$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa File: 2689AA5C860911EAA740B02DC4F9AE02.roa (raw, json) Hash identifier: za8ER4+91FkleJLm7LqauZX8xDy5QO/G8Ude2/wvgvI= Subject key identifier: E9:DA:CC:3B:FF:71:6E:CF:F1:0E:BE:EA:DC:BD:A6:39:90:E2:F7:9D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1189 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa Signing time: Fri 22 May 2026 20:27:31 +0000 ROA not before: Fri 22 May 2026 20:27:31 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 209218 IP address blocks: 2406:840:f660::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4489 (0x1189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:27:31 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bc33-144e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7f:2b:cd:d1:e9:1c:a1:98:b6:25:cd:53:3e: b0:3e:8a:9c:9e:ae:8c:5d:54:08:0b:dd:46:43:64: 41:85:c0:65:af:eb:d6:8b:7a:06:12:d3:18:8d:7c: ae:3b:71:87:58:6d:e4:88:5e:81:d4:28:60:4e:4b: 40:61:bf:f9:1c:d6:f9:71:67:5a:65:56:96:f1:9b: ad:54:68:bf:77:af:6f:d9:3c:82:cd:01:ec:4a:fa: 12:61:90:64:dc:f8:4e:c1:1d:12:e5:6d:40:c7:26: c2:a3:eb:fc:cf:87:4b:85:3a:a8:e4:01:c2:e8:e0: dc:d2:60:d3:a1:63:28:a0:a9:a6:22:47:32:2d:c7: cc:fe:d0:28:df:c1:a8:51:fd:56:22:0c:44:ce:8b: c8:1b:bd:ff:e2:90:d8:c3:a1:fc:57:bf:08:b3:45: 15:18:d3:c0:73:7b:53:cf:a1:74:70:65:dc:73:93: bf:91:a4:45:a5:0f:e5:8b:87:be:48:39:65:0b:0c: b9:ec:9a:b6:fd:1a:3b:f1:37:49:6d:93:11:e8:61: 97:80:a5:a8:2c:db:ad:53:ca:78:01:94:aa:8d:bf: 6c:cb:6f:3e:82:a2:0e:64:12:f6:60:91:cd:38:26: a2:7d:fe:8d:8d:b4:eb:28:f9:74:c1:ad:8e:5d:41: a9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:DA:CC:3B:FF:71:6E:CF:F1:0E:BE:EA:DC:BD:A6:39:90:E2:F7:9D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:f660::/44 Signature Algorithm: sha256WithRSAEncryption 40:41:7f:dc:8f:20:28:2f:7f:91:b8:f4:f9:be:a4:f9:59:eb: 0c:68:c9:96:25:86:59:26:94:ec:d1:45:ee:8b:75:32:14:a9: 2e:37:ef:d3:83:65:0a:a7:a8:76:fb:a3:a7:cd:4f:fb:ae:d3: 7c:44:1b:6c:2f:c0:ad:b9:06:9a:e0:ca:ba:5c:4c:e0:53:3f: 86:a5:69:3c:4d:8d:f5:5d:a0:46:df:5a:ed:15:ca:50:4b:4e: 85:01:2e:d6:80:a1:f3:3e:ba:bd:a0:d4:92:bc:dc:63:09:3d: 91:dd:91:17:0b:50:f0:68:15:fa:ff:41:da:72:7f:73:7a:84: 3b:f2:19:3f:0d:a6:6d:2a:0b:59:4b:ba:bd:e7:4c:5d:03:7a: d4:14:ea:9c:6e:25:bf:95:59:3a:cd:73:3f:27:44:f2:ee:87: 86:2d:68:bd:23:b1:3f:0e:1f:e0:1b:a5:f5:9b:2b:aa:1f:8b: bc:69:d1:5e:d7:4c:7c:d1:ce:c6:79:eb:03:dc:f4:13:10:d2: 58:13:d4:8d:55:d8:28:9b:14:7b:4b:c9:35:10:dc:10:48:6b: bc:95:16:90:a1:ba:d5:18:d4:92:4a:1c:27:57:77:01:77:36: 9f:e0:69:fa:cb:05:25:00:e6:98:97:d2:82:f0:6e:57:6c:c1: 74:83:e9:47 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNzMxWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmMzMy0xNDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX8rzdHpHKGYtiXNUz6wPoqcnq6MXVQIC91GQ2RBhcBlr+vWi3oGEtMYjXyu O3GHWG3kiF6B1ChgTktAYb/5HNb5cWdaZVaW8ZutVGi/d69v2TyCzQHsSvoSYZBk 3PhOwR0S5W1AxybCo+v8z4dLhTqo5AHC6ODc0mDToWMooKmmIkcyLcfM/tAo38Go Uf1WIgxEzovIG73/4pDYw6H8V78Is0UVGNPAc3tTz6F0cGXcc5O/kaRFpQ/li4e+ SDllCwy57Jq2/Ro78TdJbZMR6GGXgKWoLNutU8p4AZSqjb9sy28+gqIOZBL2YJHN OCaiff6NjbTrKPl0wa2OXUGp0QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFOnazDv/ cW7P8Q6+6ty9pjmQ4vedMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjY4OUFBNUM4 NjA5MTFFQUE3NDBCMDJEQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQPZgMA0GCSqGSIb3DQEBCwUAA4IBAQBAQX/cjyAoL3+RuPT5 vqT5WesMaMmWJYZZJpTs0UXui3UyFKkuN+/Tg2UKp6h2+6OnzU/7rtN8RBtsL8Ct uQaa4Mq6XEzgUz+GpWk8TY31XaBG31rtFcpQS06FAS7WgKHzPrq9oNSSvNxjCT2R 3ZEXC1DwaBX6/0Hacn9zeoQ78hk/DaZtKgtZS7q950xdA3rUFOqcbiW/lVk6zXM/ J0Ty7oeGLWi9I7E/Dh/gG6X1myuqH4u8adFe10x80c7GeesD3PQTENJYE9SNVdgo mxR7S8k1ENwQSGu8lRaQobrVGNSSShwnV3cBdzaf4Gn6ywUlAOaYl9KC8G5XbMF0 g+lH -----END CERTIFICATE-----Generated at Sat Jun 6 08:20:39 2026 by rpki-client