$ rpki-client -vvf rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/8FFAAB884ED211F180A862EE95833773.roa File: 8FFAAB884ED211F180A862EE95833773.roa (raw, json) Hash identifier: GX3I9MgW0CZN72FKS2GkX1/a/qV5b7VInbm94vEgK18= Subject key identifier: 4F:CF:AE:B7:F2:DA:50:0C:4D:CC:2E:4C:A1:D4:F0:E1:25:A0:86:83 Certificate issuer: /CN=A911725F/serialNumber=EC6DF2ECD18F285F97B88F8441FD297A9EDBB94C Certificate serial: 49 Authority key identifier: EC:6D:F2:EC:D1:8F:28:5F:97:B8:8F:84:41:FD:29:7A:9E:DB:B9:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7G3y7NGPKF-XuI-EQf0pep7buUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/8FFAAB884ED211F180A862EE95833773.roa Signing time: Wed 13 May 2026 13:49:29 +0000 ROA not before: Wed 13 May 2026 13:49:29 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 140035 IP address blocks: 2402:4b20::/32 maxlen: 32 2402:4b20:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/7G3y7NGPKF-XuI-EQf0pep7buUw.crl rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/7G3y7NGPKF-XuI-EQf0pep7buUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7G3y7NGPKF-XuI-EQf0pep7buUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 13:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911725F, serialNumber=EC6DF2ECD18F285F97B88F8441FD297A9EDBB94C Validity Not Before: May 13 13:49:29 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6a048169-00e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:fa:34:ca:69:cb:e3:a5:bf:ab:b8:04:4d:cd: d5:4c:36:d4:1d:9a:fe:1b:de:e6:eb:b3:25:fa:9c: 87:f6:33:12:09:8a:66:97:e8:55:4c:e4:0e:4d:d5: bb:87:21:6d:56:b4:7a:70:89:4c:fc:44:a8:56:96: 8f:bb:1d:eb:3e:53:3f:0d:43:61:bd:19:83:94:de: 00:55:27:00:bf:7b:b6:13:3e:b6:54:e7:1b:48:e2: 8a:65:0d:93:e1:43:b0:21:f8:3d:cf:b2:ef:77:e8: 92:54:7e:1b:b8:37:fb:f9:46:c4:60:66:28:77:62: 10:3b:98:0b:19:1f:95:a8:ed:c6:78:be:1d:4d:27: 17:c4:72:48:28:32:43:aa:18:10:c0:3a:25:87:e9: 37:f2:e8:a0:fc:b0:96:fd:91:1e:20:9e:8c:95:8c: 55:5f:3b:8b:43:75:0f:67:e4:0d:98:ed:48:b7:5e: 59:56:04:9e:7e:85:72:56:91:bf:35:c7:45:c3:62: e8:6e:78:2c:ac:f5:8a:70:33:a9:9b:27:0c:30:94: 37:5f:17:02:a2:11:c4:89:96:ab:68:7e:42:85:3b: 79:59:9f:79:bf:6d:2c:90:dd:82:bb:75:a4:8b:68: a3:02:c4:b3:38:28:de:09:a5:a5:ea:df:7e:7a:0e: 4c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:CF:AE:B7:F2:DA:50:0C:4D:CC:2E:4C:A1:D4:F0:E1:25:A0:86:83 X509v3 Authority Key Identifier: keyid:EC:6D:F2:EC:D1:8F:28:5F:97:B8:8F:84:41:FD:29:7A:9E:DB:B9:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/7G3y7NGPKF-XuI-EQf0pep7buUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7G3y7NGPKF-XuI-EQf0pep7buUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/8FFAAB884ED211F180A862EE95833773.roa sbgp-ipAddrBlock: critical IPv6: 2402:4b20::/32 Signature Algorithm: sha256WithRSAEncryption 1f:8f:d7:c8:d3:b1:9d:61:e3:02:0f:35:c5:14:58:7f:aa:88: c5:22:41:60:6b:d0:0b:ab:66:81:8f:dd:4b:2e:90:7f:0a:24: c7:36:81:a8:87:2c:22:56:75:a4:5e:fd:4a:bf:81:2c:bc:db: c6:a6:23:de:78:d2:e8:d4:14:7b:8f:92:7c:79:d0:d5:7a:1f: df:75:d7:27:12:cc:28:0b:16:c8:d4:66:bf:99:e5:99:28:77: 0b:fd:d3:b2:05:d7:c5:06:1b:1c:82:cd:0f:a0:03:2c:d9:90: a7:93:3b:8f:fe:a3:97:83:63:95:98:51:e1:11:16:16:bd:a9: d3:0e:63:89:8e:b7:c1:e7:55:9a:37:d9:ff:2c:72:ab:be:e4: 15:da:06:50:70:14:be:d4:5c:e5:fc:93:1e:d5:fa:97:f7:3e: 4d:96:b3:de:d3:3a:09:94:65:a0:9e:c1:b3:b8:0b:69:8c:b7: 74:2a:a4:f5:f6:43:8b:81:b0:ea:71:94:f3:80:d8:20:0d:b0: 20:45:9b:b5:11:ba:b2:91:2c:3e:a3:8d:d7:52:32:ae:93:e9: ea:3a:09:9f:5b:f8:80:00:0a:38:e9:0f:18:04:37:46:2b:15: 1a:64:89:6d:4f:89:27:95:42:92:a7:72:1a:da:35:1c:ac:90: b1:ce:17:bd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzI1RjExMC8GA1UEBRMoRUM2REYyRUNEMThGMjg1Rjk3Qjg4Rjg0NDFGRDI5N0E5 RURCQjk0QzAeFw0yNjA1MTMxMzQ5MjlaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMDQ4MTY5LTAwZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCP+jTKacvjpb+ruARNzdVMNtQdmv4b3ubrsyX6nIf2MxIJimaX6FVM5A5N1buH IW1WtHpwiUz8RKhWlo+7Hes+Uz8NQ2G9GYOU3gBVJwC/e7YTPrZU5xtI4oplDZPh Q7Ah+D3Psu936JJUfhu4N/v5RsRgZih3YhA7mAsZH5Wo7cZ4vh1NJxfEckgoMkOq GBDAOiWH6Tfy6KD8sJb9kR4gnoyVjFVfO4tDdQ9n5A2Y7Ui3XllWBJ5+hXJWkb81 x0XDYuhueCys9YpwM6mbJwwwlDdfFwKiEcSJlqtofkKFO3lZn3m/bSyQ3YK7daSL aKMCxLM4KN4JpaXq3356Dkx3AgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUT8+ut/La UAxNzC5ModTw4SWghoMwHwYDVR0jBBgwFoAU7G3y7NGPKF+XuI+EQf0pep7buUww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3MjVGLzdBOUJGM0NBRkIy RTExRjBBRkRFNzE4OTNCNkY1NkJDLzdHM3k3TkdQS0YtWHVJLUVRZjBwZXA3YnVV dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0czeTdOR1BLRi1YdUktRVFmMHBlcDdidVV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzI1Ri83QTlCRjNDQUZCMkUxMUYwQUZERTcxODkzQjZGNTZCQy84RkZBQUI4ODRF RDIxMUYxODBBODYyRUU5NTgzMzc3My5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAksgMA0GCSqGSIb3DQEBCwUAA4IBAQAfj9fI07GdYeMCDzXFFFh/ qojFIkFga9ALq2aBj91LLpB/CiTHNoGohywiVnWkXv1Kv4EsvNvGpiPeeNLo1BR7 j5J8edDVeh/fddcnEswoCxbI1Ga/meWZKHcL/dOyBdfFBhscgs0PoAMs2ZCnkzuP /qOXg2OVmFHhERYWvanTDmOJjrfB51WaN9n/LHKrvuQV2gZQcBS+1Fzl/JMe1fqX 9z5NlrPe0zoJlGWgnsGzuAtpjLd0KqT19kOLgbDqcZTzgNggDbAgRZu1EbqykSw+ o43XUjKuk+nqOgmfW/iAAAo46Q8YBDdGKxUaZIltT4knlUKSp3Ia2jUcrJCxzhe9 -----END CERTIFICATE-----Generated at Wed May 13 21:31:12 2026 by rpki-client