$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/28E35E4898F211ED9FB5D80DC4F9AE02.roa File: 28E35E4898F211ED9FB5D80DC4F9AE02.roa (raw, json) Hash identifier: b6hQv7rPPh2NoXSYCy1LQfz1KDKIPOQY1rtTl5hURj0= Subject key identifier: 30:F9:7E:4B:14:5D:F3:53:F5:F0:3B:02:41:0B:FA:CE:BE:EB:BB:89 Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Certificate serial: 2A02 Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/28E35E4898F211ED9FB5D80DC4F9AE02.roa Signing time: Sat 30 May 2026 16:17:55 +0000 ROA not before: Sat 30 May 2026 16:17:55 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 17557 IP address blocks: 2001:dec:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10754 (0x2a02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Validity Not Before: May 30 16:17:55 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1b0db3-f034 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d1:b6:8e:bc:e6:d3:3c:df:c7:64:4d:df:c3: 9d:9a:46:12:de:e7:74:01:62:b9:93:87:d2:ac:1a: ec:58:41:13:11:58:11:c1:d0:34:4f:f6:b9:66:36: 23:b3:0e:d6:b1:32:15:b8:a8:3b:f3:eb:36:82:7e: cd:58:94:c1:0f:96:79:1c:96:f7:1a:a9:7d:3e:39: 03:c3:69:18:95:af:cc:d3:df:c1:e7:38:fb:72:ec: 83:51:df:1d:3f:e7:99:b5:79:63:2b:f8:31:ab:14: 6d:86:f8:93:34:65:23:0b:7c:eb:14:a8:39:da:ec: 7a:b5:8f:0a:c5:1c:d3:b5:34:dc:72:40:74:05:be: ed:66:9d:19:54:22:0d:b6:ad:f8:94:7e:f5:fc:de: 7e:d3:7c:a7:fe:9a:22:db:30:a1:9c:88:cb:b5:33: ee:56:d8:d7:08:cb:04:f0:2b:ff:82:9a:78:a5:c9: 8c:32:ed:21:ea:bf:30:fe:54:32:28:68:1a:eb:ee: af:a4:5e:1e:69:93:54:5c:a5:c6:4f:2b:30:c1:ca: 21:a2:1a:ba:20:88:58:9c:b8:58:cd:a4:dc:9c:43: 6f:e6:90:0b:68:7e:4b:b5:49:e8:22:d1:a2:dc:f4: 13:ce:02:44:ad:38:51:d8:1c:60:61:56:01:23:84: fa:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F9:7E:4B:14:5D:F3:53:F5:F0:3B:02:41:0B:FA:CE:BE:EB:BB:89 X509v3 Authority Key Identifier: keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/28E35E4898F211ED9FB5D80DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:dec:8000::/48 Signature Algorithm: sha256WithRSAEncryption 94:e9:a6:43:cc:69:46:04:1a:01:e3:4d:45:b3:7a:45:f1:94: 0f:9d:c3:f7:cb:33:50:66:7c:ee:12:c0:a4:91:da:8f:d5:37: bf:23:98:e0:a5:7c:65:09:9f:6f:f4:59:15:13:4a:f1:5b:81: 12:93:87:00:5e:e8:bf:c5:3d:76:d6:73:ff:7a:83:15:4e:b5: 80:de:6a:a6:8f:c8:50:e7:6d:6f:47:3e:5a:fa:d0:b3:90:f2: e8:88:e1:42:b7:60:09:d1:78:91:90:a2:a7:8e:df:4e:b5:ab: 9d:01:de:74:5b:0a:f0:69:66:57:eb:d9:f3:35:58:c7:23:52: 7f:03:6b:15:7a:22:a1:14:27:01:19:7a:32:86:4c:50:c6:1d: 11:e4:b6:b3:e0:a5:46:01:9c:76:e0:10:05:76:0a:bd:81:43: f9:c6:30:30:f5:22:f4:92:ae:ae:4a:f2:5b:a5:ab:1f:80:23: ed:a7:79:49:da:dd:20:05:8d:eb:d6:79:0e:3f:1b:04:00:cc: 70:39:e5:d4:0b:a4:e2:d5:59:98:71:83:1d:a9:3d:3f:2b:5a: 9f:f7:0b:a6:bb:9d:6d:ac:45:5d:df:a8:2e:91:87:b0:24:60: e7:22:81:e4:27:41:18:20:a5:f0:16:20:50:22:c7:12:99:ec: 6d:23:5b:0f -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICKgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKDkwMDlFNzQxOTZENDhCMDM5NjRGMUZDNTZDRkU0NDZF QzUwNDhDRjcwHhcNMjYwNTMwMTYxNzU1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFiMGRiMy1mMDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NG2jrzm0zzfx2RN38OdmkYS3ud0AWK5k4fSrBrsWEETEVgRwdA0T/a5ZjYj sw7WsTIVuKg78+s2gn7NWJTBD5Z5HJb3Gql9PjkDw2kYla/M09/B5zj7cuyDUd8d P+eZtXljK/gxqxRthviTNGUjC3zrFKg52ux6tY8KxRzTtTTcckB0Bb7tZp0ZVCIN tq34lH71/N5+03yn/poi2zChnIjLtTPuVtjXCMsE8Cv/gpp4pcmMMu0h6r8w/lQy KGga6+6vpF4eaZNUXKXGTyswwcohohq6IIhYnLhYzaTcnENv5pALaH5LtUnoItGi 3PQTzgJErThR2BxgYVYBI4T6ZwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFDD5fksU XfNT9fA7AkEL+s6+67uJMB8GA1UdIwQYMBaAFJAJ50GW1IsDlk8fxWz+RG7FBIz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni9CQzFEQzFGNkMx NzUxMUU0QTJDN0I3NENDNEY5QUUwMi9rQW5uUVpiVWl3T1dUeF9GYlA1RWJzVUVq UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tBbm5RWmJVaXdPV1R4X0ZiUDVFYnNVRWpQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvQkMxREMxRjZDMTc1MTFFNEEyQzdCNzRDQzRGOUFFMDIvMjhFMzVFNDg5 OEYyMTFFRDlGQjVEODBEQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN7IAAMA0GCSqGSIb3DQEBCwUAA4IBAQCU6aZDzGlGBBoB401F s3pF8ZQPncP3yzNQZnzuEsCkkdqP1Te/I5jgpXxlCZ9v9FkVE0rxW4ESk4cAXui/ xT121nP/eoMVTrWA3mqmj8hQ521vRz5a+tCzkPLoiOFCt2AJ0XiRkKKnjt9Otaud Ad50WwrwaWZX69nzNVjHI1J/A2sVeiKhFCcBGXoyhkxQxh0R5Laz4KVGAZx24BAF dgq9gUP5xjAw9SL0kq6uSvJbpasfgCPtp3lJ2t0gBY3r1nkOPxsEAMxwOeXUC6Ti 1VmYcYMdqT0/K1qf9wumu51trEVd36gukYewJGDnIoHkJ0EYIKXwFiBQIscSmext I1sP -----END CERTIFICATE-----Generated at Sat Jun 6 18:04:12 2026 by rpki-client