$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FFCF3AA816A11EF8B3CC90DC4F9AE02.roa File: 0FFCF3AA816A11EF8B3CC90DC4F9AE02.roa (raw, json) Hash identifier: tuijVoZRtvm+58FVqWDnig7mqfmQipT8egh1BvbhcMA= Subject key identifier: 6B:8F:BC:45:68:19:56:4C:3F:86:A2:7D:90:60:E3:C9:03:8F:63:7E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D958 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FFCF3AA816A11EF8B3CC90DC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:58:53 +0000 ROA not before: Thu 03 Jul 2025 09:19:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135695 IP address blocks: 36.50.214.0/24 maxlen: 24 2401:5ca0::/32 maxlen: 32 2401:5ca0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55640 (0xd958) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 3 09:19:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c4ac-6ee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:33:88:dc:39:9d:90:6f:f7:d7:d1:d8:a7:8a: fb:14:f2:6e:68:bc:7e:04:b9:00:29:09:46:fc:94: 2a:27:b6:8a:54:8e:e6:ae:56:b1:76:ae:00:73:dc: a0:9d:70:99:ab:b6:9f:fe:23:dd:cf:98:a7:26:8c: 19:24:b1:25:a3:bb:34:3a:3f:ba:2f:61:bb:14:97: cd:56:ae:a1:5a:30:6b:39:28:a2:4d:28:64:63:e5: 63:15:a1:39:01:74:1f:b2:17:38:bf:ec:59:9e:ca: 51:bb:ab:9e:fc:86:fb:5c:39:54:72:66:d2:db:92: 8e:57:3d:0f:c2:1c:f4:b8:25:1c:10:a1:04:94:0c: a3:a4:ba:97:8d:90:bc:e6:36:dd:d3:a8:53:d3:43: 04:4a:2c:9f:7a:48:8d:7c:87:c1:13:9b:e2:ac:6d: 72:9b:2a:cf:9b:fe:2e:e8:0f:ae:43:3d:01:ad:8f: 24:18:c6:df:cd:c0:8f:36:75:f7:75:6e:2b:4a:9e: df:f3:9d:63:21:28:8d:e1:88:f2:d3:5b:f8:cc:08: 3b:0c:09:7a:2d:01:1a:04:b0:ee:08:24:5d:cf:40: f8:ba:86:c2:17:bd:f6:0b:b6:d9:96:dc:0f:bc:fc: 35:fb:e2:01:03:8e:e2:6e:f3:c5:89:cf:cd:16:d0: 1b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:8F:BC:45:68:19:56:4C:3F:86:A2:7D:90:60:E3:C9:03:8F:63:7E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FFCF3AA816A11EF8B3CC90DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.214.0/24 IPv6: 2401:5ca0::/32 Signature Algorithm: sha256WithRSAEncryption b4:a1:d4:bb:6c:e7:a4:4d:8c:c2:6c:ac:4e:a4:a3:1b:7f:fd: 8f:95:56:51:8f:d5:1e:6e:54:28:8e:48:24:59:55:f5:53:f2: 3c:c4:c1:2b:77:f9:fd:07:ef:75:b6:ec:4f:74:72:fb:4a:55: a4:1b:cf:91:f0:34:5b:e2:76:8b:bd:db:a6:57:13:e7:ad:d9: f6:1e:69:9b:a3:bf:63:43:49:eb:dd:8c:5e:e0:9a:65:1d:38: 88:25:f8:8c:ef:78:6e:1a:39:40:0f:f3:8d:19:75:44:6f:01: 4a:b0:96:b8:8e:1c:9b:50:65:ad:de:17:2c:00:e2:d6:5f:42: 83:65:ed:87:0c:62:12:3e:2c:a0:fa:68:af:ca:70:81:b6:c2: a1:49:d8:dd:37:65:4e:28:9f:b1:8f:c9:6e:8e:12:e8:ce:c4: 60:1a:3d:39:cc:f5:3c:f3:1b:10:a0:b7:72:87:20:5b:8e:e2: 7f:30:65:7d:49:cb:e8:fd:ce:05:63:2f:32:83:e7:7f:95:21: d0:b9:05:56:79:d3:f3:e1:10:4f:1c:91:3d:fd:70:5f:be:4c: fd:3b:77:d0:9b:bd:bf:6a:80:9b:36:3c:a8:42:ec:99:66:eb: f8:01:36:6f:83:a6:67:a0:9e:b4:85:ad:f2:54:30:58:d5:1f: 0a:36:be:a1 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDANlYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDcwMzA5MTkzMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM0YWMtNmVlODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOUziNw5nZBv99fR2KeK+xTybmi8fgS5ACkJRvyUKie2ilSO5q5WsXauAHPc oJ1wmau2n/4j3c+YpyaMGSSxJaO7NDo/ui9huxSXzVauoVowazkook0oZGPlYxWh OQF0H7IXOL/sWZ7KUburnvyG+1w5VHJm0tuSjlc9D8Ic9LglHBChBJQMo6S6l42Q vOY23dOoU9NDBEosn3pIjXyHwROb4qxtcpsqz5v+LugPrkM9Aa2PJBjG383AjzZ1 93VuK0qe3/OdYyEojeGI8tNb+MwIOwwJei0BGgSw7ggkXc9A+LqGwhe99gu22Zbc D7z8NfviAQOO4m7zxYnPzRbQG9kCAwEAAaOCAm8wggJrMB0GA1UdDgQWBBRrj7xF aBlWTD+Gon2QYOPJA49jfjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBGRkNGM0FB ODE2QTExRUY4QjNDQzkwREM0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEACQy1jANBAIAAjAHAwUAJAFcoDANBgkqhkiG9w0BAQsFAAOCAQEA tKHUu2znpE2MwmysTqSjG3/9j5VWUY/VHm5UKI5IJFlV9VPyPMTBK3f5/Qfvdbbs T3Ry+0pVpBvPkfA0W+J2i73bplcT563Z9h5pm6O/Y0NJ692MXuCaZR04iCX4jO94 bho5QA/zjRl1RG8BSrCWuI4cm1Blrd4XLADi1l9Cg2XthwxiEj4soPpor8pwgbbC oUnY3TdlTiifsY/Jbo4S6M7EYBo9Ocz1PPMbEKC3cocgW47ifzBlfUnL6P3OBWMv MoPnf5Uh0LkFVnnT8+EQTxyRPf1wX75M/Tt30Ju9v2qAmzY8qELsmWbr+AE2b4Om Z6CetIWt8lQwWNUfCja+oQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:49 2026 by rpki-client