$ rpki-client -vvf rpki.apnic.net/member_repository/A918FA35/5E4034DE98B911F0B9960B20C4F9AE02/EC6B1EDAC3F811F0BE50C87AC4F9AE02.roa File: EC6B1EDAC3F811F0BE50C87AC4F9AE02.roa (raw, json) Hash identifier: o62XZo2Qz1zImJWSvpxTK0mWq5l9UluAleNSitVqKg8= Subject key identifier: D2:4C:5D:F3:18:2E:BD:70:2D:DB:B5:63:A9:75:00:C1:FE:AA:F5:C2 Certificate issuer: /CN=A918FA35/serialNumber=0958D7C7B57567D965E148048152E2B478FC4399 Certificate serial: 54 Authority key identifier: 09:58:D7:C7:B5:75:67:D9:65:E1:48:04:81:52:E2:B4:78:FC:43:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CVjXx7V1Z9ll4UgEgVLitHj8Q5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FA35/5E4034DE98B911F0B9960B20C4F9AE02/EC6B1EDAC3F811F0BE50C87AC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:18:18 +0000 ROA not before: Mon 17 Nov 2025 21:03:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154126 IP address blocks: 2001:df5:f540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FA35/5E4034DE98B911F0B9960B20C4F9AE02/CVjXx7V1Z9ll4UgEgVLitHj8Q5k.crl rsync://rpki.apnic.net/member_repository/A918FA35/5E4034DE98B911F0B9960B20C4F9AE02/CVjXx7V1Z9ll4UgEgVLitHj8Q5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CVjXx7V1Z9ll4UgEgVLitHj8Q5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FA35, serialNumber=0958D7C7B57567D965E148048152E2B478FC4399 Validity Not Before: Nov 17 21:03:54 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a3da2a-e98d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4e:1b:b8:65:8a:7b:5f:12:06:c6:54:de:49: a5:25:56:62:04:b5:2f:08:4a:d1:f3:54:a1:ae:c5: bc:06:ac:d7:32:36:da:d0:38:fd:4c:7d:b4:c5:71: 56:50:4c:f6:0a:c4:48:cc:cb:a5:87:46:3f:94:fc: 29:8d:b8:13:df:64:2c:81:12:a2:58:bf:13:a2:05: df:ec:e6:48:fb:2a:24:f7:48:c1:8a:d8:89:c6:18: d4:f2:9d:0f:6b:12:db:05:f9:38:e1:56:0d:3a:b0: 07:a2:01:f7:da:9b:95:69:5c:7f:e1:d8:87:97:68: 2d:6a:26:fa:09:3e:d7:51:81:a7:ef:98:c8:dd:a6: e0:59:98:cd:ff:5e:21:0b:eb:b8:f4:75:ef:f4:37: 09:b0:6a:bc:88:ad:97:59:00:88:0a:0d:28:d0:fd: bd:20:3d:70:f6:d3:2f:89:de:87:d7:a3:b4:bc:cc: 75:30:2a:19:5d:c8:43:bc:51:31:e0:10:a0:e0:0d: 59:3a:79:27:e2:05:ec:c3:e8:ef:bc:a9:2d:73:16: 16:c4:3e:14:71:1a:8a:a7:ef:13:c1:25:15:ff:14: e1:92:91:0e:82:df:0f:39:a5:e1:c6:e7:25:60:05: 5c:14:0a:11:a9:e3:98:de:09:ea:07:76:89:fc:0c: 17:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4C:5D:F3:18:2E:BD:70:2D:DB:B5:63:A9:75:00:C1:FE:AA:F5:C2 X509v3 Authority Key Identifier: keyid:09:58:D7:C7:B5:75:67:D9:65:E1:48:04:81:52:E2:B4:78:FC:43:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FA35/5E4034DE98B911F0B9960B20C4F9AE02/CVjXx7V1Z9ll4UgEgVLitHj8Q5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CVjXx7V1Z9ll4UgEgVLitHj8Q5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FA35/5E4034DE98B911F0B9960B20C4F9AE02/EC6B1EDAC3F811F0BE50C87AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:f540::/48 Signature Algorithm: sha256WithRSAEncryption 0d:60:79:11:13:47:ee:83:a4:12:92:48:ab:d7:8c:20:13:5c: 2b:d3:58:47:71:10:b2:c1:d7:3a:c0:c7:83:8b:69:d3:9a:33: 10:3e:95:f4:f2:cf:76:27:16:84:05:35:bc:60:47:3e:d1:6f: 58:0e:97:34:9f:f6:16:da:4a:ab:89:28:89:a3:1c:a9:14:28: a8:14:fd:b7:cd:e5:52:18:c4:bf:65:04:00:0c:1d:e6:99:4b: 7c:75:23:e2:16:af:a8:05:f1:89:05:1b:61:17:ab:5a:f5:8b: 7d:69:2a:63:94:87:42:0c:73:d7:27:4a:e6:bd:60:f5:67:42: 4d:bd:d0:5d:e2:65:13:10:9f:6d:e3:1c:56:5e:73:a4:4b:a0: ea:79:50:54:b1:9b:bd:bd:61:76:5e:de:72:51:17:e1:18:97: 64:44:a8:6e:10:a4:63:12:54:a6:7b:fb:ff:66:eb:99:96:07: df:19:02:12:0c:f2:cb:56:81:55:5c:bc:c9:7e:df:c3:56:98: c3:bc:c5:57:2b:4a:b9:10:c6:2f:29:dd:14:51:f2:c7:31:ba: 9c:cc:d4:48:3c:3b:f6:53:da:49:0a:c8:a7:15:26:9c:82:7e: 8d:d1:26:12:5c:9b:94:09:27:03:1f:0a:4d:d2:46:ff:de:e7: eb:d6:a8:12 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RkEzNTExMC8GA1UEBRMoMDk1OEQ3QzdCNTc1NjdEOTY1RTE0ODA0ODE1MkUyQjQ3 OEZDNDM5OTAeFw0yNTExMTcyMTAzNTRaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkYTJhLWU5OGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVThu4ZYp7XxIGxlTeSaUlVmIEtS8IStHzVKGuxbwGrNcyNtrQOP1MfbTFcVZQ TPYKxEjMy6WHRj+U/CmNuBPfZCyBEqJYvxOiBd/s5kj7KiT3SMGK2InGGNTynQ9r EtsF+TjhVg06sAeiAffam5VpXH/h2IeXaC1qJvoJPtdRgafvmMjdpuBZmM3/XiEL 67j0de/0NwmwaryIrZdZAIgKDSjQ/b0gPXD20y+J3ofXo7S8zHUwKhldyEO8UTHg EKDgDVk6eSfiBezD6O+8qS1zFhbEPhRxGoqn7xPBJRX/FOGSkQ6C3w85peHG5yVg BVwUChGp45jeCeoHdon8DBc3AgMBAAGjggJjMIICXzAdBgNVHQ4EFgQU0kxd8xgu vXAt27VjqXUAwf6q9cIwHwYDVR0jBBgwFoAUCVjXx7V1Z9ll4UgEgVLitHj8Q5kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGQTM1LzVFNDAzNERFOThC OTExRjBCOTk2MEIyMEM0RjlBRTAyL0NWalh4N1YxWjlsbDRVZ0VnVkxpdEhqOFE1 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ1ZqWHg3VjFaOWxsNFVnRWdWTGl0SGo4UTVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkEzNS81RTQwMzRERTk4QjkxMUYwQjk5NjBCMjBDNEY5QUUwMi9FQzZCMUVEQUMz RjgxMUYwQkU1MEM4N0FDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ319UAwDQYJKoZIhvcNAQELBQADggEBAA1geRETR+6DpBKSSKvX jCATXCvTWEdxELLB1zrAx4OLadOaMxA+lfTyz3YnFoQFNbxgRz7Rb1gOlzSf9hba SquJKImjHKkUKKgU/bfN5VIYxL9lBAAMHeaZS3x1I+IWr6gF8YkFG2EXq1r1i31p KmOUh0IMc9cnSua9YPVnQk290F3iZRMQn23jHFZec6RLoOp5UFSxm729YXZe3nJR F+EYl2REqG4QpGMSVKZ7+/9m65mWB98ZAhIM8stWgVVcvMl+38NWmMO8xVcrSrkQ xi8p3RRR8scxupzM1Eg8O/ZT2kkKyKcVJpyCfo3RJhJcm5QJJwMfCk3SRv/e5+vW qBI= -----END CERTIFICATE-----Generated at Mon Mar 2 03:52:54 2026 by rpki-client