$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa File: E8F58AF442CD11EFB80CD237C4F9AE02.roa (raw, json) Hash identifier: kBcUVl3Pz9IwC9O3/UoDACA9T+B6eW9e/hSwW/FW8S8= Subject key identifier: 88:7B:3E:BB:21:DD:DD:1F:99:9C:14:6E:39:A5:56:C0:FB:95:11:C1 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 116A Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa Signing time: Fri 22 May 2026 20:26:25 +0000 ROA not before: Fri 22 May 2026 20:26:25 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 153170 IP address blocks: 2406:840:fd60::/44 maxlen: 48 2406:840:fe98::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4458 (0x116a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:26:25 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bbf1-0a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cd:11:64:51:e1:f1:6b:b7:ae:a2:a3:8e:8b: 28:ba:70:b0:a2:a5:e1:55:b9:6f:8c:6c:fe:94:52: 72:b0:5e:b5:bf:0b:43:68:e7:9f:95:ba:94:95:8d: db:16:f4:16:db:60:58:39:c1:c0:f4:6c:89:31:30: 70:ce:b2:47:20:ac:2a:5d:c0:10:33:27:c7:62:e5: 0b:aa:53:63:e5:f8:bf:09:33:42:e9:92:cc:d0:7c: 2d:96:17:75:99:cb:2e:8f:1a:bf:5a:47:20:ca:3c: 5d:85:a7:ab:56:f0:fa:bf:06:a2:64:b1:bf:26:eb: b2:f6:40:ae:c9:22:72:5e:dc:22:6e:5f:42:6a:bd: 43:f4:6d:83:36:f1:7a:a1:53:22:8e:34:c1:f0:80: 46:cb:af:b0:70:ed:d0:6f:63:4e:0b:5d:e3:3c:02: ae:92:6a:ea:5c:8e:96:a1:d1:ad:4c:9e:87:dc:19: ac:2d:4f:97:38:f3:d4:80:48:73:bd:7d:b5:9a:50: 40:3c:d4:46:74:47:e3:d0:d8:1f:da:3f:d0:3e:c3: 6b:88:7c:b9:1b:d5:d7:70:fc:10:30:9c:e9:0e:dc: 5b:db:47:35:b9:bc:26:57:7d:65:07:dd:72:ce:e6: b6:c0:6d:ce:0a:d4:6f:a3:d4:63:88:ac:d7:1d:01: b4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:7B:3E:BB:21:DD:DD:1F:99:9C:14:6E:39:A5:56:C0:FB:95:11:C1 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fd60::/44 2406:840:fe98::/48 Signature Algorithm: sha256WithRSAEncryption 81:8d:2b:55:56:bb:dc:03:a3:47:11:3e:46:08:a4:70:3c:98: 70:ac:e8:ef:85:de:97:0e:cb:54:b7:06:05:71:fe:73:38:24: c1:b2:fe:90:1b:9a:e6:ec:34:49:02:5f:94:db:09:c0:81:4d: ca:83:59:e0:9a:7f:95:0c:54:fe:b0:37:01:de:19:ca:71:fe: 97:cd:34:af:de:b6:0d:ab:e3:76:aa:0e:79:5f:df:48:cc:21: 2e:c1:0c:0a:a7:03:eb:f2:49:6d:49:56:0a:35:f9:a0:b3:c8: f3:b0:ce:91:a0:a7:d3:27:0f:f6:79:cc:a5:6d:e4:f4:90:05: db:4c:5e:18:c1:9c:34:21:51:20:05:f3:0e:8b:a5:ec:f2:7f: f5:56:13:13:07:15:06:9b:ca:e5:78:bb:51:b8:a1:b7:52:b7: 69:03:ba:a9:cc:73:8d:8b:60:44:d8:fd:9b:42:59:5e:b3:b2: 56:10:eb:37:51:91:25:3d:5b:69:c9:f9:38:f8:8f:f2:e5:6e: 4a:d5:fb:9b:99:ec:24:f7:55:31:13:b7:9d:82:2b:e6:59:2d: 7f:bb:88:32:63:70:19:a0:19:de:03:d7:2c:8d:01:80:cd:7c: 4d:40:5c:34:9d:63:4a:48:4e:ca:09:a0:de:df:06:c7:b6:67: 9b:d8:5d:bb -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNjI1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmJmMS0wYTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA580RZFHh8Wu3rqKjjosounCwoqXhVblvjGz+lFJysF61vwtDaOeflbqUlY3b FvQW22BYOcHA9GyJMTBwzrJHIKwqXcAQMyfHYuULqlNj5fi/CTNC6ZLM0Hwtlhd1 mcsujxq/WkcgyjxdhaerVvD6vwaiZLG/Juuy9kCuySJyXtwibl9Car1D9G2DNvF6 oVMijjTB8IBGy6+wcO3Qb2NOC13jPAKukmrqXI6WodGtTJ6H3BmsLU+XOPPUgEhz vX21mlBAPNRGdEfj0Ngf2j/QPsNriHy5G9XXcPwQMJzpDtxb20c1ubwmV31lB91y zua2wG3OCtRvo9RjiKzXHQG0+wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFIh7Prsh 3d0fmZwUbjmlVsD7lRHBMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRThGNThBRjQ0 MkNEMTFFRkI4MENEMjM3QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQP1gAwcAJAYIQP6YMA0GCSqGSIb3DQEBCwUAA4IBAQCBjStV VrvcA6NHET5GCKRwPJhwrOjvhd6XDstUtwYFcf5zOCTBsv6QG5rm7DRJAl+U2wnA gU3Kg1ngmn+VDFT+sDcB3hnKcf6XzTSv3rYNq+N2qg55X99IzCEuwQwKpwPr8klt SVYKNfmgs8jzsM6RoKfTJw/2ecylbeT0kAXbTF4YwZw0IVEgBfMOi6Xs8n/1VhMT BxUGm8rleLtRuKG3UrdpA7qpzHONi2BE2P2bQlles7JWEOs3UZElPVtpyfk4+I/y 5W5K1fubmewk91UxE7edgivmWS1/u4gyY3AZoBneA9csjQGAzXxNQFw0nWNKSE7K CaDe3wbHtmeb2F27 -----END CERTIFICATE-----Generated at Sat Jun 6 09:38:32 2026 by rpki-client