$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/F255CD0A5EC411ED810B8584C4F9AE02.roa File: F255CD0A5EC411ED810B8584C4F9AE02.roa (raw, json) Hash identifier: IFm6rzchuTr/Ghy/abEkmajej4rQuJFBH9uiFcUCM2Q= Subject key identifier: C1:6C:35:01:65:4C:2C:0D:A9:31:7D:C6:B6:1C:20:89:37:E8:82:6E Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 04D2 Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/F255CD0A5EC411ED810B8584C4F9AE02.roa Signing time: Fri 03 Apr 2026 00:31:29 +0000 ROA not before: Fri 03 Apr 2026 00:31:29 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 149500 IP address blocks: 2400:58a0:1000::/44 maxlen: 44 2400:58a0:1000::/48 maxlen: 48 2400:58a0:1001::/48 maxlen: 48 2400:58a0:1002::/48 maxlen: 48 2400:58a0:1003::/48 maxlen: 48 2400:58a0:1004::/48 maxlen: 48 2400:58a0:1005::/48 maxlen: 48 2400:58a0:1006::/48 maxlen: 48 2400:58a0:1007::/48 maxlen: 48 2400:58a0:1008::/48 maxlen: 48 2400:58a0:1009::/48 maxlen: 48 2400:58a0:100a::/48 maxlen: 48 2400:58a0:100b::/48 maxlen: 48 2400:58a0:100c::/48 maxlen: 48 2400:58a0:100d::/48 maxlen: 48 2400:58a0:100e::/48 maxlen: 48 2400:58a0:100f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1234 (0x4d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF, serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Apr 3 00:31:29 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cf0a61-f0fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:66:7b:8d:86:82:67:3d:3d:a8:2b:a4:cb:a8: 0a:0a:d3:ca:42:f6:96:78:7f:1b:9b:36:c7:39:a1: e6:62:28:30:a2:b6:32:9f:25:cc:83:c2:db:77:f7: 15:9d:a2:ce:72:94:94:bd:67:cf:05:4f:c6:64:4f: 4c:8a:41:69:8b:a4:05:72:54:0f:2a:80:ec:cd:2e: 93:7c:ba:7a:60:8b:13:33:06:5c:aa:de:aa:67:ec: c0:b1:5b:09:2f:db:26:dd:7b:8f:c1:6b:e3:ff:08: a6:f3:ec:d4:e3:36:ea:34:8f:af:51:c9:ed:95:02: e7:29:13:b2:4e:84:93:52:5a:fb:4a:39:6d:b1:db: 6c:80:df:95:fd:7f:ce:0d:3d:d4:cc:91:08:8a:90: e2:a3:3e:f9:e8:97:65:63:ef:8a:f4:c1:f9:e6:3c: bc:e0:9c:b0:61:fa:f4:67:8e:2c:1e:d3:13:c9:f6: 65:b2:cc:40:90:88:4a:c0:2c:38:da:b3:2f:9a:e1: 6b:99:43:3b:06:b4:44:1c:a6:e5:95:08:e5:16:14: c3:96:66:6b:4b:12:8c:ba:df:52:42:29:67:a4:f0: de:7e:55:bf:97:65:56:52:90:e4:b4:77:33:6e:a0: 73:4e:cd:61:d9:60:25:bb:4b:22:74:58:14:26:67: d1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6C:35:01:65:4C:2C:0D:A9:31:7D:C6:B6:1C:20:89:37:E8:82:6E X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/F255CD0A5EC411ED810B8584C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:58a0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 39:06:9d:d2:ce:96:68:9e:e9:66:47:2a:38:ce:b2:f8:7f:ab: 8b:fd:ed:59:b9:4b:0a:5e:11:2e:de:0d:f9:4a:5c:f7:52:8f: 66:cf:0c:e6:ff:1f:9e:0c:79:25:7b:63:cc:4b:29:96:4e:86: 82:5f:4f:df:cf:01:0d:01:2f:8a:fa:fb:f1:3f:19:f9:e3:cd: 2a:9e:fb:e7:b6:0a:ee:da:5f:4c:b2:57:dc:4f:6f:8e:a3:d9: ce:23:8e:0a:4f:19:c9:8b:b1:da:72:72:11:b1:92:c0:f3:23: 67:5c:f1:60:a1:1f:5e:00:b1:4e:0c:7c:53:4b:cb:91:32:26: de:bb:92:b1:4d:32:f8:5b:63:df:33:32:f5:1c:56:32:f4:f8: 84:b1:e2:75:58:78:f4:a9:b9:2b:21:ea:34:b1:f8:11:8d:3b: e2:aa:f4:99:5b:e3:d9:b3:dc:25:59:b6:c1:a6:a9:9b:09:c6: fd:c9:5a:93:99:00:63:dd:11:44:e8:d2:cf:45:6a:83:03:e3: ae:12:ea:0a:a0:5a:b5:a3:b8:31:67:08:45:c2:1b:f4:26:9d: 58:1c:80:dc:8f:b3:3d:d8:24:ff:69:88:b8:ae:ca:73:e3:75: 0e:e3:fa:99:ac:a2:6e:e6:8d:90:d5:83:df:13:8e:b4:65:b0: ba:81:4c:03 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjYwNDAzMDAzMTI5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGE2MS1mMGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWZ7jYaCZz09qCuky6gKCtPKQvaWeH8bmzbHOaHmYigworYynyXMg8Lbd/cV naLOcpSUvWfPBU/GZE9MikFpi6QFclQPKoDszS6TfLp6YIsTMwZcqt6qZ+zAsVsJ L9sm3XuPwWvj/wim8+zU4zbqNI+vUcntlQLnKROyToSTUlr7SjltsdtsgN+V/X/O DT3UzJEIipDioz756JdlY++K9MH55jy84JywYfr0Z44sHtMTyfZlssxAkIhKwCw4 2rMvmuFrmUM7BrREHKbllQjlFhTDlmZrSxKMut9SQilnpPDeflW/l2VWUpDktHcz bqBzTs1h2WAlu0sidFgUJmfRtQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFMFsNQFl TCwNqTF9xrYcIIk36IJuMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvRjI1NUNEMEE1 RUM0MTFFRDgxMEI4NTg0QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJABYoBAAMA0GCSqGSIb3DQEBCwUAA4IBAQA5Bp3SzpZonulmRyo4 zrL4f6uL/e1ZuUsKXhEu3g35Slz3Uo9mzwzm/x+eDHkle2PMSymWToaCX0/fzwEN AS+K+vvxPxn5480qnvvntgru2l9MslfcT2+Oo9nOI44KTxnJi7HacnIRsZLA8yNn XPFgoR9eALFODHxTS8uRMibeu5KxTTL4W2PfMzL1HFYy9PiEseJ1WHj0qbkrIeo0 sfgRjTviqvSZW+PZs9wlWbbBpqmbCcb9yVqTmQBj3RFE6NLPRWqDA+OuEuoKoFq1 o7gxZwhFwhv0Jp1YHIDcj7M92CT/aYi4rspz43UO4/qZrKJu5o2Q1YPfE460ZbC6 gUwD -----END CERTIFICATE-----Generated at Fri Apr 17 13:52:29 2026 by rpki-client