$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa File: 4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa (raw, json) Hash identifier: 2liwtaPpV2P/B2zyf79qUYqyQ1UrA/jqJVOszDxE9cs= Subject key identifier: 17:72:46:58:E3:8C:DB:B2:4A:C3:B6:DF:57:5D:EA:FE:4E:10:DF:B0 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1177 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa Signing time: Fri 22 May 2026 20:26:49 +0000 ROA not before: Fri 22 May 2026 20:26:49 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 153458 IP address blocks: 2406:840:e2c0::/44 maxlen: 48 2406:840:feac::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4471 (0x1177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:26:49 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bc09-af3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:47:75:d9:e4:d4:da:61:58:25:a2:1c:6c:11: b2:37:32:ef:a5:cb:da:ac:67:f6:c1:77:c5:4d:3c: 18:1b:bb:aa:8e:73:5e:0a:a7:5d:57:1a:8b:45:b4: 41:b8:8a:ee:f9:66:d4:10:d5:12:8c:ac:68:84:fc: bd:51:ac:d4:55:95:6a:d9:f2:68:31:69:07:55:7c: a7:36:c6:4a:92:fa:bd:8d:eb:c3:ac:22:93:40:43: 74:05:c2:0c:90:a9:9f:12:a9:a5:d6:95:67:5e:1e: 82:30:ba:3a:71:89:9b:9f:f4:4c:a4:ac:27:67:36: 5a:72:e3:34:db:12:8a:94:ad:54:87:27:8c:7e:70: a5:79:e5:ee:21:a1:31:23:8e:1f:11:3f:c1:8d:a9: 35:a1:30:e1:39:b2:48:64:75:23:ca:fd:42:f8:b3: 94:2d:97:4d:26:fc:90:c3:b8:76:e6:63:04:9a:95: 9c:a0:f2:a5:64:0f:c9:84:a0:27:ea:88:9b:eb:7c: c4:e5:8f:ba:21:b4:94:32:05:e7:c9:39:a7:de:00: cd:0c:9e:a0:ee:7c:98:d4:b6:e2:32:fd:04:e5:bf: 5b:59:4f:e6:a1:36:27:b0:23:7c:33:fe:e0:a4:d0: 6b:fd:b6:b5:c0:0d:bd:b4:08:3a:3e:ae:bc:ee:3e: 4d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:72:46:58:E3:8C:DB:B2:4A:C3:B6:DF:57:5D:EA:FE:4E:10:DF:B0 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e2c0::/44 2406:840:feac::/48 Signature Algorithm: sha256WithRSAEncryption 23:6e:e5:50:1c:43:8f:10:d7:3d:61:af:5b:43:0d:0b:31:1f: 52:fb:05:16:30:23:9f:01:88:6f:ef:52:6a:17:40:b3:d2:8c: 69:2f:bd:ed:64:13:a8:11:58:32:3a:6a:df:29:ba:8e:9e:69: 97:13:dc:c1:80:2d:fc:98:cc:56:31:82:d5:78:02:26:ff:13: 09:ec:0a:3e:73:db:0d:18:b6:68:51:f6:37:32:3c:9b:2f:4d: d2:76:7b:3f:ba:e2:80:91:d7:38:25:04:db:35:ce:90:64:ad: bb:ad:88:bf:91:b9:e1:d8:2a:4b:3e:e5:c4:97:9f:00:06:75: c6:bf:68:72:78:80:40:10:cc:5f:9f:98:ba:75:70:3b:c8:11: 22:6f:12:a9:37:9f:76:99:6d:64:6a:22:d6:ed:ca:59:b8:d1: af:7c:25:e0:ef:b3:ab:3d:47:14:f0:b2:1a:b7:50:67:bb:0a: d0:70:e9:ce:aa:af:1b:88:66:a1:f8:cf:fd:fd:01:1d:eb:b9: 99:fd:b1:c0:cd:8c:ae:58:7a:11:84:50:21:ae:a7:15:34:16: e4:75:a3:c4:a0:cf:0c:f6:e4:ec:48:bb:c9:38:f7:06:35:a8: cc:59:5c:89:56:31:5e:36:98:48:b4:1b:bf:1b:30:82:90:56: b8:ae:48:29 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNjQ5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmMwOS1hZjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjUd12eTU2mFYJaIcbBGyNzLvpcvarGf2wXfFTTwYG7uqjnNeCqddVxqLRbRB uIru+WbUENUSjKxohPy9UazUVZVq2fJoMWkHVXynNsZKkvq9jevDrCKTQEN0BcIM kKmfEqml1pVnXh6CMLo6cYmbn/RMpKwnZzZacuM02xKKlK1UhyeMfnCleeXuIaEx I44fET/Bjak1oTDhObJIZHUjyv1C+LOULZdNJvyQw7h25mMEmpWcoPKlZA/JhKAn 6oib63zE5Y+6IbSUMgXnyTmn3gDNDJ6g7nyY1LbiMv0E5b9bWU/moTYnsCN8M/7g pNBr/ba1wA29tAg6Pq687j5NAwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFBdyRljj jNuySsO231dd6v5OEN+wMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNEEwREMzRENB MjkyMTFFRkEyRTNCRTc2QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQOLAAwcAJAYIQP6sMA0GCSqGSIb3DQEBCwUAA4IBAQAjbuVQ HEOPENc9Ya9bQw0LMR9S+wUWMCOfAYhv71JqF0Cz0oxpL73tZBOoEVgyOmrfKbqO nmmXE9zBgC38mMxWMYLVeAIm/xMJ7Ao+c9sNGLZoUfY3MjybL03Sdns/uuKAkdc4 JQTbNc6QZK27rYi/kbnh2CpLPuXEl58ABnXGv2hyeIBAEMxfn5i6dXA7yBEibxKp N592mW1kaiLW7cpZuNGvfCXg77OrPUcU8LIat1BnuwrQcOnOqq8biGah+M/9/QEd 67mZ/bHAzYyuWHoRhFAhrqcVNBbkdaPEoM8M9uTsSLvJOPcGNajMWVyJVjFeNphI tBu/GzCCkFa4rkgp -----END CERTIFICATE-----Generated at Sat Jun 6 09:39:08 2026 by rpki-client