$ rpki-client -vvf rpki.apnic.net/member_repository/A918FE64/1641D0DE5E3911F1B10499CF007AAC22/A966E0CA5E3911F1AE025C80017AAC22.roa File: A966E0CA5E3911F1AE025C80017AAC22.roa (raw, json) Hash identifier: pmtjjwkJfcllfi5+ob6MblnqfEjyL3i5W+8VkNGojAg= Subject key identifier: 41:FF:95:69:33:19:89:3C:13:B6:51:D3:C5:25:66:32:85:CC:45:98 Certificate issuer: /CN=A918FE64/serialNumber=E7E8416B39498D1F20EEF4D831DB2FFECDE5F301 Certificate serial: 02 Authority key identifier: E7:E8:41:6B:39:49:8D:1F:20:EE:F4:D8:31:DB:2F:FE:CD:E5:F3:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5-hBazlJjR8g7vTYMdsv_s3l8wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FE64/1641D0DE5E3911F1B10499CF007AAC22/A966E0CA5E3911F1AE025C80017AAC22.roa Signing time: Tue 02 Jun 2026 04:15:17 +0000 ROA not before: Tue 02 Jun 2026 04:15:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 149835 IP address blocks: 2402:5ae0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FE64/1641D0DE5E3911F1B10499CF007AAC22/5-hBazlJjR8g7vTYMdsv_s3l8wE.crl rsync://rpki.apnic.net/member_repository/A918FE64/1641D0DE5E3911F1B10499CF007AAC22/5-hBazlJjR8g7vTYMdsv_s3l8wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5-hBazlJjR8g7vTYMdsv_s3l8wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 09:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FE64, serialNumber=E7E8416B39498D1F20EEF4D831DB2FFECDE5F301 Validity Not Before: Jun 2 04:15:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a1e58d5-81db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a9:c0:56:14:7f:a2:a4:a7:ec:01:b9:16:9d: 55:82:f8:07:76:b0:6b:9d:1b:d8:2e:be:5c:64:81: 49:6c:78:63:a3:6d:0a:06:9e:fa:0c:39:85:0a:4c: fb:b2:4b:a0:f2:c5:9f:b5:df:a5:fa:34:50:f1:9b: d8:82:94:39:92:42:96:20:87:dc:50:5f:ae:34:0f: 22:f3:de:ec:6c:d5:d8:3a:5a:a2:47:06:41:e0:4c: 39:40:6d:46:db:0b:5f:c8:51:39:6a:6f:29:15:ad: b7:7a:8c:6b:42:24:ae:42:eb:9f:40:05:5e:43:7f: 98:3e:62:52:71:ff:83:55:22:d1:22:06:30:2e:8d: 59:45:44:b8:20:d2:01:ea:fb:43:e2:51:a0:36:de: 87:5d:4d:20:55:f2:30:66:46:ec:e2:41:14:1c:da: 8e:46:73:b9:12:ba:d0:f9:c2:9e:51:43:c8:0b:34: 22:d3:40:6f:a8:54:f6:fb:7c:b8:d1:f2:d9:4d:ea: c2:87:43:e6:63:9b:76:a4:74:f1:17:3b:da:71:a0: 93:9f:1e:c2:37:17:02:49:62:cd:fe:2e:71:89:81: 5c:2a:1d:47:0f:42:ad:6c:1b:b8:6b:86:6b:1c:0f: 78:43:a3:f6:fb:52:ed:99:81:ac:f2:45:02:63:1c: 40:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FF:95:69:33:19:89:3C:13:B6:51:D3:C5:25:66:32:85:CC:45:98 X509v3 Authority Key Identifier: keyid:E7:E8:41:6B:39:49:8D:1F:20:EE:F4:D8:31:DB:2F:FE:CD:E5:F3:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FE64/1641D0DE5E3911F1B10499CF007AAC22/5-hBazlJjR8g7vTYMdsv_s3l8wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5-hBazlJjR8g7vTYMdsv_s3l8wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FE64/1641D0DE5E3911F1B10499CF007AAC22/A966E0CA5E3911F1AE025C80017AAC22.roa sbgp-ipAddrBlock: critical IPv6: 2402:5ae0::/32 Signature Algorithm: sha256WithRSAEncryption b2:45:14:e7:75:64:b5:2d:31:f0:c9:40:c3:bf:a2:c6:c7:7d: 28:2c:22:4d:d9:c5:8a:b2:5f:33:4a:28:34:66:d2:5a:29:ff: 5d:06:77:72:42:18:e7:84:83:80:b6:04:85:6d:c1:4f:cf:ec: c8:10:f6:63:8c:1e:75:f2:c4:63:b1:35:1e:a8:0f:68:b9:b4: 9d:7a:22:95:03:6e:16:62:e7:3b:7e:f4:59:c5:9e:68:11:7a: 99:aa:06:43:49:7b:a8:6a:e9:b7:fc:01:c6:60:d1:02:65:83: 0c:09:8a:d2:16:a3:8d:b7:5c:b8:a7:b2:43:b0:52:4f:e0:e5: 5e:5b:93:fb:ce:80:31:0c:0e:8d:81:1f:2e:9b:29:8a:22:c0: 83:bb:66:a0:6f:d6:9e:20:70:0a:62:19:87:75:c6:17:7d:02: 14:1f:2c:10:3b:be:b1:2c:8d:0d:59:58:a8:28:08:31:6f:a6: ba:f3:d4:e1:29:59:7c:b2:de:db:c1:62:b9:f4:e1:78:45:17: 84:1c:46:13:95:d1:ef:1f:37:17:b4:d4:c1:46:2d:65:11:d3: 2d:e4:45:41:3d:e6:43:07:af:05:76:e7:eb:62:3d:1d:ed:d9: d5:5c:e4:cb:61:f8:da:16:4f:36:25:f4:a1:6e:41:8f:d1:12: 91:7e:91:19 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RkU2NDExMC8GA1UEBRMoRTdFODQxNkIzOTQ5OEQxRjIwRUVGNEQ4MzFEQjJGRkVD REU1RjMwMTAeFw0yNjA2MDIwNDE1MTdaFw0yNzA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMWU1OGQ1LTgxZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkqcBWFH+ipKfsAbkWnVWC+Ad2sGudG9guvlxkgUlseGOjbQoGnvoMOYUKTPuy S6DyxZ+136X6NFDxm9iClDmSQpYgh9xQX640DyLz3uxs1dg6WqJHBkHgTDlAbUbb C1/IUTlqbykVrbd6jGtCJK5C659ABV5Df5g+YlJx/4NVItEiBjAujVlFRLgg0gHq +0PiUaA23oddTSBV8jBmRuziQRQc2o5Gc7kSutD5wp5RQ8gLNCLTQG+oVPb7fLjR 8tlN6sKHQ+Zjm3akdPEXO9pxoJOfHsI3FwJJYs3+LnGJgVwqHUcPQq1sG7hrhmsc D3hDo/b7Uu2ZgazyRQJjHECvAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUQf+VaTMZ iTwTtlHTxSVmMoXMRZgwHwYDVR0jBBgwFoAU5+hBazlJjR8g7vTYMdsv/s3l8wEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGRTY0LzE2NDFEMERFNUUz OTExRjFCMTA0OTlDRjAwN0FBQzIyLzUtaEJhemxKalI4Zzd2VFlNZHN2X3MzbDh3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNS1oQmF6bEpqUjhnN3ZUWU1kc3ZfczNsOHdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkU2NC8xNjQxRDBERTVFMzkxMUYxQjEwNDk5Q0YwMDdBQUMyMi9BOTY2RTBDQTVF MzkxMUYxQUUwMjVDODAwMTdBQUMyMi5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAlrgMA0GCSqGSIb3DQEBCwUAA4IBAQCyRRTndWS1LTHwyUDDv6LG x30oLCJN2cWKsl8zSig0ZtJaKf9dBndyQhjnhIOAtgSFbcFPz+zIEPZjjB518sRj sTUeqA9oubSdeiKVA24WYuc7fvRZxZ5oEXqZqgZDSXuoaum3/AHGYNECZYMMCYrS FqONt1y4p7JDsFJP4OVeW5P7zoAxDA6NgR8umymKIsCDu2agb9aeIHAKYhmHdcYX fQIUHywQO76xLI0NWVioKAgxb6a689ThKVl8st7bwWK59OF4RReEHEYTldHvHzcX tNTBRi1lEdMt5EVBPeZDB68FdufrYj0d7dnVXOTLYfjaFk82JfShbkGP0RKRfpEZ -----END CERTIFICATE-----Generated at Sat Jun 6 12:06:23 2026 by rpki-client