$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/11F0FAD654C311EFB296F71BC4F9AE02.roa File: 11F0FAD654C311EFB296F71BC4F9AE02.roa (raw, json) Hash identifier: om1KaRKRaUydXLEWQLU+Hx+gyofTPD+bW8MAI8eUW2k= Subject key identifier: 15:DB:51:F2:74:C7:7E:EB:34:0F:48:2A:E7:A7:F4:C7:9E:E3:81:1C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0ED9 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/11F0FAD654C311EFB296F71BC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:43 +0000 ROA not before: Thu 22 May 2025 20:07:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153187 IP address blocks: 2406:840:fc50::/44 maxlen: 48 2406:840:fef6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3801 (0xed9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:43 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f840e-50d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:50:5b:18:d9:8c:d8:1a:00:c9:a8:5d:36:e5: f4:5b:f5:bd:0d:e9:c3:eb:89:04:8a:3c:62:78:8b: 24:44:35:4e:f7:83:bd:f2:d1:e4:b5:97:74:53:66: 14:8c:c6:d5:bc:c1:2c:72:d4:2d:42:5d:9d:ef:87: 39:4d:e2:e0:9f:a7:e8:81:f6:f4:88:0b:3e:fc:33: a2:ac:5c:10:33:a2:42:ce:cd:3e:d7:f2:ab:89:6b: f2:80:ab:59:94:e9:2a:b2:24:b4:07:71:c2:90:a4: 03:3c:88:9e:a7:1b:c3:ad:f2:22:c0:94:d1:3d:68: 3c:5c:35:17:cc:3a:25:65:b9:1f:c3:ae:39:6b:94: 10:1e:4a:d7:b7:87:02:1e:b5:87:28:37:cf:78:8b: 13:20:e0:4c:ed:0f:0a:68:d2:ef:49:ea:b3:b7:27: a8:a5:2c:c7:45:c7:41:db:f5:f3:52:fe:53:f0:69: f7:9c:5e:28:6e:1d:43:2f:99:9c:7c:8e:0c:48:2e: 5e:49:28:4e:72:8c:8b:64:46:be:48:23:41:c2:8a: 68:1f:f1:36:b4:c0:71:84:97:2b:d7:d5:24:a9:a6: 7c:29:db:97:c8:6a:cd:ec:f7:7d:c7:6f:e9:c0:2e: 01:d0:99:e1:d5:b7:c7:73:09:0e:dc:4b:57:15:04: 4d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DB:51:F2:74:C7:7E:EB:34:0F:48:2A:E7:A7:F4:C7:9E:E3:81:1C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/11F0FAD654C311EFB296F71BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fc50::/44 2406:840:fef6::/48 Signature Algorithm: sha256WithRSAEncryption 37:8d:1e:74:21:e7:4b:e7:34:37:8c:02:38:3c:91:3c:65:39: 86:27:5f:b9:0a:11:68:77:23:1e:22:2e:a5:44:14:43:a5:87: 4f:43:84:5a:15:56:6f:49:4d:38:dd:f5:15:e7:d7:33:9b:4f: 7c:f5:66:13:a1:f2:94:e0:c0:58:2b:db:8a:56:86:39:1b:d0: 4c:a1:d1:b8:1b:49:e1:09:7c:88:6b:e2:fb:c6:04:f9:54:e5: 5c:66:89:88:e6:f5:98:b3:69:80:3c:bc:cf:26:37:c1:c4:57: 7b:ff:2c:0c:8f:e7:69:10:10:5e:7e:9d:f8:f9:23:ff:f3:a3: f2:60:2a:92:b8:4e:64:fd:f9:77:71:d1:11:09:16:3a:f8:ad: 97:d8:6f:6b:a8:3a:db:f7:e6:2b:60:09:65:fa:55:86:fe:0e: c7:6a:64:bd:2b:17:c2:4c:b8:eb:93:51:a5:e4:b5:c0:99:57: 7a:a6:e9:a5:e8:b2:6e:e3:7d:5d:2c:91:18:19:f7:df:39:85: 00:0c:ba:da:6e:0e:9c:69:59:bd:2d:55:c7:24:31:9c:c8:1a: 38:6c:5c:6b:af:a4:4c:45:97:3e:90:8f:d1:3a:6a:c2:31:98: d2:90:04:62:a3:5e:c6:a5:08:fe:97:78:70:74:8d:e1:e5:f7: 35:93:2f:41 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQwZS01MGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VBbGNmM2BoAyahdNuX0W/W9DenD64kEijxieIskRDVO94O98tHktZd0U2YU jMbVvMEsctQtQl2d74c5TeLgn6fogfb0iAs+/DOirFwQM6JCzs0+1/KriWvygKtZ lOkqsiS0B3HCkKQDPIiepxvDrfIiwJTRPWg8XDUXzDolZbkfw645a5QQHkrXt4cC HrWHKDfPeIsTIOBM7Q8KaNLvSeqztyeopSzHRcdB2/XzUv5T8Gn3nF4obh1DL5mc fI4MSC5eSShOcoyLZEa+SCNBwopoH/E2tMBxhJcr19UkqaZ8KduXyGrN7Pd9x2/p wC4B0Jnh1bfHcwkO3EtXFQRN/wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBXbUfJ0 x37rNA9IKuen9Mee44EcMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTFGMEZBRDY1 NEMzMTFFRkIyOTZGNzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/FADBwAkBghA/vYwDQYJKoZIhvcNAQELBQADggEB ADeNHnQh50vnNDeMAjg8kTxlOYYnX7kKEWh3Ix4iLqVEFEOlh09DhFoVVm9JTTjd 9RXn1zObT3z1ZhOh8pTgwFgr24pWhjkb0Eyh0bgbSeEJfIhr4vvGBPlU5VxmiYjm 9ZizaYA8vM8mN8HEV3v/LAyP52kQEF5+nfj5I//zo/JgKpK4TmT9+Xdx0REJFjr4 rZfYb2uoOtv35itgCWX6VYb+DsdqZL0rF8JMuOuTUaXktcCZV3qm6aXosm7jfV0s kRgZ9985hQAMutpuDpxpWb0tVcckMZzIGjhsXGuvpExFlz6Qj9E6asIxmNKQBGKj XsalCP6XeHB0jeHl9zWTL0E= -----END CERTIFICATE-----Generated at Wed Jun 4 00:14:31 2025 by rpki-client