$ rpki-client -vvf rpki.apnic.net/member_repository/A917B218/6BE6C7000DF411F1A7584300043D8C67/D2DAE050606411F18D93D7436447A888.roa File: D2DAE050606411F18D93D7436447A888.roa (raw, json) Hash identifier: p8bynTpUtraazzZ/QKRgqMb6jcWdyLWfJk6eYm7MHMI= Subject key identifier: 6B:81:86:10:32:07:6B:A2:C7:4B:C5:DC:15:FB:BC:FC:8F:DA:FF:F2 Certificate issuer: /CN=A917B218/serialNumber=EC15A847AF784DF10258821BAB994AC8203595DF Certificate serial: 3C Authority key identifier: EC:15:A8:47:AF:78:4D:F1:02:58:82:1B:AB:99:4A:C8:20:35:95:DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7BWoR694TfECWIIbq5lKyCA1ld8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B218/6BE6C7000DF411F1A7584300043D8C67/D2DAE050606411F18D93D7436447A888.roa Signing time: Thu 04 Jun 2026 22:29:18 +0000 ROA not before: Thu 04 Jun 2026 22:29:18 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 23655 IP address blocks: 192.148.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B218/6BE6C7000DF411F1A7584300043D8C67/7BWoR694TfECWIIbq5lKyCA1ld8.crl rsync://rpki.apnic.net/member_repository/A917B218/6BE6C7000DF411F1A7584300043D8C67/7BWoR694TfECWIIbq5lKyCA1ld8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7BWoR694TfECWIIbq5lKyCA1ld8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 08:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B218, serialNumber=EC15A847AF784DF10258821BAB994AC8203595DF Validity Not Before: Jun 4 22:29:18 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a21fc3e-ba2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:6c:a9:99:0f:2f:25:d6:67:57:63:4b:d0:65: 9b:39:0b:a7:d6:41:40:bd:77:75:53:c3:c6:72:fd: 64:72:e4:c2:41:53:b1:96:e4:b3:58:f3:2d:f3:c0: 2e:31:fa:d7:0b:16:77:f8:9c:91:03:c8:8e:ee:0f: a2:0f:38:be:80:01:22:df:8a:bb:24:dd:25:20:c7: 97:2f:f6:84:11:85:5a:b3:82:ff:00:c6:bf:c1:08: d5:40:28:5b:22:aa:d5:03:ce:51:6a:84:35:e4:7c: 0d:e9:34:92:d2:ef:b9:86:64:83:0f:c9:74:0b:6a: 70:62:30:ee:3b:36:57:8d:1e:6b:69:33:3b:68:af: fd:77:be:9c:70:27:cd:f3:b2:7f:71:17:80:7c:08: 65:8b:9a:ad:55:5a:a7:ef:61:1e:97:74:b9:d6:b3: 0b:34:e2:2b:7b:49:07:18:93:3f:26:bd:be:6d:28: 40:fc:68:ea:03:2c:6f:d7:0d:1c:ca:92:15:d2:d9: cb:8d:91:53:30:31:c3:ef:eb:c7:80:f9:9f:a4:fd: e8:b2:2d:f6:24:f8:fc:cd:ef:69:cf:a6:b2:9c:ff: 7f:94:92:66:fb:e4:a0:26:a6:21:0f:81:54:b2:48: a2:32:45:7d:9e:c4:06:e8:3a:ce:5a:e2:96:8f:1b: 11:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:81:86:10:32:07:6B:A2:C7:4B:C5:DC:15:FB:BC:FC:8F:DA:FF:F2 X509v3 Authority Key Identifier: keyid:EC:15:A8:47:AF:78:4D:F1:02:58:82:1B:AB:99:4A:C8:20:35:95:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B218/6BE6C7000DF411F1A7584300043D8C67/7BWoR694TfECWIIbq5lKyCA1ld8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7BWoR694TfECWIIbq5lKyCA1ld8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B218/6BE6C7000DF411F1A7584300043D8C67/D2DAE050606411F18D93D7436447A888.roa sbgp-ipAddrBlock: critical IPv4: 192.148.221.0/24 Signature Algorithm: sha256WithRSAEncryption a5:20:31:fa:3a:d3:ff:5e:4b:ca:6b:b6:c4:06:e7:cb:52:a3: 56:37:8b:66:0e:2e:7b:0b:63:45:80:3b:6c:a8:b3:f8:48:f8: c4:fa:e0:e3:c9:01:18:74:fa:a1:6e:1b:01:db:6f:12:97:aa: 74:26:ca:99:93:b4:b4:be:93:ef:ae:6f:74:b5:db:ec:33:ec: 8b:77:31:60:45:dd:86:b7:e6:77:ac:34:39:32:8b:60:48:60: 67:79:32:a6:fa:ab:79:10:d6:d6:76:2d:d1:45:10:c9:78:9b: c7:ee:87:66:ce:21:1f:d8:3e:a2:2c:c0:fd:e2:fa:5f:1c:a8: 5c:57:e4:48:ec:e2:ec:02:5f:1d:79:a9:ef:b0:39:66:6d:1b: 5a:fe:08:89:35:22:4f:e0:e6:68:0e:66:69:17:9b:47:1f:a2: 27:26:8b:08:64:ab:88:05:7b:13:66:46:79:87:4f:5f:57:ed: 03:6c:e2:72:ba:ad:48:ba:0a:42:a9:4f:43:c2:1b:ef:e1:67: 08:3c:a2:23:cd:ab:30:7c:11:ba:77:11:05:4f:46:90:b1:3c: a7:33:71:94:43:19:8e:fd:f5:8c:c9:ef:d5:26:03:7f:68:30: 28:81:bf:15:c6:d4:28:9a:20:b7:47:fe:45:4a:ea:ba:1b:27: eb:9d:3c:78 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjIxODExMC8GA1UEBRMoRUMxNUE4NDdBRjc4NERGMTAyNTg4MjFCQUI5OTRBQzgy MDM1OTVERjAeFw0yNjA2MDQyMjI5MThaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMjFmYzNlLWJhMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCDbKmZDy8l1mdXY0vQZZs5C6fWQUC9d3VTw8Zy/WRy5MJBU7GW5LNY8y3zwC4x +tcLFnf4nJEDyI7uD6IPOL6AASLfirsk3SUgx5cv9oQRhVqzgv8Axr/BCNVAKFsi qtUDzlFqhDXkfA3pNJLS77mGZIMPyXQLanBiMO47NleNHmtpMztor/13vpxwJ83z sn9xF4B8CGWLmq1VWqfvYR6XdLnWsws04it7SQcYkz8mvb5tKED8aOoDLG/XDRzK khXS2cuNkVMwMcPv68eA+Z+k/eiyLfYk+PzN72nPprKc/3+Ukmb75KAmpiEPgVSy SKIyRX2exAboOs5a4paPGxEpAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUa4GGEDIH a6LHS8XcFfu8/I/a//IwHwYDVR0jBBgwFoAU7BWoR694TfECWIIbq5lKyCA1ld8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCMjE4LzZCRTZDNzAwMERG NDExRjFBNzU4NDMwMDA0M0Q4QzY3LzdCV29SNjk0VGZFQ1dJSWJxNWxLeUNBMWxk OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvN0JXb1I2OTRUZkVDV0lJYnE1bEt5Q0ExbGQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjIxOC82QkU2QzcwMDBERjQxMUYxQTc1ODQzMDAwNDNEOEM2Ny9EMkRBRTA1MDYw NjQxMUYxOEQ5M0Q3NDM2NDQ3QTg4OC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADAlN0wDQYJKoZIhvcNAQELBQADggEBAKUgMfo60/9eS8prtsQG58tS o1Y3i2YOLnsLY0WAO2yos/hI+MT64OPJARh0+qFuGwHbbxKXqnQmypmTtLS+k++u b3S12+wz7It3MWBF3Ya35nesNDkyi2BIYGd5Mqb6q3kQ1tZ2LdFFEMl4m8fuh2bO IR/YPqIswP3i+l8cqFxX5Ejs4uwCXx15qe+wOWZtG1r+CIk1Ik/g5mgOZmkXm0cf oicmiwhkq4gFexNmRnmHT19X7QNs4nK6rUi6CkKpT0PCG+/hZwg8oiPNqzB8Ebp3 EQVPRpCxPKczcZRDGY799YzJ79UmA39oMCiBvxXG1CiaILdH/kVK6robJ+udPHg= -----END CERTIFICATE-----Generated at Sun Jun 14 01:23:20 2026 by rpki-client