$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/684E2D92AA1111EF9B82966FC4F9AE02.roa File: 684E2D92AA1111EF9B82966FC4F9AE02.roa (raw, json) Hash identifier: HruBbhIoqVlhT/fPIWJqLsClzO5w8rtm8hUjvWbxyvE= Subject key identifier: CF:FF:53:46:DF:08:54:66:00:63:A8:FE:F9:3F:A4:FA:DD:ED:25:FF Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1139 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/684E2D92AA1111EF9B82966FC4F9AE02.roa Signing time: Fri 22 May 2026 20:24:53 +0000 ROA not before: Fri 22 May 2026 20:24:53 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 140682 IP address blocks: 2406:840:9960::/44 maxlen: 48 2406:840:feae::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:38:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4409 (0x1139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:24:53 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10bb95-70e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:73:e7:c6:9e:14:00:06:81:d8:5a:08:b8:ab: 80:67:f9:5f:60:b1:57:71:b4:1d:8c:6c:e3:33:5f: c7:5a:c5:08:82:80:1d:07:9e:66:f4:eb:2a:49:45: b8:c8:69:7d:2b:2c:ae:e9:5a:42:76:4a:56:a4:e9: c0:b4:3b:18:9f:9c:74:a8:3f:01:c2:40:72:5c:56: 7e:bf:fc:33:a0:5a:1f:2b:f3:e5:42:1b:38:95:65: d9:f9:80:5c:9e:52:2e:56:0a:36:a9:c5:7c:7b:21: d8:21:63:1a:5e:f0:71:25:a1:05:49:16:2d:ca:c6: 5b:b3:ff:c1:04:7c:d4:72:dc:6b:20:be:fc:31:c5: b0:fa:bf:8e:75:12:43:41:54:1c:22:04:7c:ff:2c: 3b:08:5f:de:08:85:d1:7c:26:83:7e:af:f9:b6:eb: 98:1c:86:e5:7b:1f:da:95:2a:e5:00:9b:6e:4c:05: 04:a4:29:ec:0c:11:d9:c5:87:39:66:99:49:f4:7d: 32:0a:00:e4:45:19:b5:24:3e:1a:cc:20:38:7b:4f: be:71:43:2e:6f:e8:d0:a2:f5:1b:d1:20:c9:87:4b: 57:73:b0:6e:6c:58:d4:2e:20:d4:80:d3:8e:52:d1: b7:7e:72:e9:b7:15:6a:06:4d:cf:42:4b:da:10:d9: 71:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FF:53:46:DF:08:54:66:00:63:A8:FE:F9:3F:A4:FA:DD:ED:25:FF X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/684E2D92AA1111EF9B82966FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9960::/44 2406:840:feae::/48 Signature Algorithm: sha256WithRSAEncryption 7a:2e:49:a0:5b:fd:b5:4e:3c:30:3b:f3:30:8e:34:97:83:2f: cb:30:27:e7:5e:ad:ef:bc:58:c0:de:96:bc:05:5f:40:2b:10: a6:d0:bb:c3:77:e8:23:27:2f:fa:9b:4c:10:4c:33:a2:a2:2e: 9a:79:05:96:84:1e:e3:8f:ba:b8:42:4f:14:06:69:44:be:f9: 15:1e:ce:80:0d:76:96:82:09:ca:a2:b4:e6:91:30:dd:7b:fd: cc:ad:32:59:5b:70:e9:7a:57:be:a7:49:20:1c:e6:a5:ab:c8: d3:10:5e:f8:63:d5:8b:bf:94:e2:6c:26:9e:6a:d2:ba:43:6f: 6d:c2:5b:4f:45:10:90:d3:1b:e3:ef:27:0b:67:85:a5:32:2d: 7d:b4:57:6c:4a:ee:50:39:92:79:1e:37:a5:b0:a4:98:b3:22: 20:a5:f1:6f:9c:a3:a0:54:a6:79:c1:54:6b:a1:80:8b:03:60: 1a:32:80:10:b3:83:60:73:a3:e3:bc:5b:ae:74:ba:aa:73:25: dc:07:0d:cb:f9:5e:4f:c9:33:9b:bd:31:02:17:56:04:ae:05: 2d:93:20:29:db:ce:30:56:4e:1c:af:ab:07:d9:42:9d:4e:00: 0c:31:3b:fc:9d:19:e8:56:85:cf:b5:b1:68:dd:d3:f6:96:36: 1c:f4:87:0f -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICETkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwNTIyMjAyNDUzWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwYmI5NS03MGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3Pnxp4UAAaB2FoIuKuAZ/lfYLFXcbQdjGzjM1/HWsUIgoAdB55m9OsqSUW4 yGl9Kyyu6VpCdkpWpOnAtDsYn5x0qD8BwkByXFZ+v/wzoFofK/PlQhs4lWXZ+YBc nlIuVgo2qcV8eyHYIWMaXvBxJaEFSRYtysZbs//BBHzUctxrIL78McWw+r+OdRJD QVQcIgR8/yw7CF/eCIXRfCaDfq/5tuuYHIblex/alSrlAJtuTAUEpCnsDBHZxYc5 ZplJ9H0yCgDkRRm1JD4azCA4e0++cUMub+jQovUb0SDJh0tXc7BubFjULiDUgNOO UtG3fnLptxVqBk3PQkvaENlxLwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFM//U0bf CFRmAGOo/vk/pPrd7SX/MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjg0RTJEOTJB QTExMTFFRjlCODI5NjZGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQJlgAwcAJAYIQP6uMA0GCSqGSIb3DQEBCwUAA4IBAQB6Lkmg W/21TjwwO/MwjjSXgy/LMCfnXq3vvFjA3pa8BV9AKxCm0LvDd+gjJy/6m0wQTDOi oi6aeQWWhB7jj7q4Qk8UBmlEvvkVHs6ADXaWggnKorTmkTDde/3MrTJZW3Dpele+ p0kgHOalq8jTEF74Y9WLv5TibCaeatK6Q29twltPRRCQ0xvj7ycLZ4WlMi19tFds Su5QOZJ5HjelsKSYsyIgpfFvnKOgVKZ5wVRroYCLA2AaMoAQs4Ngc6PjvFuudLqq cyXcBw3L+V5PyTObvTECF1YErgUtkyAp284wVk4cr6sH2UKdTgAMMTv8nRnoVoXP tbFo3dP2ljYc9IcP -----END CERTIFICATE-----Generated at Sat Jun 13 16:28:11 2026 by rpki-client