$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa File: C8FB88AEFAC411EDBFE0012DC4F9AE02.roa (raw, json) Hash identifier: CHCgfXHsmdYQjujWVJ9GnN81iOcPCn0Yq9zm4pjs+IU= Subject key identifier: B8:1D:CC:F8:02:19:C8:CC:04:CB:A2:A2:4C:05:E8:BD:BA:EC:89:CB Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1127 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa Signing time: Fri 22 May 2026 20:24:21 +0000 ROA not before: Fri 22 May 2026 20:24:20 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 136535 IP address blocks: 2406:840:fe27::/48 maxlen: 48 2406:840:fe74::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4391 (0x1127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:24:20 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bb74-b2fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:2c:4e:b7:4e:4e:fd:78:3d:06:24:ab:51:02: 1f:0b:70:49:98:13:d9:54:08:87:bb:a5:4c:d5:88: db:b5:c4:a4:3c:41:69:a7:48:01:0a:2d:ab:2c:32: e6:fc:b4:71:83:04:ff:7c:a1:ec:9f:f2:55:ab:ff: 57:cd:5e:94:3a:26:74:61:be:60:2f:1b:93:48:eb: f6:43:6d:8d:ae:71:25:8c:b8:d1:70:33:f1:d7:96: d4:ed:17:7e:cf:b2:d1:93:1a:dc:77:43:88:c7:77: 64:0d:51:a7:07:3c:5f:59:f2:d4:cd:ce:dd:d7:04: dd:44:2a:97:35:85:36:b5:13:48:2a:0c:1b:e9:75: 4f:42:78:4b:88:fe:52:43:7c:76:da:0e:fd:d0:63: 1f:70:46:f4:cc:d9:26:d7:69:34:3e:1f:18:e6:05: 73:4f:e9:6a:2d:31:0e:dc:43:8b:39:88:bc:56:31: 0a:f6:2d:9e:3a:25:39:ee:37:28:09:6e:58:46:80: bd:32:6e:a8:ad:7e:78:26:ed:25:12:2a:0a:c7:d2: 7e:fb:ca:d9:28:68:8a:e0:a4:74:25:1b:7d:a2:44: 45:db:40:54:98:b6:dc:e9:de:d6:70:43:d3:84:16: 8b:08:4c:c5:c8:e3:90:c7:42:f1:71:d1:d0:f4:1c: e2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1D:CC:F8:02:19:C8:CC:04:CB:A2:A2:4C:05:E8:BD:BA:EC:89:CB X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fe27::/48 2406:840:fe74::/48 Signature Algorithm: sha256WithRSAEncryption 65:a7:a4:1e:c1:36:09:03:62:15:aa:da:47:87:2f:fc:06:06: 4c:79:6b:b7:2c:e8:8c:2f:27:b4:a0:86:1f:ac:72:c4:d6:5d: 53:21:e8:5d:d1:ce:79:2a:71:d4:25:bb:4b:98:c2:44:6b:e8: 00:86:1e:0a:c8:7b:cc:cb:8d:1e:9e:cb:1a:d4:94:10:e5:10: 83:55:9b:9f:88:a3:27:f3:3a:06:46:ba:4d:be:18:3e:e5:01: 11:3d:35:d4:4e:8c:04:44:5b:8a:c8:40:05:8b:b0:10:a0:7a: be:a9:28:7a:d8:0d:9c:4b:98:85:99:d8:55:3a:41:2c:a3:11: bf:54:6d:a5:ad:4e:32:0d:63:62:07:a4:fb:a3:7c:f7:2e:a6: 4f:88:23:82:38:22:3d:ce:65:44:b4:82:c2:88:84:37:0e:69: 95:f1:7f:1c:d7:e7:4b:87:15:d9:b9:6c:a1:0b:41:54:8a:02: f9:91:25:14:1a:60:b0:b2:ff:9d:ff:a6:53:4a:bc:63:72:a8: 4d:dc:20:13:a5:c0:ca:5a:28:ec:a5:66:ec:a1:2a:02:b0:63: 9a:60:6b:09:e6:a3:96:a2:80:42:66:54:6b:cc:6d:10:bf:ad: 6a:51:a4:7b:7c:43:cb:7c:a5:eb:aa:ee:ca:22:eb:23:21:81: d0:81:0f:86 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNDIwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmI3NC1iMmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkCxOt05O/Xg9BiSrUQIfC3BJmBPZVAiHu6VM1YjbtcSkPEFpp0gBCi2rLDLm /LRxgwT/fKHsn/JVq/9XzV6UOiZ0Yb5gLxuTSOv2Q22NrnEljLjRcDPx15bU7Rd+ z7LRkxrcd0OIx3dkDVGnBzxfWfLUzc7d1wTdRCqXNYU2tRNIKgwb6XVPQnhLiP5S Q3x22g790GMfcEb0zNkm12k0Ph8Y5gVzT+lqLTEO3EOLOYi8VjEK9i2eOiU57jco CW5YRoC9Mm6orX54Ju0lEioKx9J++8rZKGiK4KR0JRt9okRF20BUmLbc6d7WcEPT hBaLCEzFyOOQx0LxcdHQ9BziJQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFLgdzPgC GcjMBMuiokwF6L267InLMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQzhGQjg4QUVG QUM0MTFFREJGRTAwMTJEQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcAJAYIQP4nAwcAJAYIQP50MA0GCSqGSIb3DQEBCwUAA4IBAQBlp6Qe wTYJA2IVqtpHhy/8BgZMeWu3LOiMLye0oIYfrHLE1l1TIehd0c55KnHUJbtLmMJE a+gAhh4KyHvMy40enssa1JQQ5RCDVZufiKMn8zoGRrpNvhg+5QERPTXUTowERFuK yEAFi7AQoHq+qSh62A2cS5iFmdhVOkEsoxG/VG2lrU4yDWNiB6T7o3z3LqZPiCOC OCI9zmVEtILCiIQ3DmmV8X8c1+dLhxXZuWyhC0FUigL5kSUUGmCwsv+d/6ZTSrxj cqhN3CATpcDKWijspWbsoSoCsGOaYGsJ5qOWooBCZlRrzG0Qv61qUaR7fEPLfKXr qu7KIusjIYHQgQ+G -----END CERTIFICATE-----Generated at Sat Jun 6 08:18:37 2026 by rpki-client