$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa File: 86F5AD8C0B6D11ED81E33B71C4F9AE02.roa (raw, json) Hash identifier: FjLCOddC8ypJcQSVuUC7BnWUJOfS6rffk/neAtLSEXk= Subject key identifier: 5E:DA:3A:D4:3E:84:A0:A7:39:E4:AF:3F:81:1E:CC:EC:6D:C1:56:A9 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 114C Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa Signing time: Fri 22 May 2026 20:25:27 +0000 ROA not before: Fri 22 May 2026 20:25:27 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 150141 IP address blocks: 2406:840:e280::/44 maxlen: 48 2406:840:fef5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4428 (0x114c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:25:27 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbb7-a93c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:83:5a:3c:bd:72:f3:58:8d:0a:7b:88:e8:f9: 71:bd:b1:55:b3:34:1a:69:fc:b6:e1:dc:4c:ca:f3: 55:4e:05:b4:20:3e:25:05:ed:dc:b0:cd:6a:fd:c3: 2d:53:a5:db:90:f9:55:a4:7e:af:e5:ee:ec:22:5b: 1c:10:56:d4:0f:c4:ab:24:47:c0:81:45:6e:11:17: 69:04:80:a7:17:4d:b0:01:08:9d:e0:59:29:8a:78: 46:cc:db:c4:9b:cd:57:93:c7:68:c6:91:10:74:a5: bc:02:05:c3:a4:5c:82:dd:59:b0:68:3c:51:fe:90: fa:9d:2d:72:67:d7:73:dd:ec:71:d2:6f:ed:4e:a1: de:08:8e:44:91:7d:92:bd:52:b6:18:ee:d9:9c:4e: b0:c0:2b:a9:3f:28:90:01:a4:db:a8:aa:55:23:f7: 28:c7:80:00:80:d7:69:86:e1:87:e1:02:42:32:0e: 1b:fa:dd:0a:94:9f:f0:f7:41:e5:59:0d:e0:b8:cd: d0:e3:d1:bb:17:05:9f:de:95:73:93:4b:b6:e8:82: f3:d9:6d:ce:68:19:01:cf:fc:49:98:71:86:7b:43: 03:37:4d:cf:64:03:43:fb:31:ea:35:39:8d:89:e6: fb:d1:c2:1d:3e:0d:d8:02:39:a8:9c:a8:8f:96:33: 71:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:DA:3A:D4:3E:84:A0:A7:39:E4:AF:3F:81:1E:CC:EC:6D:C1:56:A9 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e280::/44 2406:840:fef5::/48 Signature Algorithm: sha256WithRSAEncryption a8:1c:be:c9:40:4a:ee:95:4a:9e:b4:23:3e:d2:1c:0e:c4:70: 39:05:29:0b:88:70:30:4c:c6:86:12:73:98:b5:83:82:11:37: 84:86:7b:aa:44:30:a9:82:4a:99:ec:21:32:eb:8f:ac:99:e2: 5d:95:b7:d7:cb:08:71:5d:4e:9c:e4:07:4c:fa:ab:80:08:d7: 65:b2:c6:0b:b8:5a:48:a0:8c:63:2e:80:08:54:e2:ec:5f:63: 9d:69:0c:f3:b3:2f:28:78:19:93:57:91:50:e1:ad:d2:d8:c9: 6b:5b:d5:db:d7:8b:f4:e0:a8:ca:2e:2a:bf:ef:00:30:48:5b: 86:24:bf:8b:db:20:3d:12:00:72:ed:5e:25:f0:fe:29:40:6a: 3f:d7:d3:4d:59:fe:ce:b9:f6:bd:b9:3c:a9:de:04:58:54:56: 9b:0c:c6:8f:cf:3f:8a:28:bf:59:5c:f3:f7:a5:c3:52:e3:1c: 8a:06:0f:1b:9f:33:40:42:19:d6:d3:26:51:b2:af:73:17:1f: a2:27:d2:43:92:02:4a:50:a2:32:01:74:07:91:15:c8:14:1f: ec:5c:79:04:e3:86:96:98:21:fc:91:06:8c:5b:5c:1a:30:af: 98:d6:2f:7b:9c:0f:73:fc:5a:73:2b:41:75:c5:ec:d4:2b:05: 65:53:aa:fb -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNTI3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJiNy1hOTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYNaPL1y81iNCnuI6PlxvbFVszQaafy24dxMyvNVTgW0ID4lBe3csM1q/cMt U6XbkPlVpH6v5e7sIlscEFbUD8SrJEfAgUVuERdpBICnF02wAQid4FkpinhGzNvE m81Xk8doxpEQdKW8AgXDpFyC3VmwaDxR/pD6nS1yZ9dz3exx0m/tTqHeCI5EkX2S vVK2GO7ZnE6wwCupPyiQAaTbqKpVI/cox4AAgNdphuGH4QJCMg4b+t0KlJ/w90Hl WQ3guM3Q49G7FwWf3pVzk0u26ILz2W3OaBkBz/xJmHGGe0MDN03PZAND+zHqNTmN ieb70cIdPg3YAjmonKiPljNxUQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFF7aOtQ+ hKCnOeSvP4EezOxtwVapMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODZGNUFEOEMw QjZEMTFFRDgxRTMzQjcxQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQOKAAwcAJAYIQP71MA0GCSqGSIb3DQEBCwUAA4IBAQCoHL7J QErulUqetCM+0hwOxHA5BSkLiHAwTMaGEnOYtYOCETeEhnuqRDCpgkqZ7CEy64+s meJdlbfXywhxXU6c5AdM+quACNdlssYLuFpIoIxjLoAIVOLsX2OdaQzzsy8oeBmT V5FQ4a3S2MlrW9Xb14v04KjKLiq/7wAwSFuGJL+L2yA9EgBy7V4l8P4pQGo/19NN Wf7Oufa9uTyp3gRYVFabDMaPzz+KKL9ZXPP3pcNS4xyKBg8bnzNAQhnW0yZRsq9z Fx+iJ9JDkgJKUKIyAXQHkRXIFB/sXHkE44aWmCH8kQaMW1waMK+Y1i97nA9z/Fpz K0F1xezUKwVlU6r7 -----END CERTIFICATE-----Generated at Sat Jun 6 08:20:40 2026 by rpki-client