$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/434B4F4E0E3C11F1967E4B09173D8C67.roa File: 434B4F4E0E3C11F1967E4B09173D8C67.roa (raw, json) Hash identifier: a8kl+5Idujoimo9u7RRS4tmgboPLsca/QoQK6nkkA0Q= Subject key identifier: 9B:25:22:64:57:75:5A:2E:03:F0:69:5F:05:2D:BE:E1:98:AA:A8:6E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DD6D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/434B4F4E0E3C11F1967E4B09173D8C67.roa Signing time: Thu 02 Apr 2026 11:03:53 +0000 ROA not before: Thu 02 Apr 2026 11:03:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154512 IP address blocks: 2001:df6:b6c0::/48 maxlen: 48 2001:df6:b840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 11:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56685 (0xdd6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 2 11:03:53 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69ce4d19-7400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9e:cb:d6:f9:c3:24:da:46:3d:62:e0:c5:fd: bd:24:ce:63:54:f5:da:49:9a:c9:36:c6:69:ec:18: a1:3e:54:0b:4d:45:21:10:ef:65:6e:ad:35:63:00: ac:8f:b0:98:dc:d3:f4:e2:82:05:ed:2c:c9:35:fa: 20:ed:81:25:b7:09:da:15:a5:7e:61:33:87:36:3e: 4a:5d:eb:47:a8:37:2f:51:c7:38:85:db:ed:f3:c9: 73:b0:a6:23:d4:b3:60:12:b3:e1:81:e6:81:63:de: ac:f9:f2:bc:7f:fd:e1:d4:66:0a:6f:96:65:12:a4: 70:aa:6f:26:e8:6a:14:51:de:d4:c8:73:49:bb:ae: fa:bb:b3:aa:1b:17:59:e8:5c:76:8e:46:53:11:83: 0b:81:e0:50:79:c3:84:e2:5d:da:fb:c5:cb:39:86: 73:d5:61:fa:f1:93:e6:ab:d4:49:8c:97:40:f0:9f: a5:a5:a1:66:de:90:c0:c3:e1:a5:bb:6b:4a:86:c3: 14:a9:44:46:92:19:05:2e:86:a8:8d:9c:6a:c1:cc: 27:cd:aa:d9:34:58:2a:25:03:1d:03:fe:5e:48:fb: ad:5e:d8:b5:c8:34:7c:77:4a:40:fc:9d:63:e8:65: 68:78:e7:b0:31:01:dc:65:8f:df:ea:21:16:02:ab: 9f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:25:22:64:57:75:5A:2E:03:F0:69:5F:05:2D:BE:E1:98:AA:A8:6E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/434B4F4E0E3C11F1967E4B09173D8C67.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:b6c0::/48 2001:df6:b840::/48 Signature Algorithm: sha256WithRSAEncryption b4:15:92:2f:e6:21:6b:29:45:47:43:d5:03:35:a7:36:33:e4: b5:18:fa:b5:c6:0a:80:3f:2b:44:9d:ba:77:d8:fd:c2:a5:2f: 5e:49:87:37:bd:bc:cd:e4:3a:99:e9:11:69:80:62:d7:a6:0a: 49:97:57:9d:08:29:cb:7e:9a:82:60:e2:bf:c4:39:98:21:50: ba:af:bd:c0:ff:d3:4f:30:5c:0e:a1:1e:4e:7e:b5:b0:74:67: b3:e2:bb:76:e5:36:7d:3e:bd:95:b1:1f:f4:9b:17:44:34:29: 53:e0:90:88:96:8a:b6:37:68:96:44:ca:3a:3d:18:2a:e7:20: e5:4f:31:ca:36:fb:d1:af:3e:c7:60:22:38:a2:0f:36:3d:16: c6:45:0a:2d:50:69:6b:07:51:ce:7f:39:30:53:fb:98:36:ea: de:16:56:2c:4c:a8:6d:56:a1:75:86:a7:3b:e6:79:e4:b6:0b: be:5b:15:3b:ec:cf:db:b1:21:fb:a4:9b:e2:92:9a:6c:74:46: 96:9e:4b:66:05:ef:ec:2f:11:e9:74:16:bf:87:bf:45:8c:9b: ad:7d:54:49:4d:f0:72:91:b9:46:7e:cd:b5:1e:5c:a8:55:12: cd:6c:d1:35:68:e7:33:8e:a8:d8:01:da:f9:e5:d6:0c:68:19: 0e:75:7e:1a -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIDAN1tMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDQwMjExMDM1M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjljZTRkMTktNzQwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOWey9b5wyTaRj1i4MX9vSTOY1T12kmayTbGaewYoT5UC01FIRDvZW6tNWMA rI+wmNzT9OKCBe0syTX6IO2BJbcJ2hWlfmEzhzY+Sl3rR6g3L1HHOIXb7fPJc7Cm I9SzYBKz4YHmgWPerPnyvH/94dRmCm+WZRKkcKpvJuhqFFHe1MhzSbuu+ruzqhsX Wehcdo5GUxGDC4HgUHnDhOJd2vvFyzmGc9Vh+vGT5qvUSYyXQPCfpaWhZt6QwMPh pbtrSobDFKlERpIZBS6GqI2casHMJ82q2TRYKiUDHQP+Xkj7rV7Ytcg0fHdKQPyd Y+hlaHjnsDEB3GWP3+ohFgKrn5kCAwEAAaOCAmwwggJoMB0GA1UdDgQWBBSbJSJk V3VaLgPwaV8FLb7hmKqobjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQzNEI0RjRF MEUzQzExRjE5NjdFNEIwOTE3M0Q4QzY3LnJvYTArBggrBgEFBQcBBwEB/wQcMBow GAQCAAIwEgMHACABDfa2wAMHACABDfa4QDANBgkqhkiG9w0BAQsFAAOCAQEAtBWS L+YhaylFR0PVAzWnNjPktRj6tcYKgD8rRJ26d9j9wqUvXkmHN728zeQ6mekRaYBi 16YKSZdXnQgpy36agmDiv8Q5mCFQuq+9wP/TTzBcDqEeTn61sHRns+K7duU2fT69 lbEf9JsXRDQpU+CQiJaKtjdolkTKOj0YKucg5U8xyjb70a8+x2AiOKIPNj0WxkUK LVBpawdRzn85MFP7mDbq3hZWLEyobVahdYanO+Z55LYLvlsVO+zP27Eh+6Sb4pKa bHRGlp5LZgXv7C8R6XQWv4e/RYybrX1USU3wcpG5Rn7NtR5cqFUSzWzRNWjnM46o 2AHa+eXWDGgZDnV+Gg== -----END CERTIFICATE-----Generated at Fri Apr 17 21:33:29 2026 by rpki-client