$ rpki-client -vvf rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/FD18A8AAD97B11EAB138A00FC4F9AE02.roa File: FD18A8AAD97B11EAB138A00FC4F9AE02.roa (raw, json) Hash identifier: 0i7gvsCYs0GUnhdxMc1iWg3MY/+lmJYEKdPUtNo3uw8= Subject key identifier: 78:7F:86:EA:C4:EE:D3:B7:47:B7:DB:F6:F6:5E:A5:6B:FC:01:6B:82 Certificate issuer: /CN=A917647E/serialNumber=FDD2507822183CE80759419D56540606A2486B4B Certificate serial: 08FA Authority key identifier: FD:D2:50:78:22:18:3C:E8:07:59:41:9D:56:54:06:06:A2:48:6B:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/FD18A8AAD97B11EAB138A00FC4F9AE02.roa Signing time: Wed 06 May 2026 20:25:26 +0000 ROA not before: Wed 06 May 2026 20:25:26 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 132335 IP address blocks: 123.253.8.0/24 maxlen: 24 123.253.9.0/24 maxlen: 24 123.253.10.0/24 maxlen: 24 2400:ffc0:1::/48 maxlen: 48 2400:ffc0:4::/48 maxlen: 48 2400:ffc0:5::/48 maxlen: 48 2400:ffc0:6::/48 maxlen: 48 2400:ffc0:13c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.crl rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2298 (0x8fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917647E, serialNumber=FDD2507822183CE80759419D56540606A2486B4B Validity Not Before: May 6 20:25:26 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69fba3b6-b57a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:15:b9:1f:aa:49:63:50:2b:1b:15:8a:7b:7b: 70:f0:d3:74:22:38:66:aa:8e:62:3d:7c:d5:68:fb: 53:ee:4a:3c:56:d8:03:a9:fe:07:84:55:5a:84:7e: 89:31:5d:5e:9a:fe:42:47:4e:42:43:2d:a3:f9:32: e9:84:c6:b9:f6:8a:1a:fa:eb:f3:39:b0:78:78:ad: 62:d0:3e:99:54:81:b7:0c:ed:32:d1:ad:eb:99:cb: 07:65:36:c0:dc:e5:b5:79:80:0c:91:89:b9:35:66: 78:52:63:09:c3:f8:b6:5f:cd:84:9b:15:61:91:e6: 17:65:2e:df:5e:66:6d:be:d9:97:c7:a6:c4:cd:ec: b6:fe:6c:4a:3c:cf:13:44:03:a4:a9:df:ac:90:bd: 5d:60:d5:04:af:04:fd:d7:60:7d:85:11:d9:40:8d: c7:c2:06:bd:dd:dc:43:42:4c:52:02:67:30:f4:65: 03:3e:d9:fc:48:1f:be:c0:78:75:42:c7:e5:82:51: 04:c0:ef:fd:d0:9f:4e:4a:b1:08:7b:ed:b7:2c:cb: de:78:8d:e6:f1:95:7c:87:11:a9:78:28:9a:81:f2: 55:6f:89:04:e4:25:24:36:06:06:b9:bd:69:33:df: 41:44:2a:2d:bd:68:d7:50:6e:c6:3f:a8:e1:c9:13: df:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7F:86:EA:C4:EE:D3:B7:47:B7:DB:F6:F6:5E:A5:6B:FC:01:6B:82 X509v3 Authority Key Identifier: keyid:FD:D2:50:78:22:18:3C:E8:07:59:41:9D:56:54:06:06:A2:48:6B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/FD18A8AAD97B11EAB138A00FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.253.8.0-123.253.10.255 IPv6: 2400:ffc0:1::/48 2400:ffc0:4::-2400:ffc0:6:ffff:ffff:ffff:ffff:ffff 2400:ffc0:13c::/48 Signature Algorithm: sha256WithRSAEncryption 28:01:5e:c1:95:ac:3f:43:19:2e:ec:fc:4a:7c:3a:67:1b:55: 74:f5:fa:fb:2f:a2:94:92:6d:f9:a4:47:48:f4:29:aa:8a:d4: df:5b:41:c0:9c:de:68:4d:27:81:f2:20:43:3e:d3:a8:09:5d: 3c:ca:f7:0e:dd:f9:d7:a7:93:94:13:b7:ac:f7:35:96:ae:15: 01:98:9c:b2:c6:ba:9b:bb:f9:ce:59:0a:7f:a4:41:04:0d:fe: f1:a3:8d:ca:40:0a:27:87:37:dd:d6:04:d7:01:72:92:e6:59: 55:2f:ad:b6:64:0d:df:a5:82:ad:b0:b6:f7:76:25:41:10:1b: fb:8f:85:58:5f:61:8e:48:e6:a9:a5:a7:f2:d4:b2:33:96:e1: e2:ee:62:4b:ee:96:7a:cd:f7:d7:8a:d9:23:06:8c:1c:ad:86: 87:31:58:ec:50:7f:e7:40:76:bb:41:51:99:21:5f:83:29:11: 6e:41:6d:fb:5a:f8:89:bd:4f:a1:94:c8:ab:50:24:5e:a7:95: 1e:37:02:3a:21:b4:9f:5c:f8:dc:af:97:cf:81:54:50:f5:41: d7:19:81:0d:9a:a8:df:d8:9d:1b:1f:e3:49:a1:ba:19:fd:ba: 6e:bd:be:89:e7:4e:94:10:8b:ff:1d:bc:89:36:57:8a:88:79: bf:55:9c:e4 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0N0UxMTAvBgNVBAUTKEZERDI1MDc4MjIxODNDRTgwNzU5NDE5RDU2NTQwNjA2 QTI0ODZCNEIwHhcNMjYwNTA2MjAyNTI2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZiYTNiNi1iNTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxW5H6pJY1ArGxWKe3tw8NN0Ijhmqo5iPXzVaPtT7ko8VtgDqf4HhFVahH6J MV1emv5CR05CQy2j+TLphMa59ooa+uvzObB4eK1i0D6ZVIG3DO0y0a3rmcsHZTbA 3OW1eYAMkYm5NWZ4UmMJw/i2X82EmxVhkeYXZS7fXmZtvtmXx6bEzey2/mxKPM8T RAOkqd+skL1dYNUErwT912B9hRHZQI3Hwga93dxDQkxSAmcw9GUDPtn8SB++wHh1 QsflglEEwO/90J9OSrEIe+23LMveeI3m8ZV8hxGpeCiagfJVb4kE5CUkNgYGub1p M99BRCotvWjXUG7GP6jhyRPfVQIDAQABo4ICljCCApIwHQYDVR0OBBYEFHh/hurE 7tO3R7fb9vZepWv8AWuCMB8GA1UdIwQYMBaAFP3SUHgiGDzoB1lBnVZUBgaiSGtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjQ3RS8wRDEwQjgwNEQ2 MzExMUVBOUE1QTU4M0JDNEY5QUUwMi9fZEpRZUNJWVBPZ0hXVUdkVmxRR0JxSklh MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19kSlFlQ0lZUE9nSFdVR2RWbFFHQnFKSWEwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzY0N0UvMEQxMEI4MDRENjMxMTFFQTlBNUE1ODNCQzRGOUFFMDIvRkQxOEE4QUFE OTdCMTFFQUIxMzhBMDBGQzRGOUFFMDIucm9hMFUGCCsGAQUFBwEHAQH/BEYwRDAU BAIAATAOMAwDBAN7/QgDBAB7/QowLAQCAAIwJgMHACQA/8AAATASAwcCJAD/wAAE AwcAJAD/wAAGAwcAJAD/wAE8MA0GCSqGSIb3DQEBCwUAA4IBAQAoAV7Blaw/Qxku 7PxKfDpnG1V09fr7L6KUkm35pEdI9CmqitTfW0HAnN5oTSeB8iBDPtOoCV08yvcO 3fnXp5OUE7es9zWWrhUBmJyyxrqbu/nOWQp/pEEEDf7xo43KQAonhzfd1gTXAXKS 5llVL622ZA3fpYKtsLb3diVBEBv7j4VYX2GOSOappafy1LIzluHi7mJL7pZ6zffX itkjBowcrYaHMVjsUH/nQHa7QVGZIV+DKRFuQW37WviJvU+hlMirUCRep5UeNwI6 IbSfXPjcr5fPgVRQ9UHXGYENmqjf2J0bH+NJoboZ/bpuvb6J506UEIv/HbyJNleK iHm/VZzk -----END CERTIFICATE-----Generated at Wed May 13 05:46:26 2026 by rpki-client