$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF10CE5C13BD11EDB0A3DB50C4F9AE02.roa File: AF10CE5C13BD11EDB0A3DB50C4F9AE02.roa (raw, json) Hash identifier: XLyCsxdfjsnkOvsq6uUF2fPnhs4q6JZR8QHLg8hwt5s= Subject key identifier: 61:64:D2:D3:B7:C4:E7:D7:BB:78:23:BE:0E:B2:D1:F0:3D:B2:57:0C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E515 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF10CE5C13BD11EDB0A3DB50C4F9AE02.roa Signing time: Sun 31 May 2026 16:59:06 +0000 ROA not before: Sun 31 May 2026 16:59:06 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 137104 IP address blocks: 2001:df0:c7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58645 (0xe515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:59:06 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c68da-6875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e5:f9:e6:af:aa:4e:12:6e:18:fd:15:55:4f: 66:04:df:b1:bc:23:b8:3c:b3:e3:f0:d5:11:13:d9: fb:c4:46:f1:75:51:58:df:b3:a4:7f:16:2d:24:ef: 26:65:16:b1:03:5d:0c:88:3e:fc:ee:ca:68:e4:9e: 11:f7:8f:29:75:2e:9f:6a:99:f0:79:f2:46:de:ee: 0f:65:aa:20:07:3d:9f:39:9b:00:e0:09:e8:bd:22: 94:90:20:ce:97:a9:4f:d3:45:1e:7a:15:b2:09:1e: 2c:39:dd:e2:09:ca:34:56:c2:32:22:a4:b8:64:03: 35:a8:56:33:4e:cf:de:f5:f0:a1:d1:3f:21:3b:b0: 32:dd:91:e9:c6:86:6e:0d:5d:3c:a1:c4:53:2f:3d: a4:96:9e:54:f2:03:8a:39:d3:16:cb:81:2f:a1:b1: dd:3d:d3:32:71:f8:e4:1f:c2:2d:22:5e:03:c2:b6: 2f:4d:4d:4a:e9:86:a9:49:fb:38:6c:b9:7f:93:1d: 68:d7:93:8e:2d:3b:5a:8e:4c:77:bf:a7:0f:32:a7: a0:cc:be:9e:3a:ea:b1:1f:85:09:50:40:a4:b1:76: 2c:aa:e1:d2:04:64:d2:fd:e9:57:68:e1:62:41:dc: e4:0b:6a:0b:a3:23:bc:50:e6:9e:cd:8e:b8:12:ed: f0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:64:D2:D3:B7:C4:E7:D7:BB:78:23:BE:0E:B2:D1:F0:3D:B2:57:0C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF10CE5C13BD11EDB0A3DB50C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df0:c7c0::/48 Signature Algorithm: sha256WithRSAEncryption ae:8c:f1:ac:3c:c8:43:58:04:6f:ce:20:35:d4:01:ed:7a:71: 1e:2d:70:19:0b:b9:5d:74:30:ae:9f:ea:60:93:cf:d0:84:c7: b2:ae:32:ba:04:94:01:22:c9:9c:b5:58:e2:55:a4:1a:23:e8: e8:b4:2e:ba:3f:4f:48:dc:c9:8c:1b:08:90:e2:a4:d2:db:a6: 65:f7:aa:6b:b5:53:8c:70:d5:36:5f:7b:88:8a:c7:47:fa:7e: e7:9b:07:09:ee:61:21:61:a5:0f:3c:91:c0:33:2d:8e:42:64: a9:a7:52:7e:11:ad:07:db:65:64:aa:51:87:3f:e0:d4:2d:19: f6:0b:4a:52:21:10:fb:ce:9f:ec:92:54:d8:0e:bc:6c:7c:4e: 2f:a0:61:19:70:c7:ac:d6:9d:2f:b2:61:0a:09:92:2f:9b:00: 7e:2f:42:7f:6f:cd:79:25:e6:e0:6e:40:29:d2:f0:60:6e:48: 84:8a:60:4f:cb:89:58:3a:aa:90:38:cb:f1:6f:5a:3d:ad:0b: 06:db:24:57:b4:c6:80:8e:69:4d:b0:76:b1:8a:ef:b8:d8:ab: 58:5c:b3:d9:52:7f:50:5b:ab:a3:33:f0:d8:32:a9:77:7e:64: 5f:5a:39:97:e7:50:ca:51:20:3e:0b:5f:13:72:b8:f0:88:4c: aa:7e:87:d2 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDAOUVMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NTkwNloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY4ZGEtNjg3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANDl+eavqk4Sbhj9FVVPZgTfsbwjuDyz4/DVERPZ+8RG8XVRWN+zpH8WLSTv JmUWsQNdDIg+/O7KaOSeEfePKXUun2qZ8HnyRt7uD2WqIAc9nzmbAOAJ6L0ilJAg zpepT9NFHnoVsgkeLDnd4gnKNFbCMiKkuGQDNahWM07P3vXwodE/ITuwMt2R6caG bg1dPKHEUy89pJaeVPIDijnTFsuBL6Gx3T3TMnH45B/CLSJeA8K2L01NSumGqUn7 OGy5f5MdaNeTji07Wo5Md7+nDzKnoMy+njrqsR+FCVBApLF2LKrh0gRk0v3pV2jh YkHc5AtqC6MjvFDmns2OuBLt8L0CAwEAAaOCAmMwggJfMB0GA1UdDgQWBBRhZNLT t8Tn17t4I74OstHwPbJXDDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0FGMTBDRTVD MTNCRDExRURCMEEzREI1MEM0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfDHwDANBgkqhkiG9w0BAQsFAAOCAQEArozxrDzIQ1gEb84g NdQB7XpxHi1wGQu5XXQwrp/qYJPP0ITHsq4yugSUASLJnLVY4lWkGiPo6LQuuj9P SNzJjBsIkOKk0tumZfeqa7VTjHDVNl97iIrHR/p+55sHCe5hIWGlDzyRwDMtjkJk qadSfhGtB9tlZKpRhz/g1C0Z9gtKUiEQ+86f7JJU2A68bHxOL6BhGXDHrNadL7Jh CgmSL5sAfi9Cf2/NeSXm4G5AKdLwYG5IhIpgT8uJWDqqkDjL8W9aPa0LBtskV7TG gI5pTbB2sYrvuNirWFyz2VJ/UFurozPw2DKpd35kX1o5l+dQylEgPgtfE3K48IhM qn6H0g== -----END CERTIFICATE-----Generated at Thu Jun 4 09:04:26 2026 by rpki-client