$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa File: 624BB126331A11EFAB575211C4F9AE02.roa (raw, json) Hash identifier: qIoN3/THr/dkzNN3RxtQzUN1owv/ZWAmFo5o/t2MYQM= Subject key identifier: 00:96:14:0D:24:45:35:13:39:1A:33:40:C4:7F:86:27:96:67:43:20 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1166 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa Signing time: Fri 22 May 2026 20:26:17 +0000 ROA not before: Fri 22 May 2026 20:26:17 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 153033 IP address blocks: 2406:840:fdb0::/44 maxlen: 48 2406:840:fe93::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4454 (0x1166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:26:17 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbe9-d038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:29:5a:21:30:4b:aa:29:ca:8e:34:a4:f6:1b: 39:8d:cb:34:54:5d:e2:8c:e5:ef:0d:be:5f:d5:3a: 87:10:48:40:aa:41:06:a0:e3:ad:0c:81:6d:d3:38: 94:a1:c5:86:b7:ae:72:24:5f:d7:98:08:87:7d:4a: fd:f4:9b:dc:66:7c:3d:d9:a7:22:ec:7d:84:45:36: b0:ce:f8:e7:aa:ce:43:ec:83:33:5e:bc:60:7c:20: 07:34:1e:22:31:17:73:30:72:85:26:41:0b:9c:fb: 31:5d:3b:d5:e4:e6:8a:fc:cb:f8:b1:0a:dd:78:eb: b0:a7:81:cd:c6:87:48:dc:47:ad:88:d5:92:e6:64: 99:92:f7:4a:12:95:ae:69:90:b5:27:22:0f:9b:52: bc:16:c2:2d:d4:98:18:d5:99:e0:f4:54:90:8b:b9: 88:5b:b5:19:af:23:f4:38:c7:19:56:d1:c7:78:99: a3:4f:c9:17:1b:61:19:25:dc:4f:0d:bb:d2:aa:5d: 17:94:65:ce:c1:99:2f:9e:55:80:ce:a8:69:df:72: cf:6a:41:4c:af:30:9a:aa:2a:e0:b5:fe:ca:d5:35: 19:d3:51:8d:1f:d6:40:88:cb:1b:5a:3a:c5:c4:aa: 5d:0e:f8:54:65:39:59:fb:07:92:d8:70:d4:f8:c0: 82:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:96:14:0D:24:45:35:13:39:1A:33:40:C4:7F:86:27:96:67:43:20 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fdb0::/44 2406:840:fe93::/48 Signature Algorithm: sha256WithRSAEncryption 5f:15:05:00:d9:e9:c2:04:71:0a:a7:cb:ce:96:b3:d8:64:e5: 23:ce:c1:25:77:2f:62:e0:33:9b:ce:e6:e6:88:37:31:9c:c5: 29:47:4c:6c:b2:15:52:6d:c5:4d:b2:e3:b1:24:94:fe:05:51: fa:72:79:fb:e8:db:ea:37:0a:82:74:3e:a4:cb:b0:90:cb:f1: 49:d9:e1:dd:51:b3:af:54:f1:98:4d:d2:6e:18:75:b8:f9:11: 6d:0d:7c:18:ef:b3:ca:a8:16:ec:f1:e6:8a:b6:dc:79:45:36: 93:79:97:55:0a:2e:77:b3:55:c1:39:d3:44:81:36:b7:d5:60: c1:dc:4f:14:7d:5a:7c:e5:68:78:84:98:1b:36:e5:55:ac:7e: d4:4e:70:09:38:b0:0a:1a:43:75:55:88:f6:9b:ce:ab:a9:cc: ea:13:08:e8:b9:97:ec:1d:8d:62:58:6e:4a:f1:1a:e5:50:5e: 82:1f:c7:73:dd:5e:82:9d:8a:0a:61:ca:2f:20:ac:9b:52:d7: d5:d7:f7:3c:ae:ac:e0:54:4a:a9:44:b6:72:5e:ce:27:f1:a6: d9:79:66:a9:d3:af:3e:f4:11:48:37:d1:0c:e9:98:ca:24:9a: 9d:88:d3:03:5d:b5:05:7e:dd:e4:c6:f3:7b:cc:d5:7c:b5:fa: 88:73:07:05 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNjE3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJlOS1kMDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ylaITBLqinKjjSk9hs5jcs0VF3ijOXvDb5f1TqHEEhAqkEGoOOtDIFt0ziU ocWGt65yJF/XmAiHfUr99JvcZnw92aci7H2ERTawzvjnqs5D7IMzXrxgfCAHNB4i MRdzMHKFJkELnPsxXTvV5OaK/Mv4sQrdeOuwp4HNxodI3EetiNWS5mSZkvdKEpWu aZC1JyIPm1K8FsIt1JgY1Zng9FSQi7mIW7UZryP0OMcZVtHHeJmjT8kXG2EZJdxP DbvSql0XlGXOwZkvnlWAzqhp33LPakFMrzCaqirgtf7K1TUZ01GNH9ZAiMsbWjrF xKpdDvhUZTlZ+weS2HDU+MCCZwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFACWFA0k RTUTORozQMR/hieWZ0MgMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjI0QkIxMjYz MzFBMTFFRkFCNTc1MjExQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQP2wAwcAJAYIQP6TMA0GCSqGSIb3DQEBCwUAA4IBAQBfFQUA 2enCBHEKp8vOlrPYZOUjzsEldy9i4DObzubmiDcxnMUpR0xsshVSbcVNsuOxJJT+ BVH6cnn76NvqNwqCdD6ky7CQy/FJ2eHdUbOvVPGYTdJuGHW4+RFtDXwY77PKqBbs 8eaKttx5RTaTeZdVCi53s1XBOdNEgTa31WDB3E8UfVp85Wh4hJgbNuVVrH7UTnAJ OLAKGkN1VYj2m86rqczqEwjouZfsHY1iWG5K8RrlUF6CH8dz3V6CnYoKYcovIKyb UtfV1/c8rqzgVEqpRLZyXs4n8abZeWap068+9BFIN9EM6ZjKJJqdiNMDXbUFft3k xvN7zNV8tfqIcwcF -----END CERTIFICATE-----Generated at Sat Jun 6 08:20:24 2026 by rpki-client