$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4D4B005EE69B11EEA61CC220C4F9AE02.roa File: 4D4B005EE69B11EEA61CC220C4F9AE02.roa (raw, json) Hash identifier: 7lLsszXXnC5oRFhZb2SkbMrCi1rWxIq2+ferGnxzRIY= Subject key identifier: F6:50:61:1A:38:DF:08:91:10:D7:AA:4F:12:01:4A:BF:61:68:75:6D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D21D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4D4B005EE69B11EEA61CC220C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:18:14 +0000 ROA not before: Thu 08 May 2025 15:59:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133716 IP address blocks: 2001:df2:f640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53789 (0xd21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:59:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bb26-06da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:17:de:14:08:7b:1a:6d:1e:2b:ed:e0:bc: c8:08:32:f6:d5:36:8d:92:53:c9:4f:00:e0:c8:66: 85:a1:9b:a3:ad:4f:bf:73:cd:c9:97:8f:d1:ea:91: cf:e1:e6:0b:aa:3e:98:8e:16:00:a0:43:02:33:60: 0c:dd:26:08:ad:59:04:56:77:70:ec:02:0e:7a:f5: 88:d0:20:62:59:15:07:2c:ab:56:9a:f4:e5:76:0d: eb:55:5c:71:cb:5d:b7:4f:2a:d6:4a:5d:6d:fa:cb: 73:10:d8:49:05:da:f6:ae:5b:6d:15:a4:16:8c:0a: 0e:18:2b:93:e2:d0:c8:ef:2a:b3:a4:45:60:ae:e5: 41:d6:90:0a:d1:a1:06:18:98:45:53:5e:7f:3a:56: 31:45:5a:dd:9a:92:c9:97:60:2b:52:ae:4f:5d:95: 41:1e:f4:21:39:67:54:34:6f:82:80:82:75:32:21: 4f:d1:a6:83:32:a4:0c:86:37:ac:bb:27:25:6a:47: 29:a6:05:0d:62:fe:d8:df:f8:7e:b8:de:bd:35:06: 67:78:1f:1e:c7:6f:2e:5b:a9:b1:fd:a2:ac:09:20: ac:dc:38:69:0c:a8:ca:5c:09:54:c7:cc:fa:18:9f: 7b:92:26:26:70:74:50:04:3c:96:9d:26:da:5e:8e: 66:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:50:61:1A:38:DF:08:91:10:D7:AA:4F:12:01:4A:BF:61:68:75:6D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4D4B005EE69B11EEA61CC220C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df2:f640::/48 Signature Algorithm: sha256WithRSAEncryption 90:dd:a9:ed:d7:fa:ab:a5:ec:0f:53:11:a8:c6:4c:18:d0:2a: 09:19:38:73:f1:62:f8:7c:8f:52:05:da:e3:e3:21:67:68:06: 3c:82:ba:05:6b:da:8b:93:56:04:59:36:6e:a4:d4:29:6b:4b: 5f:b7:79:dc:21:1a:db:bc:92:9c:24:24:87:1b:1c:56:2b:a2: 68:c7:c9:62:97:4f:90:fd:0c:37:ad:50:e0:39:39:d5:45:b5: 08:6d:76:56:00:9b:72:a3:c4:ca:3b:db:f4:2f:55:9f:25:58: aa:18:a9:d5:04:50:49:33:a0:a8:fc:2f:0c:b7:ab:e0:53:fb: 51:b3:0b:d5:1a:5e:3c:6d:88:f3:63:55:bc:f2:79:0c:c1:92: 98:3c:78:c2:e2:da:52:e0:90:93:a3:2c:6f:b9:6d:f0:68:57: 6e:00:38:c8:67:34:13:0f:c4:27:ca:a3:18:7f:de:b3:e2:1f: e1:aa:50:66:c5:0b:2f:7a:cf:01:17:26:bc:56:3c:e2:42:20: ee:a2:97:52:db:8c:39:04:1f:24:a7:24:1d:b1:a7:9b:62:39: 37:46:fa:11:e6:fb:22:a7:bc:21:75:3e:19:ec:f9:9f:10:0f: 42:71:2a:45:7b:93:c0:9c:c3:49:60:73:0f:50:e8:38:4b:20: ab:f2:5b:1e -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDANIdMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTkzMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJiMjYtMDZkYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKsXF94UCHsabR4r7eC8yAgy9tU2jZJTyU8A4MhmhaGbo61Pv3PNyZeP0eqR z+HmC6o+mI4WAKBDAjNgDN0mCK1ZBFZ3cOwCDnr1iNAgYlkVByyrVpr05XYN61Vc cctdt08q1kpdbfrLcxDYSQXa9q5bbRWkFowKDhgrk+LQyO8qs6RFYK7lQdaQCtGh BhiYRVNefzpWMUVa3ZqSyZdgK1KuT12VQR70ITlnVDRvgoCCdTIhT9GmgzKkDIY3 rLsnJWpHKaYFDWL+2N/4frjevTUGZ3gfHsdvLlupsf2irAkgrNw4aQyoylwJVMfM +hife5ImJnB0UAQ8lp0m2l6OZjECAwEAAaOCAmMwggJfMB0GA1UdDgQWBBT2UGEa ON8IkRDXqk8SAUq/YWh1bTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRENEIwMDVF RTY5QjExRUVBNjFDQzIyMEM0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfL2QDANBgkqhkiG9w0BAQsFAAOCAQEAkN2p7df6q6XsD1MR qMZMGNAqCRk4c/Fi+HyPUgXa4+MhZ2gGPIK6BWvai5NWBFk2bqTUKWtLX7d53CEa 27ySnCQkhxscViuiaMfJYpdPkP0MN61Q4Dk51UW1CG12VgCbcqPEyjvb9C9VnyVY qhip1QRQSTOgqPwvDLer4FP7UbML1RpePG2I82NVvPJ5DMGSmDx4wuLaUuCQk6Ms b7lt8GhXbgA4yGc0Ew/EJ8qjGH/es+If4apQZsULL3rPARcmvFY84kIg7qKXUtuM OQQfJKckHbGnm2I5N0b6Eeb7Iqe8IXU+Gez5nxAPQnEqRXuTwJzDSWBzD1DoOEsg q/JbHg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:55 2026 by rpki-client