 1f:e4:aa:9d:06:b6:22:c8:38:74:1b:82:1e:d8:c9: ef:0b:67:62:89:10:51:76:5c:0c:8b:d5:a6:5d:b9: 26:9d:d2:15:54:56:01:17:83:a7:91:29:cd:c1:80: a7:fb:d9:09:3b:dc:b2:3a:15:84:17:5a:2e:4d:6b: 69:48:c7:1f:2b:34:b7:8b:66:4b:e6:06:c9:a2:73: 00:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:82:BF:CD:DC:B5:A1:32:EF:6B:78:89:2F:55:AB:69:BB:B1:38:96 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DD5C0CA3CF111EF9B00241AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:fdc0::/48 Signature Algorithm: sha256WithRSAEncryption 29:2b:65:ce:5e:00:4d:b7:c6:a8:e8:9d:f3:59:5b:c4:63:d1: 66:2b:0f:4c:85:34:8a:35:94:cb:64:04:19:e8:fe:d7:08:8a: fc:9d:e3:d2:10:3f:80:a9:11:3b:8e:a6:5e:09:c1:8c:52:9d: 75:04:eb:9b:c6:8a:b3:04:02:4b:96:88:15:c1:ec:b1:99:87: 0b:32:27:45:06:08:87:80:f7:86:1a:e2:d8:32:e6:9b:92:ed: 14:46:b7:da:69:a9:8d:99:a7:55:bb:6e:94:af:37:81:75:d9: c9:bb:fb:7f:c2:af:81:6a:96:15:1d:35:27:57:7f:39:76:77: c2:2b:5d:bc:a7:34:58:13:4a:a1:d1:e2:07:ed:01:0b:ca:ef: ba:ec:a7:60:fd:d3:de:67:b7:d5:b4:e6:3b:32:12:c8:7a:31: a8:2b:7a:dc:01:38:d3:e5:dc:2e:93:65:74:67:07:3c:53:67: f6:5f:85:25:6f:ed:b2:c4:1f:96:7f:2e:46:82:2f:19:f2:ea: 74:87:04:4c:1b:a6:5a:58:ce:a8:3e:97:a9:51:20:9e:f4:97: d1:16:3c:05:cf:21:6d:f7:00:22:06:72:e0:7c:2e:32:00:6e: b8:ea:ce:f7:7b:23:0f:a8:03:80:01:80:7e:fd:da:e0:c2:18: d2:79:9f:d7 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDAOpJMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NDI1OVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzczMjMtNWE1YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALHmvetPRXAt3/hoxAk44ErJeqibE3nq+sv9SUhTql30AiYmws1L1QUQXQS4 IBnRNLpIN6d3ZoctEGh5Z4xf5zK/S289SMo0khpcA6LaE+PJnshdzOBBl3cfkbsC 9gXYG5XWgWf8Nyj1LGKwR+LJXpgZtypGaR3LV6CYqQcw8M95yW8I5Bn5dihGNZqz WqmT25K4LLnzWkdtotwu5PKsoBhqmaj8wPibE22Gt4lgeU21iyNFH+SqnQa2Isg4 dBuCHtjJ7wtnYokQUXZcDIvVpl25Jp3SFVRWAReDp5EpzcGAp/vZCTvcsjoVhBda Lk1raUjHHys0t4tmS+YGyaJzAKkCAwEAAaOCAmMwggJfMB0GA1UdDgQWBBS9gr/N 3LWhMu9reIkvVatpu7E4ljAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlERDVDMENB M0NGMTExRUY5QjAwMjQxQUM0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfP9wDANBgkqhkiG9w0BAQsFAAOCAQEAKStlzl4ATbfGqOid 81lbxGPRZisPTIU0ijWUy2QEGej+1wiK/J3j0hA/gKkRO46mXgnBjFKddQTrm8aK swQCS5aIFcHssZmHCzInRQYIh4D3hhri2DLmm5LtFEa32mmpjZmnVbtulK83gXXZ ybv7f8KvgWqWFR01J1d/OXZ3witdvKc0WBNKodHiB+0BC8rvuuynYP3T3me31bTm OzISyHoxqCt63AE40+XcLpNldGcHPFNn9l+FJW/tssQfln8uRoIvGfLqdIcETBum WljOqD6XqVEgnvSX0RY8Bc8hbfcAIgZy4HwuMgBuuOrO93sjD6gDgAGAfv3a4MIY 0nmf1w== -----END CERTIFICATE-----Generated at Thu Jun 4 10:06:37 2026 by rpki-client