$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/547C858641DA11EC905E3252C4F9AE02/FDAF18600D7511F19C67C433203D8C67.roa File: FDAF18600D7511F19C67C433203D8C67.roa (raw, json) Hash identifier: igU6kSZmRjtoi3wcokgI1+ZNABRUkpNH2kbVGr6zeUw= Subject key identifier: DA:4A:73:AE:8B:A6:17:08:DF:A4:B2:49:03:43:E8:A3:84:6E:C9:FD Certificate issuer: /CN=A918EDB2/serialNumber=EED80B19426C0D4A82BC6F0B50B9BB125E1FD38A Certificate serial: 065C Authority key identifier: EE:D8:0B:19:42:6C:0D:4A:82:BC:6F:0B:50:B9:BB:12:5E:1F:D3:8A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7tgLGUJsDUqCvG8LULm7El4f04o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/547C858641DA11EC905E3252C4F9AE02/FDAF18600D7511F19C67C433203D8C67.roa Signing time: Sun 31 May 2026 17:54:53 +0000 ROA not before: Sun 31 May 2026 17:54:53 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 152491 IP address blocks: 151.158.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/547C858641DA11EC905E3252C4F9AE02/7tgLGUJsDUqCvG8LULm7El4f04o.crl rsync://rpki.apnic.net/member_repository/A918EDB2/547C858641DA11EC905E3252C4F9AE02/7tgLGUJsDUqCvG8LULm7El4f04o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7tgLGUJsDUqCvG8LULm7El4f04o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=EED80B19426C0D4A82BC6F0B50B9BB125E1FD38A Validity Not Before: May 31 17:54:53 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c75ed-def3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:21:b8:a2:f3:75:c8:c1:07:e5:b6:f8:e2:be: be:40:70:44:bd:fa:fc:00:9d:c8:ca:35:1f:79:87: 75:a4:e4:ed:d2:23:56:5c:b5:d2:4a:3a:86:14:93: 6e:00:45:ac:bc:31:a2:55:3b:bc:e8:3c:92:18:bc: 31:3c:a9:03:09:c8:e1:83:ed:50:71:e9:c0:eb:34: f5:8a:33:27:6f:69:38:0c:80:da:b3:7a:d1:9e:08: bb:59:21:74:4f:dd:b2:b0:be:34:56:81:61:2d:66: 50:74:19:c7:93:e9:60:bb:c5:0c:5f:da:8f:dd:ab: b7:26:ad:d4:28:ec:4e:62:f3:65:4d:19:a5:07:77: 94:09:5c:bf:48:65:e0:de:ca:5a:38:9c:aa:b6:0d: e3:85:54:9b:cb:e7:5d:4f:3b:4a:1e:b3:af:d2:17: 7a:b3:21:f2:3c:16:10:fe:4c:00:8b:75:39:e4:e4: d3:06:26:a4:0b:44:8b:3d:26:04:b4:32:df:d7:93: e7:d2:16:9f:df:a3:e5:55:5b:0d:1f:11:ba:ad:19: 14:52:44:9c:19:f3:5e:d9:23:da:d3:cd:57:13:78: 6d:16:bd:f6:c1:37:88:6d:b3:42:8c:47:cf:5e:b2: 88:a3:9e:5e:72:93:ec:f9:52:fe:91:1b:2a:b7:8b: db:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:4A:73:AE:8B:A6:17:08:DF:A4:B2:49:03:43:E8:A3:84:6E:C9:FD X509v3 Authority Key Identifier: keyid:EE:D8:0B:19:42:6C:0D:4A:82:BC:6F:0B:50:B9:BB:12:5E:1F:D3:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/547C858641DA11EC905E3252C4F9AE02/7tgLGUJsDUqCvG8LULm7El4f04o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7tgLGUJsDUqCvG8LULm7El4f04o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/547C858641DA11EC905E3252C4F9AE02/FDAF18600D7511F19C67C433203D8C67.roa sbgp-ipAddrBlock: critical IPv4: 151.158.138.0/23 Signature Algorithm: sha256WithRSAEncryption 34:dd:74:00:77:14:d7:3a:1c:b5:11:b9:0e:18:9f:0b:c3:8c: 9a:35:7f:b5:e2:c8:b7:92:5c:b9:79:2c:39:ce:33:ce:1a:d4: 96:06:d3:e4:ac:50:fb:43:6e:b3:1b:57:76:7d:5d:07:4d:00: 7c:2c:d0:21:a3:a7:b2:d6:8e:8c:cc:bb:6b:b1:ef:62:8e:fe: 31:6c:9c:ab:f3:82:21:c6:73:4f:b8:51:d2:89:4b:46:1a:c4: 40:59:3c:dc:68:71:6a:30:03:6b:1c:65:bc:e1:9e:fd:44:62: c9:92:a1:e3:63:6e:23:4c:99:24:4a:50:8f:63:7a:cd:0c:c9: ef:41:04:a5:23:eb:50:ae:a8:09:75:9b:61:2f:1a:88:39:40: c9:c2:84:7c:ae:dd:81:97:83:c0:42:aa:05:35:cb:ac:f5:13: 1e:f4:ee:09:96:8b:39:cf:cb:9b:bf:a9:9c:2f:eb:9f:08:09: a8:94:b4:66:24:a3:f6:57:2d:de:f3:0e:55:2a:b9:6f:c9:74: 3c:7e:14:f0:e6:08:83:16:8c:8c:dd:60:cc:36:84:26:40:6f: 5f:1c:2d:97:3e:2a:4b:13:4d:0f:30:1d:a3:11:6d:09:aa:ea: f3:28:fb:38:64:71:26:b5:71:eb:36:ea:10:ab:f8:77:ee:34: e7:cf:57:5b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEVFRDgwQjE5NDI2QzBENEE4MkJDNkYwQjUwQjlCQjEy NUUxRkQzOEEwHhcNMjYwNTMxMTc1NDUzWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNzVlZC1kZWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSG4ovN1yMEH5bb44r6+QHBEvfr8AJ3IyjUfeYd1pOTt0iNWXLXSSjqGFJNu AEWsvDGiVTu86DySGLwxPKkDCcjhg+1QcenA6zT1ijMnb2k4DIDas3rRngi7WSF0 T92ysL40VoFhLWZQdBnHk+lgu8UMX9qP3au3Jq3UKOxOYvNlTRmlB3eUCVy/SGXg 3spaOJyqtg3jhVSby+ddTztKHrOv0hd6syHyPBYQ/kwAi3U55OTTBiakC0SLPSYE tDLf15Pn0haf36PlVVsNHxG6rRkUUkScGfNe2SPa081XE3htFr32wTeIbbNCjEfP XrKIo55ecpPs+VL+kRsqt4vbzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNpKc66L phcI36SySQND6KOEbsn9MB8GA1UdIwQYMBaAFO7YCxlCbA1KgrxvC1C5uxJeH9OK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi81NDdDODU4NjQx REExMUVDOTA1RTMyNTJDNEY5QUUwMi83dGdMR1VKc0RVcUN2RzhMVUxtN0VsNGYw NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzd0Z0xHVUpzRFVxQ3ZHOExVTG03RWw0ZjA0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvNTQ3Qzg1ODY0MURBMTFFQzkwNUUzMjUyQzRGOUFFMDIvRkRBRjE4NjAw RDc1MTFGMTlDNjdDNDMzMjAzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBl56KMA0GCSqGSIb3DQEBCwUAA4IBAQA03XQAdxTXOhy1EbkOGJ8L w4yaNX+14si3kly5eSw5zjPOGtSWBtPkrFD7Q26zG1d2fV0HTQB8LNAho6ey1o6M zLtrse9ijv4xbJyr84IhxnNPuFHSiUtGGsRAWTzcaHFqMANrHGW84Z79RGLJkqHj Y24jTJkkSlCPY3rNDMnvQQSlI+tQrqgJdZthLxqIOUDJwoR8rt2Bl4PAQqoFNcus 9RMe9O4Jlos5z8ubv6mcL+ufCAmolLRmJKP2Vy3e8w5VKrlvyXQ8fhTw5giDFoyM 3WDMNoQmQG9fHC2XPipLE00PMB2jEW0JqurzKPs4ZHEmtXHrNuoQq/h37jTnz1db -----END CERTIFICATE-----Generated at Sat Jun 6 12:08:25 2026 by rpki-client