$ rpki-client -vvf rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/FD18A8AAD97B11EAB138A00FC4F9AE02.roa File: FD18A8AAD97B11EAB138A00FC4F9AE02.roa (raw, json) Hash identifier: Zab7lbu8SmQuXuacA27UiBSUqn7RAju8DjqLK8U+ZyU= Subject key identifier: 09:13:97:DF:3E:6E:A1:8E:58:94:F4:D9:11:7E:31:AB:A5:5A:C7:BC Certificate issuer: /CN=A917647E/serialNumber=FDD2507822183CE80759419D56540606A2486B4B Certificate serial: 08CF Authority key identifier: FD:D2:50:78:22:18:3C:E8:07:59:41:9D:56:54:06:06:A2:48:6B:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/FD18A8AAD97B11EAB138A00FC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:05:33 +0000 ROA not before: Fri 16 May 2025 21:19:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132335 IP address blocks: 123.253.8.0/24 maxlen: 24 123.253.9.0/24 maxlen: 24 123.253.10.0/24 maxlen: 24 2400:ffc0:1::/48 maxlen: 48 2400:ffc0:4::/48 maxlen: 48 2400:ffc0:5::/48 maxlen: 48 2400:ffc0:6::/48 maxlen: 48 2400:ffc0:13c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.crl rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2255 (0x8cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917647E, serialNumber=FDD2507822183CE80759419D56540606A2486B4B Validity Not Before: May 16 21:19:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a447ad-1d44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4d:bd:a4:79:cf:97:30:5b:50:3b:17:d3:23: e9:d4:bb:e0:78:79:31:8a:95:db:c2:23:c3:19:69: 01:5d:13:d3:53:15:56:15:6f:af:16:9e:ee:df:c2: d6:bb:39:41:e4:aa:e9:df:3f:f4:8a:51:07:6c:c0: 52:e3:0f:d3:83:ab:d7:06:74:10:d0:c7:b4:80:69: 31:c1:00:4d:bc:c9:82:91:3c:0d:b6:2a:cb:65:e2: f7:9b:2a:58:b6:39:f0:98:b0:88:32:b5:88:84:04: 26:d5:63:69:f4:d2:74:3b:1b:fc:00:ef:45:69:44: f9:16:52:2c:33:f6:63:c1:00:4a:90:df:4e:3a:ca: 7a:af:b8:fa:dd:a3:c8:3f:82:6e:36:a5:f6:19:38: 17:cf:9c:90:34:26:38:be:47:93:5c:ed:d4:c4:01: 55:29:cc:7b:f2:6b:73:a8:c7:fa:b7:a2:9e:97:54: 40:18:d0:70:2e:e3:d6:47:8b:f8:72:94:49:f8:a4: 18:cf:fd:07:77:83:f9:1a:fc:b6:18:e2:53:a5:84: eb:59:d7:a6:92:82:e1:df:8b:92:61:fe:1b:56:f0: cd:90:2c:61:8c:e6:d3:8e:5d:6d:53:8b:9d:0f:0d: 2a:85:78:82:1b:54:fb:3c:86:5e:96:59:70:81:a4: 8e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:13:97:DF:3E:6E:A1:8E:58:94:F4:D9:11:7E:31:AB:A5:5A:C7:BC X509v3 Authority Key Identifier: keyid:FD:D2:50:78:22:18:3C:E8:07:59:41:9D:56:54:06:06:A2:48:6B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/FD18A8AAD97B11EAB138A00FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.253.8.0-123.253.10.255 IPv6: 2400:ffc0:1::/48 2400:ffc0:4::-2400:ffc0:6:ffff:ffff:ffff:ffff:ffff 2400:ffc0:13c::/48 Signature Algorithm: sha256WithRSAEncryption dc:02:ae:ba:d0:88:e7:04:ed:59:fd:e1:76:79:9a:cd:e5:5f: aa:fc:54:2b:0a:7b:62:2c:47:f7:75:73:16:7d:77:29:48:06: ee:18:88:e3:79:70:00:12:eb:ab:a9:9c:e6:b2:1c:0e:0b:96: 03:0b:b1:5c:6a:d9:31:4e:72:01:26:63:27:aa:2b:a4:2a:8d: f6:51:44:c9:59:77:8e:4e:7c:b1:7c:90:92:7c:96:96:8f:a4: 6b:d5:b6:d5:96:79:68:33:68:0b:bf:30:a1:89:cb:f3:fd:fc: ba:9e:37:b7:ff:17:97:43:54:f8:85:b3:69:d9:7e:73:56:23: 9c:c0:36:e2:0e:bb:3a:b7:cc:4e:a1:ce:d8:b8:50:a2:ca:bc: 22:80:4f:5d:fc:d7:66:40:bc:e1:ef:0d:61:b8:b7:f9:5a:8a: ef:e7:21:fd:48:91:09:53:c4:57:12:24:56:3e:f8:0f:fd:29: 91:b8:d7:49:50:ba:cd:c1:8b:b1:2b:e9:fb:c6:97:a5:45:7f: 88:10:53:c1:bb:33:b2:36:50:fc:e3:db:51:fb:18:8a:1a:ad: b9:87:34:c4:4d:7f:0c:81:dd:14:dc:9c:26:a2:e7:29:17:f0: 15:24:f9:ef:1b:a6:85:c8:2f:46:b4:a9:e6:81:26:19:57:86: f0:38:50:83 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0N0UxMTAvBgNVBAUTKEZERDI1MDc4MjIxODNDRTgwNzU5NDE5RDU2NTQwNjA2 QTI0ODZCNEIwHhcNMjUwNTE2MjExOTE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDdhZC0xZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlU29pHnPlzBbUDsX0yPp1LvgeHkxipXbwiPDGWkBXRPTUxVWFW+vFp7u38LW uzlB5Krp3z/0ilEHbMBS4w/Tg6vXBnQQ0Me0gGkxwQBNvMmCkTwNtirLZeL3mypY tjnwmLCIMrWIhAQm1WNp9NJ0Oxv8AO9FaUT5FlIsM/ZjwQBKkN9OOsp6r7j63aPI P4JuNqX2GTgXz5yQNCY4vkeTXO3UxAFVKcx78mtzqMf6t6Kel1RAGNBwLuPWR4v4 cpRJ+KQYz/0Hd4P5Gvy2GOJTpYTrWdemkoLh34uSYf4bVvDNkCxhjObTjl1tU4ud Dw0qhXiCG1T7PIZelllwgaSOFwIDAQABo4ICljCCApIwHQYDVR0OBBYEFAkTl98+ bqGOWJT02RF+MaulWse8MB8GA1UdIwQYMBaAFP3SUHgiGDzoB1lBnVZUBgaiSGtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjQ3RS8wRDEwQjgwNEQ2 MzExMUVBOUE1QTU4M0JDNEY5QUUwMi9fZEpRZUNJWVBPZ0hXVUdkVmxRR0JxSklh MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19kSlFlQ0lZUE9nSFdVR2RWbFFHQnFKSWEwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzY0N0UvMEQxMEI4MDRENjMxMTFFQTlBNUE1ODNCQzRGOUFFMDIvRkQxOEE4QUFE OTdCMTFFQUIxMzhBMDBGQzRGOUFFMDIucm9hMFUGCCsGAQUFBwEHAQH/BEYwRDAU BAIAATAOMAwDBAN7/QgDBAB7/QowLAQCAAIwJgMHACQA/8AAATASAwcCJAD/wAAE AwcAJAD/wAAGAwcAJAD/wAE8MA0GCSqGSIb3DQEBCwUAA4IBAQDcAq660IjnBO1Z /eF2eZrN5V+q/FQrCntiLEf3dXMWfXcpSAbuGIjjeXAAEuurqZzmshwOC5YDC7Fc atkxTnIBJmMnqiukKo32UUTJWXeOTnyxfJCSfJaWj6Rr1bbVlnloM2gLvzChicvz /fy6nje3/xeXQ1T4hbNp2X5zViOcwDbiDrs6t8xOoc7YuFCiyrwigE9d/NdmQLzh 7w1huLf5Worv5yH9SJEJU8RXEiRWPvgP/SmRuNdJULrNwYuxK+n7xpelRX+IEFPB uzOyNlD849tR+xiKGq25hzTETX8Mgd0U3JwmoucpF/AVJPnvG6aFyC9GtKnmgSYZ V4bwOFCD -----END CERTIFICATE-----Generated at Thu Mar 26 07:52:33 2026 by rpki-client