$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa File: CDD3B6808E2511EF966A7D1CC4F9AE02.roa (raw, json) Hash identifier: 0iQq9RMwHrsZrwltjJXZJl7upn1fZRfutX1fG6Vk/ck= Subject key identifier: DE:10:0A:38:F5:CA:6B:17:35:DC:67:DD:8C:1E:CC:FD:32:94:F1:8C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1197 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa Signing time: Fri 22 May 2026 20:28:02 +0000 ROA not before: Fri 22 May 2026 20:28:02 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 215304 IP address blocks: 2406:840:eab0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4503 (0x1197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:28:02 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bc52-38b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d7:87:c8:6b:70:a3:55:0d:45:72:a7:52:0e: 3c:e3:b7:dd:e3:4f:04:21:e0:a8:f3:e0:8e:f1:5d: a3:41:7c:24:a4:63:a5:f6:4d:e3:fd:2b:b7:98:f9: 3b:4f:fe:a3:01:4e:63:06:11:a9:0c:23:a6:70:eb: 80:79:85:f8:c8:81:9a:ea:8c:c6:e1:3f:87:bc:74: 98:72:ff:25:f0:23:80:ac:72:71:52:10:70:64:d1: e2:82:2b:ad:fd:af:20:18:ec:97:2f:e5:00:0c:9f: 18:7a:0a:e3:3c:1e:67:03:45:18:d3:fa:62:85:e7: 8a:ee:d0:8b:05:a1:23:44:82:6c:71:fc:d4:a2:5b: 1d:c0:70:f5:c6:c2:b1:f9:17:f0:1f:54:52:2f:f0: 88:1a:80:3f:34:7d:f0:3f:e1:da:ad:fc:34:27:11: f4:cf:bf:85:64:02:51:ac:83:6c:2a:ba:8b:9c:60: 88:10:ff:4c:85:61:76:ea:30:ed:ef:cd:5f:c9:7a: 2c:25:cc:90:9a:ef:4c:f2:0e:8a:59:e7:bf:b2:f1: 8e:57:99:c7:33:93:c6:1a:69:54:fb:33:26:b7:9a: 95:ed:6d:4b:b2:5b:46:97:9c:45:6f:c4:4e:0c:45: 1b:02:da:c4:f0:c9:06:ff:68:2b:e9:10:ba:d0:b1: df:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:10:0A:38:F5:CA:6B:17:35:DC:67:DD:8C:1E:CC:FD:32:94:F1:8C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:eab0::/44 Signature Algorithm: sha256WithRSAEncryption 3b:5d:2d:c7:22:7f:cb:ac:0f:13:8d:3d:b3:78:f0:97:ea:51: b7:47:84:3a:7f:d2:80:d4:dd:d0:d7:3b:29:2f:17:21:f2:bc: 4f:37:9d:b4:a3:c6:22:f1:88:ee:a3:73:b0:4a:dd:58:69:17: d9:2a:e8:e3:6f:cc:68:a9:d2:a0:f3:d8:06:a5:c6:a6:2d:0f: a8:2f:eb:d1:d5:5e:55:87:84:79:45:5a:56:a4:69:b3:ff:7a: 13:e2:86:19:94:ab:36:51:76:b8:24:1e:6e:7a:c9:00:a4:5f: ef:d8:d4:5c:1b:84:99:e1:d9:06:5e:21:94:fa:af:1e:3d:ab: 66:8e:06:05:a9:da:d0:37:10:44:9f:e4:2f:2f:e6:3e:bf:cf: a7:8a:5e:70:9c:2f:0b:15:92:f6:7c:57:a7:74:80:48:11:d3: a8:aa:1b:dc:b5:1c:e6:f3:22:0c:6a:d5:19:51:bb:4f:36:92: 4d:24:cd:94:1d:82:7d:4b:62:3d:23:8e:4a:a8:04:ec:0a:a9: 17:38:ea:53:97:93:8c:42:d6:89:da:db:a0:a0:ef:a8:25:44: c9:d5:8a:fc:89:f7:ed:bd:f9:4b:d9:f9:0a:24:2f:c2:fc:02: d6:b2:32:43:fb:1e:ce:97:bb:49:31:9c:cd:7b:1e:38:e8:7d: a9:ec:2f:bc -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyODAyWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmM1Mi0zOGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoteHyGtwo1UNRXKnUg4847fd408EIeCo8+CO8V2jQXwkpGOl9k3j/Su3mPk7 T/6jAU5jBhGpDCOmcOuAeYX4yIGa6ozG4T+HvHSYcv8l8COArHJxUhBwZNHigiut /a8gGOyXL+UADJ8YegrjPB5nA0UY0/piheeK7tCLBaEjRIJscfzUolsdwHD1xsKx +RfwH1RSL/CIGoA/NH3wP+Harfw0JxH0z7+FZAJRrINsKrqLnGCIEP9MhWF26jDt 781fyXosJcyQmu9M8g6KWee/svGOV5nHM5PGGmlU+zMmt5qV7W1LsltGl5xFb8RO DEUbAtrE8MkG/2gr6RC60LHfZwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFN4QCjj1 ymsXNdxn3YwezP0ylPGMMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0REM0I2ODA4 RTI1MTFFRjk2NkE3RDFDQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQOqwMA0GCSqGSIb3DQEBCwUAA4IBAQA7XS3HIn/LrA8TjT2z ePCX6lG3R4Q6f9KA1N3Q1zspLxch8rxPN520o8Yi8Yjuo3OwSt1YaRfZKujjb8xo qdKg89gGpcamLQ+oL+vR1V5Vh4R5RVpWpGmz/3oT4oYZlKs2UXa4JB5ueskApF/v 2NRcG4SZ4dkGXiGU+q8ePatmjgYFqdrQNxBEn+QvL+Y+v8+nil5wnC8LFZL2fFen dIBIEdOoqhvctRzm8yIMatUZUbtPNpJNJM2UHYJ9S2I9I45KqATsCqkXOOpTl5OM QtaJ2tugoO+oJUTJ1Yr8ifftvflL2fkKJC/C/ALWsjJD+x7Ol7tJMZzNex446H2p 7C+8 -----END CERTIFICATE-----Generated at Sat Jun 6 05:27:20 2026 by rpki-client