$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5D7924145E9511F1A54FA0EB237AAC22.roa File: 5D7924145E9511F1A54FA0EB237AAC22.roa (raw, json) Hash identifier: D1D6rpDeelR9+H+d9hWdOY8fAtGN6Ww0RKOpvP04ajI= Subject key identifier: 9E:79:71:81:FF:46:3E:97:7B:46:4B:D3:C7:27:13:53:8C:ED:3B:E3 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 11B8 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5D7924145E9511F1A54FA0EB237AAC22.roa Signing time: Tue 02 Jun 2026 15:11:44 +0000 ROA not before: Tue 02 Jun 2026 15:11:44 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 153332 IP address blocks: 2406:840:9b00::/40 maxlen: 48 2406:840:cb00::/40 maxlen: 48 2406:840:cd00::/40 maxlen: 48 2406:840:fea3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4536 (0x11b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Jun 2 15:11:44 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1ef2b0-b6dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:75:20:dd:5b:be:6c:3e:fe:b9:09:32:a6:a7: 5d:32:49:2a:6d:64:aa:61:fa:39:a0:9d:a3:69:33: 3c:26:61:9f:61:db:fd:82:9d:09:51:50:f9:4b:c7: 02:58:88:52:4e:ff:b6:5f:6b:1f:19:4c:08:17:ca: c6:fa:69:e1:b7:66:8f:83:96:49:68:d0:02:e4:11: da:5b:60:a3:1a:48:3b:3e:f4:9b:a1:59:4e:43:31: a3:15:80:2d:a0:a9:79:01:dd:53:0e:41:17:64:14: 0b:ea:39:c9:8c:0d:64:49:63:43:4c:49:58:a3:9e: 4d:8f:10:f7:88:c7:c5:ea:dc:c1:07:3c:f9:a9:94: 1d:90:a2:8c:40:1a:81:58:99:48:b0:98:89:9d:9e: 0b:65:0e:83:d3:c2:b9:91:8e:24:1a:5f:48:e4:d1: c9:9f:b7:46:63:ee:93:5b:5d:a7:ed:dc:68:79:d8: 32:01:91:51:1d:45:af:b1:48:68:ae:a3:18:dd:4d: f9:27:42:63:df:02:65:ed:a9:9d:56:4d:d9:26:fd: d7:45:e5:65:9d:bc:e1:0c:53:aa:67:17:e2:41:a3: f8:07:69:0f:92:a0:69:77:9b:89:a0:b1:10:c5:34: 1a:e8:62:bc:f9:cb:a3:a3:fa:55:ce:17:38:4c:65: e4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:79:71:81:FF:46:3E:97:7B:46:4B:D3:C7:27:13:53:8C:ED:3B:E3 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5D7924145E9511F1A54FA0EB237AAC22.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9b00::/40 2406:840:cb00::/40 2406:840:cd00::/40 2406:840:fea3::/48 Signature Algorithm: sha256WithRSAEncryption a5:21:60:3a:b7:74:25:6e:f4:f3:b2:99:3a:66:5f:30:1f:48: bc:59:52:30:82:12:c1:1c:06:80:e6:b8:65:4f:5c:6d:17:7c: 51:94:f8:71:ef:a3:45:42:1c:63:9a:d2:1e:9c:97:9f:ca:71: 50:14:fa:61:a4:29:f9:e2:dd:38:24:bf:83:08:d8:94:90:8d: 77:6b:74:41:26:a0:08:fa:a5:dc:1a:4d:99:b7:39:e0:8b:81: 75:10:e2:83:0f:cc:5c:bd:d7:da:63:1f:e5:2c:2f:27:8c:c7: 91:11:8f:d9:9d:f0:8e:77:b3:a9:d1:57:6f:14:95:5e:f8:86: 1f:f0:e0:f0:4b:8b:a3:0e:bd:95:62:ee:8c:3c:6d:b7:f5:84: 3c:a0:da:37:9c:e8:37:92:e1:38:e3:e1:83:6c:54:da:48:69: 4c:ac:d2:e8:da:8a:0e:8e:77:c4:95:0c:f2:1b:77:df:8f:4a: 61:c4:39:dd:8c:88:48:2e:e9:8d:f1:2d:66:39:49:25:67:6a: e0:11:0e:96:0d:88:20:7b:5e:35:bd:cc:b0:4c:0b:92:35:de: 45:69:ea:b8:ba:1e:28:43:1d:e5:1b:77:f7:1e:17:0c:76:6e: e4:1d:01:cc:61:d6:e4:55:cd:32:ff:e1:11:a7:d2:93:fb:dc: 6f:a4:25:4f -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICEbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNjAyMTUxMTQ0WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFlZjJiMC1iNmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHUg3Vu+bD7+uQkypqddMkkqbWSqYfo5oJ2jaTM8JmGfYdv9gp0JUVD5S8cC WIhSTv+2X2sfGUwIF8rG+mnht2aPg5ZJaNAC5BHaW2CjGkg7PvSboVlOQzGjFYAt oKl5Ad1TDkEXZBQL6jnJjA1kSWNDTElYo55NjxD3iMfF6tzBBzz5qZQdkKKMQBqB WJlIsJiJnZ4LZQ6D08K5kY4kGl9I5NHJn7dGY+6TW12n7dxoedgyAZFRHUWvsUho rqMY3U35J0Jj3wJl7amdVk3ZJv3XReVlnbzhDFOqZxfiQaP4B2kPkqBpd5uJoLEQ xTQa6GK8+cujo/pVzhc4TGXk0wIDAQABo4ICezCCAncwHQYDVR0OBBYEFJ55cYH/ Rj6Xe0ZL08cnE1OM7TvjMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNUQ3OTI0MTQ1 RTk1MTFGMUE1NEZBMEVCMjM3QUFDMjIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAn BAIAAjAhAwYAJAYIQJsDBgAkBghAywMGACQGCEDNAwcAJAYIQP6jMA0GCSqGSIb3 DQEBCwUAA4IBAQClIWA6t3QlbvTzspk6Zl8wH0i8WVIwghLBHAaA5rhlT1xtF3xR lPhx76NFQhxjmtIenJefynFQFPphpCn54t04JL+DCNiUkI13a3RBJqAI+qXcGk2Z tzngi4F1EOKDD8xcvdfaYx/lLC8njMeREY/ZnfCOd7Op0VdvFJVe+IYf8ODwS4uj Dr2VYu6MPG239YQ8oNo3nOg3kuE44+GDbFTaSGlMrNLo2ooOjnfElQzyG3ffj0ph xDndjIhILumN8S1mOUklZ2rgEQ6WDYgge141vcywTAuSNd5Faeq4uh4oQx3lG3f3 HhcMdm7kHQHMYdbkVc0y/+ERp9KT+9xvpCVP -----END CERTIFICATE-----Generated at Sat Jun 6 08:14:50 2026 by rpki-client