$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AF6E03DA57C611EEB082153EC4F9AE02.roa File: AF6E03DA57C611EEB082153EC4F9AE02.roa (raw, json) Hash identifier: 9bb3+EyFJ/N29gP9Z6r4XBcLw6XiP7NqpJxE01CjDXA= Subject key identifier: 09:C1:9B:D4:D5:28:72:28:8B:B8:29:F9:05:91:C1:DD:3A:F7:C1:B5 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1081 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AF6E03DA57C611EEB082153EC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:47 +0000 ROA not before: Thu 22 May 2025 20:08:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 208698 IP address blocks: 2406:840:e0e0::/44 maxlen: 48 2406:840:eee0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4225 (0x1081) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493e7-a5a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:02:df:01:8a:2c:2a:54:0b:c8:3b:99:df:92: 38:dd:44:c8:1f:08:10:d0:5a:a7:6c:1d:83:e4:4d: 85:cb:f6:3e:c0:2a:52:6c:23:cf:b4:8a:86:85:fa: 7a:01:19:6c:7f:27:98:1f:22:6c:ee:08:ce:79:9f: 7f:27:39:9d:ef:d5:91:83:01:48:34:29:60:d5:36: f3:94:fb:60:9a:cf:6a:43:39:38:d0:6a:4d:b2:ad: 28:83:21:9e:bf:09:33:3d:29:db:80:7e:40:21:3f: d8:79:d2:4f:17:f0:b3:45:f4:58:7a:dc:2f:de:1b: 62:e2:4c:1f:38:13:9a:74:0a:ae:fa:42:12:3f:23: 8a:46:4b:48:50:96:b1:44:58:ab:92:bf:0e:63:ce: e3:24:7f:0b:1f:3f:5a:b3:62:9e:00:01:ff:fe:db: 38:76:f5:d2:4d:09:79:fd:2f:5d:db:44:8e:af:97: a6:ee:d3:1e:94:8a:72:7b:24:69:1d:b5:2d:a6:22: ed:81:2e:28:32:7a:11:10:3c:cf:c0:bb:a0:68:67: 40:bb:d5:80:d0:e3:d4:38:ed:12:d2:53:2e:cd:e2: 29:91:15:aa:93:97:64:f4:35:75:20:14:03:42:6f: 9a:c6:d4:0b:a0:de:81:ba:79:1c:78:fa:33:d2:1b: 75:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C1:9B:D4:D5:28:72:28:8B:B8:29:F9:05:91:C1:DD:3A:F7:C1:B5 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AF6E03DA57C611EEB082153EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e0e0::/44 2406:840:eee0::/44 Signature Algorithm: sha256WithRSAEncryption a0:c2:6a:46:ba:3e:6b:d7:62:ec:47:4a:3e:c4:94:06:f3:24: 71:ee:05:d7:76:59:84:26:98:77:ef:c1:c3:00:ad:bd:9f:a4: 01:8a:75:c4:d3:e4:84:fe:38:8c:1a:39:98:04:06:a6:80:bd: cb:40:0b:2c:40:af:4b:55:8c:db:d6:ee:eb:c2:da:f4:68:ca: dd:fa:7b:2b:60:e1:92:68:0f:b6:02:d1:a7:94:c5:c1:59:13: be:f7:f7:fb:25:23:a0:10:72:7d:75:ff:93:da:69:08:79:b7: 7a:63:0d:58:81:52:df:c7:55:e9:3a:e7:80:5b:d2:b6:3b:50: 0e:47:ea:44:fe:20:ac:ed:a9:bc:de:3e:7f:2a:8c:2e:92:7b: 14:23:dd:6c:cb:86:b8:8d:8a:94:71:4c:28:5c:d4:38:12:ef: ec:45:a4:de:e4:38:45:b7:f0:53:82:1c:01:3b:c8:fe:9b:1a: 1c:b1:27:eb:d1:1f:7b:4c:b9:0b:0b:b6:7f:38:9c:2d:6e:7c: 59:3a:30:b5:21:4e:3b:d2:04:02:f9:39:b6:4c:1c:cd:05:71: f4:04:d2:ee:98:45:d0:0b:bb:4e:12:eb:48:3a:a0:fa:32:fd: 3c:14:13:5f:dc:a5:89:0f:6e:2d:c8:38:c4:39:c3:56:62:bd: 54:b5:b5:2b -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNlNy1hNWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgLfAYosKlQLyDuZ35I43UTIHwgQ0FqnbB2D5E2Fy/Y+wCpSbCPPtIqGhfp6 ARlsfyeYHyJs7gjOeZ9/Jzmd79WRgwFINClg1TbzlPtgms9qQzk40GpNsq0ogyGe vwkzPSnbgH5AIT/YedJPF/CzRfRYetwv3hti4kwfOBOadAqu+kISPyOKRktIUJax RFirkr8OY87jJH8LHz9as2KeAAH//ts4dvXSTQl5/S9d20SOr5em7tMelIpyeyRp HbUtpiLtgS4oMnoREDzPwLugaGdAu9WA0OPUOO0S0lMuzeIpkRWqk5dk9DV1IBQD Qm+axtQLoN6BunkcePoz0ht1dwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFAnBm9TV KHIoi7gp+QWRwd0698G1MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQUY2RTAzREE1 N0M2MTFFRUIwODIxNTNFQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQODgAwcEJAYIQO7gMA0GCSqGSIb3DQEBCwUAA4IBAQCgwmpG uj5r12LsR0o+xJQG8yRx7gXXdlmEJph378HDAK29n6QBinXE0+SE/jiMGjmYBAam gL3LQAssQK9LVYzb1u7rwtr0aMrd+nsrYOGSaA+2AtGnlMXBWRO+9/f7JSOgEHJ9 df+T2mkIebd6Yw1YgVLfx1XpOueAW9K2O1AOR+pE/iCs7am83j5/KowuknsUI91s y4a4jYqUcUwoXNQ4Eu/sRaTe5DhFt/BTghwBO8j+mxocsSfr0R97TLkLC7Z/OJwt bnxZOjC1IU470gQC+Tm2TBzNBXH0BNLumEXQC7tOEutIOqD6Mv08FBNf3KWJD24t yDjEOcNWYr1UtbUr -----END CERTIFICATE-----Generated at Sat Mar 7 02:23:46 2026 by rpki-client