$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa File: 98F3E1F44BDA11ED90671B29C4F9AE02.roa (raw, json) Hash identifier: iSK1GZUxNiD5NecfOkVvv9ohx9TCSfXbNgMwMdNwpbM= Subject key identifier: 1A:7D:7E:0C:FF:3C:1C:74:75:2F:5F:29:20:67:A5:FC:AF:44:7C:3C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 114F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa Signing time: Fri 22 May 2026 20:25:33 +0000 ROA not before: Fri 22 May 2026 20:25:33 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 150373 IP address blocks: 2406:840:e340::/44 maxlen: 48 2406:840:fed4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4431 (0x114f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:25:33 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbbd-10d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fc:be:25:5a:5f:dc:87:c9:91:e5:6f:0e:77: 83:a9:5d:c1:19:3a:7e:b6:11:e6:7f:16:2d:fa:07: 65:77:62:41:30:3e:03:f6:e4:2f:f9:9e:aa:fa:85: 11:fc:b6:57:75:b2:cc:4d:5d:d2:39:e4:ca:f7:b7: 35:60:9e:3c:66:3a:01:46:fd:ae:02:14:4f:67:f4: 0a:52:9a:c0:78:9d:6c:da:ef:70:0a:9b:58:ca:00: 1f:1e:ac:48:27:b0:28:3c:78:e9:20:3e:59:c0:5b: 1c:94:0b:af:e8:79:dc:75:ed:43:cb:10:39:88:8c: 2b:3d:35:25:f2:83:4b:97:81:85:1d:03:c1:d3:d2: ce:39:db:d7:c3:1c:80:d1:27:05:df:3d:e4:c3:d5: 00:58:ca:e9:a3:69:be:d7:5e:93:80:2e:b4:af:4c: f4:c2:ba:a2:a6:0b:0f:65:05:0b:7c:b5:fc:7f:65: a2:20:d2:66:d1:12:e7:3d:78:cf:8d:7e:b7:19:27: c8:e4:16:30:f6:87:ec:24:df:1b:e9:48:75:d5:7d: 41:10:3f:0b:28:e7:8b:b6:4b:ef:47:8c:f9:76:4f: 10:89:b5:d4:1d:6b:22:8e:d5:9c:d1:08:05:39:96: 65:c5:29:a7:72:64:b6:74:7e:25:ce:42:25:84:3f: 9c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7D:7E:0C:FF:3C:1C:74:75:2F:5F:29:20:67:A5:FC:AF:44:7C:3C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e340::/44 2406:840:fed4::/48 Signature Algorithm: sha256WithRSAEncryption 8a:08:a7:41:aa:84:ca:c8:4e:9b:04:b3:85:e2:98:c5:b0:2f: 9b:a4:e1:cf:37:ff:f7:02:db:6a:01:a3:72:45:73:f5:98:44: a6:39:a1:bc:23:97:6c:11:a1:85:52:3c:e2:24:3e:f5:48:79: 8b:43:db:a9:11:d3:2f:88:b6:07:34:ad:88:fe:0f:77:33:5c: 94:cf:38:8a:8d:67:e0:39:6a:4f:f3:74:2d:89:5d:c9:4e:e2: f9:bd:f5:72:cd:82:90:05:27:97:1c:03:1a:bd:67:bd:94:90: 0f:ee:b6:19:6f:f7:b1:0f:33:b3:84:b5:4a:a9:eb:63:f9:93: 14:c9:e2:e7:38:83:c2:51:87:58:c6:d5:a4:ca:cb:bd:26:a9: e0:35:9c:1c:3d:3e:97:21:ee:1b:22:6a:f9:f4:be:0b:6c:da: 63:28:45:8b:7c:db:41:02:c6:96:22:db:3f:b8:00:22:0c:be: d6:a5:ab:53:0a:fa:78:b6:53:2e:91:c4:81:77:0c:93:c6:1e: ff:ab:fd:93:53:c6:e1:7f:e2:d3:3b:62:10:f0:ff:22:e9:67: 2b:ae:3f:4d:57:80:44:a0:88:8d:be:17:ef:ee:ae:e1:6b:98: 1a:c1:0e:fe:60:20:cb:f7:57:a7:94:05:29:19:cc:47:7f:d7: b7:5f:ba:a6 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNTMzWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJiZC0xMGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Py+JVpf3IfJkeVvDneDqV3BGTp+thHmfxYt+gdld2JBMD4D9uQv+Z6q+oUR /LZXdbLMTV3SOeTK97c1YJ48ZjoBRv2uAhRPZ/QKUprAeJ1s2u9wCptYygAfHqxI J7AoPHjpID5ZwFsclAuv6Hncde1DyxA5iIwrPTUl8oNLl4GFHQPB09LOOdvXwxyA 0ScF3z3kw9UAWMrpo2m+116TgC60r0z0wrqipgsPZQULfLX8f2WiINJm0RLnPXjP jX63GSfI5BYw9ofsJN8b6Uh11X1BED8LKOeLtkvvR4z5dk8QibXUHWsijtWc0QgF OZZlxSmncmS2dH4lzkIlhD+cNQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFBp9fgz/ PBx0dS9fKSBnpfyvRHw8MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOThGM0UxRjQ0 QkRBMTFFRDkwNjcxQjI5QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQONAAwcAJAYIQP7UMA0GCSqGSIb3DQEBCwUAA4IBAQCKCKdB qoTKyE6bBLOF4pjFsC+bpOHPN//3AttqAaNyRXP1mESmOaG8I5dsEaGFUjziJD71 SHmLQ9upEdMviLYHNK2I/g93M1yUzziKjWfgOWpP83QtiV3JTuL5vfVyzYKQBSeX HAMavWe9lJAP7rYZb/exDzOzhLVKqetj+ZMUyeLnOIPCUYdYxtWkysu9JqngNZwc PT6XIe4bImr59L4LbNpjKEWLfNtBAsaWIts/uAAiDL7WpatTCvp4tlMukcSBdwyT xh7/q/2TU8bhf+LTO2IQ8P8i6Wcrrj9NV4BEoIiNvhfv7q7ha5gawQ7+YCDL91en lAUpGcxHf9e3X7qm -----END CERTIFICATE-----Generated at Sat Jun 6 08:18:38 2026 by rpki-client