$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/D18B4798F06C11F09D48C4D25F6F56BC.roa File: D18B4798F06C11F09D48C4D25F6F56BC.roa (raw, json) Hash identifier: FzVb/xQYMbYZ8H9dr6uwy2m6EVKcwi9t2xwaP8CIRPQ= Subject key identifier: D8:96:3D:C4:8D:DC:44:06:76:CF:F2:F6:7C:D4:02:1A:3D:8F:CF:07 Certificate issuer: /CN=A91F17B3/serialNumber=F87F3099AD78F589DDFE4AA5F39137FFB32AFF9E Certificate serial: A8 Authority key identifier: F8:7F:30:99:AD:78:F5:89:DD:FE:4A:A5:F3:91:37:FF:B3:2A:FF:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-H8wma149Ynd_kql85E3_7Mq_54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/D18B4798F06C11F09D48C4D25F6F56BC.roa Signing time: Tue 23 Jun 2026 07:37:26 +0000 ROA not before: Tue 23 Jun 2026 07:37:26 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 150775 IP address blocks: 2001:df5:88c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/-H8wma149Ynd_kql85E3_7Mq_54.crl rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/-H8wma149Ynd_kql85E3_7Mq_54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-H8wma149Ynd_kql85E3_7Mq_54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 07:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B3, serialNumber=F87F3099AD78F589DDFE4AA5F39137FFB32AFF9E Validity Not Before: Jun 23 07:37:26 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a3a37b6-af00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c7:a5:b9:39:c4:53:f1:5e:3e:78:d6:d9:34: 76:c4:c0:af:bf:f0:6a:f4:1c:12:73:3a:0a:ba:eb: 21:67:65:2c:8f:13:27:9a:29:ad:6e:2c:ce:2a:cd: de:2c:4d:eb:30:49:e4:fa:e9:aa:16:74:35:25:29: cb:72:eb:b3:50:95:66:7f:55:05:69:06:86:c0:3e: 45:aa:09:5a:d2:39:f7:64:10:70:65:85:73:38:df: 1d:e2:b7:ab:49:d4:10:df:8a:b2:cd:3d:9b:33:ec: a9:e4:b6:5e:c7:f0:5d:72:ad:7c:79:28:35:c9:46: f2:e1:d7:a8:3f:d9:62:43:d1:4a:2c:17:a9:d2:5f: ea:86:7e:6e:55:5e:6a:e5:81:92:1d:d7:d0:8f:b2: 36:8b:a3:9a:c7:ae:7b:e1:f1:7a:b8:19:ec:3f:cf: b5:22:6e:04:01:79:46:12:32:e4:6f:0b:07:0e:75: 0d:29:ed:34:16:23:c8:49:e3:0c:ef:1a:81:df:b3: 18:58:4d:da:42:ad:77:87:dc:91:97:aa:f6:df:f6: 5b:22:5a:f2:87:cd:37:82:9e:96:ce:7e:c8:41:7e: b6:9a:c8:fa:94:a2:e3:5d:68:91:ec:e3:a4:2c:3a: 89:ba:bb:e6:8b:2c:76:98:cc:42:38:44:90:17:0d: ee:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:96:3D:C4:8D:DC:44:06:76:CF:F2:F6:7C:D4:02:1A:3D:8F:CF:07 X509v3 Authority Key Identifier: keyid:F8:7F:30:99:AD:78:F5:89:DD:FE:4A:A5:F3:91:37:FF:B3:2A:FF:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/-H8wma149Ynd_kql85E3_7Mq_54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-H8wma149Ynd_kql85E3_7Mq_54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/D18B4798F06C11F09D48C4D25F6F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:88c0::/48 Signature Algorithm: sha256WithRSAEncryption 3b:45:08:7a:82:95:a6:bf:c8:bd:ba:4d:70:24:13:75:32:e5: f5:82:8b:61:01:e8:5b:e3:fc:4e:98:47:c8:c4:86:8c:03:dc: df:9d:16:dc:17:f8:f5:a0:a9:85:c2:67:a1:7a:72:17:5e:ee: d1:af:90:bd:03:15:8f:e1:f2:2c:d8:43:4f:1c:b6:9f:80:b8: 21:99:13:96:1d:7b:9e:20:2d:e6:7f:af:b1:7e:38:fa:fa:ca: 7a:14:31:ca:9b:0c:2b:80:10:21:08:41:ae:bd:e0:92:42:d5: 1f:b8:0e:1c:d9:16:6d:3e:91:13:c9:78:fe:d6:de:02:ac:67: 3a:6c:47:9a:86:b8:24:f2:0f:23:48:c2:0d:7d:fb:e8:3e:a6: df:7d:2b:88:ef:00:a9:01:d2:82:21:d8:0f:05:da:9b:29:55: ce:33:e1:e7:45:18:7a:22:94:ab:a7:89:72:02:b7:58:e6:e3: 55:55:3e:5f:df:35:75:82:ff:58:50:99:70:e7:d6:14:18:2c: c7:56:de:74:d2:27:3b:ca:d8:c8:57:68:b7:fc:be:75:d3:8d: 18:3a:92:73:b9:56:0a:fe:0f:94:5c:3c:46:e7:37:05:fc:df: de:06:fb:13:ac:6f:5f:49:bb:d7:46:42:f3:dd:9c:d3:6e:db: 6f:89:ed:0a -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QjMxMTAvBgNVBAUTKEY4N0YzMDk5QUQ3OEY1ODlEREZFNEFBNUYzOTEzN0ZG QjMyQUZGOUUwHhcNMjYwNjIzMDczNzI2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTNhMzdiNi1hZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18eluTnEU/FePnjW2TR2xMCvv/Bq9BwSczoKuushZ2UsjxMnmimtbizOKs3e LE3rMEnk+umqFnQ1JSnLcuuzUJVmf1UFaQaGwD5Fqgla0jn3ZBBwZYVzON8d4rer SdQQ34qyzT2bM+yp5LZex/Bdcq18eSg1yUby4deoP9liQ9FKLBep0l/qhn5uVV5q 5YGSHdfQj7I2i6Oax6574fF6uBnsP8+1Im4EAXlGEjLkbwsHDnUNKe00FiPISeMM 7xqB37MYWE3aQq13h9yRl6r23/ZbIlryh803gp6Wzn7IQX62msj6lKLjXWiR7OOk LDqJurvmiyx2mMxCOESQFw3uqQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFNiWPcSN 3EQGds/y9nzUAho9j88HMB8GA1UdIwQYMBaAFPh/MJmtePWJ3f5KpfORN/+zKv+e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdCMy81RTUwOTVDODc5 Q0QxMUYwQTlCOTAzMjFDNEY5QUUwMi8tSDh3bWExNDlZbmRfa3FsODVFM183TXFf NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1IOHdtYTE0OVluZF9rcWw4NUUzXzdNcV81NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE3QjMvNUU1MDk1Qzg3OUNEMTFGMEE5QjkwMzIxQzRGOUFFMDIvRDE4QjQ3OThG MDZDMTFGMDlENDhDNEQyNUY2RjU2QkMucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9YjAMA0GCSqGSIb3DQEBCwUAA4IBAQA7RQh6gpWmv8i9uk1w JBN1MuX1gothAehb4/xOmEfIxIaMA9zfnRbcF/j1oKmFwmehenIXXu7Rr5C9AxWP 4fIs2ENPHLafgLghmROWHXueIC3mf6+xfjj6+sp6FDHKmwwrgBAhCEGuveCSQtUf uA4c2RZtPpETyXj+1t4CrGc6bEeahrgk8g8jSMINffvoPqbffSuI7wCpAdKCIdgP BdqbKVXOM+HnRRh6IpSrp4lyArdY5uNVVT5f3zV1gv9YUJlw59YUGCzHVt500ic7 ytjIV2i3/L51040YOpJzuVYK/g+UXDxG5zcF/N/eBvsTrG9fSbvXRkLz3ZzTbttv ie0K -----END CERTIFICATE-----Generated at Wed Jun 24 12:34:09 2026 by rpki-client