$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2BF73076743511EFA2B5387BC4F9AE02.roa File: 2BF73076743511EFA2B5387BC4F9AE02.roa (raw, json) Hash identifier: sUlYmWFqoWHcESEc9b//ZmUr9xxkiov58dtLL8j3O2I= Subject key identifier: 82:64:23:CA:BC:BA:1E:84:47:AD:F6:42:89:BB:65:62:02:67:03:64 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1159 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2BF73076743511EFA2B5387BC4F9AE02.roa Signing time: Fri 22 May 2026 20:25:53 +0000 ROA not before: Fri 22 May 2026 20:25:52 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 151814 IP address blocks: 2406:840:9400::/40 maxlen: 48 2406:840:c600::/40 maxlen: 48 2406:840:e400::/40 maxlen: 48 2406:840:f500::/40 maxlen: 48 2406:840:fec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4441 (0x1159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:25:52 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbd0-f803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8e:02:10:37:38:82:0a:88:23:40:d6:00:73: e5:31:90:a3:1f:42:cb:d1:66:ff:cd:d0:c2:c8:c0: 23:54:7a:0c:55:59:e6:74:e1:27:e0:a9:1a:22:68: e6:00:19:fa:4d:4a:46:b4:40:fc:39:45:30:b3:97: 09:37:9c:23:12:e0:6e:ef:0b:8d:6d:15:f4:73:eb: 0b:b4:c3:dc:6d:ee:0a:a5:e1:3c:00:61:e1:f2:6f: d7:27:dc:e7:77:5b:b3:a6:68:28:19:00:3c:3d:a8: e1:ed:d5:41:2e:71:55:e3:36:8d:df:1c:97:3c:5a: c6:f6:96:c1:f3:73:45:c2:a2:fa:96:ed:24:05:84: c9:7d:3c:0b:0d:e1:6a:53:1a:b6:82:77:f0:70:38: 07:42:af:16:cf:90:89:e5:40:ef:56:f7:4a:57:b7: a2:08:e1:b4:dc:41:42:88:a7:ef:5a:db:03:11:c9: ab:92:e2:89:c1:49:09:a9:ac:da:b3:f6:1a:60:83: bf:05:cd:b8:59:9e:10:bd:36:b3:b4:e9:2c:c4:88: 5e:9c:03:fc:91:1d:e1:25:53:6d:27:37:34:f7:a8: ff:0a:f3:ed:19:45:1c:25:e1:79:0a:de:6e:0d:a0: 76:f1:8f:dd:ff:ea:c9:37:6a:d8:47:f9:c0:3a:6e: f5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:64:23:CA:BC:BA:1E:84:47:AD:F6:42:89:BB:65:62:02:67:03:64 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2BF73076743511EFA2B5387BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9400::/40 2406:840:c600::/40 2406:840:e400::/40 2406:840:f500::/40 2406:840:fec0::/48 Signature Algorithm: sha256WithRSAEncryption 63:72:5c:a8:37:55:73:50:fd:62:07:b2:e5:f8:dc:6c:e1:12: 55:47:b1:72:00:fb:32:7f:76:a8:bf:87:d9:2e:8e:ba:00:59: 55:d4:8c:a7:73:f5:19:04:dd:ce:e8:54:05:b1:fc:27:92:e3: e7:d3:7c:88:9c:d7:97:be:be:ec:e3:83:76:9b:0e:f5:3a:10: 71:9b:f5:5a:ce:dd:02:a3:c7:92:ae:dd:e2:71:85:d1:04:58: 3a:f6:ae:ce:f0:e3:40:e7:2d:ff:a7:21:60:64:77:8e:b0:59: 63:30:ab:1d:3c:57:c6:1e:3f:39:5b:c4:ef:78:93:39:97:1b: 16:29:97:82:99:41:cc:0e:a2:1e:f8:5a:26:bc:14:bd:74:eb: d5:ed:a0:ac:ac:6b:f1:37:99:0f:55:91:f1:a3:58:93:01:65: 96:20:dd:fc:f4:15:4f:71:10:6f:7e:7e:4d:af:d6:b8:32:8b: 68:ac:f0:72:82:b8:ac:77:69:2a:61:8f:f5:8d:2d:c3:7c:af: d5:69:39:e1:6b:82:a6:35:7f:58:6e:17:47:99:ee:f2:8a:24: 3b:ab:89:e9:66:c2:a6:12:1b:fd:b8:36:24:37:a6:65:dd:06: 90:71:8e:e5:8e:be:f0:c1:dc:c9:b4:06:05:cf:26:1d:d4:28: 67:35:b4:83 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICEVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNTUyWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJkMC1mODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvI4CEDc4ggqII0DWAHPlMZCjH0LL0Wb/zdDCyMAjVHoMVVnmdOEn4KkaImjm ABn6TUpGtED8OUUws5cJN5wjEuBu7wuNbRX0c+sLtMPcbe4KpeE8AGHh8m/XJ9zn d1uzpmgoGQA8Pajh7dVBLnFV4zaN3xyXPFrG9pbB83NFwqL6lu0kBYTJfTwLDeFq Uxq2gnfwcDgHQq8Wz5CJ5UDvVvdKV7eiCOG03EFCiKfvWtsDEcmrkuKJwUkJqaza s/YaYIO/Bc24WZ4QvTaztOksxIhenAP8kR3hJVNtJzc096j/CvPtGUUcJeF5Ct5u DaB28Y/d/+rJN2rYR/nAOm71qwIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFIJkI8q8 uh6ER632Qom7ZWICZwNkMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkJGNzMwNzY3 NDM1MTFFRkEyQjUzODdCQzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAv BAIAAjApAwYAJAYIQJQDBgAkBghAxgMGACQGCEDkAwYAJAYIQPUDBwAkBghA/sAw DQYJKoZIhvcNAQELBQADggEBAGNyXKg3VXNQ/WIHsuX43GzhElVHsXIA+zJ/dqi/ h9kujroAWVXUjKdz9RkE3c7oVAWx/CeS4+fTfIic15e+vuzjg3abDvU6EHGb9VrO 3QKjx5Ku3eJxhdEEWDr2rs7w40DnLf+nIWBkd46wWWMwqx08V8YePzlbxO94kzmX GxYpl4KZQcwOoh74Wia8FL1069XtoKysa/E3mQ9VkfGjWJMBZZYg3fz0FU9xEG9+ fk2v1rgyi2is8HKCuKx3aSphj/WNLcN8r9VpOeFrgqY1f1huF0eZ7vKKJDurielm wqYSG/24NiQ3pmXdBpBxjuWOvvDB3Mm0BgXPJh3UKGc1tIM= -----END CERTIFICATE-----Generated at Sat Jun 6 12:11:36 2026 by rpki-client