$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F1FA1CFC7F1A11F08865AC5BC4F9AE02.roa File: F1FA1CFC7F1A11F08865AC5BC4F9AE02.roa (raw, json) Hash identifier: EHeOulR7G78v1kKUXKfdQQujPk75kRQLSo5ioF+Y1Oc= Subject key identifier: E4:0E:A2:9C:4F:52:DA:0F:BB:F8:AC:A5:E1:54:A2:22:A8:E8:BA:14 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E48B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F1FA1CFC7F1A11F08865AC5BC4F9AE02.roa Signing time: Sun 31 May 2026 16:54:42 +0000 ROA not before: Sun 31 May 2026 16:54:42 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 136330 IP address blocks: 2001:df6:340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58507 (0xe48b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:54:42 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c67d2-a18a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:8b:78:6f:de:13:3e:4d:6d:9a:cd:bc:8f:cf: 7e:17:25:76:d4:5f:7e:f8:13:24:d1:1f:ac:03:a3: d1:52:38:f1:a1:63:e4:0e:08:c3:dc:e7:4e:59:1e: 28:91:7d:77:54:30:c1:44:84:64:11:21:d6:90:0c: 0e:df:99:9e:d8:e8:cf:3a:f0:fe:40:07:09:e5:4d: 99:f1:43:65:b7:e7:12:34:36:ce:62:98:45:22:04: 58:cd:f7:a2:7f:0e:d2:3e:0a:bf:8b:aa:d0:09:26: 2e:ce:cc:7e:1e:14:88:3d:7e:70:8b:79:68:34:a4: b7:4f:28:5f:8e:54:8e:7d:1b:84:14:54:45:3e:ab: 71:84:58:41:0c:6f:48:65:d3:e8:bf:4a:59:8f:58: b1:d8:80:5b:45:2b:fa:1d:1f:17:e1:49:71:cb:af: 28:28:6f:c2:f7:5c:03:ea:26:5e:9b:b5:68:68:14: 79:33:d0:6a:8f:96:07:8f:3a:41:cb:9e:0f:37:4b: 26:9b:e7:24:c4:08:04:bc:69:be:41:9a:98:d4:bf: 66:f0:4b:9f:28:4e:a9:53:86:e0:0b:95:94:5b:27: a5:51:4c:77:7c:8b:4b:87:71:73:bf:c4:41:d2:ff: 8b:24:3f:c2:00:fb:d4:d0:7d:84:70:25:f0:04:60: 65:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:0E:A2:9C:4F:52:DA:0F:BB:F8:AC:A5:E1:54:A2:22:A8:E8:BA:14 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F1FA1CFC7F1A11F08865AC5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:340::/48 Signature Algorithm: sha256WithRSAEncryption 43:f0:3c:81:37:df:94:1c:48:ae:c7:89:59:b7:6d:4b:01:6a: 5c:2e:a7:59:cc:12:91:b8:09:9e:6f:f7:32:bf:7d:85:02:a4: 4b:15:c1:5c:09:af:1d:c2:c1:45:fc:a1:e4:13:94:89:34:83: 3a:42:b6:eb:16:56:a5:87:f9:a6:7c:4c:2a:1c:3e:4b:06:5e: ae:9c:93:67:b5:8f:51:a4:45:95:50:34:9a:f6:4d:e1:b2:3d: ee:c2:72:90:75:37:52:2e:6a:d9:fa:62:b9:c2:05:8e:bb:02: 1f:a4:11:7e:d4:af:6c:0e:32:00:50:0f:d5:f1:46:68:8b:50: eb:ca:a4:38:96:60:bb:7b:09:99:da:5f:82:ef:d8:7d:77:42: 7f:cd:9d:54:4f:06:6f:51:cf:8d:a8:ca:f4:87:41:ad:1a:d0: fc:55:dd:38:b6:e6:54:9b:ca:78:58:06:4f:48:f1:40:5d:91: 34:b1:a7:38:71:c5:0b:c5:9d:a7:69:fb:77:59:71:81:8d:3e: 4e:74:f1:09:f3:45:81:83:79:a6:ae:2f:95:0e:25:72:90:6b: 8c:3e:92:a6:5d:7f:35:f2:52:35:3c:69:f5:9f:c2:ee:d3:22: 06:6a:25:cc:47:84:45:e6:44:2e:b6:3c:bf:88:15:cb:f9:22: 31:3b:a3:4c -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDAOSLMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NTQ0MloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY3ZDItYTE4YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOeLeG/eEz5NbZrNvI/PfhcldtRffvgTJNEfrAOj0VI48aFj5A4Iw9znTlke KJF9d1QwwUSEZBEh1pAMDt+Zntjozzrw/kAHCeVNmfFDZbfnEjQ2zmKYRSIEWM33 on8O0j4Kv4uq0AkmLs7Mfh4UiD1+cIt5aDSkt08oX45Ujn0bhBRURT6rcYRYQQxv SGXT6L9KWY9YsdiAW0Ur+h0fF+FJccuvKChvwvdcA+omXpu1aGgUeTPQao+WB486 QcueDzdLJpvnJMQIBLxpvkGamNS/ZvBLnyhOqVOG4AuVlFsnpVFMd3yLS4dxc7/E QdL/iyQ/wgD71NB9hHAl8ARgZUkCAwEAAaOCAmMwggJfMB0GA1UdDgQWBBTkDqKc T1LaD7v4rKXhVKIiqOi6FDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0YxRkExQ0ZD N0YxQTExRjA4ODY1QUM1QkM0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfYDQDANBgkqhkiG9w0BAQsFAAOCAQEAQ/A8gTfflBxIrseJ WbdtSwFqXC6nWcwSkbgJnm/3Mr99hQKkSxXBXAmvHcLBRfyh5BOUiTSDOkK26xZW pYf5pnxMKhw+SwZerpyTZ7WPUaRFlVA0mvZN4bI97sJykHU3Ui5q2fpiucIFjrsC H6QRftSvbA4yAFAP1fFGaItQ68qkOJZgu3sJmdpfgu/YfXdCf82dVE8Gb1HPjajK 9IdBrRrQ/FXdOLbmVJvKeFgGT0jxQF2RNLGnOHHFC8Wdp2n7d1lxgY0+TnTxCfNF gYN5pq4vlQ4lcpBrjD6Spl1/NfJSNTxp9Z/C7tMiBmolzEeEReZELrY8v4gVy/ki MTujTA== -----END CERTIFICATE-----Generated at Thu Jun 4 09:04:24 2026 by rpki-client