$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A56F72B43A0111F09FBCCC21C4F9AE02.roa File: A56F72B43A0111F09FBCCC21C4F9AE02.roa (raw, json) Hash identifier: MB0avD/ZwqKn+55z6SWFxEQCrIV6IG6EAD3YOPpx3Uw= Subject key identifier: 88:87:68:ED:69:01:B7:38:B0:AB:A5:A2:2C:3D:A0:B9:FC:98:CA:20 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D8F9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A56F72B43A0111F09FBCCC21C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:57:11 +0000 ROA not before: Mon 26 May 2025 07:18:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150035 IP address blocks: 2001:df0:1480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55545 (0xd8f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 26 07:18:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c447-e1bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a3:31:16:78:f6:87:bb:25:0f:1e:cc:84:70: 09:78:04:33:69:0e:74:e9:c2:1e:93:02:1e:de:c0: 2f:f0:e3:4b:d9:6c:c7:17:de:f8:5e:d7:4d:14:6a: a9:f5:9f:b0:39:54:5d:89:56:52:0e:2c:d4:93:ed: 9b:76:7f:64:e6:69:b8:78:d2:6e:ec:1b:f4:a1:46: 36:ff:1a:d6:2c:95:0c:59:b9:4e:13:4b:94:b4:f1: e7:37:a6:3f:9d:3c:30:d7:5e:72:af:ce:2c:de:2a: 5f:fc:dc:34:5f:52:07:64:7a:df:51:8b:57:c0:d4: ca:be:32:07:b5:9b:ec:f4:17:66:ec:c7:52:9d:10: 18:5f:4a:8d:da:a8:c0:00:f3:4a:29:18:9a:c2:b6: 70:7d:ce:ba:2e:13:a3:8d:d8:e2:00:5b:d4:b9:ce: eb:f6:d4:28:11:16:ec:8f:f7:ee:9d:12:e3:73:56: 1f:fd:4c:1a:93:0a:19:c4:4b:d9:a3:b5:1b:53:9b: d0:f2:b2:d6:03:d8:8b:29:9e:f7:5e:0a:e4:86:87: 1d:49:33:1b:cc:af:8a:7c:f8:d9:be:b0:cc:57:fd: 73:25:4b:b2:e1:a7:84:d8:3d:58:a9:53:87:8b:c7: f7:e3:41:d3:26:cd:16:8a:d0:c0:f7:6a:5d:79:d6: f6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:87:68:ED:69:01:B7:38:B0:AB:A5:A2:2C:3D:A0:B9:FC:98:CA:20 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A56F72B43A0111F09FBCCC21C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df0:1480::/48 Signature Algorithm: sha256WithRSAEncryption b7:fa:4f:c8:69:5e:e3:54:92:77:86:da:2a:de:d3:8b:92:9d: 44:b1:a7:c3:80:cf:36:0d:8f:32:d2:fb:cc:40:ef:4d:dc:3a: 61:56:a9:0c:e4:4b:5b:8a:22:31:44:b8:45:91:6e:54:56:c3: c2:8f:0a:7b:b1:55:48:7c:08:81:b3:ee:f8:40:6c:19:cb:dd: 80:fa:ee:57:71:63:6d:34:3d:9a:21:d2:69:eb:dd:3f:08:47: a9:4d:78:4b:bf:62:4d:51:db:b9:e0:b5:30:38:22:60:62:cc: ea:6c:4e:01:af:c9:9e:ef:2f:7a:6e:4c:83:31:37:95:10:89: 9a:ab:35:df:5b:e4:28:0e:07:ce:b2:cf:e0:4a:d9:05:9f:51: 4a:5b:84:81:3a:f9:31:79:a5:53:23:3f:48:a9:80:f6:7b:36: f4:14:31:cc:b0:60:6a:f9:81:2b:93:6b:79:e7:eb:40:cb:c0: 06:79:15:81:2b:64:00:2e:03:84:c4:69:43:6d:4e:04:de:2c: 70:a9:3c:84:2b:b1:c2:c8:9b:eb:69:9a:db:f5:eb:30:b1:3a: d5:bc:dc:a2:8a:9a:ba:35:da:3a:18:b6:84:a5:ef:5f:7a:fe: aa:47:37:36:df:6d:27:aa:4f:3d:82:9d:a3:62:ea:58:ec:d0: a1:f9:96:85 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDANj5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUyNjA3MTgzOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM0NDctZTFiYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJyjMRZ49oe7JQ8ezIRwCXgEM2kOdOnCHpMCHt7AL/DjS9lsxxfe+F7XTRRq qfWfsDlUXYlWUg4s1JPtm3Z/ZOZpuHjSbuwb9KFGNv8a1iyVDFm5ThNLlLTx5zem P508MNdecq/OLN4qX/zcNF9SB2R631GLV8DUyr4yB7Wb7PQXZuzHUp0QGF9Kjdqo wADzSikYmsK2cH3Oui4To43Y4gBb1LnO6/bUKBEW7I/37p0S43NWH/1MGpMKGcRL 2aO1G1Ob0PKy1gPYiyme914K5IaHHUkzG8yvinz42b6wzFf9cyVLsuGnhNg9WKlT h4vH9+NB0ybNForQwPdqXXnW9qsCAwEAAaOCAmMwggJfMB0GA1UdDgQWBBSIh2jt aQG3OLCrpaIsPaC5/JjKIDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E1NkY3MkI0 M0EwMTExRjA5RkJDQ0MyMUM0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfAUgDANBgkqhkiG9w0BAQsFAAOCAQEAt/pPyGle41SSd4ba Kt7Ti5KdRLGnw4DPNg2PMtL7zEDvTdw6YVapDORLW4oiMUS4RZFuVFbDwo8Ke7FV SHwIgbPu+EBsGcvdgPruV3FjbTQ9miHSaevdPwhHqU14S79iTVHbueC1MDgiYGLM 6mxOAa/Jnu8vem5MgzE3lRCJmqs131vkKA4HzrLP4ErZBZ9RSluEgTr5MXmlUyM/ SKmA9ns29BQxzLBgavmBK5NreefrQMvABnkVgStkAC4DhMRpQ21OBN4scKk8hCux wsib62ma2/XrMLE61bzcooqaujXaOhi2hKXvX3r+qkc3Nt9tJ6pPPYKdo2LqWOzQ ofmWhQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:08:08 2026 by rpki-client