$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa File: 5BE6836E501B11F0928AD730C4F9AE02.roa (raw, json) Hash identifier: mX9JGCxXIviWOAPP6dNB7CFOQiild0OOwc3z6WAcYj8= Subject key identifier: 6C:26:D8:A3:DE:DD:37:B8:62:AA:35:D5:84:70:43:8C:DB:74:4B:A5 Certificate issuer: /CN=A91685E9/serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Certificate serial: 0153 Authority key identifier: F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa Signing time: Fri 05 Jun 2026 10:22:20 +0000 ROA not before: Fri 05 Jun 2026 10:22:20 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 152565 IP address blocks: 2401:e920::/33 maxlen: 33 2401:e920:8000::/34 maxlen: 34 2401:e920:c00c::/48 maxlen: 48 2401:e920:c7f7::/48 maxlen: 48 2401:e920:fff0::/48 maxlen: 48 2401:e920:fffa::/48 maxlen: 48 2401:e920:fffb::/48 maxlen: 48 2401:e920:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 06:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9, serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Validity Not Before: Jun 5 10:22:20 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6a22a35b-7f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:93:2b:d5:92:78:69:de:94:18:18:06:42:b7: 10:09:c0:cd:3a:c7:58:dc:02:95:e1:53:36:0d:4d: a4:97:4b:32:36:31:80:b8:30:48:03:9d:9a:93:27: 84:e1:dc:af:f9:ca:10:c4:59:b2:62:01:71:c5:0a: f7:d6:2a:67:43:2f:0f:f4:9e:e9:a9:94:36:55:a6: 7b:e5:4d:cc:98:8a:db:c8:6f:3b:bc:a3:2e:8c:6c: 45:8c:bd:48:40:1e:13:dc:02:bd:46:9b:7a:ef:46: e3:98:bf:2e:05:ca:e9:ab:97:57:1b:28:ab:ef:d1: 0d:16:62:b9:fa:a5:ab:5d:00:2b:55:b3:1b:e8:4d: 0c:e8:19:3b:e7:31:ba:7c:59:81:07:3f:bd:c6:d1: e1:9a:30:80:33:19:f7:f0:5b:f7:d2:0a:61:56:83: 45:6e:3c:41:5d:1f:15:2d:40:91:31:6a:e3:13:ce: bb:25:d2:43:68:68:c3:9f:67:ad:29:42:ed:a0:a6: da:39:bc:b8:46:62:b5:33:c1:a0:a9:10:2d:75:9b: 43:3a:49:b3:21:44:28:61:e4:c1:6f:96:ca:49:9a: 12:c9:b8:65:d5:bc:4c:f8:67:99:2f:02:3a:61:03: 9c:36:91:34:1a:01:76:24:64:4b:10:4f:a8:74:ab: 93:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:26:D8:A3:DE:DD:37:B8:62:AA:35:D5:84:70:43:8C:DB:74:4B:A5 X509v3 Authority Key Identifier: keyid:F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:e920::-2401:e920:bfff:ffff:ffff:ffff:ffff:ffff 2401:e920:c00c::/48 2401:e920:c7f7::/48 2401:e920:fff0::/48 2401:e920:fffa::-2401:e920:fffc:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 97:3c:87:42:fd:6b:a0:8d:10:84:37:bc:4b:ca:7c:4f:b7:ae: 79:22:92:18:d3:f5:9d:6d:18:6d:32:c8:e6:d5:36:5c:82:94: 5e:9d:db:de:34:f3:73:69:3f:e0:ae:36:91:d3:0f:67:f0:a9: 8f:ea:23:7c:a5:5e:72:35:ce:91:59:14:e8:ea:72:a9:9a:92: 74:1e:39:71:30:5e:6b:b4:ba:3f:d8:8e:e4:70:21:b3:a8:3f: df:fe:b4:56:ab:0b:f0:56:34:36:72:de:a7:ec:d8:f2:86:38: d6:0a:c2:5c:3d:8f:b8:66:4a:9c:49:93:8c:12:c7:66:f5:37: f2:28:50:0b:77:ef:85:d0:4e:6e:69:dd:04:29:21:0a:11:a9: 6a:5a:86:5a:02:69:c9:b2:aa:d6:46:f9:ad:9b:d1:6b:94:a5: 4c:52:f2:51:09:d0:bb:87:13:87:5a:33:43:eb:a5:28:eb:ce: 95:75:25:25:50:2b:6d:7d:d6:cb:67:b6:1d:49:ad:46:fd:7d: 9f:22:b4:8c:bb:57:a5:0a:8d:7c:4c:61:d1:e1:2f:e4:40:fe: 1a:40:9d:f0:72:4c:e6:5c:11:e9:ca:26:14:66:b0:5c:b4:44: c8:77:d8:74:3b:b5:ce:3c:a0:ca:35:e4:26:73:78:06:f3:a2: ae:cf:e5:ae -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg1RTkxMTAvBgNVBAUTKEY2OThCNUI0N0EwNkQ1MzA3REVDNjA4OTY5MDYzMDc0 QjY4RkY1Q0EwHhcNMjYwNjA1MTAyMjIwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyYTM1Yi03ZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJMr1ZJ4ad6UGBgGQrcQCcDNOsdY3AKV4VM2DU2kl0syNjGAuDBIA52akyeE 4dyv+coQxFmyYgFxxQr31ipnQy8P9J7pqZQ2VaZ75U3MmIrbyG87vKMujGxFjL1I QB4T3AK9Rpt670bjmL8uBcrpq5dXGyir79ENFmK5+qWrXQArVbMb6E0M6Bk75zG6 fFmBBz+9xtHhmjCAMxn38Fv30gphVoNFbjxBXR8VLUCRMWrjE867JdJDaGjDn2et KULtoKbaOby4RmK1M8GgqRAtdZtDOkmzIUQoYeTBb5bKSZoSybhl1bxM+GeZLwI6 YQOcNpE0GgF2JGRLEE+odKuT6wIDAQABo4ICmjCCApYwHQYDVR0OBBYEFGwm2KPe 3Te4Yqo11YRwQ4zbdEulMB8GA1UdIwQYMBaAFPaYtbR6BtUwfexgiWkGMHS2j/XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODVFOS9DOTI4MDQzQUQx NzYxMUVGOTVDNURFNUFDNEY5QUUwMi85cGkxdEhvRzFUQjk3R0NKYVFZd2RMYVA5 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwaTF0SG9HMVRCOTdHQ0phUVl3ZExhUDljby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg1RTkvQzkyODA0M0FEMTc2MTFFRjk1QzVERTVBQzRGOUFFMDIvNUJFNjgzNkU1 MDFCMTFGMDkyOEFENzMwQzRGOUFFMDIucm9hMFkGCCsGAQUFBwEHAQH/BEowSDBG BAIAAjBAMA8DBQUkAekgAwYGJAHpIIADBwAkAekgwAwDBwAkAekgx/cDBwAkAekg //AwEgMHASQB6SD/+gMHACQB6SD//DANBgkqhkiG9w0BAQsFAAOCAQEAlzyHQv1r oI0QhDe8S8p8T7eueSKSGNP1nW0YbTLI5tU2XIKUXp3b3jTzc2k/4K42kdMPZ/Cp j+ojfKVecjXOkVkU6OpyqZqSdB45cTBea7S6P9iO5HAhs6g/3/60VqsL8FY0NnLe p+zY8oY41grCXD2PuGZKnEmTjBLHZvU38ihQC3fvhdBObmndBCkhChGpalqGWgJp ybKq1kb5rZvRa5SlTFLyUQnQu4cTh1ozQ+ulKOvOlXUlJVArbX3Wy2e2HUmtRv19 nyK0jLtXpQqNfExh0eEv5ED+GkCd8HJM5lwR6comFGawXLREyHfYdDu1zjygyjXk JnN4BvOirs/lrg== -----END CERTIFICATE-----Generated at Sat Jun 13 13:50:16 2026 by rpki-client