$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa File: 2FDC8EDAD99911ED92E86C7BC4F9AE02.roa (raw, json) Hash identifier: 9vfq8OeaQRIRvCU/eaAKWP6Xmpy6e27g3nUCNX0uICg= Subject key identifier: C4:B7:30:72:B7:73:E9:71:93:18:7F:7A:D2:7E:55:CC:3D:D9:C2:46 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1150 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa Signing time: Fri 22 May 2026 20:25:35 +0000 ROA not before: Fri 22 May 2026 20:25:35 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 151187 IP address blocks: 2406:840:9800::/43 maxlen: 48 2406:840:fed3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jun 2026 19:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4432 (0x1150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:25:35 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbbf-ac32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:04:58:01:3b:6c:33:e2:dd:a8:c1:20:b9: 4d:b8:da:87:37:1b:65:ed:c8:6c:c3:fc:32:fe:23: 70:3b:6c:13:3e:9a:a3:91:1a:63:e0:64:94:4a:b2: fa:b8:ad:3e:ac:24:f0:2f:50:7e:86:b0:12:6c:94: 5e:a4:81:a4:f6:d8:48:e3:bd:61:48:ac:fc:c6:64: 96:a8:3a:9e:ee:95:bd:46:4c:09:00:3e:fa:eb:33: 86:12:f4:5e:d1:df:1c:41:c2:6e:9a:dd:16:72:de: 7b:f9:06:d8:0b:a0:bb:48:11:36:05:7f:9b:15:48: 8a:c9:28:08:e2:60:8d:08:8f:c3:2e:a0:92:23:6e: 33:7b:e5:bc:83:89:28:d8:aa:55:17:e7:8a:d3:56: e5:d0:80:d0:0d:4a:f6:db:5a:e5:d2:6f:a2:c0:ee: 7a:fa:be:46:c2:31:3e:e2:da:af:c0:fd:99:01:3b: b4:20:f9:2d:27:95:df:36:c2:ee:82:40:07:16:35: 93:db:64:35:3c:c8:3a:77:d1:84:62:49:89:f0:31: ff:37:64:0d:43:ca:00:e0:7c:82:90:f5:b3:f4:10: c6:4a:7b:a2:85:a6:b4:0a:39:33:bc:63:50:9f:07: 34:58:54:aa:0f:d3:b8:e2:bd:a5:eb:e9:0c:16:61: 16:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B7:30:72:B7:73:E9:71:93:18:7F:7A:D2:7E:55:CC:3D:D9:C2:46 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9800::/43 2406:840:fed3::/48 Signature Algorithm: sha256WithRSAEncryption 57:f2:de:b7:0f:00:81:bb:c1:0e:2c:27:63:63:4d:a5:00:8a: ff:8b:02:cd:97:0c:b2:9a:ec:be:81:4f:28:c9:0d:93:8a:40: 15:be:5a:a5:b0:37:98:8b:0a:69:c5:44:95:7b:3a:d2:a0:ba: bd:75:bc:d9:91:fa:9d:1c:b9:39:40:89:80:4b:d7:d8:99:0c: e7:6b:75:99:4b:8f:6e:1c:26:4b:36:93:e5:41:19:5e:c7:8a: a5:3d:0a:64:77:60:f9:b8:4b:5c:ab:19:86:25:35:12:58:43: f4:b4:cd:93:fc:a5:09:1f:e1:13:6d:e8:70:22:80:d4:66:c8: 52:ae:d7:32:a7:ac:ac:a8:83:63:5f:68:f1:cb:83:c7:be:ac: e4:ce:80:1a:36:5b:27:3c:8e:6d:4a:ff:73:22:61:81:6c:3d: 8e:21:6e:03:01:b8:bd:a5:b5:31:86:4c:31:8d:f2:eb:0c:7a: 42:b0:82:8a:9e:d4:50:4b:01:08:70:11:c3:f0:0b:c8:7d:2a: f6:c0:50:b9:06:ec:c5:45:22:25:56:1e:b6:df:82:16:c6:8a: 4c:6a:1d:61:df:f4:df:b0:b1:e2:01:9e:63:4d:08:0f:fd:ed: 54:38:46:2c:0b:e4:b6:55:2a:a9:9c:9a:31:d1:38:8f:92:3b: ad:38:42:36 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNTM1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJiZi1hYzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMAEWAE7bDPi3ajBILlNuNqHNxtl7chsw/wy/iNwO2wTPpqjkRpj4GSUSrL6 uK0+rCTwL1B+hrASbJRepIGk9thI471hSKz8xmSWqDqe7pW9RkwJAD766zOGEvRe 0d8cQcJumt0Wct57+QbYC6C7SBE2BX+bFUiKySgI4mCNCI/DLqCSI24ze+W8g4ko 2KpVF+eK01bl0IDQDUr221rl0m+iwO56+r5GwjE+4tqvwP2ZATu0IPktJ5XfNsLu gkAHFjWT22Q1PMg6d9GEYkmJ8DH/N2QNQ8oA4HyCkPWz9BDGSnuihaa0CjkzvGNQ nwc0WFSqD9O44r2l6+kMFmEWDQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFMS3MHK3 c+lxkxh/etJ+Vcw92cJGMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkZEQzhFREFE OTk5MTFFRDkyRTg2QzdCQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcFJAYIQJgAAwcAJAYIQP7TMA0GCSqGSIb3DQEBCwUAA4IBAQBX8t63 DwCBu8EOLCdjY02lAIr/iwLNlwyymuy+gU8oyQ2TikAVvlqlsDeYiwppxUSVezrS oLq9dbzZkfqdHLk5QImAS9fYmQzna3WZS49uHCZLNpPlQRlex4qlPQpkd2D5uEtc qxmGJTUSWEP0tM2T/KUJH+ETbehwIoDUZshSrtcyp6ysqINjX2jxy4PHvqzkzoAa NlsnPI5tSv9zImGBbD2OIW4DAbi9pbUxhkwxjfLrDHpCsIKKntRQSwEIcBHD8AvI fSr2wFC5BuzFRSIlVh6234IWxopMah1h3/TfsLHiAZ5jTQgP/e1UOEYsC+S2VSqp nJox0TiPkjutOEI2 -----END CERTIFICATE-----Generated at Wed May 27 13:29:14 2026 by rpki-client