$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa File: 86F5AD8C0B6D11ED81E33B71C4F9AE02.roa (raw, json) Hash identifier: u+OKc6T6obDe95Gu0ZD1ZIbrQnD4u1q2t2PQqz2Vdxs= Subject key identifier: 5E:65:60:84:D2:D6:8E:A7:0C:63:44:20:10:81:5F:C9:7B:BC:B5:2F Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1048 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:29:55 +0000 ROA not before: Thu 22 May 2025 20:07:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150141 IP address blocks: 2406:840:e280::/44 maxlen: 48 2406:840:fef5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4168 (0x1048) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493b3-f787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ce:49:00:b9:bd:cc:5c:e9:0c:1a:fd:8d:e7: 0b:31:a8:43:fa:8c:7c:1a:5c:75:4b:22:f9:c6:49: 77:05:cf:9c:16:06:fc:5a:6f:98:34:2d:78:6e:16: 86:5f:09:f1:87:64:69:77:c9:ee:07:aa:0a:3d:2d: 06:49:03:81:c2:7d:cf:6f:6c:dd:03:2b:5c:73:d2: 1c:7f:b6:07:f9:db:01:10:4e:0c:95:4e:cf:7b:3f: ad:4d:c4:b1:26:93:15:46:1c:ab:68:db:8f:02:3f: 74:6a:d1:95:cb:16:06:63:49:c5:67:26:dd:53:80: 04:c2:65:4f:38:f8:75:14:b4:cf:d4:cf:1f:a8:fc: c3:fa:bd:39:f5:99:84:ed:f7:7d:49:de:e4:ea:d4: 4d:f3:41:a0:5a:09:eb:94:03:6a:f7:55:8c:e4:7b: c7:ab:6d:62:1d:96:55:7a:ee:18:9b:bb:ec:7e:26: 79:15:a9:dc:1e:b9:a0:d6:46:cb:c3:e3:9d:a9:5d: bf:52:6e:ef:d5:e0:46:81:7e:3c:94:9a:06:38:cb: 62:c8:85:bf:cc:b1:52:bd:a6:4e:6e:17:37:dc:ac: 51:4d:8b:1b:78:09:b3:8f:1a:e9:75:ae:f1:ab:62: 00:4c:0e:71:8d:45:b4:70:b0:09:01:04:bc:13:ec: c8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:65:60:84:D2:D6:8E:A7:0C:63:44:20:10:81:5F:C9:7B:BC:B5:2F X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e280::/44 2406:840:fef5::/48 Signature Algorithm: sha256WithRSAEncryption 24:01:92:a3:c8:49:4e:db:53:c2:b5:ce:b7:1a:46:d4:48:a0: 84:69:3e:c9:0f:39:f3:2c:9b:15:fc:39:af:31:ce:b8:6c:07: 3b:e2:49:a8:76:fc:bc:81:0d:6e:c0:be:f0:df:8a:af:7c:1b: f4:62:1e:94:90:4a:f0:d9:6c:cc:de:19:f2:23:35:22:98:8c: 94:f5:ff:ea:0f:65:32:91:df:77:92:c2:7b:1a:31:7e:20:08: 39:6d:55:ff:2a:eb:e1:3b:af:89:ad:bd:a1:6f:8b:25:8a:86: 3d:39:1b:97:9f:8f:07:9b:ea:fa:1d:e8:ff:e6:cb:88:2a:fb: b8:ae:c7:23:c2:07:18:ff:20:fc:7e:5a:be:54:d2:c6:c0:23: 07:63:e3:2c:4f:0a:55:82:e0:a8:44:03:22:b5:d5:59:36:f9: fb:32:20:0a:76:58:d4:57:f2:6d:fd:03:eb:a4:18:d0:3d:90: 4a:11:f1:36:69:68:36:05:32:0d:dd:0f:28:2b:00:f6:05:67: 9c:89:6f:24:e7:cc:15:29:e3:8f:e2:ea:da:af:02:25:d4:fc: 0a:7b:86:cf:59:0e:f9:b1:aa:b5:02:9b:08:40:2d:7e:b3:a1: 85:ad:d4:87:be:b4:6a:a0:76:cf:45:fb:01:ec:b5:22:64:d9: fb:67:db:b8 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNiMy1mNzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA085JALm9zFzpDBr9jecLMahD+ox8Glx1SyL5xkl3Bc+cFgb8Wm+YNC14bhaG Xwnxh2Rpd8nuB6oKPS0GSQOBwn3Pb2zdAytcc9Icf7YH+dsBEE4MlU7Pez+tTcSx JpMVRhyraNuPAj90atGVyxYGY0nFZybdU4AEwmVPOPh1FLTP1M8fqPzD+r059ZmE 7fd9Sd7k6tRN80GgWgnrlANq91WM5HvHq21iHZZVeu4Ym7vsfiZ5FancHrmg1kbL w+OdqV2/Um7v1eBGgX48lJoGOMtiyIW/zLFSvaZObhc33KxRTYsbeAmzjxrpda7x q2IATA5xjUW0cLAJAQS8E+zILwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFF5lYITS 1o6nDGNEIBCBX8l7vLUvMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODZGNUFEOEMw QjZEMTFFRDgxRTMzQjcxQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQOKAAwcAJAYIQP71MA0GCSqGSIb3DQEBCwUAA4IBAQAkAZKj yElO21PCtc63GkbUSKCEaT7JDznzLJsV/DmvMc64bAc74kmodvy8gQ1uwL7w34qv fBv0Yh6UkErw2WzM3hnyIzUimIyU9f/qD2Uykd93ksJ7GjF+IAg5bVX/KuvhO6+J rb2hb4slioY9ORuXn48Hm+r6Hej/5suIKvu4rscjwgcY/yD8flq+VNLGwCMHY+Ms TwpVguCoRAMitdVZNvn7MiAKdljUV/Jt/QPrpBjQPZBKEfE2aWg2BTIN3Q8oKwD2 BWeciW8k58wVKeOP4urarwIl1PwKe4bPWQ75saq1ApsIQC1+s6GFrdSHvrRqoHbP RfsB7LUiZNn7Z9u4 -----END CERTIFICATE-----Generated at Sat Mar 7 02:26:20 2026 by rpki-client