$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa File: BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa (raw, json) Hash identifier: tK9asPllR4cX/wITJ0VNAipllNYEhpEdjsC5tzs0Td8= Subject key identifier: FA:47:43:2B:CE:99:2C:AD:F8:5A:DA:C4:66:F9:A0:4F:6E:31:3D:6C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1191 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa Signing time: Fri 22 May 2026 20:27:52 +0000 ROA not before: Fri 22 May 2026 20:27:51 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 212034 IP address blocks: 2406:840:f890::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4497 (0x1191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:27:51 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bc47-abce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:17:9b:95:74:94:47:d0:40:a8:02:7e:22:9a: 2d:bc:6f:22:f2:30:d4:c3:78:bf:34:5c:1d:1f:37: 79:9d:73:28:31:1c:5e:2d:d3:5f:a1:29:ea:99:6b: 7f:7f:85:82:1d:bc:23:3f:05:b4:22:7c:2a:65:4c: 0e:bb:07:09:d8:6e:4f:77:5e:84:51:55:31:28:0d: 6f:8e:66:d3:ff:bd:aa:09:45:ef:c8:67:3c:f3:59: 37:78:ec:35:41:b9:21:e9:db:97:de:8b:d5:4e:21: c4:c7:f8:51:14:a7:52:7d:22:0f:43:b5:6d:5a:f8: 8e:84:17:28:78:f6:1d:21:31:4d:15:62:6d:88:c4: 68:8e:3a:6e:47:64:72:09:96:35:93:5f:c5:fa:27: 82:b0:16:f8:87:e2:7d:cf:35:48:25:c3:c8:80:88: ac:0c:1d:e8:2f:d8:12:cd:fe:f7:fa:d7:fc:ba:3c: 8f:a3:bd:f1:07:80:77:ac:74:a1:98:f4:c2:7b:e8: a9:a2:e4:7f:63:1e:b8:48:e1:03:8a:36:11:35:1c: 7a:01:4f:06:6f:89:70:76:8b:ca:a2:aa:4a:35:4e: 2d:49:df:6b:2e:e5:28:e5:ab:64:eb:f9:7d:30:38: c2:2d:45:69:6d:03:6e:b9:ab:60:07:21:02:93:ec: 64:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:47:43:2B:CE:99:2C:AD:F8:5A:DA:C4:66:F9:A0:4F:6E:31:3D:6C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:f890::/44 Signature Algorithm: sha256WithRSAEncryption 19:14:93:8d:18:e8:78:e6:a1:35:c4:32:c0:2a:ab:70:65:7d: 37:ca:5e:77:d6:64:15:cb:b1:b6:f8:ba:52:60:ce:2f:b6:db: 9f:49:7e:87:8e:5c:2b:e7:7b:8d:27:4d:86:56:7b:c9:e0:f6: 96:6e:da:34:e4:b4:95:c5:e6:e1:0b:c3:01:b4:00:62:6f:4f: 5f:00:48:12:83:74:04:31:22:85:4a:36:6f:35:3b:47:56:27: ed:7c:6c:a3:b6:09:02:87:5e:0a:e4:a4:22:6b:36:39:cf:31: 33:a8:83:b3:8f:2e:f4:a3:db:40:d3:8d:09:a9:65:87:72:e7: f9:9c:2d:3c:8e:1a:05:9f:bc:a6:91:31:80:ac:3e:c6:fa:4b: dc:95:e1:63:c5:c0:d6:71:1d:cf:6e:6e:b4:27:4a:6b:c7:93: 76:1c:0b:44:34:1e:df:84:64:14:88:9b:62:41:1a:d5:e1:c3: 06:49:e7:b7:5a:29:af:9d:a5:99:8f:ca:53:55:db:51:8e:fa: 32:8c:2f:09:dc:27:f3:e7:57:43:a1:1a:51:b2:8b:19:32:d2: e7:ae:15:ba:21:c4:8d:59:1c:56:90:47:23:73:c4:83:12:97: 8b:ef:86:ff:db:a3:26:a7:aa:ec:b2:77:52:bc:ce:00:7c:9d: cb:20:35:e0 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNzUxWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmM0Ny1hYmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmBeblXSUR9BAqAJ+IpotvG8i8jDUw3i/NFwdHzd5nXMoMRxeLdNfoSnqmWt/ f4WCHbwjPwW0InwqZUwOuwcJ2G5Pd16EUVUxKA1vjmbT/72qCUXvyGc881k3eOw1 Qbkh6duX3ovVTiHEx/hRFKdSfSIPQ7VtWviOhBcoePYdITFNFWJtiMRojjpuR2Ry CZY1k1/F+ieCsBb4h+J9zzVIJcPIgIisDB3oL9gSzf73+tf8ujyPo73xB4B3rHSh mPTCe+ipouR/Yx64SOEDijYRNRx6AU8Gb4lwdovKoqpKNU4tSd9rLuUo5atk6/l9 MDjCLUVpbQNuuatgByECk+xk6QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFPpHQyvO mSyt+FraxGb5oE9uMT1sMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQkJDOEQ3QkE5 RTgwMTFFQkE3QzNGQzZDQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQPiQMA0GCSqGSIb3DQEBCwUAA4IBAQAZFJONGOh45qE1xDLA KqtwZX03yl531mQVy7G2+LpSYM4vttufSX6Hjlwr53uNJ02GVnvJ4PaWbto05LSV xebhC8MBtABib09fAEgSg3QEMSKFSjZvNTtHViftfGyjtgkCh14K5KQiazY5zzEz qIOzjy70o9tA040JqWWHcuf5nC08jhoFn7ymkTGArD7G+kvcleFjxcDWcR3Pbm60 J0prx5N2HAtENB7fhGQUiJtiQRrV4cMGSee3WimvnaWZj8pTVdtRjvoyjC8J3Cfz 51dDoRpRsosZMtLnrhW6IcSNWRxWkEcjc8SDEpeL74b/26Mmp6rssndSvM4AfJ3L IDXg -----END CERTIFICATE-----Generated at Sat Jun 6 09:38:34 2026 by rpki-client