$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa File: 3A7A29DE6AD411EEBEC80C30C4F9AE02.roa (raw, json) Hash identifier: toYzr4qGNJkvuM1uOK38tF9pGpusTIINX4+/W5BrR8M= Subject key identifier: C5:A8:05:E7:EE:CF:0A:F1:2C:26:60:CC:A3:2E:87:1B:04:20:37:6B Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1100 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa Signing time: Mon 04 May 2026 18:57:17 +0000 ROA not before: Mon 04 May 2026 18:57:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151331 IP address blocks: 2406:840:9990::/44 maxlen: 48 2406:840:fed7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4352 (0x1100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 4 18:57:17 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69f8ec0d-893c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:ca:8b:1c:a0:ca:52:d9:62:93:af:84:03: 03:55:99:fa:6f:4c:d1:cd:65:f0:5b:73:43:0d:23: 5c:52:18:f2:87:b8:34:0e:c9:ff:91:90:2f:e1:80: c2:4f:e4:1b:d0:7e:5e:fa:be:c2:f1:a7:b0:59:3e: 58:76:b8:0a:8f:93:ca:91:54:28:de:84:d2:8f:ee: 9c:23:b1:86:cc:88:97:23:97:24:88:24:1a:09:5e: 10:7b:a0:ea:e6:da:c3:be:bc:22:d4:ab:56:27:cb: c3:70:a6:04:d4:7e:2a:1c:41:81:4a:ad:dc:99:6c: 78:a9:56:00:71:80:7e:33:92:0a:2a:06:38:1a:17: 73:ba:55:c0:42:68:ba:48:b1:d0:b6:1a:6e:5c:70: 84:15:ea:6c:52:d3:a1:e6:7a:fc:86:29:6e:96:8f: c8:99:3b:00:97:57:16:fc:10:77:7f:df:46:e5:c5: 54:38:46:97:a7:a0:50:f3:b4:90:fc:97:5b:d1:8f: d9:c7:99:1b:af:d8:cf:56:c5:71:b6:c1:d8:bc:5a: d9:fc:42:98:82:19:ff:62:6f:d7:e0:86:b8:5e:0a: 1b:d6:0e:48:f4:64:ed:f2:a4:26:f3:f8:32:87:e3: 34:3a:18:f2:ff:3c:e1:c0:fe:92:95:a9:a8:41:34: 02:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A8:05:E7:EE:CF:0A:F1:2C:26:60:CC:A3:2E:87:1B:04:20:37:6B X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9990::/44 2406:840:fed7::/48 Signature Algorithm: sha256WithRSAEncryption 77:16:c3:89:d3:8c:0a:d8:d0:8a:27:98:31:5a:91:e9:fb:1a: 00:2d:8b:ca:4d:ed:7c:1f:31:36:83:b9:bd:e6:81:c0:d9:15: c2:89:9e:f5:5f:fa:dd:21:a2:56:a3:d6:48:5c:3b:46:f2:c2: 64:0e:5d:cf:8b:50:e5:c9:bb:cc:d7:1d:61:cf:fa:a7:aa:fc: b8:fd:ac:6f:aa:3b:31:0c:d5:50:5c:8d:94:ab:f2:84:37:9d: 20:ac:3d:1f:fd:de:95:6a:1d:28:06:bd:cc:1f:8d:97:23:88: 5d:c5:79:2a:00:ee:b2:c1:4a:c3:7b:b3:be:2c:1a:af:1d:0d: f6:c1:97:45:fd:b2:0f:8f:6d:6e:d3:c5:17:15:3d:a7:5d:6d: 62:fe:3a:8e:8a:8f:58:11:7f:62:f8:44:93:31:c9:68:b0:3c: c1:ce:5f:a4:d6:5f:20:84:fb:3b:2b:1c:05:93:3f:cb:88:82: 82:9c:e8:7f:38:ad:ef:b3:63:b0:92:35:9b:bd:1f:2d:93:d8: fb:d7:4d:eb:d8:d8:d2:28:68:cb:3e:a1:35:b2:34:5b:25:9e: 87:7e:f1:5c:0f:50:2a:df:ce:18:18:04:be:3a:72:95:fe:80: d7:23:0b:f7:4c:a0:1d:5c:e8:5e:58:46:55:b9:11:a8:0d:4a: 22:4d:07:f3 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTA0MTg1NzE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY4ZWMwZC04OTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5TKixygylLZYpOvhAMDVZn6b0zRzWXwW3NDDSNcUhjyh7g0Dsn/kZAv4YDC T+Qb0H5e+r7C8aewWT5YdrgKj5PKkVQo3oTSj+6cI7GGzIiXI5ckiCQaCV4Qe6Dq 5trDvrwi1KtWJ8vDcKYE1H4qHEGBSq3cmWx4qVYAcYB+M5IKKgY4GhdzulXAQmi6 SLHQthpuXHCEFepsUtOh5nr8hilulo/ImTsAl1cW/BB3f99G5cVUOEaXp6BQ87SQ /Jdb0Y/Zx5kbr9jPVsVxtsHYvFrZ/EKYghn/Ym/X4Ia4Xgob1g5I9GTt8qQm8/gy h+M0Ohjy/zzhwP6SlamoQTQCPwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFMWoBefu zwrxLCZgzKMuhxsEIDdrMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvM0E3QTI5REU2 QUQ0MTFFRUJFQzgwQzMwQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQJmQAwcAJAYIQP7XMA0GCSqGSIb3DQEBCwUAA4IBAQB3FsOJ 04wK2NCKJ5gxWpHp+xoALYvKTe18HzE2g7m95oHA2RXCiZ71X/rdIaJWo9ZIXDtG 8sJkDl3Pi1DlybvM1x1hz/qnqvy4/axvqjsxDNVQXI2Uq/KEN50grD0f/d6Vah0o Br3MH42XI4hdxXkqAO6ywUrDe7O+LBqvHQ32wZdF/bIPj21u08UXFT2nXW1i/jqO io9YEX9i+ESTMclosDzBzl+k1l8ghPs7KxwFkz/LiIKCnOh/OK3vs2OwkjWbvR8t k9j7103r2NjSKGjLPqE1sjRbJZ6HfvFcD1Aq384YGAS+OnKV/oDXIwv3TKAdXOhe WEZVuRGoDUoiTQfz -----END CERTIFICATE-----Generated at Wed May 13 16:08:28 2026 by rpki-client