$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FF8BE554265911F0B42B8E27C4F9AE02.roa File: FF8BE554265911F0B42B8E27C4F9AE02.roa (raw, json) Hash identifier: IpfvQ75/2OYucN8Qd5TkxeajK3iIfufwxGE8w66FLQ0= Subject key identifier: 85:31:A3:65:D2:31:0F:12:D5:9D:7A:D4:DD:04:C1:99:34:A0:69:9C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D50E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FF8BE554265911F0B42B8E27C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:35:44 +0000 ROA not before: Thu 08 May 2025 16:14:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140129 IP address blocks: 2001:df7:3e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54542 (0xd50e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:14:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bf40-0a16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:62:08:d6:83:28:f1:f4:59:4e:59:fe:5f:8f: 93:4e:d5:d0:b9:d4:24:e4:75:94:ba:f9:c2:58:96: 92:82:a9:6c:3c:95:08:54:c8:0b:5a:3d:5e:c9:23: 6f:71:2b:5e:91:62:88:05:16:84:36:12:fe:09:10: 7a:41:cd:ba:49:7b:b5:e7:16:94:4c:c7:e7:84:f7: 8c:54:6f:8d:e4:30:1f:eb:07:b1:2d:01:b7:4b:a3: 2c:78:57:61:4e:be:e3:2a:8b:98:ef:23:4b:51:97: ac:97:ce:78:79:70:c2:c1:53:56:41:45:a0:f1:21: 41:40:6c:25:62:fa:75:dd:7e:ea:5d:8c:a8:63:9a: bc:e1:28:88:78:76:d7:34:f8:6f:4c:62:08:51:7f: a1:23:a1:88:a6:2a:06:aa:dc:90:ba:03:36:2d:4d: c0:80:13:86:fc:79:a2:1c:be:f6:05:11:10:64:40: ee:23:5f:fd:20:d0:0c:ee:46:2e:3f:5a:89:e1:57: be:03:43:e3:7b:2f:9d:d7:ae:ff:50:11:f2:ec:6a: dd:5c:5a:0b:5f:73:ea:6b:92:27:37:b5:3e:cd:5a: cc:36:67:4a:bf:91:97:86:87:37:fe:77:f4:4c:be: 8d:21:e4:fe:7f:c7:fb:08:28:49:76:00:57:2e:eb: 7a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:31:A3:65:D2:31:0F:12:D5:9D:7A:D4:DD:04:C1:99:34:A0:69:9C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FF8BE554265911F0B42B8E27C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df7:3e80::/48 Signature Algorithm: sha256WithRSAEncryption 2b:f2:d7:ac:a3:8f:d7:37:2c:e8:8d:0b:30:32:08:79:29:23: 8f:c8:a7:25:f7:1c:d4:85:1d:0f:60:e0:a2:f0:4d:1d:6a:54: 93:bb:f8:d6:4a:77:9d:c8:dd:1a:66:43:d0:67:d2:12:ca:25: 43:2e:98:d3:a9:e1:78:e1:45:16:bb:8b:46:9c:1d:f4:ba:71: e9:11:f3:1d:66:b9:40:31:b0:a9:01:bc:84:c0:d5:ed:66:c2: b7:30:f7:d2:9d:a6:e5:87:08:c2:3b:be:a8:c1:d4:a1:8a:1e: c0:cf:31:f5:ab:ff:e3:14:02:d9:13:9c:19:2e:99:9e:32:f6: 03:ce:bd:21:72:6c:19:44:6d:fa:35:04:49:b9:0a:e7:5a:5f: 49:f1:19:78:33:44:71:0c:be:17:d3:6c:f8:01:12:9d:2c:a0: da:2f:5c:cf:b8:7a:70:07:c8:cc:8b:bc:18:54:35:50:cf:53: 9b:a5:94:a4:ae:08:45:59:e3:9c:a6:38:7c:07:38:e1:e8:77: 4f:6d:6b:98:2f:1a:e5:63:1b:a0:89:bf:0e:d5:b6:7a:29:c8: 32:6d:9b:17:9c:34:53:c2:9c:e0:e2:4f:44:6b:50:47:84:a3: 76:01:2a:02:eb:29:6f:33:74:c4:11:e1:9b:04:2c:b6:a5:10: 5c:b6:a0:96 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDANUOMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTQxMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJmNDAtMGExNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN5iCNaDKPH0WU5Z/l+Pk07V0LnUJOR1lLr5wliWkoKpbDyVCFTIC1o9Xskj b3ErXpFiiAUWhDYS/gkQekHNukl7tecWlEzH54T3jFRvjeQwH+sHsS0Bt0ujLHhX YU6+4yqLmO8jS1GXrJfOeHlwwsFTVkFFoPEhQUBsJWL6dd1+6l2MqGOavOEoiHh2 1zT4b0xiCFF/oSOhiKYqBqrckLoDNi1NwIAThvx5ohy+9gUREGRA7iNf/SDQDO5G Lj9aieFXvgND43svndeu/1AR8uxq3VxaC19z6muSJze1Ps1azDZnSr+Rl4aHN/53 9Ey+jSHk/n/H+wgoSXYAVy7rescCAwEAAaOCAmMwggJfMB0GA1UdDgQWBBSFMaNl 0jEPEtWdetTdBMGZNKBpnDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZGOEJFNTU0 MjY1OTExRjBCNDJCOEUyN0M0RjlBRTAyLnJvYTAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfc+gDANBgkqhkiG9w0BAQsFAAOCAQEAK/LXrKOP1zcs6I0L MDIIeSkjj8inJfcc1IUdD2DgovBNHWpUk7v41kp3ncjdGmZD0GfSEsolQy6Y06nh eOFFFruLRpwd9Lpx6RHzHWa5QDGwqQG8hMDV7WbCtzD30p2m5YcIwju+qMHUoYoe wM8x9av/4xQC2ROcGS6ZnjL2A869IXJsGURt+jUESbkK51pfSfEZeDNEcQy+F9Ns +AESnSyg2i9cz7h6cAfIzIu8GFQ1UM9Tm6WUpK4IRVnjnKY4fAc44eh3T21rmC8a 5WMboIm/DtW2einIMm2bF5w0U8Kc4OJPRGtQR4SjdgEqAuspbzN0xBHhmwQstqUQ XLaglg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:23:17 2026 by rpki-client