$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1B033B22BA2911EF8CC06977C4F9AE02.roa File: 1B033B22BA2911EF8CC06977C4F9AE02.roa (raw, json) Hash identifier: 3MjMbDe2Z7mMDyGL/HEUrOOWxCqAKmLxwbqE6XgQMqo= Subject key identifier: 3E:2B:F6:4D:4B:31:5E:23:EE:D5:6B:6D:F9:6A:D4:CE:E2:2F:EA:9C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0F0B Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1B033B22BA2911EF8CC06977C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:30 +0000 ROA not before: Thu 22 May 2025 20:08:30 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 53343 IP address blocks: 2406:840:9690::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3851 (0xf0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:30 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f843d-a157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:53:1d:7c:f7:81:6a:e3:6c:e0:b9:1f:97:1a: 40:84:0c:3a:4a:9f:91:d4:f7:22:db:d6:b2:48:03: a7:c2:30:d4:b9:ed:1c:73:3e:02:5d:39:4a:5c:9f: 48:b5:f1:25:dd:7a:80:ec:d4:33:c7:f4:be:33:a4: a4:bf:91:70:98:39:61:4f:82:5c:ca:22:47:a1:26: 56:20:e9:82:a7:5d:11:05:a4:96:a0:68:17:b0:f2: 2d:c1:fa:d1:8a:a6:28:e3:2a:97:e9:96:c7:21:45: 14:c5:c4:a1:e7:70:1e:43:7f:d7:72:13:e4:dd:a7: 5a:81:48:42:20:be:9a:69:78:08:36:b3:ab:f1:83: 2d:08:99:6c:ab:9b:ea:17:93:4d:05:fa:36:a6:a6: 13:a2:21:bf:d2:0d:cc:5d:c7:ea:b9:18:f6:0e:69: c3:ed:5e:c8:ea:b6:bb:86:95:cd:53:40:2f:ab:14: ba:60:9d:4b:4e:eb:71:9a:bc:33:a5:ab:a1:52:35: 18:97:4a:91:6e:df:c8:81:b4:4a:ec:63:78:74:57: 32:19:b8:37:21:72:9a:40:80:32:4c:51:33:2f:bf: fe:aa:d5:7b:63:40:7e:3d:2f:17:09:22:f9:23:cb: 1f:3d:c9:a7:e0:98:6b:31:90:cf:fb:62:bb:54:3b: fd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:2B:F6:4D:4B:31:5E:23:EE:D5:6B:6D:F9:6A:D4:CE:E2:2F:EA:9C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1B033B22BA2911EF8CC06977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9690::/44 Signature Algorithm: sha256WithRSAEncryption 54:fb:db:11:b7:53:76:e2:c7:d3:0e:e0:b9:ef:8d:cb:6f:b4: 94:c8:05:bb:78:32:96:0d:aa:e5:4b:df:54:3d:22:8e:b6:d8: c4:b2:71:a2:11:ff:da:56:48:5c:93:f8:ca:5b:84:d1:04:5f: 61:46:74:08:b9:4c:33:9e:25:60:fa:66:7d:56:34:e1:8f:83: 78:13:c5:f7:94:7e:a5:5f:50:ff:fc:7d:14:93:a0:9d:8b:84: c9:1f:c9:07:54:22:d9:66:09:61:5f:3d:51:ff:55:58:4c:81: 9a:52:2c:59:e0:bf:75:f0:5f:34:1d:ae:5f:a2:8d:7c:ab:3b: a8:88:6f:7f:cf:f0:a9:57:32:32:d9:59:a6:45:73:32:68:a8: 8d:2d:e3:9b:33:31:8d:c1:b8:eb:ce:ef:a2:63:74:00:15:24: f2:a1:e4:5d:35:6b:0e:05:f1:f8:2e:ad:f7:75:f9:88:54:97: da:f3:52:79:3d:14:1f:2d:ea:68:37:81:4e:a1:18:18:d8:53: 36:a3:2d:fd:dc:ea:e9:08:d0:54:fc:e7:4b:ba:0b:c1:c7:a5: d3:48:49:7b:19:ef:63:d5:59:34:73:d3:af:ab:95:a2:39:0c: 60:37:72:1f:6f:0e:f3:64:51:6e:f1:13:f8:f2:0a:42:f1:72: 32:5f:68:9d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODMwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzZC1hMTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFMdfPeBauNs4LkflxpAhAw6Sp+R1Pci29aySAOnwjDUue0ccz4CXTlKXJ9I tfEl3XqA7NQzx/S+M6Skv5FwmDlhT4JcyiJHoSZWIOmCp10RBaSWoGgXsPItwfrR iqYo4yqX6ZbHIUUUxcSh53AeQ3/XchPk3adagUhCIL6aaXgINrOr8YMtCJlsq5vq F5NNBfo2pqYToiG/0g3MXcfquRj2DmnD7V7I6ra7hpXNU0AvqxS6YJ1LTutxmrwz pauhUjUYl0qRbt/IgbRK7GN4dFcyGbg3IXKaQIAyTFEzL7/+qtV7Y0B+PS8XCSL5 I8sfPcmn4JhrMZDP+2K7VDv9bQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD4r9k1L MV4j7tVrbflq1M7iL+qcMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUIwMzNCMjJC QTI5MTFFRjhDQzA2OTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAlpAwDQYJKoZIhvcNAQELBQADggEBAFT72xG3U3bi x9MO4LnvjctvtJTIBbt4MpYNquVL31Q9Io622MSycaIR/9pWSFyT+MpbhNEEX2FG dAi5TDOeJWD6Zn1WNOGPg3gTxfeUfqVfUP/8fRSToJ2LhMkfyQdUItlmCWFfPVH/ VVhMgZpSLFngv3XwXzQdrl+ijXyrO6iIb3/P8KlXMjLZWaZFczJoqI0t45szMY3B uOvO76JjdAAVJPKh5F01aw4F8fgurfd1+YhUl9rzUnk9FB8t6mg3gU6hGBjYUzaj Lf3c6ukI0FT850u6C8HHpdNISXsZ72PVWTRz06+rlaI5DGA3ch9vDvNkUW7xE/jy CkLxcjJfaJ0= -----END CERTIFICATE-----Generated at Mon Jun 2 06:54:13 2025 by rpki-client