$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/13EE03663A1411EF901CC312C4F9AE02.roa File: 13EE03663A1411EF901CC312C4F9AE02.roa (raw, json) Hash identifier: Ye+ZbUFQD3jKCmvyUbLYj7FLbksH8mb3o2TF5TdOf0Q= Subject key identifier: CA:71:FB:79:16:A6:F2:98:65:29:C3:E7:81:B5:E0:68:89:57:6D:E2 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1168 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/13EE03663A1411EF901CC312C4F9AE02.roa Signing time: Fri 22 May 2026 20:26:21 +0000 ROA not before: Fri 22 May 2026 20:26:21 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 153057 IP address blocks: 2406:840:fd40::/44 maxlen: 48 2406:840:fe97::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4456 (0x1168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:26:21 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbed-f7af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bf:9b:7e:3d:88:4c:4b:ed:d8:46:84:40:aa: 4a:3d:92:05:6c:3a:7e:ff:ea:33:0b:3a:8b:79:19: 41:79:24:d7:cc:6e:44:7c:3c:a3:62:96:0e:29:5e: b0:ce:5b:8d:94:18:85:7b:0f:50:69:8a:06:68:b1: b6:0a:d1:25:e5:ab:4d:15:bf:ad:68:af:c8:2e:ec: ce:2a:f2:1c:25:ee:38:92:5b:4e:6d:1f:97:2d:cd: 58:26:25:18:84:8b:f5:87:05:7d:60:a3:25:4d:55: 74:7b:9a:4e:7a:97:fb:20:0c:a2:10:e7:8e:a3:d7: 7e:66:e5:e9:31:40:fd:52:fd:06:8f:be:0f:af:27: ff:d4:4e:1f:ac:32:cf:ae:e7:93:2a:91:94:5e:93: ab:41:5b:7d:78:db:57:10:da:5c:c6:1b:e0:5a:93: a1:0e:b3:62:f9:e7:65:74:9e:74:2a:a5:36:21:7f: a7:2f:59:79:99:16:98:2a:c0:fb:61:c2:e0:e6:89: 48:d2:dd:fe:fe:8e:43:a9:fa:66:e1:1a:b0:d0:12: 42:1c:83:c6:af:bc:14:38:25:f8:9d:3f:18:3a:76: 6e:f2:d2:a3:d7:95:82:14:a4:62:40:8f:f8:09:21: cd:5f:88:ce:42:68:f4:a8:a8:8b:41:4a:17:92:d5: ca:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:71:FB:79:16:A6:F2:98:65:29:C3:E7:81:B5:E0:68:89:57:6D:E2 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/13EE03663A1411EF901CC312C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fd40::/44 2406:840:fe97::/48 Signature Algorithm: sha256WithRSAEncryption 30:3a:8c:22:7f:53:e1:8f:c0:14:64:7c:e7:15:e0:04:63:f8: 77:84:f3:8c:b5:64:09:4e:2a:5a:e4:cc:24:3b:8c:ec:13:92: 67:82:35:dc:07:db:77:c2:79:9f:a6:c0:22:56:8a:f4:3f:99: 21:90:15:a7:9c:4c:b7:e0:65:89:d0:22:08:0c:9c:7a:b0:74: 9d:3d:d9:bc:9f:fe:ca:a6:64:fb:c4:6d:aa:65:27:35:26:9f: 87:f2:d6:d8:86:a6:63:ba:62:7c:e3:68:02:69:d9:2c:08:a4: d1:de:9b:63:ce:f1:80:fd:ba:77:e0:b1:37:1d:fd:77:86:27: 9b:57:d1:58:0b:a2:ed:8f:55:77:ad:46:f1:77:16:19:61:67: df:9b:b7:ea:6d:23:3c:f6:ef:5e:56:a4:be:4b:8b:49:d0:b3: 3a:a3:3b:ca:94:97:08:31:70:e1:0e:fc:e7:f1:ad:65:80:22: 50:6f:b5:ea:7e:24:80:8f:b1:62:95:c5:e5:53:65:34:41:fa: f0:c8:19:19:85:a6:3b:79:da:42:4e:e0:6b:6d:49:9c:2f:b0: e0:ee:fd:42:92:d9:97:e7:2a:6a:7d:00:4a:9b:6e:48:aa:07: c6:a6:2b:35:7e:f8:ab:2b:dc:2e:e9:dc:6d:5d:52:a6:6e:8e: 96:fc:7e:6d -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNjIxWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJlZC1mN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtb+bfj2ITEvt2EaEQKpKPZIFbDp+/+ozCzqLeRlBeSTXzG5EfDyjYpYOKV6w zluNlBiFew9QaYoGaLG2CtEl5atNFb+taK/ILuzOKvIcJe44kltObR+XLc1YJiUY hIv1hwV9YKMlTVV0e5pOepf7IAyiEOeOo9d+ZuXpMUD9Uv0Gj74Pryf/1E4frDLP rueTKpGUXpOrQVt9eNtXENpcxhvgWpOhDrNi+edldJ50KqU2IX+nL1l5mRaYKsD7 YcLg5olI0t3+/o5Dqfpm4Rqw0BJCHIPGr7wUOCX4nT8YOnZu8tKj15WCFKRiQI/4 CSHNX4jOQmj0qKiLQUoXktXK7QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFMpx+3kW pvKYZSnD54G14GiJV23iMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTNFRTAzNjYz QTE0MTFFRjkwMUNDMzEyQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQP1AAwcAJAYIQP6XMA0GCSqGSIb3DQEBCwUAA4IBAQAwOowi f1Phj8AUZHznFeAEY/h3hPOMtWQJTipa5MwkO4zsE5JngjXcB9t3wnmfpsAiVor0 P5khkBWnnEy34GWJ0CIIDJx6sHSdPdm8n/7KpmT7xG2qZSc1Jp+H8tbYhqZjumJ8 42gCadksCKTR3ptjzvGA/bp34LE3Hf13hiebV9FYC6Ltj1V3rUbxdxYZYWffm7fq bSM89u9eVqS+S4tJ0LM6ozvKlJcIMXDhDvzn8a1lgCJQb7XqfiSAj7FilcXlU2U0 QfrwyBkZhaY7edpCTuBrbUmcL7Dg7v1CktmX5ypqfQBKm25IqgfGpis1fvirK9wu 6dxtXVKmbo6W/H5t -----END CERTIFICATE-----Generated at Sat Jun 6 12:11:38 2026 by rpki-client