$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa File: 189A3E5816C811EFAA6A4727C4F9AE02.roa (raw, json) Hash identifier: c1uo4hhty7/hcgEIS+R8pwIbA2eeOrpWgEFlU0U37HI= Subject key identifier: 61:FA:F1:DC:10:6B:65:D1:82:DC:01:4D:82:30:25:A2:04:E3:8F:BE Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1121 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa Signing time: Fri 22 May 2026 20:24:10 +0000 ROA not before: Fri 22 May 2026 20:24:10 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 132479 IP address blocks: 2406:840:fdd0::/44 maxlen: 48 2406:840:fecf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4385 (0x1121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:24:10 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bb6a-1d2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7f:9a:75:0d:2b:7c:77:99:47:8a:69:44:99: 93:ac:4b:0d:c7:41:8b:9b:09:f3:a3:85:7c:71:43: da:e8:8a:85:1b:0b:ae:29:7d:f2:2f:7e:40:3e:c6: 02:56:b4:fa:39:b6:44:d0:1f:45:80:c7:b7:bb:f4: 27:a7:1b:c2:db:5b:45:87:ca:70:d4:00:02:61:0b: d1:1a:8f:48:b6:f7:66:4d:2a:4f:c8:a5:c1:e7:f8: 81:a3:7a:1d:e5:98:78:82:35:2b:f8:65:02:b5:13: 94:61:00:26:75:29:7a:a3:a4:13:0d:d8:19:4e:2b: 30:00:98:e6:dd:48:3e:e0:11:22:b1:6a:c1:69:35: 95:5c:dd:c5:45:69:de:a2:44:bd:24:ba:c5:97:4f: 0a:73:63:3b:47:a0:67:23:3e:9d:7f:4d:d0:71:48: 57:28:ba:a0:e9:db:ea:68:1e:45:24:4e:ee:75:ca: a1:b3:f2:4e:48:06:4a:5a:cf:87:95:13:d1:e4:ce: ac:97:b6:fe:b7:98:1b:5e:ed:57:c7:d0:a7:2b:61: 81:bb:c5:ad:c5:48:45:fb:d6:0f:b9:9f:1b:ad:e9: e9:4b:79:1c:87:03:df:a0:e8:8a:13:2f:ae:73:35: e3:c2:b3:67:c1:60:46:fc:6d:a9:ee:90:6f:e6:0e: 3e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:FA:F1:DC:10:6B:65:D1:82:DC:01:4D:82:30:25:A2:04:E3:8F:BE X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fdd0::/44 2406:840:fecf::/48 Signature Algorithm: sha256WithRSAEncryption 3a:eb:ae:44:4d:e2:f2:ed:d3:2e:03:22:fd:92:bf:3c:29:e0: 3f:d5:5d:2f:06:d4:45:75:bd:84:89:6c:3c:a8:fe:cd:13:6e: 56:2d:5b:d4:85:39:d1:26:1b:74:cb:10:ab:bc:e2:aa:ff:da: ff:fa:98:c2:11:78:11:93:ac:17:95:cb:0b:16:a9:df:bf:ff: 7e:06:51:ac:19:49:93:81:29:02:51:36:84:18:3c:5d:82:41: c8:bd:a1:11:4c:3f:63:dd:4f:87:ce:b4:69:01:c5:66:13:ca: be:9d:93:21:4f:79:80:12:48:5c:41:a3:45:d3:49:e9:a6:3f: 0a:66:4c:ba:7a:ba:93:ac:00:01:be:a5:1b:43:d8:5c:65:3f: 4e:b2:69:fb:d7:1e:ae:f9:ae:fd:38:80:86:1f:48:e0:30:1a: 94:b1:5a:92:b1:c2:5d:42:83:9a:77:45:ee:b5:88:b8:1d:a1: 0a:c3:df:19:bb:a7:df:17:d8:01:cd:73:5d:52:e9:8c:03:7d: b0:ed:80:78:22:58:b5:76:95:3a:7a:16:c9:68:90:7a:47:04: fc:82:ae:4f:ab:01:d7:d6:fe:50:e5:2f:37:2b:86:8b:1d:44: 15:53:c9:fa:33:91:d7:59:29:5d:a4:99:19:7d:6a:e1:f7:fd: 62:ea:3d:fe -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICESEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNDEwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmI2YS0xZDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0n+adQ0rfHeZR4ppRJmTrEsNx0GLmwnzo4V8cUPa6IqFGwuuKX3yL35APsYC VrT6ObZE0B9FgMe3u/QnpxvC21tFh8pw1AACYQvRGo9ItvdmTSpPyKXB5/iBo3od 5Zh4gjUr+GUCtROUYQAmdSl6o6QTDdgZTiswAJjm3Ug+4BEisWrBaTWVXN3FRWne okS9JLrFl08Kc2M7R6BnIz6df03QcUhXKLqg6dvqaB5FJE7udcqhs/JOSAZKWs+H lRPR5M6sl7b+t5gbXu1Xx9CnK2GBu8WtxUhF+9YPuZ8brenpS3kchwPfoOiKEy+u czXjwrNnwWBG/G2p7pBv5g4+yQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFGH68dwQ a2XRgtwBTYIwJaIE44++MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTg5QTNFNTgx NkM4MTFFRkFBNkE0NzI3QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQP3QAwcAJAYIQP7PMA0GCSqGSIb3DQEBCwUAA4IBAQA6665E TeLy7dMuAyL9kr88KeA/1V0vBtRFdb2EiWw8qP7NE25WLVvUhTnRJht0yxCrvOKq /9r/+pjCEXgRk6wXlcsLFqnfv/9+BlGsGUmTgSkCUTaEGDxdgkHIvaERTD9j3U+H zrRpAcVmE8q+nZMhT3mAEkhcQaNF00nppj8KZky6erqTrAABvqUbQ9hcZT9Osmn7 1x6u+a79OICGH0jgMBqUsVqSscJdQoOad0XutYi4HaEKw98Zu6ffF9gBzXNdUumM A32w7YB4Ili1dpU6ehbJaJB6RwT8gq5PqwHX1v5Q5S83K4aLHUQVU8n6M5HXWSld pJkZfWrh9/1i6j3+ -----END CERTIFICATE-----Generated at Sat Jun 6 08:20:58 2026 by rpki-client