$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8E5EC00837B811EF93152431C4F9AE02.roa File: 8E5EC00837B811EF93152431C4F9AE02.roa (raw, json) Hash identifier: RHbPXMNseOICqyAV9kvjohVze5cfGjxudmfvSJg68Kw= Subject key identifier: 48:A0:5A:EF:8A:9F:C6:BC:25:F0:0A:B5:41:8A:3C:C7:BA:42:08:41 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1136 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8E5EC00837B811EF93152431C4F9AE02.roa Signing time: Fri 22 May 2026 20:24:47 +0000 ROA not before: Fri 22 May 2026 20:24:47 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 139589 IP address blocks: 2406:840:f200::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4406 (0x1136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:24:47 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bb8f-4e2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b9:d4:04:a4:b4:25:9c:9b:13:a6:87:02:46: 59:aa:21:50:9e:89:95:f0:ac:47:b1:a1:54:cd:43: ed:f5:1f:37:a5:4b:71:a1:e2:43:e6:ac:7f:fd:8b: 02:07:44:ce:a1:57:ef:4a:64:9e:3c:76:10:d0:19: 28:95:72:d3:d3:e0:89:71:f7:05:93:5a:e0:41:08: 35:ae:50:3d:8b:89:60:ea:a3:af:88:6e:1f:97:05: 10:ca:50:23:18:b8:eb:51:88:58:15:4a:01:62:e8: d3:bf:2d:5d:da:0a:e3:f6:8c:2f:f3:c6:f0:e2:c0: c0:3a:68:27:d5:3c:3e:6f:da:9d:d5:cb:27:8e:6b: ff:6e:30:f0:11:69:b1:31:ec:26:5a:48:3b:28:e2: 7a:18:0c:c5:0c:ae:3b:8e:35:1e:b9:fc:95:9b:e1: 98:4d:82:84:fa:3b:fe:42:07:ef:72:34:3b:94:0f: 0f:14:30:08:7a:f2:10:66:5d:d3:c0:94:1a:15:5a: b3:73:8d:e9:9f:bd:91:e5:73:76:39:23:43:2a:8e: 14:9a:49:3a:d9:02:67:55:c0:ef:de:c4:44:d2:2b: 85:af:0d:97:61:fb:59:d9:13:4e:80:7f:b8:58:eb: cb:91:41:61:23:8d:d3:4a:ca:c1:4a:d2:fa:6b:e6: 9b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A0:5A:EF:8A:9F:C6:BC:25:F0:0A:B5:41:8A:3C:C7:BA:42:08:41 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8E5EC00837B811EF93152431C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:f200::/44 Signature Algorithm: sha256WithRSAEncryption 16:dd:2d:bd:3e:23:ab:73:19:09:65:c6:b0:f2:d4:c8:db:af: f5:89:a2:1e:21:7b:f0:8b:c3:a6:63:cc:a8:f8:eb:cc:92:9d: 9e:a7:9b:8e:47:24:07:75:2a:fc:3a:8c:de:4d:21:9d:6f:13: 2f:54:6d:d8:1c:50:68:bc:8a:88:75:81:51:ff:5f:1b:d0:83: ad:23:21:4e:14:b9:94:64:8b:13:e6:4a:bd:1b:04:f2:62:65: 46:70:5e:4a:42:4f:3f:3d:7e:16:19:2d:7d:76:4a:b2:16:55: ca:a4:2f:00:74:c5:3e:d2:b9:1b:84:ea:7e:00:88:d0:bd:48: 0d:fd:df:d0:7a:bc:f6:e3:6a:70:ef:af:77:6e:90:54:27:fa: 97:44:84:16:c7:a6:af:af:81:85:13:0b:2a:5c:50:d6:1f:44: a7:bd:15:f7:2e:0c:db:b1:59:04:71:07:1c:14:b7:4f:a4:e8: e2:7a:36:76:95:f1:f4:ac:0c:9b:25:3f:cb:c2:b1:0e:db:b5: bd:cf:e9:77:bc:a2:1b:6f:bd:1b:aa:24:e8:80:da:c0:a1:84: 5a:1e:72:a4:36:a0:b2:2a:65:24:a6:50:b7:35:51:45:d6:eb: 00:2b:ef:7d:18:a4:f8:5c:6a:bf:b4:e0:6e:03:54:c1:bd:d2: 26:60:c8:dd -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICETYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNDQ3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmI4Zi00ZTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8rnUBKS0JZybE6aHAkZZqiFQnomV8KxHsaFUzUPt9R83pUtxoeJD5qx//YsC B0TOoVfvSmSePHYQ0BkolXLT0+CJcfcFk1rgQQg1rlA9i4lg6qOviG4flwUQylAj GLjrUYhYFUoBYujTvy1d2grj9owv88bw4sDAOmgn1Tw+b9qd1csnjmv/bjDwEWmx MewmWkg7KOJ6GAzFDK47jjUeufyVm+GYTYKE+jv+QgfvcjQ7lA8PFDAIevIQZl3T wJQaFVqzc43pn72R5XN2OSNDKo4Umkk62QJnVcDv3sRE0iuFrw2XYftZ2RNOgH+4 WOvLkUFhI43TSsrBStL6a+abLQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFEigWu+K n8a8JfAKtUGKPMe6QghBMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOEU1RUMwMDgz N0I4MTFFRjkzMTUyNDMxQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQPIAMA0GCSqGSIb3DQEBCwUAA4IBAQAW3S29PiOrcxkJZcaw 8tTI26/1iaIeIXvwi8OmY8yo+OvMkp2ep5uORyQHdSr8OozeTSGdbxMvVG3YHFBo vIqIdYFR/18b0IOtIyFOFLmUZIsT5kq9GwTyYmVGcF5KQk8/PX4WGS19dkqyFlXK pC8AdMU+0rkbhOp+AIjQvUgN/d/Qerz242pw7693bpBUJ/qXRIQWx6avr4GFEwsq XFDWH0SnvRX3LgzbsVkEcQccFLdPpOjiejZ2lfH0rAybJT/LwrEO27W9z+l3vKIb b70bqiTogNrAoYRaHnKkNqCyKmUkplC3NVFF1usAK+99GKT4XGq/tOBuA1TBvdIm YMjd -----END CERTIFICATE-----Generated at Sat Jun 6 08:20:39 2026 by rpki-client