$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa File: 2689AA5C860911EAA740B02DC4F9AE02.roa (raw, json) Hash identifier: PVN2z1ueIjNIyhD9mv9E3rgylu8r8zhaNCTymVs8wMc= Subject key identifier: 16:C8:EB:01:39:B6:48:6B:91:B1:CB:62:15:6B:22:F8:71:E0:4F:3B Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1082 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:48 +0000 ROA not before: Thu 22 May 2025 20:08:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 209218 IP address blocks: 2406:840:f660::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4226 (0x1082) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493e8-3f04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bd:27:ad:b4:25:59:a0:49:42:96:12:a5:64: 7f:e7:89:a0:1a:d0:91:8e:75:cc:d9:09:e3:83:13: 0e:dc:4a:66:b1:6e:c4:18:f4:c8:f0:44:17:61:44: d7:70:60:f4:ef:14:ce:9f:fd:c4:e4:1b:b7:3b:b6: 57:2f:af:a7:46:97:be:14:31:e4:cb:e9:55:78:21: 90:05:6b:ff:ce:6c:9a:78:f8:d7:04:82:0c:e6:03: 9d:cf:e8:7f:e8:06:ae:4d:96:d1:7c:1d:2e:aa:34: b1:b3:06:7b:0a:50:8c:1e:d0:c5:94:20:b5:f7:67: d2:5c:5d:fc:8e:dd:32:19:d9:fd:d3:d4:93:46:1f: be:6f:aa:58:ae:90:ab:74:b4:eb:a3:1b:4d:47:8c: 5f:f3:47:6a:62:25:ad:aa:51:7c:d2:b7:72:47:98: ab:cb:a0:ed:14:d0:2b:86:2a:f0:5e:20:72:e7:e3: b5:06:2e:20:6d:d9:ed:06:6f:89:dd:da:c3:20:c3: fb:45:a7:c9:3b:43:5b:d4:f7:c2:ba:6e:4a:4b:16: af:3e:95:bb:08:66:1f:58:8a:3d:f1:2e:0b:70:06: ab:b3:14:02:06:81:cf:bf:15:dd:9e:49:2c:5f:64: ca:2b:65:eb:d5:a3:0b:56:8c:43:1a:51:75:d9:8c: 73:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:C8:EB:01:39:B6:48:6B:91:B1:CB:62:15:6B:22:F8:71:E0:4F:3B X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:f660::/44 Signature Algorithm: sha256WithRSAEncryption 3e:11:65:ed:37:b6:84:1c:e9:5f:fe:58:a5:a4:df:ac:6d:14: 20:5a:95:80:9d:47:5b:a2:89:de:c9:0e:25:f3:41:e4:45:09: 95:68:5a:81:92:42:02:c7:90:df:58:65:94:84:b0:6a:a2:54: 1a:bf:04:3d:2c:46:62:0f:1d:e8:be:0b:ba:9c:c3:c8:0e:3f: b5:23:ca:ae:fe:b6:c5:6c:86:0e:bc:92:97:95:c3:4c:2a:12: 89:3b:0f:66:cc:8a:cd:55:3a:dd:ec:34:b0:13:39:66:85:c5: 12:e8:e3:20:b5:bd:da:62:31:d5:03:a9:44:68:ee:6f:dd:0b: 27:87:b6:3e:6b:7d:a3:13:fd:af:1a:4b:c5:22:36:e0:b3:16: 40:64:4d:05:a8:4c:17:c0:13:6b:05:12:33:07:86:08:ca:7e: 18:0d:75:82:07:a5:b9:fe:fa:34:19:0e:0a:a9:ba:d9:7a:b4: 45:e6:26:ba:f6:f0:41:07:57:f2:0d:ae:12:c1:e6:1e:da:2d: 65:9d:d3:ee:64:fb:7c:db:e7:14:a6:22:83:12:ce:ae:89:74: 20:0e:5d:df:8e:6c:dd:85:fd:1a:96:1b:2d:22:7a:cb:06:46: 95:c8:27:17:c5:c6:3d:db:a4:c1:64:e3:c8:5f:77:51:5e:e1: 3e:4b:f6:74 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNlOC0zZjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz70nrbQlWaBJQpYSpWR/54mgGtCRjnXM2QnjgxMO3EpmsW7EGPTI8EQXYUTX cGD07xTOn/3E5Bu3O7ZXL6+nRpe+FDHky+lVeCGQBWv/zmyaePjXBIIM5gOdz+h/ 6AauTZbRfB0uqjSxswZ7ClCMHtDFlCC192fSXF38jt0yGdn909STRh++b6pYrpCr dLTroxtNR4xf80dqYiWtqlF80rdyR5iry6DtFNArhirwXiBy5+O1Bi4gbdntBm+J 3drDIMP7RafJO0Nb1PfCum5KSxavPpW7CGYfWIo98S4LcAarsxQCBoHPvxXdnkks X2TKK2Xr1aMLVoxDGlF12Yxz2QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFBbI6wE5 tkhrkbHLYhVrIvhx4E87MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjY4OUFBNUM4 NjA5MTFFQUE3NDBCMDJEQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQPZgMA0GCSqGSIb3DQEBCwUAA4IBAQA+EWXtN7aEHOlf/lil pN+sbRQgWpWAnUdbooneyQ4l80HkRQmVaFqBkkICx5DfWGWUhLBqolQavwQ9LEZi Dx3ovgu6nMPIDj+1I8qu/rbFbIYOvJKXlcNMKhKJOw9mzIrNVTrd7DSwEzlmhcUS 6OMgtb3aYjHVA6lEaO5v3Qsnh7Y+a32jE/2vGkvFIjbgsxZAZE0FqEwXwBNrBRIz B4YIyn4YDXWCB6W5/vo0GQ4KqbrZerRF5ia69vBBB1fyDa4SweYe2i1lndPuZPt8 2+cUpiKDEs6uiXQgDl3fjmzdhf0alhstInrLBkaVyCcXxcY926TBZOPIX3dRXuE+ S/Z0 -----END CERTIFICATE-----Generated at Sat Mar 7 02:26:44 2026 by rpki-client