$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5FCBF00EB89511EFA8E14384C4F9AE02.roa File: 5FCBF00EB89511EFA8E14384C4F9AE02.roa (raw, json) Hash identifier: vCGV7gi7WGQj9N6nGspUQ7TbAqet1Um8KqvBl7upQfo= Subject key identifier: 2A:DD:A1:70:CA:B2:51:4A:46:6C:53:92:F8:A9:18:BD:0A:F2:EA:48 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 102A Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5FCBF00EB89511EFA8E14384C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:29:30 +0000 ROA not before: Thu 22 May 2025 20:06:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137908 IP address blocks: 2406:840:ee40::/44 maxlen: 48 2406:840:feaf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 16:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4138 (0x102a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a49399-2315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b3:d7:f3:1d:c8:f7:72:3f:36:54:bd:65:29: 92:6a:19:d6:fe:80:76:91:f2:fa:6d:41:2e:64:bf: be:09:f6:4b:4c:a7:08:e1:94:ca:99:a0:ab:3d:bc: 2a:82:f8:d4:22:a7:ba:69:a0:e4:b3:bc:71:06:7e: f7:f8:2d:43:6c:df:bd:4e:a7:41:82:70:b7:80:13: 32:ee:e1:15:ed:12:7e:8e:dd:89:b8:7d:d6:56:45: 66:b2:41:82:a3:e0:45:2a:8e:5e:70:89:40:64:68: 1e:ad:99:dd:1c:71:56:50:55:4b:71:8f:bc:c7:e9: fa:06:71:d3:be:65:29:f6:4d:98:31:be:c0:b9:e5: 42:2d:00:26:fd:d1:7e:c7:eb:22:32:52:d8:48:50: 45:da:50:56:ea:f0:4a:0a:11:eb:e8:96:0b:1f:48: 26:5c:41:3c:1b:9d:2c:4b:ac:f7:31:2c:01:86:42: ec:3b:37:ab:3c:ca:8f:fc:66:28:33:c8:39:87:cf: c8:10:32:9f:fc:a6:d5:86:58:bd:56:c2:9b:54:7f: 9b:ac:89:c4:cb:3f:f2:e0:de:96:47:01:43:4a:cc: 8a:e4:8b:68:7a:09:39:fe:80:a9:77:aa:ef:ff:43: df:2c:63:ba:57:d9:a4:24:b8:d0:fa:1e:81:2c:c1: b2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:DD:A1:70:CA:B2:51:4A:46:6C:53:92:F8:A9:18:BD:0A:F2:EA:48 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5FCBF00EB89511EFA8E14384C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:ee40::/44 2406:840:feaf::/48 Signature Algorithm: sha256WithRSAEncryption 85:0c:f9:5f:e9:38:b5:33:f7:17:61:5e:ef:74:e6:af:16:66: c9:12:4c:68:8e:a2:88:d4:70:c2:46:f5:d6:38:a5:d6:9f:52: 13:09:d0:22:4c:8e:e1:0c:d5:31:39:e7:ee:2e:4a:15:7c:fa: 55:ec:e0:31:13:e4:25:ae:42:04:7c:4b:48:b2:cd:51:0d:7e: 0c:a0:ff:93:d6:40:da:81:88:2c:d0:09:9d:14:c1:36:c6:91: fd:01:7f:5a:96:ea:0d:96:30:bd:be:fd:14:44:cf:35:44:3a: dd:7b:d8:da:d1:4a:33:4b:72:4b:93:fa:9e:c7:c6:9c:d4:04: c4:8d:56:2b:e2:ae:1d:d6:1c:6d:92:c4:e5:40:2b:7c:b3:08: bc:a3:25:ed:6c:e2:23:5d:c9:9f:f0:22:5a:f1:a2:bf:b7:04: 79:de:89:90:5e:2e:4f:4e:35:12:12:df:21:11:95:89:da:cb: 10:b3:55:46:d7:63:8f:ec:a6:49:32:33:ef:b4:e9:93:a4:3c: 92:14:56:54:7c:36:3c:44:78:e4:ba:85:8b:74:85:c0:79:c7: c2:2f:ef:c1:de:06:92:9f:55:c7:52:59:df:68:0a:69:bb:de: a3:59:0e:95:d0:8c:2f:5a:cd:4b:a0:9c:9e:00:61:cf:68:2a: bb:da:02:75 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICECowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTM5OS0yMzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlrPX8x3I93I/NlS9ZSmSahnW/oB2kfL6bUEuZL++CfZLTKcI4ZTKmaCrPbwq gvjUIqe6aaDks7xxBn73+C1DbN+9TqdBgnC3gBMy7uEV7RJ+jt2JuH3WVkVmskGC o+BFKo5ecIlAZGgerZndHHFWUFVLcY+8x+n6BnHTvmUp9k2YMb7AueVCLQAm/dF+ x+siMlLYSFBF2lBW6vBKChHr6JYLH0gmXEE8G50sS6z3MSwBhkLsOzerPMqP/GYo M8g5h8/IEDKf/KbVhli9VsKbVH+brInEyz/y4N6WRwFDSsyK5Itoegk5/oCpd6rv /0PfLGO6V9mkJLjQ+h6BLMGy3wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFCrdoXDK slFKRmxTkvipGL0K8upIMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNUZDQkYwMEVC ODk1MTFFRkE4RTE0Mzg0QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQO5AAwcAJAYIQP6vMA0GCSqGSIb3DQEBCwUAA4IBAQCFDPlf 6Ti1M/cXYV7vdOavFmbJEkxojqKI1HDCRvXWOKXWn1ITCdAiTI7hDNUxOefuLkoV fPpV7OAxE+QlrkIEfEtIss1RDX4MoP+T1kDagYgs0AmdFME2xpH9AX9aluoNljC9 vv0URM81RDrde9ja0UozS3JLk/qex8ac1ATEjVYr4q4d1hxtksTlQCt8swi8oyXt bOIjXcmf8CJa8aK/twR53omQXi5PTjUSEt8hEZWJ2ssQs1VG12OP7KZJMjPvtOmT pDySFFZUfDY8RHjkuoWLdIXAecfCL+/B3gaSn1XHUlnfaAppu96jWQ6V0IwvWs1L oJyeAGHPaCq72gJ1 -----END CERTIFICATE-----Generated at Mon Mar 16 13:08:38 2026 by rpki-client