$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C1F6559E094911F085127553C4F9AE02.roa File: C1F6559E094911F085127553C4F9AE02.roa (raw, json) Hash identifier: 9dZFQcFMTf+G4dVnHjIuZmOxKNg1qKcFTKX3z8FaubQ= Subject key identifier: 10:BD:48:4E:7B:C1:59:BD:2C:4C:64:79:6F:DE:AF:F7:26:0A:93:37 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EA99 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C1F6559E094911F085127553C4F9AE02.roa Signing time: Sun 31 May 2026 17:45:26 +0000 ROA not before: Sun 31 May 2026 17:45:26 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 153733 IP address blocks: 163.223.192.0/23 maxlen: 24 2401:f8e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60057 (0xea99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:45:26 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c73b6-6252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3d:37:ea:e5:9c:e8:02:37:da:20:81:76:a3: e9:5b:60:c8:99:16:ed:52:1a:dc:92:81:87:f0:86: 0f:96:7e:82:ca:80:73:3f:c3:c3:22:86:74:d7:f2: 6f:ca:06:00:24:53:e5:03:15:49:92:de:8b:d9:ad: 3f:48:5a:62:5b:74:bd:79:b1:79:d9:f4:a0:8f:9d: 23:61:53:9c:74:2a:4d:cf:3f:82:21:5b:66:58:2b: e8:c0:cf:67:0c:83:7b:9c:d7:76:c7:3b:27:e2:4e: a0:6a:e9:e9:7e:b4:c0:80:e5:c8:ce:ce:3d:a3:34: 58:7f:1a:4d:72:4d:33:5d:a0:b6:2b:2b:ae:84:17: e7:7a:df:c2:0d:a2:08:89:3f:c4:0a:57:84:04:74: 35:47:37:98:0f:e2:ac:eb:94:df:04:43:5d:77:ad: f6:6a:10:bf:d9:1d:be:d7:f1:49:03:eb:f3:70:b3: bf:66:b8:19:fe:4f:18:8d:69:a3:2b:a2:e0:4f:e2: d5:78:e1:aa:94:3e:3e:6b:c6:40:6d:e8:4f:5b:63: 49:d1:26:be:9f:e5:60:b9:83:8e:ad:19:db:bf:b4: 1f:7d:a1:4b:50:e4:dd:42:0d:b4:e8:f6:39:a9:be: df:9e:6b:2d:57:79:e1:23:6d:b5:23:77:91:12:43: 0f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:BD:48:4E:7B:C1:59:BD:2C:4C:64:79:6F:DE:AF:F7:26:0A:93:37 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C1F6559E094911F085127553C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.192.0/23 IPv6: 2401:f8e0::/32 Signature Algorithm: sha256WithRSAEncryption 84:a1:23:ff:b2:68:0a:1e:ba:80:c1:f0:df:57:72:fe:e4:5f: 39:d1:b8:ad:de:45:8a:1e:f8:5f:b5:f5:f7:f8:e2:b8:bb:03: 40:37:62:59:80:c3:2a:68:4b:16:6f:14:70:2b:4b:96:c1:d1: 57:ce:ca:1e:dd:2a:23:4e:d0:b0:34:8a:ce:b6:4c:83:b1:d1: 4d:9c:9a:49:67:db:3a:a7:f5:c2:ec:6c:25:0b:cc:1e:06:8b: 73:2e:ce:37:69:e9:f0:87:81:b1:e3:24:b7:7b:e0:54:cf:02: e0:51:b5:18:3e:6e:a9:0b:5d:26:d4:72:32:ef:03:8f:c4:0f: e2:28:93:a5:40:07:0b:db:5b:7a:63:5d:63:48:08:46:c4:9b: d6:66:01:d5:38:db:07:6c:23:80:00:5e:c2:22:67:58:ff:10: 0c:7c:a6:7e:99:9f:d3:bc:10:33:24:8a:8f:e4:bb:1d:85:1d: 7f:5e:60:9e:9c:6f:6e:65:0f:71:3a:94:0a:89:d0:53:12:2d: d2:bc:2a:f7:ee:3a:9c:17:b7:e6:69:86:0a:c6:c7:44:ec:3e: 59:14:e0:05:fb:b3:7c:ec:fc:6b:9d:61:f7:b1:ef:0c:5b:d9: 2f:66:ff:d6:67:3f:df:fc:7e:4e:b0:e1:d6:5b:f5:b7:f1:f1: cd:26:06:d6 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDAOqZMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NDUyNloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzczYjYtNjI1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALY9N+rlnOgCN9oggXaj6VtgyJkW7VIa3JKBh/CGD5Z+gsqAcz/DwyKGdNfy b8oGACRT5QMVSZLei9mtP0haYlt0vXmxedn0oI+dI2FTnHQqTc8/giFbZlgr6MDP ZwyDe5zXdsc7J+JOoGrp6X60wIDlyM7OPaM0WH8aTXJNM12gtisrroQX53rfwg2i CIk/xApXhAR0NUc3mA/irOuU3wRDXXet9moQv9kdvtfxSQPr83Czv2a4Gf5PGI1p oyui4E/i1XjhqpQ+PmvGQG3oT1tjSdEmvp/lYLmDjq0Z27+0H32hS1Dk3UINtOj2 Oam+355rLVd54SNttSN3kRJDD/ECAwEAAaOCAm8wggJrMB0GA1UdDgQWBBQQvUhO e8FZvSxMZHlv3q/3JgqTNzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0MxRjY1NTlF MDk0OTExRjA4NTEyNzU1M0M0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAaPfwDANBAIAAjAHAwUAJAH44DANBgkqhkiG9w0BAQsFAAOCAQEA hKEj/7JoCh66gMHw31dy/uRfOdG4rd5Fih74X7X19/jiuLsDQDdiWYDDKmhLFm8U cCtLlsHRV87KHt0qI07QsDSKzrZMg7HRTZyaSWfbOqf1wuxsJQvMHgaLcy7ON2np 8IeBseMkt3vgVM8C4FG1GD5uqQtdJtRyMu8Dj8QP4iiTpUAHC9tbemNdY0gIRsSb 1mYB1TjbB2wjgABewiJnWP8QDHymfpmf07wQMySKj+S7HYUdf15gnpxvbmUPcTqU ConQUxIt0rwq9+46nBe35mmGCsbHROw+WRTgBfuzfOz8a51h97HvDFvZL2b/1mc/ 3/x+TrDh1lv1t/HxzSYG1g== -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:33 2026 by rpki-client