$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/539AFA66240F11EF8FFD251CC4F9AE02.roa File: 539AFA66240F11EF8FFD251CC4F9AE02.roa (raw, json) Hash identifier: NKsOyiIVGnMi08j3sSqs2ZpY3dE0jwnC/L9dYpiGPak= Subject key identifier: AD:14:07:29:2C:44:B9:A3:19:01:D5:2C:D2:4E:1F:6D:5C:87:F7:52 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1086 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/539AFA66240F11EF8FFD251CC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:53 +0000 ROA not before: Thu 22 May 2025 20:08:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 210384 IP address blocks: 2406:840:9860::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 16:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4230 (0x1086) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493ec-d6d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:c0:59:bb:6b:36:0f:4d:e3:18:54:c1:2c:48: d7:5f:c7:18:51:36:e5:2e:fd:6e:6b:57:29:66:5b: d3:b1:1d:46:35:fc:87:ba:c2:5e:cb:64:a7:3e:c7: e6:85:81:80:a9:e9:14:76:5d:1f:05:97:6a:4d:b7: ba:b9:9f:69:0b:fa:69:b9:44:d9:91:7b:b4:52:7c: 34:35:de:16:d7:ad:26:63:96:5d:78:b8:71:c7:f5: 05:8d:06:69:62:6b:e4:2d:04:de:8e:7e:23:ba:33: 86:06:38:a5:2b:3e:e8:a2:6e:ca:f3:40:66:02:c9: ab:25:c2:fe:c8:89:4c:78:d4:44:5a:df:f4:37:66: 1d:46:3d:53:6a:83:08:1e:8e:b3:8f:8e:56:bd:ef: f8:e2:53:63:24:da:f4:01:2a:89:36:d8:31:36:b0: 5a:ce:35:28:eb:28:37:0c:00:f8:52:4b:22:42:f6: 7f:66:9c:d9:3a:1f:75:ea:b8:12:b6:bf:d5:45:ec: 4d:e4:36:a9:9d:43:f2:cf:a7:38:28:df:8b:de:55: 3a:7f:e1:29:fe:0c:82:2e:d2:87:08:0a:81:72:6f: f5:4f:18:4b:be:72:6b:b8:29:b5:b5:1b:50:08:c0: ba:d9:37:f4:2a:af:c7:88:2c:68:9c:a2:9a:ac:9e: a0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:14:07:29:2C:44:B9:A3:19:01:D5:2C:D2:4E:1F:6D:5C:87:F7:52 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/539AFA66240F11EF8FFD251CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9860::/44 Signature Algorithm: sha256WithRSAEncryption 4e:6a:fd:e0:3a:61:f7:5b:ea:83:c8:cd:c2:58:a9:e0:5c:52: 00:ff:7a:cd:c5:7b:6b:fd:05:41:bc:78:60:55:3c:bb:16:a9: bb:82:20:b0:ed:87:e6:8d:b3:44:23:7e:54:33:cf:4f:46:cf: 78:7b:69:33:4d:53:cc:d6:8c:ce:d3:7a:f4:99:b0:01:a4:a4: 2e:cf:c1:f2:24:a4:e1:13:ac:e3:eb:05:24:c9:b8:f9:91:1e: f8:46:71:4a:46:41:10:dc:09:36:2e:fc:7a:ce:0c:bf:27:c6: 24:d3:63:e0:d0:00:3f:3d:5c:74:c7:5e:fa:f5:ef:db:83:11: f5:fd:71:b7:a7:16:3a:f7:4f:75:3f:3c:ce:0d:d6:30:73:d1: 4b:ca:c4:a4:d7:86:35:65:01:ef:a4:bd:e5:f8:92:05:cf:4a: 93:c7:96:e4:e2:76:83:58:10:a8:ff:74:1d:d7:fc:a3:0b:7b: 32:ff:d5:ba:73:e3:94:3a:3c:e6:09:dc:63:cf:c6:1b:a3:35: ef:99:b9:01:ad:75:37:45:2b:50:f1:81:56:a1:c5:a6:da:f0: 06:99:40:b8:b8:4f:45:1b:54:b2:82:d9:f2:63:f7:3e:80:1e: 80:d2:bd:24:90:e7:85:70:97:f5:c0:99:58:10:55:a0:25:a4: 68:78:36:f1 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNlYy1kNmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9cBZu2s2D03jGFTBLEjXX8cYUTblLv1ua1cpZlvTsR1GNfyHusJey2SnPsfm hYGAqekUdl0fBZdqTbe6uZ9pC/ppuUTZkXu0Unw0Nd4W160mY5ZdeLhxx/UFjQZp YmvkLQTejn4jujOGBjilKz7oom7K80BmAsmrJcL+yIlMeNREWt/0N2YdRj1TaoMI Ho6zj45Wve/44lNjJNr0ASqJNtgxNrBazjUo6yg3DAD4UksiQvZ/ZpzZOh916rgS tr/VRexN5DapnUPyz6c4KN+L3lU6f+Ep/gyCLtKHCAqBcm/1TxhLvnJruCm1tRtQ CMC62Tf0Kq/HiCxonKKarJ6gzwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFK0UByks RLmjGQHVLNJOH21ch/dSMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNTM5QUZBNjYy NDBGMTFFRjhGRkQyNTFDQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQJhgMA0GCSqGSIb3DQEBCwUAA4IBAQBOav3gOmH3W+qDyM3C WKngXFIA/3rNxXtr/QVBvHhgVTy7Fqm7giCw7YfmjbNEI35UM89PRs94e2kzTVPM 1ozO03r0mbABpKQuz8HyJKThE6zj6wUkybj5kR74RnFKRkEQ3Ak2Lvx6zgy/J8Yk 02Pg0AA/PVx0x1769e/bgxH1/XG3pxY69091PzzODdYwc9FLysSk14Y1ZQHvpL3l +JIFz0qTx5bk4naDWBCo/3Qd1/yjC3sy/9W6c+OUOjzmCdxjz8YbozXvmbkBrXU3 RStQ8YFWocWm2vAGmUC4uE9FG1SygtnyY/c+gB6A0r0kkOeFcJf1wJlYEFWgJaRo eDbx -----END CERTIFICATE-----Generated at Mon Mar 16 16:19:54 2026 by rpki-client