$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A702F045E9411F1B76D9AC5227AAC22.roa File: 3A702F045E9411F1B76D9AC5227AAC22.roa (raw, json) Hash identifier: D/ips1eH7zJXGlctPH/nagVZOnNNzbes74J9NbDZQGI= Subject key identifier: 89:3A:DA:3D:32:A2:0C:A1:11:BA:3C:15:3E:DA:FC:EA:E6:B7:26:97 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 11B5 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A702F045E9411F1B76D9AC5227AAC22.roa Signing time: Tue 02 Jun 2026 15:03:35 +0000 ROA not before: Tue 02 Jun 2026 15:03:35 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 215172 IP address blocks: 2406:840:e200::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4533 (0x11b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Jun 2 15:03:35 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1ef0c7-f89f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6f:15:b0:f9:16:b0:b6:12:3f:80:ea:0f:92: 7a:63:b6:99:46:f8:b9:9c:06:80:7c:46:e4:14:c2: 02:28:1f:26:fa:2e:14:44:8f:3c:1e:bc:76:d6:99: 8b:34:29:1f:89:8d:17:74:8b:44:cf:c5:5d:b9:3f: 57:46:75:5f:dc:68:42:e1:d3:54:28:e8:1b:31:87: 83:dd:10:ab:93:3f:7c:48:c0:ef:a7:2c:19:24:a0: e0:6b:a3:38:5b:f7:7b:bb:33:5f:74:d5:17:60:dd: 89:3e:63:77:64:5e:7a:8e:ba:75:df:59:bb:b0:f8: 27:5d:c5:80:12:ba:0b:97:cb:54:c7:bf:e0:25:f9: 8d:f2:3f:33:98:fd:2c:61:24:ec:5c:26:63:38:22: cd:9c:e6:b3:8d:4e:06:6b:71:f4:0c:ff:29:ea:2c: 8b:57:48:46:b3:42:bc:0a:72:ee:de:96:8a:a1:c2: 88:5a:c5:00:f4:89:36:4a:f9:33:ba:48:27:f7:45: 78:eb:1d:2e:db:09:13:b2:2e:04:bb:d4:b4:b7:9a: 53:1d:61:9c:01:af:65:58:a2:a1:95:ec:98:26:a1: d0:8a:da:17:92:2a:36:82:fd:dd:df:45:41:10:4c: 7d:bd:6d:c2:cc:c4:32:49:58:5e:8d:07:b5:e4:30: c2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3A:DA:3D:32:A2:0C:A1:11:BA:3C:15:3E:DA:FC:EA:E6:B7:26:97 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A702F045E9411F1B76D9AC5227AAC22.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e200::/44 Signature Algorithm: sha256WithRSAEncryption 67:d7:d0:3a:fe:ed:00:1b:51:62:14:68:43:25:6a:26:9f:27: 6f:bf:bc:f8:af:14:e4:1f:c2:d9:be:88:4b:56:4b:ad:6d:f8: 01:50:33:06:a6:7f:f5:38:f3:25:5b:3c:43:e1:24:2e:bb:9d: 1f:95:8c:43:0e:5e:a6:39:7a:53:3e:2c:4b:3d:f2:46:c1:35: cf:ee:00:e9:52:c4:93:90:9f:2e:ed:97:01:7f:1a:d2:bf:d3: 56:78:12:e5:46:d6:bd:7f:6c:0c:c4:42:29:4e:63:6b:a4:90: 80:2d:91:ff:2b:49:5c:89:c5:53:f6:07:ff:26:21:6c:bc:43: cd:be:a0:51:78:2d:4c:98:fd:1e:06:a3:65:c2:fc:6f:78:97: c8:82:f9:aa:24:07:c6:7f:ff:49:ed:ef:16:8a:e1:de:f6:9f: 90:1a:24:2f:2c:be:a5:36:92:48:82:13:fb:13:f6:c4:33:b5: 87:66:b3:a5:4d:2b:5b:b2:e4:ac:ad:15:40:c2:39:0f:bf:63: 9d:80:61:f3:72:ff:e4:8f:0d:be:1b:8e:a5:59:16:9a:c4:b8: 70:ae:89:8a:c4:97:6d:80:3c:65:0a:6e:ef:5b:bc:9c:b7:ac: 7c:04:38:37:9b:e6:0a:52:b2:87:6f:cb:c4:40:59:05:ca:17: ac:0d:0b:3a -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNjAyMTUwMzM1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFlZjBjNy1mODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA028VsPkWsLYSP4DqD5J6Y7aZRvi5nAaAfEbkFMICKB8m+i4URI88Hrx21pmL NCkfiY0XdItEz8VduT9XRnVf3GhC4dNUKOgbMYeD3RCrkz98SMDvpywZJKDga6M4 W/d7uzNfdNUXYN2JPmN3ZF56jrp131m7sPgnXcWAEroLl8tUx7/gJfmN8j8zmP0s YSTsXCZjOCLNnOazjU4Ga3H0DP8p6iyLV0hGs0K8CnLu3paKocKIWsUA9Ik2Svkz ukgn90V46x0u2wkTsi4Eu9S0t5pTHWGcAa9lWKKhleyYJqHQitoXkio2gv3d30VB EEx9vW3CzMQySVhejQe15DDCcQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFIk62j0y ogyhEbo8FT7a/OrmtyaXMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvM0E3MDJGMDQ1 RTk0MTFGMUI3NkQ5QUM1MjI3QUFDMjIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQOIAMA0GCSqGSIb3DQEBCwUAA4IBAQBn19A6/u0AG1FiFGhD JWomnydvv7z4rxTkH8LZvohLVkutbfgBUDMGpn/1OPMlWzxD4SQuu50flYxDDl6m OXpTPixLPfJGwTXP7gDpUsSTkJ8u7ZcBfxrSv9NWeBLlRta9f2wMxEIpTmNrpJCA LZH/K0lcicVT9gf/JiFsvEPNvqBReC1MmP0eBqNlwvxveJfIgvmqJAfGf/9J7e8W iuHe9p+QGiQvLL6lNpJIghP7E/bEM7WHZrOlTStbsuSsrRVAwjkPv2OdgGHzcv/k jw2+G46lWRaaxLhwromKxJdtgDxlCm7vW7yct6x8BDg3m+YKUrKHb8vEQFkFyhes DQs6 -----END CERTIFICATE-----Generated at Sat Jun 6 08:14:22 2026 by rpki-client