$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa File: 961B87D456A111EEB7EDA93AC4F9AE02.roa (raw, json) Hash identifier: CxmFgrVe5WSfT1fViXR2sCbmbSVtNs3dNtD6lshDg6E= Subject key identifier: 20:43:00:D5:19:05:E2:D6:88:2B:30:5D:2B:A3:67:59:E5:C7:26:C7 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1132 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa Signing time: Fri 22 May 2026 20:24:40 +0000 ROA not before: Fri 22 May 2026 20:24:40 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 139216 IP address blocks: 2406:840:e0e0::/44 maxlen: 48 2406:840:eee0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4402 (0x1132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:24:40 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bb88-59ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2c:ea:c3:4b:f3:d2:98:77:a7:b1:d7:5e:b7: af:b2:4f:cd:69:52:59:b0:48:e7:40:4a:f0:5c:10: b7:97:33:97:c5:dd:e6:15:9c:da:15:24:0e:cb:8a: 88:ab:5f:aa:13:19:0b:9a:0d:d0:10:c8:c7:26:04: 20:ba:1b:a4:b9:93:14:a3:be:47:6a:f3:af:8a:61: b9:49:16:94:44:98:c2:8b:c7:7b:67:ad:42:be:fa: 80:d0:38:e1:8b:b0:0f:8d:5c:13:95:54:7b:2e:be: 03:11:ef:e3:3a:d6:c1:4d:1d:f7:cf:55:2c:af:30: 9c:f4:17:fd:3f:1a:d1:57:34:55:55:a1:b9:d2:49: 59:14:e6:20:ee:83:2a:8b:74:ca:92:7c:e5:ad:ee: 72:87:c4:65:2d:94:19:10:84:0f:2d:f2:f1:42:79: a6:c7:2e:5e:05:32:9a:df:6c:07:2a:a5:9f:53:0b: 7c:0b:64:99:7c:94:34:d0:36:42:c5:e1:24:43:b3: 89:cf:01:f2:bd:7f:48:89:20:8e:a5:3f:31:71:96: 1d:a0:93:ae:b8:17:0f:da:d7:a2:09:bd:14:97:b7: cf:bf:8b:71:68:ec:c2:7f:d2:38:0c:ee:38:12:34: 22:63:2c:21:a0:55:d8:77:03:cd:bf:35:0c:8a:90: cf:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:43:00:D5:19:05:E2:D6:88:2B:30:5D:2B:A3:67:59:E5:C7:26:C7 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e0e0::/44 2406:840:eee0::/44 Signature Algorithm: sha256WithRSAEncryption 4d:1b:b0:0a:f4:ff:95:12:a4:c7:56:37:a3:35:9d:69:b9:23: df:cc:cc:5c:18:de:11:fb:68:a3:d5:22:26:d1:6b:39:da:d5: 16:8a:8a:0a:cb:57:c8:a7:e0:58:e2:d4:2e:24:8d:af:24:ac: e2:78:07:b6:c1:1c:2a:2f:0e:ad:16:0b:76:4d:4e:1c:04:c2: 8a:97:6e:4a:92:1c:f3:f2:bf:35:e0:c4:9a:68:5f:0b:7a:99: 54:e2:bb:0a:69:87:83:89:e2:33:82:57:cb:2b:6a:e7:2c:11: 1f:47:3e:07:46:9b:13:a7:77:4d:d9:87:52:a7:e8:69:10:07: ef:7b:70:ca:dc:e8:0a:0f:a8:37:5f:b2:48:a9:86:6b:7b:72: f1:01:05:53:60:67:21:5c:78:f6:f6:8f:7a:45:7f:5e:c1:ad: f5:2e:33:c9:9b:08:1c:4a:9f:dd:50:9d:61:65:a0:03:09:cc: 03:03:f9:da:98:2a:68:cb:a4:e7:60:32:23:33:c4:97:54:38: bb:89:8b:05:29:a8:6f:43:fa:48:2d:fb:6f:7c:8c:92:94:bc: f6:ab:dc:3a:c5:f0:2e:5a:fd:bf:04:f2:1d:0e:f3:fe:c6:9b: 94:ac:73:b8:d5:6f:d6:e7:05:2a:34:04:16:09:46:5a:8a:4e: 21:73:3f:f9 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICETIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNDQwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmI4OC01OWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCzqw0vz0ph3p7HXXrevsk/NaVJZsEjnQErwXBC3lzOXxd3mFZzaFSQOy4qI q1+qExkLmg3QEMjHJgQguhukuZMUo75HavOvimG5SRaURJjCi8d7Z61CvvqA0Djh i7APjVwTlVR7Lr4DEe/jOtbBTR33z1UsrzCc9Bf9PxrRVzRVVaG50klZFOYg7oMq i3TKknzlre5yh8RlLZQZEIQPLfLxQnmmxy5eBTKa32wHKqWfUwt8C2SZfJQ00DZC xeEkQ7OJzwHyvX9IiSCOpT8xcZYdoJOuuBcP2teiCb0Ul7fPv4txaOzCf9I4DO44 EjQiYywhoFXYdwPNvzUMipDPZQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFCBDANUZ BeLWiCswXSujZ1nlxybHMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTYxQjg3RDQ1 NkExMTFFRUI3RURBOTNBQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQODgAwcEJAYIQO7gMA0GCSqGSIb3DQEBCwUAA4IBAQBNG7AK 9P+VEqTHVjejNZ1puSPfzMxcGN4R+2ij1SIm0Ws52tUWiooKy1fIp+BY4tQuJI2v JKzieAe2wRwqLw6tFgt2TU4cBMKKl25Kkhzz8r814MSaaF8LeplU4rsKaYeDieIz glfLK2rnLBEfRz4HRpsTp3dN2YdSp+hpEAfve3DK3OgKD6g3X7JIqYZre3LxAQVT YGchXHj29o96RX9ewa31LjPJmwgcSp/dUJ1hZaADCcwDA/namCpoy6TnYDIjM8SX VDi7iYsFKahvQ/pILftvfIySlLz2q9w6xfAuWv2/BPIdDvP+xpuUrHO41W/W5wUq NAQWCUZaik4hcz/5 -----END CERTIFICATE-----Generated at Sat Jun 6 08:20:26 2026 by rpki-client