$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8C5F503E2FC411EF9D5D3054C4F9AE02.roa File: 8C5F503E2FC411EF9D5D3054C4F9AE02.roa (raw, json) Hash identifier: 87J1hvNedKLcgVDv0AtvlfSfyqNoI9ZPJrIMIOuSVvc= Subject key identifier: 49:FA:68:BF:84:89:D3:F1:C2:1A:A5:33:8F:2E:D7:07:56:A5:66:26 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D815 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8C5F503E2FC411EF9D5D3054C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:53:23 +0000 ROA not before: Thu 08 May 2025 16:28:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152496 IP address blocks: 2001:df3:cd40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55317 (0xd815) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:28:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c363-b259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a5:05:94:a6:42:b3:a4:46:f6:47:25:0a:5e: 2b:11:b2:01:c8:1a:66:09:45:1b:50:ff:46:a5:f1: eb:77:8b:4d:84:3b:1d:42:86:46:30:dd:98:94:03: 4b:2e:da:7c:e7:ff:80:11:c7:7b:6c:7a:bf:0e:41: 16:90:72:d1:c3:6b:a5:5f:d9:ab:fd:e4:40:da:67: 4a:7b:e7:15:a6:5a:8f:c8:d9:f4:78:40:b8:59:d7: 04:c4:ea:ee:de:be:f9:fb:3e:e4:67:44:0e:a3:b1: a2:13:d1:2f:89:6d:43:fc:9d:65:ab:5b:cb:56:23: ef:af:50:a5:0e:a2:bf:77:a5:e8:e9:d3:96:08:e3: f9:06:16:66:a3:4f:b8:31:55:74:4c:90:69:4b:ff: 3a:c9:e2:30:4d:ad:aa:b7:43:79:2c:1e:92:7c:53: 89:f3:c7:13:75:ae:e1:4a:ac:04:ee:6a:b8:d8:86: ad:a8:f0:fc:e0:57:71:ab:7a:3d:61:1e:55:5a:69: 3f:19:54:9c:ff:1c:c8:e4:80:13:a9:88:16:b2:53: 3e:f7:ed:c0:ae:2b:9c:98:50:14:60:8b:18:5d:8d: d1:9e:70:87:a4:19:bb:52:1c:2a:f6:aa:d1:0c:a1: e5:61:03:5c:36:f7:dc:a6:b2:06:62:4c:97:a1:42: a9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:FA:68:BF:84:89:D3:F1:C2:1A:A5:33:8F:2E:D7:07:56:A5:66:26 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8C5F503E2FC411EF9D5D3054C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:cd40::/48 Signature Algorithm: sha256WithRSAEncryption 33:e4:02:76:95:e7:3c:08:a1:11:b1:d8:e4:10:48:da:8e:03: d9:81:33:3e:6e:91:f5:46:af:8c:01:61:af:23:3e:07:03:6e: e2:93:e8:b9:b2:90:47:c1:55:73:10:df:15:70:00:69:7f:0d: da:1d:a7:13:72:4c:17:02:fc:15:5a:c6:24:b6:db:65:17:75: 8e:c9:9f:52:45:9d:50:b6:43:e9:51:e6:f7:ea:89:b7:68:de: b6:5d:3b:4c:f4:84:79:80:12:9d:f1:de:4c:f6:f6:64:e2:66: c7:a6:40:19:fc:e3:8b:3e:00:99:31:d2:94:aa:dd:19:c2:8b: b9:ff:7f:94:7a:19:a9:e7:2b:db:a5:08:e8:a2:b5:e4:e4:4b: 4c:25:fe:68:fc:7c:a6:92:f2:1f:84:4a:19:b3:42:f1:8d:47: 34:f1:99:21:44:9d:80:9e:6a:ee:0b:40:dc:ce:9c:b0:a3:72: af:60:21:a3:6e:b5:ae:56:89:e6:3b:66:25:0a:33:d7:04:32: 8d:c1:ff:d8:6f:5f:e0:86:c1:ac:ce:22:bb:8e:47:7e:c3:61: 19:8f:e5:51:e2:4f:6a:de:7c:d6:d4:9d:bc:66:fd:cb:82:7b: c9:cc:e5:e4:9d:d6:bd:f8:e7:30:a9:ab:11:08:76:d7:b0:08: 77:35:a0:f8 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDANgVMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjgyNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMzNjMtYjI1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWlBZSmQrOkRvZHJQpeKxGyAcgaZglFG1D/RqXx63eLTYQ7HUKGRjDdmJQD Sy7afOf/gBHHe2x6vw5BFpBy0cNrpV/Zq/3kQNpnSnvnFaZaj8jZ9HhAuFnXBMTq 7t6++fs+5GdEDqOxohPRL4ltQ/ydZatby1Yj769QpQ6iv3el6OnTlgjj+QYWZqNP uDFVdEyQaUv/OsniME2tqrdDeSweknxTifPHE3Wu4UqsBO5quNiGrajw/OBXcat6 PWEeVVppPxlUnP8cyOSAE6mIFrJTPvftwK4rnJhQFGCLGF2N0Z5wh6QZu1IcKvaq 0Qyh5WEDXDb33KayBmJMl6FCqc8CAwEAAaOCAmMwggJfMB0GA1UdDgQWBBRJ+mi/ hInT8cIapTOPLtcHVqVmJjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhDNUY1MDNF MkZDNDExRUY5RDVEMzA1NEM0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfPNQDANBgkqhkiG9w0BAQsFAAOCAQEAM+QCdpXnPAihEbHY 5BBI2o4D2YEzPm6R9UavjAFhryM+BwNu4pPoubKQR8FVcxDfFXAAaX8N2h2nE3JM FwL8FVrGJLbbZRd1jsmfUkWdULZD6VHm9+qJt2jetl07TPSEeYASnfHeTPb2ZOJm x6ZAGfzjiz4AmTHSlKrdGcKLuf9/lHoZqecr26UI6KK15ORLTCX+aPx8ppLyH4RK GbNC8Y1HNPGZIUSdgJ5q7gtA3M6csKNyr2Aho261rlaJ5jtmJQoz1wQyjcH/2G9f 4IbBrM4iu45HfsNhGY/lUeJPat581tSdvGb9y4J7yczl5J3WvfjnMKmrEQh217AI dzWg+A== -----END CERTIFICATE-----Generated at Mon Mar 2 11:08:07 2026 by rpki-client