$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa File: 5BE6836E501B11F0928AD730C4F9AE02.roa (raw, json) Hash identifier: /HIHLpwd0S664HfhvVwLMbh80nHNNDuDIVOHq1h+TQ8= Subject key identifier: 04:BF:57:29:C5:A6:A7:1F:8A:B7:B1:DF:A7:B1:B9:93:60:41:01:A0 Certificate issuer: /CN=A91685E9/serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Certificate serial: 0145 Authority key identifier: F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa Signing time: Mon 11 May 2026 07:15:08 +0000 ROA not before: Mon 11 May 2026 07:15:08 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 152565 IP address blocks: 2401:e920::/33 maxlen: 33 2401:e920:8000::/34 maxlen: 34 2401:e920:c00c::/48 maxlen: 48 2401:e920:c7f7::/48 maxlen: 48 2401:e920:fffa::/48 maxlen: 48 2401:e920:fffb::/48 maxlen: 48 2401:e920:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9, serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Validity Not Before: May 11 07:15:08 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6a0181fc-ed90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:24:64:a3:85:66:90:ee:53:89:6f:92:6b:f1: 03:80:7f:d6:02:1a:1c:f6:5f:b4:f9:57:d1:0f:67: c1:b0:60:65:af:21:ea:e6:9e:7b:98:07:d4:7c:de: e6:1c:0a:df:0a:08:1a:6e:c0:8c:28:9e:6d:f1:8e: 43:55:cf:a3:76:4c:41:23:32:4b:04:e3:3f:73:4d: 62:81:af:5f:5d:80:ed:38:32:ac:85:52:86:34:7d: ab:24:1f:05:f2:22:ca:4c:78:a0:df:83:2e:33:f8: e8:d6:21:5c:09:63:21:c4:f9:61:3f:48:40:ab:e0: 93:ed:09:38:01:3f:58:4b:64:d9:9d:5f:05:a4:15: b5:7b:39:9f:2a:2d:95:78:9c:5b:4e:29:96:a4:b0: 48:b0:46:09:b3:b6:db:ff:93:42:51:cd:46:6c:ed: 5b:9c:8e:0e:40:69:76:96:19:ef:25:ae:1e:40:7e: 6e:e9:41:d7:1b:06:42:17:a1:c4:e4:79:d8:e6:b3: ec:b3:68:8c:b8:53:69:47:d8:f9:6b:e6:c4:5a:97: fe:b5:90:bb:84:a1:dd:e9:58:ac:51:35:e2:f8:41: c8:c1:20:ab:99:a4:7c:0e:70:66:c9:ba:ec:fd:81: 30:ce:52:2e:c7:e8:b8:79:4a:4d:bd:8a:73:1d:f7: e6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BF:57:29:C5:A6:A7:1F:8A:B7:B1:DF:A7:B1:B9:93:60:41:01:A0 X509v3 Authority Key Identifier: keyid:F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:e920::-2401:e920:bfff:ffff:ffff:ffff:ffff:ffff 2401:e920:c00c::/48 2401:e920:c7f7::/48 2401:e920:fffa::-2401:e920:fffc:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c2:f0:63:73:ae:9e:5c:ac:47:34:be:47:d8:26:da:0d:2e:47: 0e:03:0e:ab:a9:2c:23:dd:9e:fa:c5:33:68:6a:ea:96:53:70: 2e:19:22:90:09:a7:d9:a9:4a:7a:91:df:97:a2:2e:3c:52:9e: ce:4e:b0:c3:21:61:fc:e3:2e:79:d7:38:92:c0:80:06:d6:56: e6:9a:d4:61:8d:bb:cb:17:0b:d7:73:8e:06:7d:af:2d:73:47: b0:f8:92:e8:5e:07:9b:3a:a0:7d:38:73:15:e2:7f:96:35:28: a5:fc:e1:53:a0:9b:29:f6:f4:01:7f:7c:0a:cb:84:ba:9f:87: 0e:56:03:44:49:be:74:4b:ac:8b:fd:88:86:74:91:c4:44:47: 3f:f5:9e:bc:22:f8:23:3a:43:32:b2:49:ab:2a:49:3e:05:60: 1a:98:31:08:cc:4d:89:64:82:59:45:0c:36:21:af:5c:30:09: ce:c9:a3:2d:e5:7d:4e:19:bc:9a:d4:2b:2a:89:71:51:7a:26: a2:df:9e:b3:5d:2a:16:ff:03:a2:71:e0:5d:cd:ca:41:03:98: 59:2e:c1:b3:65:89:64:70:4a:c5:f8:30:6f:3b:3d:61:ea:bf: 90:28:38:fc:6d:db:f0:d6:6b:44:74:a4:a5:36:1b:a4:aa:ad: 37:1f:83:06 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg1RTkxMTAvBgNVBAUTKEY2OThCNUI0N0EwNkQ1MzA3REVDNjA4OTY5MDYzMDc0 QjY4RkY1Q0EwHhcNMjYwNTExMDcxNTA4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAxODFmYy1lZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviRko4VmkO5TiW+Sa/EDgH/WAhoc9l+0+VfRD2fBsGBlryHq5p57mAfUfN7m HArfCggabsCMKJ5t8Y5DVc+jdkxBIzJLBOM/c01iga9fXYDtODKshVKGNH2rJB8F 8iLKTHig34MuM/jo1iFcCWMhxPlhP0hAq+CT7Qk4AT9YS2TZnV8FpBW1ezmfKi2V eJxbTimWpLBIsEYJs7bb/5NCUc1GbO1bnI4OQGl2lhnvJa4eQH5u6UHXGwZCF6HE 5HnY5rPss2iMuFNpR9j5a+bEWpf+tZC7hKHd6VisUTXi+EHIwSCrmaR8DnBmybrs /YEwzlIux+i4eUpNvYpzHffmfQIDAQABo4ICkTCCAo0wHQYDVR0OBBYEFAS/VynF pqcfirex36exuZNgQQGgMB8GA1UdIwQYMBaAFPaYtbR6BtUwfexgiWkGMHS2j/XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODVFOS9DOTI4MDQzQUQx NzYxMUVGOTVDNURFNUFDNEY5QUUwMi85cGkxdEhvRzFUQjk3R0NKYVFZd2RMYVA5 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwaTF0SG9HMVRCOTdHQ0phUVl3ZExhUDljby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg1RTkvQzkyODA0M0FEMTc2MTFFRjk1QzVERTVBQzRGOUFFMDIvNUJFNjgzNkU1 MDFCMTFGMDkyOEFENzMwQzRGOUFFMDIucm9hMFAGCCsGAQUFBwEHAQH/BEEwPzA9 BAIAAjA3MA8DBQUkAekgAwYGJAHpIIADBwAkAekgwAwDBwAkAekgx/cwEgMHASQB 6SD/+gMHACQB6SD//DANBgkqhkiG9w0BAQsFAAOCAQEAwvBjc66eXKxHNL5H2Cba DS5HDgMOq6ksI92e+sUzaGrqllNwLhkikAmn2alKepHfl6IuPFKezk6wwyFh/OMu edc4ksCABtZW5prUYY27yxcL13OOBn2vLXNHsPiS6F4HmzqgfThzFeJ/ljUopfzh U6CbKfb0AX98CsuEup+HDlYDREm+dEusi/2IhnSRxERHP/WevCL4IzpDMrJJqypJ PgVgGpgxCMxNiWSCWUUMNiGvXDAJzsmjLeV9Thm8mtQrKolxUXomot+es10qFv8D onHgXc3KQQOYWS7Bs2WJZHBKxfgwbzs9Yeq/kCg4/G3b8NZrRHSkpTYbpKqtNx+D Bg== -----END CERTIFICATE-----Generated at Wed May 13 05:06:56 2026 by rpki-client