$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B9C6A83A58B611F0BC73BC57C4F9AE02.roa File: B9C6A83A58B611F0BC73BC57C4F9AE02.roa (raw, json) Hash identifier: 77x3d5cY0zAkjP34Y3fOctnLQ0yy18LIy6VFs9LBb6k= Subject key identifier: F5:BB:CA:3D:26:68:70:BD:95:D8:66:4C:1C:11:35:37:E9:6F:03:D3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D95A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B9C6A83A58B611F0BC73BC57C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:58:54 +0000 ROA not before: Fri 04 Jul 2025 09:10:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152298 IP address blocks: 2001:df5:cec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55642 (0xd95a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 4 09:10:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c4ae-2f70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d5:d5:d3:24:02:f3:59:f8:c8:8e:52:b0:7c: 8c:f4:88:af:fc:e7:94:f5:91:48:7e:51:04:ce:95: 12:da:c7:4e:df:5e:65:20:71:5e:78:90:31:43:5b: ac:d6:1f:ad:79:8d:9b:aa:b1:e1:1c:6a:29:6d:1b: 66:14:5a:45:10:ca:95:72:6e:c5:b6:7d:d4:0a:9e: c8:a8:5f:bd:8e:75:4f:3f:c4:af:f0:b9:fc:a8:da: c0:96:bf:ec:a2:b4:fa:32:91:a5:28:0d:a5:61:99: be:17:b3:27:7b:71:2e:bf:49:ef:73:f5:b6:17:db: ab:6d:1b:c7:69:d9:43:65:ee:5b:4b:39:b4:3f:f4: 3e:99:36:69:e0:9b:59:76:55:c4:61:41:32:30:ae: 33:fe:f1:df:e4:59:6c:fa:bd:f9:79:e7:83:a3:9f: 99:17:55:bd:34:93:15:77:dd:28:29:20:29:9e:a5: c5:5a:15:e9:30:40:ec:a0:ed:c5:ab:2f:af:6c:71: 9b:24:5a:20:58:f2:8a:6b:2c:3f:5a:d3:eb:ea:0f: e6:4f:b2:5c:25:89:f4:f6:a1:a3:ba:91:4a:ca:98: 7b:c3:43:b0:b6:8a:c2:ff:a8:58:79:10:c9:44:ca: 01:49:8c:fe:41:1e:79:a3:88:30:ce:78:7b:35:a7: f8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:BB:CA:3D:26:68:70:BD:95:D8:66:4C:1C:11:35:37:E9:6F:03:D3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B9C6A83A58B611F0BC73BC57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:cec0::/48 Signature Algorithm: sha256WithRSAEncryption 0b:4b:f5:97:aa:f8:5c:72:75:4f:17:11:c1:dd:74:7e:31:7e: c7:1c:f7:ea:1f:9c:7c:57:f4:d6:f9:b0:c3:5e:ac:40:79:88: 5b:d7:b4:19:8c:9d:17:aa:63:54:4e:dc:dc:fb:c5:1a:eb:99: ca:00:0a:15:cb:7f:77:00:64:cb:f0:21:60:d5:41:61:04:12: aa:50:9f:fd:8e:d9:2e:41:82:d3:38:8a:02:3b:43:69:e6:6e: 17:f3:32:f6:85:82:2d:5a:a2:46:d2:20:79:57:fe:bb:3f:9d: 0b:cf:77:be:8f:46:90:2d:9f:f9:2d:7a:9a:6a:3f:c8:7f:bb: c2:c6:7c:03:68:b6:7d:ba:e9:2b:1a:75:17:f8:92:67:5f:3b: 2a:ad:ff:08:63:b8:26:59:22:b0:22:7d:63:5c:fe:f5:cb:02: 25:53:69:3b:63:ba:88:8c:d4:2c:d8:23:99:9f:aa:4b:a9:1e: ff:cd:c0:4d:10:7d:62:92:15:38:a6:a9:38:0f:68:76:db:20: 49:de:6d:76:75:87:c4:20:67:87:19:69:bb:7b:b4:e4:73:a4: 10:83:7d:2e:64:94:bd:23:18:26:9a:c7:81:e7:dd:4d:0c:99: 99:92:12:09:18:57:8a:48:34:c0:b6:8d:3a:3d:18:46:a9:86: 52:c4:cf:e7 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDANlaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDcwNDA5MTAyN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM0YWUtMmY3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnV1dMkAvNZ+MiOUrB8jPSIr/znlPWRSH5RBM6VEtrHTt9eZSBxXniQMUNb rNYfrXmNm6qx4RxqKW0bZhRaRRDKlXJuxbZ91AqeyKhfvY51Tz/Er/C5/KjawJa/ 7KK0+jKRpSgNpWGZvhezJ3txLr9J73P1thfbq20bx2nZQ2XuW0s5tD/0Ppk2aeCb WXZVxGFBMjCuM/7x3+RZbPq9+Xnng6OfmRdVvTSTFXfdKCkgKZ6lxVoV6TBA7KDt xasvr2xxmyRaIFjyimssP1rT6+oP5k+yXCWJ9Paho7qRSsqYe8NDsLaKwv+oWHkQ yUTKAUmM/kEeeaOIMM54ezWn+CcCAwEAAaOCAmMwggJfMB0GA1UdDgQWBBT1u8o9 JmhwvZXYZkwcETU36W8D0zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I5QzZBODNB NThCNjExRjBCQzczQkM1N0M0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfXOwDANBgkqhkiG9w0BAQsFAAOCAQEAC0v1l6r4XHJ1TxcR wd10fjF+xxz36h+cfFf01vmww16sQHmIW9e0GYydF6pjVE7c3PvFGuuZygAKFct/ dwBky/AhYNVBYQQSqlCf/Y7ZLkGC0ziKAjtDaeZuF/My9oWCLVqiRtIgeVf+uz+d C893vo9GkC2f+S16mmo/yH+7wsZ8A2i2fbrpKxp1F/iSZ187Kq3/CGO4JlkisCJ9 Y1z+9csCJVNpO2O6iIzULNgjmZ+qS6ke/83ATRB9YpIVOKapOA9odtsgSd5tdnWH xCBnhxlpu3u05HOkEIN9LmSUvSMYJprHgefdTQyZmZISCRhXikg0wLaNOj0YRqmG UsTP5w== -----END CERTIFICATE-----Generated at Mon Mar 2 12:28:40 2026 by rpki-client