$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/684E2D92AA1111EF9B82966FC4F9AE02.roa File: 684E2D92AA1111EF9B82966FC4F9AE02.roa (raw, json) Hash identifier: QVEhDvsoxw2OBweM0dUfi36E9dRUNbP/Po/b/epCkRk= Subject key identifier: 34:8D:B5:A9:D4:35:34:15:F6:56:A9:2C:46:0A:26:15:75:D2:F9:E6 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1036 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/684E2D92AA1111EF9B82966FC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:29:40 +0000 ROA not before: Thu 22 May 2025 20:06:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140682 IP address blocks: 2406:840:9960::/44 maxlen: 48 2406:840:feae::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 16:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4150 (0x1036) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493a4-de20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:37:68:70:4f:37:9b:e1:fd:10:31:f5:81:d3: 23:6f:5f:a0:5d:65:c6:cd:92:5e:ad:50:5a:99:d0: 90:e2:37:f3:42:69:69:c3:dd:4f:f7:90:55:ec:03: b4:72:62:98:e9:a4:51:4b:e6:f2:00:6e:9f:95:27: 05:ea:0c:a3:e4:fc:8b:ab:5b:87:92:e1:bc:e9:8e: ca:ce:2a:56:af:d2:bb:ae:d4:8f:15:b0:5a:c1:95: 5a:50:9e:c4:02:9a:9a:7f:4f:c7:2d:bb:61:05:fd: 80:64:d6:3d:f6:9f:2d:87:14:36:1c:4e:79:e8:ee: e9:b5:b2:01:d6:71:ec:70:cd:e3:ba:2f:c0:e6:21: 10:50:3d:2d:95:ed:70:25:27:eb:4e:47:a2:0e:3e: 88:8e:94:fb:46:ce:0a:79:73:63:41:bf:55:db:5a: e9:d2:b7:f8:8f:19:f4:82:3b:c1:88:ac:6a:70:c3: a9:9d:9f:06:85:69:90:1c:9a:91:8e:31:56:71:f4: 15:f8:b0:4d:e1:9f:e8:01:07:67:9c:28:17:b6:46: b2:3d:8e:49:0f:d0:6b:65:45:e9:b6:46:05:36:85: 84:39:73:55:69:cd:3c:78:3a:1d:3c:58:d7:b8:c0: 6a:b3:e7:c7:98:d1:54:aa:ec:c9:2a:ec:06:43:90: 5b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:8D:B5:A9:D4:35:34:15:F6:56:A9:2C:46:0A:26:15:75:D2:F9:E6 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/684E2D92AA1111EF9B82966FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9960::/44 2406:840:feae::/48 Signature Algorithm: sha256WithRSAEncryption 7c:53:bd:dc:f4:77:77:a0:7d:58:ed:16:c5:79:0e:0f:cf:a1: 74:c9:90:7a:2e:4c:03:fb:78:ea:cc:1b:8b:13:5a:40:35:d9: 8b:e2:61:b5:7c:52:66:72:6f:2f:5c:e7:7b:ce:f3:fe:e6:f3: 43:ab:74:a7:fb:4b:08:84:ea:ea:10:bc:8d:d8:80:5f:d1:ac: 96:bd:3f:25:47:2b:1f:c8:f4:9c:94:7d:0a:f7:0f:b2:4d:ad: c3:89:8b:c1:78:0f:7e:a4:e1:b1:37:22:9d:1d:8f:9e:d8:dc: 43:e0:08:e4:a3:14:f3:b4:5f:1c:d6:42:58:b2:e9:dc:7a:d1: d3:19:e1:9e:9b:f8:73:bf:80:42:ba:f5:ec:16:9f:8b:84:2d: cb:c3:b1:3b:21:bd:23:b7:6f:d6:83:3b:fb:fe:9d:8b:20:74: 5f:86:d4:9f:2e:79:73:a5:94:f8:f3:46:84:c5:ab:23:a1:9f: 6e:cb:38:5c:d4:a9:80:07:29:d1:70:ac:df:d4:b6:8a:a7:37: ea:f0:b5:f6:77:d1:f6:6d:d3:a9:0b:48:eb:d2:9c:f6:37:78: b8:58:bd:24:00:7d:ea:d5:ad:ea:13:85:0a:e2:17:e3:17:ea: cd:3d:8b:b5:46:03:57:4c:5f:2f:e8:b3:e4:8c:f7:7a:4e:4b: be:a0:21:eb -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNhNC1kZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjdocE83m+H9EDH1gdMjb1+gXWXGzZJerVBamdCQ4jfzQmlpw91P95BV7AO0 cmKY6aRRS+byAG6flScF6gyj5PyLq1uHkuG86Y7KzipWr9K7rtSPFbBawZVaUJ7E Apqaf0/HLbthBf2AZNY99p8thxQ2HE556O7ptbIB1nHscM3jui/A5iEQUD0tle1w JSfrTkeiDj6IjpT7Rs4KeXNjQb9V21rp0rf4jxn0gjvBiKxqcMOpnZ8GhWmQHJqR jjFWcfQV+LBN4Z/oAQdnnCgXtkayPY5JD9BrZUXptkYFNoWEOXNVac08eDodPFjX uMBqs+fHmNFUquzJKuwGQ5BbXQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFDSNtanU NTQV9lapLEYKJhV10vnmMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjg0RTJEOTJB QTExMTFFRjlCODI5NjZGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQJlgAwcAJAYIQP6uMA0GCSqGSIb3DQEBCwUAA4IBAQB8U73c 9Hd3oH1Y7RbFeQ4Pz6F0yZB6LkwD+3jqzBuLE1pANdmL4mG1fFJmcm8vXOd7zvP+ 5vNDq3Sn+0sIhOrqELyN2IBf0ayWvT8lRysfyPSclH0K9w+yTa3DiYvBeA9+pOGx NyKdHY+e2NxD4AjkoxTztF8c1kJYsuncetHTGeGem/hzv4BCuvXsFp+LhC3Lw7E7 Ib0jt2/Wgzv7/p2LIHRfhtSfLnlzpZT480aExasjoZ9uyzhc1KmABynRcKzf1LaK pzfq8LX2d9H2bdOpC0jr0pz2N3i4WL0kAH3q1a3qE4UK4hfjF+rNPYu1RgNXTF8v 6LPkjPd6Tku+oCHr -----END CERTIFICATE-----Generated at Mon Mar 16 12:17:43 2026 by rpki-client