$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/0D0E9070174911F0BF4ECC60C4F9AE02.roa File: 0D0E9070174911F0BF4ECC60C4F9AE02.roa (raw, json) Hash identifier: SMEU5kFkRAhtxWsfqY1AjAG3sRtK2QBAWXF4Sv51jMs= Subject key identifier: 78:E3:7D:A8:5A:90:25:29:2C:D1:7D:D8:79:27:5E:70:74:AB:4E:42 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EF6 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/0D0E9070174911F0BF4ECC60C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:12 +0000 ROA not before: Thu 22 May 2025 20:08:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 211575 IP address blocks: 2406:840:e260::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 20:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3830 (0xef6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f842b-0651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2b:6f:13:f4:70:8b:9b:6c:d8:6f:da:4b:6e: d4:47:d6:92:b5:8f:34:5a:57:94:66:23:26:73:9d: 96:70:44:e5:47:f1:ac:0b:f4:e9:5b:5b:b4:d1:12: 1a:65:8e:4c:15:be:87:a1:5e:e3:c7:4c:67:48:be: 06:db:74:2e:c5:9b:63:7f:68:2f:40:40:57:6d:03: 26:88:db:a2:b5:67:b8:8b:7a:d7:a3:0a:ea:76:26: 30:20:82:c4:07:b0:3c:d9:cf:11:5f:4c:f1:9e:a6: 01:6e:5d:bb:23:9e:5e:3a:c1:08:54:f5:33:78:44: 2a:77:d1:39:4d:ae:69:86:ca:4e:bc:2c:15:57:3b: 58:01:3c:e3:c4:71:b3:0e:c1:94:17:2f:2e:44:70: 0c:9c:36:b9:dc:9f:0f:45:7c:bd:6e:77:dc:14:0c: 6d:07:de:8c:e9:c9:c6:69:f8:68:6e:53:29:d9:49: e6:a2:15:ae:5e:5e:9a:30:17:2e:28:50:f2:da:c9: 0b:8e:4d:0d:b8:71:45:36:90:ac:e5:a7:33:f0:eb: 8d:b1:a6:5a:da:02:7e:eb:32:32:72:1f:bf:64:67: 4d:56:d2:68:42:e9:dc:67:3d:6a:cb:05:37:30:9b: 25:79:93:2d:c3:f0:a9:62:23:67:3b:06:3b:46:d4: 8e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:E3:7D:A8:5A:90:25:29:2C:D1:7D:D8:79:27:5E:70:74:AB:4E:42 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/0D0E9070174911F0BF4ECC60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e260::/44 Signature Algorithm: sha256WithRSAEncryption 8f:e1:44:2e:b5:11:ca:c5:47:9a:cf:0b:da:f6:87:39:8b:88: 1c:32:3c:b6:47:74:da:d1:89:6e:00:20:66:85:3e:f5:69:57: fb:f9:e5:92:3a:ab:f2:55:40:6d:c7:b3:95:63:77:c2:6e:71: e8:f7:f0:ee:29:12:18:41:d9:f5:79:c8:ec:ad:25:39:e5:ce: e1:8e:65:57:92:74:a5:c6:52:04:44:9a:95:c8:7a:90:99:b7: 54:34:e7:d2:c9:15:25:b0:2e:3f:db:20:de:d1:0b:b7:08:ba: a2:f1:78:9c:3b:7c:d0:0b:0d:bb:c5:11:76:0c:0c:bc:fe:93: 91:71:24:d5:ec:cb:5d:c0:38:54:24:40:e7:44:33:bc:49:da: ba:6d:a2:ee:e1:4a:27:fc:88:5e:e3:c0:91:d5:8e:7b:f2:ae: c8:23:8a:28:d1:1b:69:41:55:fc:ba:0f:fc:94:ac:dd:d9:6d: ae:48:24:5f:31:b4:c3:26:f2:20:e3:83:94:3f:ca:8f:ac:7d: 71:d4:4e:fb:62:4e:c8:7f:78:e1:4d:aa:94:2e:68:68:13:47: d3:01:79:31:bb:42:7b:e4:6c:1e:0a:36:7c:7f:6f:3f:d6:e9: 91:61:60:e6:89:44:b7:8f:e2:f0:49:da:e5:b2:fc:5b:a4:fa: 74:51:62:8e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQyYi0wNjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoytvE/Rwi5ts2G/aS27UR9aStY80WleUZiMmc52WcETlR/GsC/TpW1u00RIa ZY5MFb6HoV7jx0xnSL4G23QuxZtjf2gvQEBXbQMmiNuitWe4i3rXowrqdiYwIILE B7A82c8RX0zxnqYBbl27I55eOsEIVPUzeEQqd9E5Ta5phspOvCwVVztYATzjxHGz DsGUFy8uRHAMnDa53J8PRXy9bnfcFAxtB96M6cnGafhoblMp2UnmohWuXl6aMBcu KFDy2skLjk0NuHFFNpCs5acz8OuNsaZa2gJ+6zIych+/ZGdNVtJoQuncZz1qywU3 MJsleZMtw/CpYiNnOwY7RtSOXwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHjjfaha kCUpLNF92HknXnB0q05CMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMEQwRTkwNzAx NzQ5MTFGMEJGNEVDQzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4mAwDQYJKoZIhvcNAQELBQADggEBAI/hRC61EcrF R5rPC9r2hzmLiBwyPLZHdNrRiW4AIGaFPvVpV/v55ZI6q/JVQG3Hs5Vjd8Jucej3 8O4pEhhB2fV5yOytJTnlzuGOZVeSdKXGUgREmpXIepCZt1Q059LJFSWwLj/bIN7R C7cIuqLxeJw7fNALDbvFEXYMDLz+k5FxJNXsy13AOFQkQOdEM7xJ2rptou7hSif8 iF7jwJHVjnvyrsgjiijRG2lBVfy6D/yUrN3Zba5IJF8xtMMm8iDjg5Q/yo+sfXHU TvtiTsh/eOFNqpQuaGgTR9MBeTG7QnvkbB4KNnx/bz/W6ZFhYOaJRLeP4vBJ2uWy /Fuk+nRRYo4= -----END CERTIFICATE-----Generated at Sat Oct 25 11:53:42 2025 by rpki-client