$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8C3FFF5ED31D11EDA062A43DC4F9AE02.roa File: 8C3FFF5ED31D11EDA062A43DC4F9AE02.roa (raw, json) Hash identifier: 412aAFZAbKMV2fIPgC/+0J7vPud0Crivdeyc7WGtA4E= Subject key identifier: 5B:99:CC:6A:3D:DA:1C:EC:DA:4F:F4:AD:06:C1:C3:53:AF:55:0B:80 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 117B Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8C3FFF5ED31D11EDA062A43DC4F9AE02.roa Signing time: Fri 22 May 2026 20:26:56 +0000 ROA not before: Fri 22 May 2026 20:26:56 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 199310 IP address blocks: 2406:840:9680::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4475 (0x117b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:26:56 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bc10-66d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:6e:2e:27:e3:d7:ed:ec:91:49:ff:ad:07:79: 16:95:9e:f4:b2:c1:a5:15:3f:8a:bf:10:55:e7:a2: ee:b0:12:de:1e:44:84:00:4e:7f:04:45:63:e0:7b: f9:9b:1c:ea:13:c5:ed:dd:0c:0f:22:98:d2:d9:38: f0:6e:2e:ce:78:d9:56:4f:89:09:30:46:3a:e8:96: bc:8c:99:37:64:c6:f8:74:8f:12:2e:e0:b1:5d:fc: c4:7b:ea:9b:ce:63:c9:66:2f:10:da:2f:eb:43:78: 9c:e3:97:8c:74:da:01:a7:99:80:b5:45:0f:22:0c: 30:d1:92:a2:51:76:89:70:f3:3e:39:3f:51:95:ae: ac:f9:63:74:85:74:96:70:53:d5:99:0b:fd:d4:07: 84:21:f8:f9:01:ad:1c:a5:d1:06:ce:c0:73:f8:a0: 1c:3e:1f:ce:dd:1c:fe:3f:0a:68:de:27:33:d8:80: 5b:24:e0:4c:cd:5e:5d:07:42:1c:bd:dc:f0:dc:f8: 01:19:9e:ed:95:97:a4:c3:4c:b3:3a:c6:18:98:78: 5b:b4:cf:e9:1e:6d:ed:21:e5:94:bf:3d:bb:ae:8b: 0d:55:34:aa:d8:96:ca:05:b0:fc:41:bc:58:4a:8e: 40:b1:d7:aa:ef:67:1f:0b:26:c1:01:a9:40:37:ca: 33:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:99:CC:6A:3D:DA:1C:EC:DA:4F:F4:AD:06:C1:C3:53:AF:55:0B:80 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8C3FFF5ED31D11EDA062A43DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9680::/44 Signature Algorithm: sha256WithRSAEncryption 99:48:00:4a:5f:50:91:5d:0f:bc:fb:a4:76:59:0d:44:e1:d2: 51:80:0b:fc:06:3c:8c:8c:03:4f:63:ae:fe:fd:a5:6f:46:d7: 3b:6c:3f:2c:f7:9a:ca:06:2e:9a:e7:c6:c9:60:56:41:0f:32: 75:da:1d:c4:45:ff:81:27:36:e8:8e:60:9e:f7:9d:c9:71:18: d2:86:1b:d7:64:46:54:93:08:a0:4d:59:65:62:7c:ca:b6:f9: f5:76:84:ac:c2:21:b4:3b:a4:74:b6:87:de:8f:57:78:7c:ab: 1e:fd:9b:24:89:24:ba:8a:f9:a5:08:66:7d:48:b2:25:f0:bb: 5a:d5:e9:67:e0:d4:3f:28:00:69:69:be:6c:b9:dd:67:05:00: 63:40:53:5f:b6:99:bd:06:40:f2:0b:ef:4b:81:d2:95:bb:4f: 99:d4:90:c6:fe:e1:44:53:75:58:bf:2e:2b:64:da:51:41:7c: eb:81:a8:df:49:aa:ac:82:c6:d5:a9:f7:2f:38:c0:7e:cc:17: be:90:29:ea:2a:45:4f:b8:80:b3:eb:14:26:05:92:5e:5e:61: 7e:09:c6:9d:14:c6:4c:7c:47:6b:c8:6e:ee:b8:ef:5c:16:51: 9d:56:82:42:56:b5:9f:12:0a:ee:7c:69:9e:79:e0:30:8a:a9: 4b:48:f9:6b -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNjU2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmMxMC02NmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA924uJ+PX7eyRSf+tB3kWlZ70ssGlFT+KvxBV56LusBLeHkSEAE5/BEVj4Hv5 mxzqE8Xt3QwPIpjS2Tjwbi7OeNlWT4kJMEY66Ja8jJk3ZMb4dI8SLuCxXfzEe+qb zmPJZi8Q2i/rQ3ic45eMdNoBp5mAtUUPIgww0ZKiUXaJcPM+OT9Rla6s+WN0hXSW cFPVmQv91AeEIfj5Aa0cpdEGzsBz+KAcPh/O3Rz+Pwpo3icz2IBbJOBMzV5dB0Ic vdzw3PgBGZ7tlZekw0yzOsYYmHhbtM/pHm3tIeWUvz27rosNVTSq2JbKBbD8QbxY So5Asdeq72cfCybBAalAN8ozBQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFFuZzGo9 2hzs2k/0rQbBw1OvVQuAMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOEMzRkZGNUVE MzFEMTFFREEwNjJBNDNEQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQJaAMA0GCSqGSIb3DQEBCwUAA4IBAQCZSABKX1CRXQ+8+6R2 WQ1E4dJRgAv8BjyMjANPY67+/aVvRtc7bD8s95rKBi6a58bJYFZBDzJ12h3ERf+B JzbojmCe953JcRjShhvXZEZUkwigTVllYnzKtvn1doSswiG0O6R0tofej1d4fKse /ZskiSS6ivmlCGZ9SLIl8Lta1eln4NQ/KABpab5sud1nBQBjQFNftpm9BkDyC+9L gdKVu0+Z1JDG/uFEU3VYvy4rZNpRQXzrgajfSaqsgsbVqfcvOMB+zBe+kCnqKkVP uICz6xQmBZJeXmF+CcadFMZMfEdryG7uuO9cFlGdVoJCVrWfEgrufGmeeeAwiqlL SPlr -----END CERTIFICATE-----Generated at Sat Jun 6 09:38:59 2026 by rpki-client