$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/86AE60140D7A11EB9D346C48C4F9AE02.roa File: 86AE60140D7A11EB9D346C48C4F9AE02.roa (raw, json) Hash identifier: e9Lu8flwsgrgepqCcx7rLX3W9le7mADkxpNTO2DEgOA= Subject key identifier: 3C:FE:B7:7C:68:D3:74:32:C0:5A:2F:52:0A:73:37:DE:94:7B:90:60 Certificate issuer: /CN=A91F2E76/serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Certificate serial: 0859 Authority key identifier: D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/86AE60140D7A11EB9D346C48C4F9AE02.roa Signing time: Wed 10 Jun 2026 21:25:34 +0000 ROA not before: Wed 10 Jun 2026 21:25:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15169 IP address blocks: 2404:6800::/32 maxlen: 32 2404:6800:4001::/48 maxlen: 48 2404:6800:4002::/48 maxlen: 48 2404:6800:4003::/48 maxlen: 48 2404:6800:4004::/48 maxlen: 48 2404:6800:4005::/48 maxlen: 48 2404:6800:4006::/48 maxlen: 48 2404:6800:4007::/48 maxlen: 48 2404:6800:4008::/48 maxlen: 48 2404:6800:4009::/48 maxlen: 48 2404:6800:400a::/48 maxlen: 48 2404:6800:480e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2137 (0x859) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2E76, serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Validity Not Before: Jun 10 21:25:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a29d64e-ff00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0e:73:23:28:7d:65:85:c8:17:52:b4:ce:81: 0b:67:81:f6:70:8e:c3:a8:59:6a:e5:3b:16:50:b1: 2f:87:7b:a6:30:cc:cb:5c:52:1b:c6:1e:95:6b:a8: a4:24:d7:37:2c:0d:d8:19:bc:07:ce:b6:19:d9:c9: ac:57:91:41:a5:f8:be:0d:26:da:8e:72:f8:95:60: b8:22:71:e8:29:b8:3e:0e:48:5f:11:ec:a8:58:66: 00:b8:8b:60:ea:b5:42:80:49:a7:d8:c6:4e:fe:1c: 35:28:fb:05:4d:b8:0f:2a:44:b6:88:5f:6f:80:9a: c6:f7:4b:6a:7f:69:f0:81:3e:57:56:c1:3a:32:53: 3a:89:11:ae:4d:0f:73:66:81:0a:3a:2b:18:a0:a4: 29:e7:b4:4f:f5:c0:70:b9:66:e7:42:86:2b:a1:4a: ba:16:10:38:6e:e8:ac:9e:40:7e:90:90:e0:78:fb: 20:d2:ba:cf:a0:0e:87:c3:14:e1:1b:d3:80:b2:8c: 23:53:37:66:c3:04:70:fe:21:78:86:23:fd:3d:c4: e6:ea:84:a4:fa:ba:dd:7c:6e:44:b7:4e:1c:44:82: c0:03:84:48:14:80:3e:23:83:6d:45:18:1f:59:1a: b5:1c:56:6e:84:ed:9e:da:1b:df:a1:30:e7:03:5f: 2d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:FE:B7:7C:68:D3:74:32:C0:5A:2F:52:0A:73:37:DE:94:7B:90:60 X509v3 Authority Key Identifier: keyid:D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/86AE60140D7A11EB9D346C48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:6800::/32 Signature Algorithm: sha256WithRSAEncryption 87:f4:b2:21:34:df:f7:8e:f1:d1:a4:37:3f:70:ff:6c:63:b5: 84:72:0d:4f:5d:8a:ad:2a:05:41:d3:31:c7:25:2a:9d:30:4e: ac:03:1d:16:aa:de:b3:15:35:71:ad:d6:15:a8:ea:70:fc:46: 5e:86:8f:ab:aa:1b:0f:e5:c4:36:87:dd:df:dc:0d:27:a7:ca: 65:74:fb:8b:a6:29:2f:0a:8a:81:c3:6c:32:0d:43:fa:83:ba: ff:1d:ba:48:bb:64:b3:d7:bb:fb:1c:69:aa:37:28:2b:c8:ac: 58:45:17:e9:3f:86:05:66:0a:f5:65:b9:96:7e:69:c4:0e:b8: 61:23:dd:b5:b3:b6:e4:66:b6:c6:75:60:ff:42:dc:be:61:95: 9a:ce:f0:8e:2d:23:fe:71:33:2d:25:71:8c:26:9f:a7:a5:e7: 67:d0:1e:7d:5d:a3:54:b8:85:eb:9e:bf:ef:8c:62:e3:0a:b4: 2c:39:7d:62:82:c2:40:90:99:82:90:e4:e6:ba:dc:90:44:9f: d0:ff:8f:37:75:93:b4:af:a0:88:ec:11:1d:16:98:7e:4e:97: 38:e2:81:c0:81:92:65:cf:d1:51:ba:5e:c6:df:38:74:9f:e2: 87:86:db:69:08:1d:b7:7e:b8:cb:13:94:fe:aa:e7:6f:90:a5: b9:99:be:e3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICCFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJFNzYxMTAvBgNVBAUTKEQ0MTM3OEVGQ0NDRENBOEU2NTM3RTk1RjI3QUEzQjM1 Mzc1ODBBRjMwHhcNMjYwNjEwMjEyNTM0WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI5ZDY0ZS1mZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwg5zIyh9ZYXIF1K0zoELZ4H2cI7DqFlq5TsWULEvh3umMMzLXFIbxh6Va6ik JNc3LA3YGbwHzrYZ2cmsV5FBpfi+DSbajnL4lWC4InHoKbg+DkhfEeyoWGYAuItg 6rVCgEmn2MZO/hw1KPsFTbgPKkS2iF9vgJrG90tqf2nwgT5XVsE6MlM6iRGuTQ9z ZoEKOisYoKQp57RP9cBwuWbnQoYroUq6FhA4buisnkB+kJDgePsg0rrPoA6HwxTh G9OAsowjUzdmwwRw/iF4hiP9PcTm6oSk+rrdfG5Et04cRILAA4RIFIA+I4NtRRgf WRq1HFZuhO2e2hvfoTDnA18t/QIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFDz+t3xo 03QywFovUgpzN96Ue5BgMB8GA1UdIwQYMBaAFNQTeO/MzcqOZTfpXyeqOzU3WArz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkU3Ni84RjNDOUU2QTBE NzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6TnlvNWxOLWxmSjZvN05UZFlD dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFCTjQ3OHpOeW81bE4tbGZKNm83TlRkWUN2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJFNzYvOEYzQzlFNkEwRDc3MTFFQkJCQUUzNDQwQzRGOUFFMDIvODZBRTYwMTQw RDdBMTFFQjlEMzQ2QzQ4QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJARoADANBgkqhkiG9w0BAQsFAAOCAQEAh/SyITTf947x0aQ3P3D/ bGO1hHINT12KrSoFQdMxxyUqnTBOrAMdFqresxU1ca3WFajqcPxGXoaPq6obD+XE Nofd39wNJ6fKZXT7i6YpLwqKgcNsMg1D+oO6/x26SLtks9e7+xxpqjcoK8isWEUX 6T+GBWYK9WW5ln5pxA64YSPdtbO25Ga2xnVg/0LcvmGVms7wji0j/nEzLSVxjCaf p6XnZ9AefV2jVLiF656/74xi4wq0LDl9YoLCQJCZgpDk5rrckESf0P+PN3WTtK+g iOwRHRaYfk6XOOKBwIGSZc/RUbpext84dJ/ih4bbaQgdt364yxOU/qrnb5CluZm+ 4w== -----END CERTIFICATE-----Generated at Sat Jun 13 09:22:13 2026 by rpki-client