$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/6DB6146E0E2F11EDB4659653C4F9AE02.roa File: 6DB6146E0E2F11EDB4659653C4F9AE02.roa (raw, json) Hash identifier: v5iJWYeSEvuyHKOccdct8BYIn2f7mZZmgbGxYBCZ2U4= Subject key identifier: 2F:1C:ED:A6:01:8C:93:37:81:AD:BD:3A:92:D1:98:57:DB:D8:65:CC Certificate issuer: /CN=A917D4C4/serialNumber=57CF39F39AB61B538EEA7CB2D56A34BE57B89AFB Certificate serial: 0700 Authority key identifier: 57:CF:39:F3:9A:B6:1B:53:8E:EA:7C:B2:D5:6A:34:BE:57:B8:9A:FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V88585q2G1OO6nyy1Wo0vle4mvs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/6DB6146E0E2F11EDB4659653C4F9AE02.roa Signing time: Wed 08 Apr 2026 15:13:05 +0000 ROA not before: Wed 08 Apr 2026 15:13:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7573 IP address blocks: 131.217.0.0/17 maxlen: 17 131.217.128.0/19 maxlen: 19 131.217.160.0/19 maxlen: 19 131.217.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/V88585q2G1OO6nyy1Wo0vle4mvs.crl rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/V88585q2G1OO6nyy1Wo0vle4mvs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V88585q2G1OO6nyy1Wo0vle4mvs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4, serialNumber=57CF39F39AB61B538EEA7CB2D56A34BE57B89AFB Validity Not Before: Apr 8 15:13:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d67081-5ea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2a:da:89:c5:0a:7f:27:72:27:f0:54:38:7c: a1:64:13:ac:7a:f5:c7:ab:b7:1c:36:c1:41:95:68: b9:81:df:18:06:3c:7e:f0:9c:86:e6:8b:8b:2b:4d: 71:6b:e5:bd:af:a7:6b:a4:57:62:50:46:e8:ca:32: 0f:9b:37:5a:9b:a9:41:22:08:fb:7a:50:05:1f:0b: 37:6f:de:9c:a6:cc:18:b6:af:14:49:5d:55:a9:02: d1:b6:f0:ee:09:d0:23:fb:66:0a:93:d7:f9:dd:25: c3:5b:2a:dd:77:e7:4c:1a:06:62:56:f1:9f:e3:4d: fe:bd:85:50:91:fa:3e:92:68:31:e0:e4:34:f0:a7: 22:c6:24:8c:e5:00:0d:d0:0f:ca:fb:b9:47:66:ae: 7a:22:05:ef:83:26:98:c4:2a:fa:8c:6d:53:29:47: 4e:3d:8b:02:3e:14:e9:8b:78:fb:01:9f:64:b8:2e: c2:5b:a0:04:9d:ec:26:91:39:7d:51:73:9f:f5:e1: bd:16:c2:5f:b2:bc:da:f3:c8:49:5a:f7:a0:bc:40: 46:ab:98:05:46:0c:d7:96:15:11:4c:ec:90:03:63: d7:49:9e:b5:6b:d5:57:2e:30:ff:70:33:f5:7f:41: 97:39:2f:87:a7:8e:fa:0a:de:a4:77:8f:44:ad:d9: 1e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1C:ED:A6:01:8C:93:37:81:AD:BD:3A:92:D1:98:57:DB:D8:65:CC X509v3 Authority Key Identifier: keyid:57:CF:39:F3:9A:B6:1B:53:8E:EA:7C:B2:D5:6A:34:BE:57:B8:9A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/V88585q2G1OO6nyy1Wo0vle4mvs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V88585q2G1OO6nyy1Wo0vle4mvs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/6DB6146E0E2F11EDB4659653C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 131.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption 67:6a:b4:da:c7:f3:24:7c:f2:91:ad:4a:f1:cb:c2:ec:9b:5d: bf:bf:53:7c:c8:71:70:4c:ab:95:bc:e7:e3:00:fe:82:59:c2: d1:58:d3:f1:ff:fa:21:bc:fb:5a:13:f6:7f:4d:82:6d:65:65: ad:0c:0a:39:79:0a:77:72:25:86:91:d9:bc:e5:a0:7d:82:4d: 7b:c8:c3:53:2c:4f:4d:89:cb:dc:60:98:4d:59:28:4e:fb:17: 78:ea:70:88:94:ad:5f:a3:95:e5:8c:98:16:fa:1a:77:2c:ba: 98:b7:8c:0a:98:0a:eb:b3:fc:86:7f:9f:fd:0c:aa:20:58:e5: 0d:47:14:db:d7:c8:1c:38:fe:3b:d7:a2:df:7d:b1:2c:ef:ac: bf:26:0b:77:8c:45:52:e6:b6:ad:fe:13:52:6f:6e:a1:7f:ff: a7:0b:df:f4:81:1c:fd:87:f5:44:23:9b:71:ed:c2:c0:0f:cf: 6f:5f:1b:48:d8:d6:e5:10:1e:d3:5e:90:fd:53:50:60:9a:49: c5:fb:c3:54:7f:24:70:de:4d:d7:67:56:c6:d1:7f:5e:c1:38: 7e:b2:5c:c7:08:27:75:e3:bd:1a:ad:60:d8:ee:fa:a1:9e:e4: c3:c7:cc:a9:5d:be:d5:02:49:39:b1:b4:90:d8:9d:70:eb:8c: d1:0a:96:77 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKDU3Q0YzOUYzOUFCNjFCNTM4RUVBN0NCMkQ1NkEzNEJF NTdCODlBRkIwHhcNMjYwNDA4MTUxMzA1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2NzA4MS01ZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CraicUKfydyJ/BUOHyhZBOsevXHq7ccNsFBlWi5gd8YBjx+8JyG5ouLK01x a+W9r6drpFdiUEboyjIPmzdam6lBIgj7elAFHws3b96cpswYtq8USV1VqQLRtvDu CdAj+2YKk9f53SXDWyrdd+dMGgZiVvGf403+vYVQkfo+kmgx4OQ08KcixiSM5QAN 0A/K+7lHZq56IgXvgyaYxCr6jG1TKUdOPYsCPhTpi3j7AZ9kuC7CW6AEnewmkTl9 UXOf9eG9FsJfsrza88hJWvegvEBGq5gFRgzXlhURTOyQA2PXSZ61a9VXLjD/cDP1 f0GXOS+Hp476Ct6kd49ErdkeoQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFC8c7aYB jJM3ga29OpLRmFfb2GXMMB8GA1UdIwQYMBaAFFfPOfOathtTjup8stVqNL5XuJr7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC8zQTA3RTBCQThE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9WODg1ODVxMkcxT082bnl5MVdvMHZsZTRt dnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Y4ODU4NXEyRzFPTzZueXkxV28wdmxlNG12cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Q0QzQvM0EwN0UwQkE4RDdCMTFFQjhEOEJENjBCQzRGOUFFMDIvNkRCNjE0NkUw RTJGMTFFREI0NjU5NjUzQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAg9kwDQYJKoZIhvcNAQELBQADggEBAGdqtNrH8yR88pGtSvHLwuyb Xb+/U3zIcXBMq5W85+MA/oJZwtFY0/H/+iG8+1oT9n9Ngm1lZa0MCjl5CndyJYaR 2bzloH2CTXvIw1MsT02Jy9xgmE1ZKE77F3jqcIiUrV+jleWMmBb6Gncsupi3jAqY Cuuz/IZ/n/0MqiBY5Q1HFNvXyBw4/jvXot99sSzvrL8mC3eMRVLmtq3+E1JvbqF/ /6cL3/SBHP2H9UQjm3HtwsAPz29fG0jY1uUQHtNekP1TUGCaScX7w1R/JHDeTddn VsbRf17BOH6yXMcIJ3XjvRqtYNju+qGe5MPHzKldvtUCSTmxtJDYnXDrjNEKlnc= -----END CERTIFICATE-----Generated at Fri Apr 17 16:17:58 2026 by rpki-client