$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa File: D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa (raw, json) Hash identifier: SqwQ93KB6O3+Mq+I2p0N9U+TGbVtoxZL+ZvaNSUE1fU= Subject key identifier: 05:A1:6E:BA:94:D8:4C:F0:5B:27:9D:6A:C2:51:9B:B2:C2:2A:E2:A4 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 104E Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:00 +0000 ROA not before: Thu 22 May 2025 20:07:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151194 IP address blocks: 2406:840:e570::/44 maxlen: 48 2406:840:fefe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4174 (0x104e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493b8-67a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:45:7a:92:78:87:eb:72:c2:35:cb:bc:ef:e6: 89:59:4b:54:a1:69:78:53:b0:e8:a3:74:eb:77:f4: 2e:5f:84:94:f8:d5:9c:67:35:d3:b7:84:f5:87:ad: cf:cd:78:de:65:dd:1f:4a:b8:31:a1:4e:1e:67:88: 04:5f:25:a0:b6:9a:cd:6b:b8:a8:eb:59:6b:c1:e1: 46:17:ab:b0:dc:19:92:f1:55:2f:6f:29:b3:9d:d0: c8:06:34:fa:c5:53:d1:77:5b:14:2a:b7:88:81:bf: f8:04:19:a9:62:ae:fa:90:84:df:59:5e:b4:ac:a8: 01:04:7c:c8:cf:f4:57:5b:ae:e8:d1:45:40:fa:d8: a1:06:41:7d:4b:e1:d4:9c:26:0c:3b:4f:ec:e4:11: f6:52:cb:3a:9d:78:93:c1:04:1f:3b:e9:1f:72:dd: f6:84:49:f4:2d:49:9b:b9:24:a7:23:25:be:d0:61: d1:52:e0:da:f9:95:e9:cd:fb:40:e5:00:15:ba:d2: e8:fe:d7:34:48:0c:81:cb:b8:cd:c3:2c:91:e7:70: 10:71:4f:23:52:63:6b:b2:07:b6:c6:90:1a:79:2c: 7d:b5:e8:3c:00:da:ed:88:a0:dd:e3:56:cb:17:5e: d7:30:4f:82:29:e7:4b:98:65:54:52:23:54:58:df: e0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A1:6E:BA:94:D8:4C:F0:5B:27:9D:6A:C2:51:9B:B2:C2:2A:E2:A4 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e570::/44 2406:840:fefe::/48 Signature Algorithm: sha256WithRSAEncryption 9a:d1:13:e2:9d:7f:46:ea:cb:95:82:d0:22:b8:0a:da:8e:df: 5e:4f:d3:f8:68:fe:01:6b:7f:ff:01:cd:06:13:d6:81:06:45: 9a:25:b1:85:55:e9:57:3b:cf:ff:71:f3:f6:2c:bd:2f:a3:cb: 53:ca:ae:fb:83:f7:56:da:68:b8:bb:75:ee:15:e2:c2:26:10: b6:2e:2e:02:99:03:06:12:06:f2:1d:52:cb:42:66:fb:87:d2: 7e:62:89:42:69:7d:58:24:5b:52:da:9f:6e:b2:43:b4:71:04: c1:e0:4c:d6:f6:23:f0:4b:96:4f:48:99:3a:d3:a6:34:9b:6e: a8:26:9c:ad:d2:aa:68:30:44:a7:b6:67:97:83:5e:2d:e5:79: c0:fa:ca:de:31:b5:0e:39:e5:68:18:41:da:4d:f4:dc:a6:69: 19:3d:8b:d6:98:89:cd:c6:e4:d1:4e:63:00:a0:6e:c0:f6:95: ea:35:2c:18:3c:dd:62:2a:aa:67:11:19:8c:e2:74:c3:0a:0b: 0a:7b:58:d8:a9:e2:fe:d1:08:c9:17:f4:83:0b:9b:8c:8b:ea: 71:39:53:15:47:b7:f0:94:f2:69:a5:1e:94:41:d7:6e:8b:36: 03:15:ba:d3:fa:e1:67:0a:4d:99:6c:a2:7f:0d:70:7e:ff:b3: 9f:9e:b3:ec -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNiOC02N2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUV6kniH63LCNcu87+aJWUtUoWl4U7Doo3Trd/QuX4SU+NWcZzXTt4T1h63P zXjeZd0fSrgxoU4eZ4gEXyWgtprNa7io61lrweFGF6uw3BmS8VUvbymzndDIBjT6 xVPRd1sUKreIgb/4BBmpYq76kITfWV60rKgBBHzIz/RXW67o0UVA+tihBkF9S+HU nCYMO0/s5BH2Uss6nXiTwQQfO+kfct32hEn0LUmbuSSnIyW+0GHRUuDa+ZXpzftA 5QAVutLo/tc0SAyBy7jNwyyR53AQcU8jUmNrsge2xpAaeSx9teg8ANrtiKDd41bL F17XME+CKedLmGVUUiNUWN/gsQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFAWhbrqU 2EzwWyedasJRm7LCKuKkMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRDJFQjg2RUFE RjNEMTFFRDhBRUNCRjVDQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQOVwAwcAJAYIQP7+MA0GCSqGSIb3DQEBCwUAA4IBAQCa0RPi nX9G6suVgtAiuArajt9eT9P4aP4Ba3//Ac0GE9aBBkWaJbGFVelXO8//cfP2LL0v o8tTyq77g/dW2mi4u3XuFeLCJhC2Li4CmQMGEgbyHVLLQmb7h9J+YolCaX1YJFtS 2p9uskO0cQTB4EzW9iPwS5ZPSJk606Y0m26oJpyt0qpoMESntmeXg14t5XnA+sre MbUOOeVoGEHaTfTcpmkZPYvWmInNxuTRTmMAoG7A9pXqNSwYPN1iKqpnERmM4nTD CgsKe1jYqeL+0QjJF/SDC5uMi+pxOVMVR7fwlPJppR6UQdduizYDFbrT+uFnCk2Z bKJ/DXB+/7OfnrPs -----END CERTIFICATE-----Generated at Sat Mar 28 08:44:23 2026 by rpki-client