$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa File: E8F58AF442CD11EFB80CD237C4F9AE02.roa (raw, json) Hash identifier: MwMw7CVu//yWmsJlaLusZavUJxtFLEgD+RSdSGzjnaw= Subject key identifier: E1:E7:AC:BA:C6:D1:05:97:01:0C:FF:55:9D:59:A0:01:AD:FC:D4:FA Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1068 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:24 +0000 ROA not before: Thu 22 May 2025 20:07:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153170 IP address blocks: 2406:840:fd60::/44 maxlen: 48 2406:840:fe98::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4200 (0x1068) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493d0-054e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ce:50:45:de:d9:83:f7:d2:2c:2a:03:12:2b: 3a:e9:10:f7:43:73:5e:d6:0b:7f:22:df:cf:d1:49: ac:34:8c:e1:3c:f4:86:c9:25:67:a3:03:15:e9:9c: 63:07:fb:e3:7c:ff:8a:94:ca:37:61:49:ae:46:cb: f5:cb:5f:c2:21:21:c2:53:97:91:3e:74:15:15:ad: 55:58:fd:0b:cb:20:05:69:b8:f0:96:08:d8:31:28: f4:1a:ba:ca:50:e5:67:15:2c:27:56:5c:f3:b0:97: f4:1f:a3:c3:c6:87:01:fe:13:f3:b9:55:eb:08:9b: 23:55:bb:f0:d1:55:59:27:50:96:c8:44:b6:10:2e: 76:61:ec:b8:60:89:c8:96:9a:85:4b:22:08:e9:03: e0:fb:3d:f3:a9:b6:92:d5:b4:00:18:8c:98:13:6d: b3:45:9e:bb:13:29:7c:cb:a5:b2:16:00:91:28:31: 99:06:fe:ed:32:46:d3:8f:5e:d0:36:41:ff:9c:aa: 3e:5b:60:d8:23:48:74:40:64:3d:3f:87:5a:66:14: 77:7e:64:c1:d9:51:64:41:76:31:3d:af:f5:b3:17: 4c:d2:4f:b6:e0:13:9c:1d:9e:e6:2c:59:85:14:8d: 68:6a:a9:97:2c:45:9c:57:7f:33:48:d5:41:23:1e: 7b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E7:AC:BA:C6:D1:05:97:01:0C:FF:55:9D:59:A0:01:AD:FC:D4:FA X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fd60::/44 2406:840:fe98::/48 Signature Algorithm: sha256WithRSAEncryption 02:61:86:bc:b8:f9:ae:89:ef:3c:87:fb:43:2f:61:0f:2b:00: b2:f4:9c:71:90:e9:9e:71:6d:61:a4:88:ae:cf:eb:b6:9d:16: 89:5d:11:84:70:92:c8:4d:82:48:8d:79:ff:ba:f8:a4:ca:87: 1c:e5:0e:84:11:d9:8e:4e:ee:83:6e:8a:a8:f3:79:e2:24:4b: e6:6e:47:0c:e4:eb:f6:cb:43:e5:cd:0b:8e:19:ca:fd:f2:62: 14:91:bb:50:38:4e:a4:9d:61:76:4d:47:75:2f:0d:58:95:fc: 19:c0:d3:bd:a2:bf:ff:d7:77:68:7b:75:c1:95:89:bb:94:53: f6:ce:59:fb:07:a6:a1:bc:3f:44:f5:9e:d2:91:5e:f5:01:4c: 98:ce:0e:3b:0f:f5:f2:40:dc:39:8b:fc:10:cf:fd:e0:78:61: 56:79:99:97:75:e1:2f:cd:61:0c:10:54:76:2e:43:f4:58:06: 0b:1f:d5:08:e1:2c:c3:11:9e:72:b2:7e:fc:34:6b:b4:af:a8: cf:11:ab:ca:13:e5:fc:7f:58:81:09:86:61:af:ac:df:76:95: 41:e7:a3:e0:c9:35:e8:7d:39:54:cd:bc:55:36:e1:e0:5b:c9: 83:77:58:63:a7:df:a9:66:bb:45:55:2e:e3:9c:2e:f0:c7:82: 16:94:6f:34 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNkMC0wNTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwM5QRd7Zg/fSLCoDEis66RD3Q3Ne1gt/It/P0UmsNIzhPPSGySVnowMV6Zxj B/vjfP+KlMo3YUmuRsv1y1/CISHCU5eRPnQVFa1VWP0LyyAFabjwlgjYMSj0GrrK UOVnFSwnVlzzsJf0H6PDxocB/hPzuVXrCJsjVbvw0VVZJ1CWyES2EC52Yey4YInI lpqFSyII6QPg+z3zqbaS1bQAGIyYE22zRZ67Eyl8y6WyFgCRKDGZBv7tMkbTj17Q NkH/nKo+W2DYI0h0QGQ9P4daZhR3fmTB2VFkQXYxPa/1sxdM0k+24BOcHZ7mLFmF FI1oaqmXLEWcV38zSNVBIx57/wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFOHnrLrG 0QWXAQz/VZ1ZoAGt/NT6MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRThGNThBRjQ0 MkNEMTFFRkI4MENEMjM3QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQP1gAwcAJAYIQP6YMA0GCSqGSIb3DQEBCwUAA4IBAQACYYa8 uPmuie88h/tDL2EPKwCy9JxxkOmecW1hpIiuz+u2nRaJXRGEcJLITYJIjXn/uvik yocc5Q6EEdmOTu6Dboqo83niJEvmbkcM5Ov2y0PlzQuOGcr98mIUkbtQOE6knWF2 TUd1Lw1YlfwZwNO9or//13doe3XBlYm7lFP2zln7B6ahvD9E9Z7SkV71AUyYzg47 D/XyQNw5i/wQz/3geGFWeZmXdeEvzWEMEFR2LkP0WAYLH9UI4SzDEZ5ysn78NGu0 r6jPEavKE+X8f1iBCYZhr6zfdpVB56PgyTXofTlUzbxVNuHgW8mDd1hjp9+pZrtF VS7jnC7wx4IWlG80 -----END CERTIFICATE-----Generated at Sat Mar 7 02:23:45 2026 by rpki-client