$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa File: 1CF2F758E04711EAAA35044CC4F9AE02.roa (raw, json) Hash identifier: MZriRnEuU8XXVgwC5s0MqCC2iy+XQFVUJ16SGyqOiT0= Subject key identifier: 57:E7:65:52:83:EF:E2:34:7A:AD:F8:54:63:E5:9C:A3:7B:84:64:B5 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 112B Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa Signing time: Fri 22 May 2026 20:24:28 +0000 ROA not before: Fri 22 May 2026 20:24:28 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 137835 IP address blocks: 2406:840:f440::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4395 (0x112b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:24:28 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bb7b-02dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3f:04:ce:e2:3f:be:50:9a:00:f2:0a:c7:cc: d4:d2:74:3b:b6:0b:c9:0d:5f:aa:9c:62:0b:b8:90: 00:c4:23:ed:59:53:07:ba:b3:3e:12:39:78:6a:6a: 9d:30:9c:fc:00:74:73:73:70:74:9f:17:56:54:31: 1b:74:e6:c6:4b:f4:84:f4:4b:58:72:c2:b0:e5:a3: 79:ab:08:e6:b6:6e:43:6c:78:b0:74:19:17:f2:50: bc:70:71:57:57:9e:56:33:5d:f1:32:31:e0:4c:09: 0e:f7:3d:6e:34:b4:94:b0:ca:6c:93:cb:b1:cf:24: d3:1e:41:a7:56:59:92:82:51:aa:74:1c:7f:31:cd: 36:12:cb:15:90:4c:26:04:77:b6:35:c5:5c:89:c9: 5d:1b:c0:11:3e:aa:6e:ce:80:f8:ae:df:8c:03:12: b7:90:a7:6c:df:8a:5b:97:60:35:dc:33:1e:96:15: d9:b9:ba:e2:a9:9f:27:99:ba:4d:15:26:3b:cd:bc: 19:33:74:74:2b:4e:31:ce:2f:ff:d2:91:13:4e:b9: c4:99:da:b0:2c:11:7b:6a:d2:49:af:f0:e2:95:9f: af:c2:49:55:18:00:f1:ca:42:a7:58:22:de:2d:48: fe:63:b3:14:65:33:f7:51:eb:18:61:e6:b6:50:be: 40:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E7:65:52:83:EF:E2:34:7A:AD:F8:54:63:E5:9C:A3:7B:84:64:B5 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:f440::/44 Signature Algorithm: sha256WithRSAEncryption a9:e2:da:cc:cc:6f:5c:d6:4a:4e:db:4b:cd:47:26:03:5d:77: 00:96:cf:f9:33:8d:a3:47:79:6d:25:25:d2:65:2a:c0:23:a8: a5:eb:42:ff:ba:26:25:dd:2c:5f:dc:90:32:fe:42:fc:c1:20: 43:c2:b2:9c:eb:30:9b:25:ed:17:b7:2d:cc:10:d1:bd:f3:25: c3:dc:7c:8b:4e:c5:39:c6:cf:dd:b3:02:04:65:8a:eb:c8:73: a0:85:7a:5b:8c:4e:ff:dc:3b:a4:1f:54:50:98:c4:34:05:57: b7:1b:a7:92:f9:bb:6a:9a:a4:97:4c:3e:d7:4a:be:0f:a0:6c: 2c:24:2d:db:b3:03:1b:c6:28:ea:af:9b:12:6c:eb:eb:97:af: d2:c7:3e:c0:a4:1d:9c:22:30:e3:f4:11:27:0c:0a:5c:5f:40: 0f:80:1f:93:bd:e3:e0:73:20:0f:42:6d:ed:00:e9:15:4e:9b: 98:00:79:9e:76:49:27:4b:a9:1c:8b:9d:ee:45:d6:4c:b5:cc: a7:2a:95:38:79:70:e6:2f:35:2d:4d:06:af:1c:32:07:4b:8c: 86:33:01:ef:c4:c9:cd:e2:ee:6e:69:7c:5c:ee:c9:de:58:2b: 27:1a:bf:d0:38:80:a4:cb:09:56:94:28:74:1b:31:73:67:e7: 28:50:c2:f3 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICESswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNDI4WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmI3Yi0wMmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzz8EzuI/vlCaAPIKx8zU0nQ7tgvJDV+qnGILuJAAxCPtWVMHurM+Ejl4amqd MJz8AHRzc3B0nxdWVDEbdObGS/SE9EtYcsKw5aN5qwjmtm5DbHiwdBkX8lC8cHFX V55WM13xMjHgTAkO9z1uNLSUsMpsk8uxzyTTHkGnVlmSglGqdBx/Mc02EssVkEwm BHe2NcVcicldG8ARPqpuzoD4rt+MAxK3kKds34pbl2A13DMelhXZubriqZ8nmbpN FSY7zbwZM3R0K04xzi//0pETTrnEmdqwLBF7atJJr/DilZ+vwklVGADxykKnWCLe LUj+Y7MUZTP3UesYYea2UL5AZwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFFfnZVKD 7+I0eq34VGPlnKN7hGS1MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUNGMkY3NThF MDQ3MTFFQUFBMzUwNDRDQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQPRAMA0GCSqGSIb3DQEBCwUAA4IBAQCp4trMzG9c1kpO20vN RyYDXXcAls/5M42jR3ltJSXSZSrAI6il60L/uiYl3Sxf3JAy/kL8wSBDwrKc6zCb Je0Xty3MENG98yXD3HyLTsU5xs/dswIEZYrryHOghXpbjE7/3DukH1RQmMQ0BVe3 G6eS+btqmqSXTD7XSr4PoGwsJC3bswMbxijqr5sSbOvrl6/Sxz7ApB2cIjDj9BEn DApcX0APgB+TvePgcyAPQm3tAOkVTpuYAHmedkknS6kci53uRdZMtcynKpU4eXDm LzUtTQavHDIHS4yGMwHvxMnN4u5uaXxc7sneWCsnGr/QOICkywlWlCh0GzFzZ+co UMLz -----END CERTIFICATE-----Generated at Sat Jun 6 08:19:22 2026 by rpki-client