$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa File: 6A8D54D4411211EEA2E98A76C4F9AE02.roa (raw, json) Hash identifier: ypIUxBJKMP1CO3UJs7VVJ1mxBYx4+U3zhPoAvCFXO8Y= Subject key identifier: F7:77:12:3F:98:EA:A0:E2:B9:0F:5D:B8:99:6B:DE:53:08:1F:73:43 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1156 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa Signing time: Fri 22 May 2026 20:25:47 +0000 ROA not before: Fri 22 May 2026 20:25:46 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 151673 IP address blocks: 2406:840:efa0::/44 maxlen: 48 2406:840:fede::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4438 (0x1156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:25:46 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbca-86c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:60:b9:c5:25:da:4d:8a:01:6d:45:13:12:f7: 7f:a9:74:a2:14:20:d9:a3:4d:da:14:85:f5:de:fd: ac:de:3d:32:6c:ba:f7:1a:1c:73:78:dd:1b:40:3e: 69:dd:5a:1f:cb:c4:a6:c7:e2:29:a7:98:5e:71:15: 70:29:5c:ef:69:b1:68:04:7e:a0:7b:3b:98:f7:34: c8:8c:5c:82:e1:fa:30:23:ce:11:5e:2b:cf:e0:0c: 55:37:4e:08:4e:2e:e5:0a:e1:d3:37:e9:7a:d4:c2: f4:62:39:86:f8:99:39:20:05:f4:94:c4:0e:f7:0e: 9e:26:f1:33:b0:e5:a1:60:ac:d4:49:40:9e:ef:ef: a7:96:0f:ac:16:40:97:04:d4:5c:4d:cb:97:97:9d: 42:da:3e:05:ff:23:33:ca:a3:5f:4c:48:ce:22:1f: a6:e3:26:80:28:f8:d0:2d:98:2a:4b:3d:ff:75:9c: e9:bb:ae:b1:b2:7e:2d:22:0b:e1:c6:9b:22:74:a1: 2d:8c:71:32:ce:3e:93:b9:a7:63:8b:ff:54:b2:0f: b1:ba:00:10:21:63:ab:e6:26:1e:ba:61:62:60:05: a2:30:f0:07:27:e2:e7:87:cd:32:1d:10:f5:54:4f: fb:e6:a1:0e:ef:26:8d:33:5d:17:ee:b9:a7:3f:65: ee:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:77:12:3F:98:EA:A0:E2:B9:0F:5D:B8:99:6B:DE:53:08:1F:73:43 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:efa0::/44 2406:840:fede::/48 Signature Algorithm: sha256WithRSAEncryption 68:44:15:a1:f6:9e:d9:03:1d:b9:1a:9b:f3:ba:18:1e:68:fb: db:4b:5d:16:ce:5c:9e:db:ef:0a:05:7b:f1:58:02:dc:70:df: 3b:fd:ac:39:89:c2:01:4f:34:56:bf:6c:a8:d5:06:fe:2b:a6: d9:12:15:ce:be:40:d1:0c:37:dc:77:8b:ba:c1:4d:93:e0:77: 13:0f:f8:cc:0f:d4:c0:6b:9d:b2:9b:11:3a:68:03:2e:9b:d8: 97:15:8c:69:aa:95:69:c4:5c:57:47:35:00:66:dc:6d:e2:da: e1:28:ad:af:0c:d1:5a:af:4d:db:fb:fa:80:fd:ef:fa:31:a7: 55:6e:88:ab:9f:72:e5:0e:09:14:ba:55:a9:aa:1b:cf:c9:ef: a6:aa:32:ea:a1:c8:fa:2e:b9:94:12:e4:0a:2b:1e:f0:2d:c4: 53:fb:33:7b:e5:a4:dd:07:cf:02:c0:2b:62:2a:c8:f3:b5:2e: 35:5c:78:5a:bd:37:5d:72:c9:37:66:05:87:9a:fd:ea:41:8f: 37:ac:4b:0d:19:01:95:a1:ea:36:bb:33:21:93:aa:9f:63:89: 59:33:9b:66:d6:5d:c8:48:a3:c9:74:b1:73:78:70:00:a0:ee: b0:bc:fb:f6:f7:c2:73:3a:a8:45:0e:72:e9:4f:ee:ed:31:c6: ff:e7:d0:95 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNTQ2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJjYS04NmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmC5xSXaTYoBbUUTEvd/qXSiFCDZo03aFIX13v2s3j0ybLr3GhxzeN0bQD5p 3Vofy8Smx+Ipp5hecRVwKVzvabFoBH6gezuY9zTIjFyC4fowI84RXivP4AxVN04I Ti7lCuHTN+l61ML0YjmG+Jk5IAX0lMQO9w6eJvEzsOWhYKzUSUCe7++nlg+sFkCX BNRcTcuXl51C2j4F/yMzyqNfTEjOIh+m4yaAKPjQLZgqSz3/dZzpu66xsn4tIgvh xpsidKEtjHEyzj6Tuadji/9Usg+xugAQIWOr5iYeumFiYAWiMPAHJ+Lnh80yHRD1 VE/75qEO7yaNM10X7rmnP2XuuQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFPd3Ej+Y 6qDiuQ9duJlr3lMIH3NDMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkE4RDU0RDQ0 MTEyMTFFRUEyRTk4QTc2QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQO+gAwcAJAYIQP7eMA0GCSqGSIb3DQEBCwUAA4IBAQBoRBWh 9p7ZAx25GpvzuhgeaPvbS10Wzlye2+8KBXvxWALccN87/aw5icIBTzRWv2yo1Qb+ K6bZEhXOvkDRDDfcd4u6wU2T4HcTD/jMD9TAa52ymxE6aAMum9iXFYxpqpVpxFxX RzUAZtxt4trhKK2vDNFar03b+/qA/e/6MadVboirn3LlDgkUulWpqhvPye+mqjLq ocj6LrmUEuQKKx7wLcRT+zN75aTdB88CwCtiKsjztS41XHhavTddcsk3ZgWHmv3q QY83rEsNGQGVoeo2uzMhk6qfY4lZM5tm1l3ISKPJdLFzeHAAoO6wvPv298JzOqhF DnLpT+7tMcb/59CV -----END CERTIFICATE-----Generated at Sat Jun 6 08:20:25 2026 by rpki-client