$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa File: 1CF2F758E04711EAAA35044CC4F9AE02.roa (raw, json) Hash identifier: HBeYV+INeoV97bQ4ltNKQWaGVJTAMvw+1krHK0dc2gc= Subject key identifier: A0:1C:EC:1D:B8:2D:F4:4B:92:17:54:C4:DC:8D:FF:8B:8C:B6:2C:53 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E92 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa Signing time: Thu 22 May 2025 20:06:36 +0000 ROA not before: Thu 22 May 2025 20:06:36 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137835 IP address blocks: 2406:840:f440::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3730 (0xe92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:36 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83cc-652a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:20:ac:7d:bf:81:f6:37:43:ab:72:46:d3:62: c3:b0:28:89:ca:e8:13:9b:0b:f3:7f:1e:d4:11:b8: 43:58:d5:c2:bf:0e:67:92:c5:1f:14:8b:e4:19:5a: 5d:02:f4:26:34:b2:ac:20:64:69:99:f5:7a:5d:7c: 24:85:15:33:4b:93:44:d6:9e:f8:fd:b2:bc:74:a9: 33:f2:22:01:19:05:5c:d9:bb:20:b4:67:14:75:94: c2:7d:54:a4:14:e7:cf:89:09:3f:09:b0:e2:1e:dd: e6:42:0a:9b:b0:40:45:f4:52:fc:3f:1b:a5:b6:cc: 3b:24:29:02:ba:ae:19:87:9b:92:cb:6f:0b:1e:3c: 4b:ed:0a:ec:68:16:3f:57:d9:47:7c:f9:ee:af:58: 51:1d:ad:99:aa:1e:66:16:5d:ef:54:23:2e:66:8f: f6:46:c5:02:1a:97:90:f7:3f:41:4d:27:38:6b:ea: a6:72:7f:0b:58:79:2d:a2:53:11:2f:72:35:49:e7: c8:10:2d:20:d2:d9:86:a1:68:e1:99:92:29:6b:7a: 52:e5:2d:e8:f7:30:87:de:10:8c:92:31:8c:2f:28: 78:a6:aa:03:2a:5c:df:55:43:4f:74:69:e6:97:e6: 34:e7:78:ba:54:a4:d1:db:8e:a1:27:39:13:05:84: 0e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:1C:EC:1D:B8:2D:F4:4B:92:17:54:C4:DC:8D:FF:8B:8C:B6:2C:53 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f440::/44 Signature Algorithm: sha256WithRSAEncryption a7:99:ea:d7:a4:6a:19:38:8c:b8:4a:33:2a:72:60:40:d1:f3: fa:8d:bb:33:ec:16:6a:62:25:be:ca:76:69:ce:1b:a6:d3:f6: 8c:30:65:35:56:0c:eb:70:55:39:2d:93:d2:05:ff:ae:0b:ab: 2b:2f:9c:9d:d8:34:29:84:62:40:8a:b3:b8:a1:2d:15:c7:58: d1:0d:43:74:0f:d9:35:51:f5:39:a8:11:12:8d:a3:1d:d7:7d: 33:8a:b6:76:58:b9:e5:3a:bb:55:aa:62:61:30:04:6b:0d:2b: fb:34:77:ea:cd:48:81:e3:98:de:66:03:37:82:73:86:3a:41: 66:98:f9:f4:7b:e7:be:71:39:b1:63:ba:d6:c7:68:68:d9:e8: d7:42:b8:78:ee:93:c0:e6:25:08:6c:5e:08:0f:37:a4:6d:e8: 1d:81:16:9f:01:75:46:4b:85:cf:45:99:93:25:98:1e:ae:9f: 1c:08:f8:3b:55:06:fa:7b:9a:53:14:a4:9a:e9:0d:31:40:34: d3:63:9a:4b:d8:b2:9b:99:2f:1e:83:d7:77:ac:56:a4:5f:e6: 48:04:d4:07:32:37:f1:02:47:1d:dc:c3:4f:a7:9c:c2:ad:d4: 8e:2c:c5:20:ff:79:6a:b2:34:22:64:a4:ed:36:cf:51:6a:f8: 95:32:64:12 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjM2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNjYy02NTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCCsfb+B9jdDq3JG02LDsCiJyugTmwvzfx7UEbhDWNXCvw5nksUfFIvkGVpd AvQmNLKsIGRpmfV6XXwkhRUzS5NE1p74/bK8dKkz8iIBGQVc2bsgtGcUdZTCfVSk FOfPiQk/CbDiHt3mQgqbsEBF9FL8Pxultsw7JCkCuq4Zh5uSy28LHjxL7QrsaBY/ V9lHfPnur1hRHa2Zqh5mFl3vVCMuZo/2RsUCGpeQ9z9BTSc4a+qmcn8LWHktolMR L3I1SefIEC0g0tmGoWjhmZIpa3pS5S3o9zCH3hCMkjGMLyh4pqoDKlzfVUNPdGnm l+Y053i6VKTR246hJzkTBYQORwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKAc7B24 LfRLkhdUxNyN/4uMtixTMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUNGMkY3NThF MDQ3MTFFQUFBMzUwNDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA9EAwDQYJKoZIhvcNAQELBQADggEBAKeZ6tekahk4 jLhKMypyYEDR8/qNuzPsFmpiJb7KdmnOG6bT9owwZTVWDOtwVTktk9IF/64Lqysv nJ3YNCmEYkCKs7ihLRXHWNENQ3QP2TVR9TmoERKNox3XfTOKtnZYueU6u1WqYmEw BGsNK/s0d+rNSIHjmN5mAzeCc4Y6QWaY+fR7575xObFjutbHaGjZ6NdCuHjuk8Dm JQhsXggPN6Rt6B2BFp8BdUZLhc9FmZMlmB6unxwI+DtVBvp7mlMUpJrpDTFANNNj mkvYspuZLx6D13esVqRf5kgE1AcyN/ECRx3cw0+nnMKt1I4sxSD/eWqyNCJkpO02 z1Fq+JUyZBI= -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:38 2025 by rpki-client