$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa File: D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa (raw, json) Hash identifier: bkQ0C0EN5pMkj3x5FPb82GnScWX+MYD64nyyCWqXtdk= Subject key identifier: 73:1C:55:E5:85:DA:73:10:18:08:0C:E0:50:D6:F1:6B:36:89:DA:79 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1151 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa Signing time: Fri 22 May 2026 20:25:37 +0000 ROA not before: Fri 22 May 2026 20:25:37 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 151194 IP address blocks: 2406:840:e570::/44 maxlen: 48 2406:840:fefe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 May 2026 20:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4433 (0x1151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:25:37 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbc1-daf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:89:fb:ee:c7:76:1e:4e:57:16:b2:46:23:d1: 60:50:a8:9f:22:3f:f3:f3:92:54:c5:33:11:4a:36: 53:6b:60:d6:e9:f5:65:77:29:b8:ee:f7:bb:76:72: ee:5d:36:f3:de:32:e1:0d:d0:ea:92:6f:85:09:55: 25:de:88:ef:58:48:db:53:78:27:1d:63:f8:26:8e: ce:44:31:24:14:ec:39:53:fa:9a:96:7b:33:d9:62: ff:d2:91:23:61:35:bf:9d:d8:01:43:74:c7:e9:9e: 45:19:d7:4f:2f:10:d2:ba:e0:fb:59:28:63:c9:7b: a1:44:4c:19:7d:9b:5a:e0:36:0c:ae:29:79:ff:ba: db:88:b1:c0:2e:29:57:5e:31:9e:03:4d:6c:58:67: 2b:26:56:60:4f:1a:dd:d6:7d:bc:47:19:4e:16:0f: 32:00:1e:64:55:b6:8c:4a:8b:c1:e0:fc:82:50:41: 58:a1:c9:c0:77:33:fe:d9:62:33:be:7f:00:79:b5: fc:3b:16:a3:f6:5b:ef:c3:72:de:92:49:4f:9c:63: 62:08:04:15:af:2e:da:0a:77:df:cc:6a:ed:a1:73: 77:15:d8:c5:4a:ff:c4:28:2c:5b:35:94:63:22:30: b4:be:f6:ea:2f:bc:9d:01:38:a3:fb:e1:8f:9b:c5: 1f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:1C:55:E5:85:DA:73:10:18:08:0C:E0:50:D6:F1:6B:36:89:DA:79 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e570::/44 2406:840:fefe::/48 Signature Algorithm: sha256WithRSAEncryption 62:32:ee:34:51:6e:c1:4f:13:fd:50:cc:60:0d:30:f2:eb:5c: 36:e7:e5:14:db:7a:08:a7:61:71:b8:bc:3e:4a:09:fa:70:b6: 8e:b0:0b:d8:51:59:3b:2a:03:29:b8:d8:b1:44:b8:90:92:a0: 86:8e:22:69:af:ff:9b:48:2a:01:c2:bc:59:37:eb:70:91:73: b4:6c:54:82:7e:59:6d:f9:b7:41:22:2f:60:32:36:1c:26:93: bf:72:31:6a:2a:43:a9:2f:87:5e:22:b2:6a:4e:3e:ea:f7:9e: b5:64:a2:32:d0:fc:81:43:70:d8:8d:2e:5a:25:66:97:4e:7e: 1b:e9:1d:1c:5c:a4:f6:a0:06:35:d4:65:73:21:53:8f:61:58: 6d:70:27:5a:de:e9:63:c2:13:73:87:fa:d2:fe:2b:21:37:94: 26:b9:14:05:6f:44:04:be:e7:a3:76:bb:29:82:82:e6:40:77: aa:06:ea:c7:8b:3e:e8:fb:bf:55:7a:1a:89:3c:1f:6a:4b:9c: e4:bf:47:a7:f5:5c:5b:65:93:34:8d:53:b6:91:11:ab:ae:28: 05:84:d5:67:ec:8c:2d:35:a7:5f:48:3d:75:45:27:a6:a0:1d: dc:f7:e4:1e:e2:df:5a:af:13:18:ed:d3:6d:18:8a:db:d0:a1: 17:7a:ad:47 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNTM3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJjMS1kYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Yn77sd2Hk5XFrJGI9FgUKifIj/z85JUxTMRSjZTa2DW6fVldym47ve7dnLu XTbz3jLhDdDqkm+FCVUl3ojvWEjbU3gnHWP4Jo7ORDEkFOw5U/qalnsz2WL/0pEj YTW/ndgBQ3TH6Z5FGddPLxDSuuD7WShjyXuhREwZfZta4DYMril5/7rbiLHALilX XjGeA01sWGcrJlZgTxrd1n28RxlOFg8yAB5kVbaMSovB4PyCUEFYocnAdzP+2WIz vn8AebX8Oxaj9lvvw3LekklPnGNiCAQVry7aCnffzGrtoXN3FdjFSv/EKCxbNZRj IjC0vvbqL7ydATij++GPm8UfrwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFHMcVeWF 2nMQGAgM4FDW8Ws2idp5MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRDJFQjg2RUFE RjNEMTFFRDhBRUNCRjVDQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQOVwAwcAJAYIQP7+MA0GCSqGSIb3DQEBCwUAA4IBAQBiMu40 UW7BTxP9UMxgDTDy61w25+UU23oIp2FxuLw+Sgn6cLaOsAvYUVk7KgMpuNixRLiQ kqCGjiJpr/+bSCoBwrxZN+twkXO0bFSCfllt+bdBIi9gMjYcJpO/cjFqKkOpL4de IrJqTj7q9561ZKIy0PyBQ3DYjS5aJWaXTn4b6R0cXKT2oAY11GVzIVOPYVhtcCda 3uljwhNzh/rS/ishN5QmuRQFb0QEvuejdrspgoLmQHeqBurHiz7o+79VehqJPB9q S5zkv0en9VxbZZM0jVO2kRGrrigFhNVn7IwtNadfSD11RSemoB3c9+Qe4t9arxMY 7dNtGIrb0KEXeq1H -----END CERTIFICATE-----Generated at Sat May 23 20:12:44 2026 by rpki-client