$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa File: 8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa (raw, json) Hash identifier: 0zdMUJipfHQOMa+SroUozQ5BERKZbfkJ6rkndXRHJqw= Subject key identifier: 02:1A:44:3A:8D:D6:71:A4:23:C4:B8:E5:42:A7:19:EE:4F:0B:CF:F5 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 114D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa Signing time: Fri 22 May 2026 20:25:30 +0000 ROA not before: Fri 22 May 2026 20:25:30 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 150173 IP address blocks: 2406:840:fa00::/44 maxlen: 48 2406:840:fed1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4429 (0x114d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:25:30 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbba-c5d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1a:eb:18:c5:a5:9a:f3:8b:85:40:09:36:06: 2a:96:e1:0b:74:fe:86:47:f7:8f:3b:de:5c:b8:e2: 38:60:b5:72:e6:c9:29:70:58:9c:d9:23:07:c0:77: 7e:81:92:6a:82:ec:fd:fc:f6:e9:d6:14:3c:a0:c6: ac:c8:af:f0:41:9a:44:df:08:13:30:be:6a:e5:b8: 48:a4:01:c4:1f:a6:5b:a4:c9:1f:a6:ae:2a:f1:1a: 62:18:ce:0b:a6:2a:27:6e:19:7b:1c:b1:ec:ad:3d: 23:d3:ac:e3:88:74:11:4d:68:40:cc:25:48:f6:51: dc:91:8f:b2:67:8b:be:4d:59:88:4e:77:ad:c2:ce: 4c:8d:7e:df:83:a3:23:28:6e:23:e5:50:58:7d:cf: 52:47:1c:8c:d0:34:7c:bf:54:f4:45:0d:6b:5c:3e: 27:07:40:64:01:ac:05:0a:2c:57:76:1f:37:43:ab: e7:52:71:bd:af:28:e5:15:21:47:9e:52:cf:a4:9f: 20:c1:fa:11:ee:13:81:6f:98:37:4e:04:14:7c:5a: fb:a4:ca:3f:d8:6e:98:e3:e8:5f:b0:ee:6b:6e:0b: 53:52:de:cb:d3:c2:f8:ac:27:7c:48:1d:ee:f5:14: 41:a6:6d:9b:93:d4:c5:d0:12:e8:79:3f:ce:d2:10: 67:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:1A:44:3A:8D:D6:71:A4:23:C4:B8:E5:42:A7:19:EE:4F:0B:CF:F5 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fa00::/44 2406:840:fed1::/48 Signature Algorithm: sha256WithRSAEncryption 33:9d:50:84:13:5e:b3:cf:36:76:e1:17:76:52:19:19:77:95: 3a:17:eb:7c:31:ca:c8:0b:26:15:b0:f4:29:02:62:c3:8d:7e: 37:53:d4:eb:4b:eb:95:1a:d4:7d:84:83:f2:c5:07:0a:e2:a7: e0:57:29:11:00:13:ad:49:31:1c:cb:0a:d9:bb:7a:c1:7c:ef: 45:c2:93:e6:92:52:d6:6a:04:0c:96:10:2c:f6:f3:0a:2e:42: cc:e1:5f:7e:4f:49:54:b7:22:1e:35:89:71:99:15:55:60:e6: c8:db:20:a4:0f:2f:6c:bf:84:3e:87:e7:4f:59:77:d4:67:0b: 54:1d:5d:b6:0e:d9:42:04:48:7b:89:1a:73:79:25:13:dc:67: c1:a2:61:30:4d:23:f0:17:14:43:1d:80:b9:7b:92:ec:cb:f0: d9:f6:b2:e8:1e:2a:e4:be:58:16:50:2e:81:de:39:f2:24:51: 4e:78:ad:bf:1c:70:75:76:06:78:bc:21:d4:19:d0:23:da:7d: 73:2a:09:f5:01:2d:04:91:b4:d8:fd:ed:10:9e:2b:f9:06:b4: 4e:e7:3c:66:d9:14:95:80:97:fb:10:05:66:b4:3b:57:b4:89: ef:76:2f:46:b5:df:e4:4f:22:5b:1c:0c:b4:b4:14:6c:72:3b: 9c:1c:28:7d -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNTMwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJiYS1jNWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BrrGMWlmvOLhUAJNgYqluELdP6GR/ePO95cuOI4YLVy5skpcFic2SMHwHd+ gZJqguz9/Pbp1hQ8oMasyK/wQZpE3wgTML5q5bhIpAHEH6ZbpMkfpq4q8RpiGM4L pionbhl7HLHsrT0j06zjiHQRTWhAzCVI9lHckY+yZ4u+TVmITnetws5MjX7fg6Mj KG4j5VBYfc9SRxyM0DR8v1T0RQ1rXD4nB0BkAawFCixXdh83Q6vnUnG9ryjlFSFH nlLPpJ8gwfoR7hOBb5g3TgQUfFr7pMo/2G6Y4+hfsO5rbgtTUt7L08L4rCd8SB3u 9RRBpm2bk9TF0BLoeT/O0hBnpwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFAIaRDqN 1nGkI8S45UKnGe5PC8/1MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOEFCQUI5QjQy MzlFMTFFREFEM0JBMzZCQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQPoAAwcAJAYIQP7RMA0GCSqGSIb3DQEBCwUAA4IBAQAznVCE E16zzzZ24Rd2UhkZd5U6F+t8McrICyYVsPQpAmLDjX43U9TrS+uVGtR9hIPyxQcK 4qfgVykRABOtSTEcywrZu3rBfO9FwpPmklLWagQMlhAs9vMKLkLM4V9+T0lUtyIe NYlxmRVVYObI2yCkDy9sv4Q+h+dPWXfUZwtUHV22DtlCBEh7iRpzeSUT3GfBomEw TSPwFxRDHYC5e5Lsy/DZ9rLoHirkvlgWUC6B3jnyJFFOeK2/HHB1dgZ4vCHUGdAj 2n1zKgn1AS0EkbTY/e0Qniv5BrRO5zxm2RSVgJf7EAVmtDtXtInvdi9Gtd/kTyJb HAy0tBRscjucHCh9 -----END CERTIFICATE-----Generated at Sat Jun 6 09:39:16 2026 by rpki-client