$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/207389BE7C1A11EBABA86F44C4F9AE02.roa File: 207389BE7C1A11EBABA86F44C4F9AE02.roa (raw, json) Hash identifier: 2znF8BvE862CkgLR4/fswK6Asr5fw53tjPkES5eJnnY= Subject key identifier: D7:66:2D:84:D2:1B:3D:7F:F3:BF:8D:98:00:83:DD:4A:A4:27:A8:24 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EA4 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/207389BE7C1A11EBABA86F44C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:52 +0000 ROA not before: Thu 22 May 2025 20:06:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 141237 IP address blocks: 2406:840:e1e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3748 (0xea4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83dc-6c57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:23:04:7b:c4:b1:72:13:d7:d9:42:3b:b9:1d: 83:1f:7d:75:1b:80:c3:e9:05:f0:ad:06:9e:26:9f: c1:a7:45:1c:09:75:33:cf:26:29:8a:7e:72:e4:dc: 8f:93:a6:36:b3:ca:41:11:3a:9d:b2:4c:62:a4:a1: e2:46:28:b0:22:e4:57:7d:35:a6:2d:05:1c:fa:84: 76:7e:1c:39:35:7e:a3:9a:98:43:42:7a:e1:e5:9f: 98:3a:29:f1:91:3c:1c:0f:77:c6:2f:f2:d7:3f:1d: 90:7e:3c:f6:5a:4a:0c:c1:52:38:fe:28:e1:4b:4a: 86:5b:0a:59:66:ef:38:aa:11:bc:b8:d5:85:79:55: fd:cd:6b:4b:17:e6:34:29:7f:26:97:b6:35:13:93: 58:2e:a5:a8:5f:46:02:f0:87:f0:3d:1e:ce:67:75: b5:3c:b1:9a:30:ca:a7:ed:2b:a4:74:00:15:09:ed: 58:ab:96:4b:76:1e:9b:fc:21:69:c9:65:fb:65:33: 33:7b:96:60:c4:6e:40:55:fd:1f:54:9e:1b:fb:99: 6d:47:76:10:7c:79:99:47:75:42:8d:1c:91:23:f0: a2:68:55:95:1b:60:33:2c:c9:56:62:f5:1d:d7:9c: 04:e5:7f:aa:b9:c6:4e:d8:0c:cd:5d:3d:5c:be:f8: a6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:66:2D:84:D2:1B:3D:7F:F3:BF:8D:98:00:83:DD:4A:A4:27:A8:24 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/207389BE7C1A11EBABA86F44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e1e0::/44 Signature Algorithm: sha256WithRSAEncryption 84:95:7d:a5:49:a8:0f:7e:da:c7:a3:cf:fc:46:b0:6d:85:32: 73:3c:32:a5:e1:e7:35:4a:57:c0:ef:f3:15:3d:32:79:00:98: 57:34:12:0a:57:5f:be:41:62:35:cf:c0:56:08:a6:c4:e2:e5: 9a:bb:02:0f:91:76:1e:7a:31:07:1f:3d:71:61:a4:21:78:8b: ba:1a:cc:5a:98:f6:98:6e:45:26:42:2f:1f:3e:88:55:38:fb: 21:15:8c:43:ce:89:72:44:23:eb:99:32:ca:f4:79:fb:a4:3b: 8c:94:4a:58:a1:f5:e0:1e:e4:21:9c:c1:2e:48:70:9b:24:35: a5:8d:74:5b:41:1b:1f:a7:9d:a9:80:d4:82:c7:70:80:07:47: 07:24:df:c7:75:c0:a8:db:bb:35:b8:15:0d:0d:dc:63:04:ef: 35:9f:75:89:f2:3f:80:0f:3f:1a:73:31:9e:b0:ae:ed:87:43: 75:df:16:95:5e:96:ab:49:67:43:4e:5a:a3:34:3f:31:28:d9: 7d:51:2a:83:1e:fa:76:8c:ed:cf:9c:e1:40:ae:ed:c7:c5:f9: d8:db:3b:05:25:07:e7:fa:b5:c0:29:0c:b6:52:b7:9b:f1:64: 06:44:c5:7f:d8:0f:c3:91:11:20:c4:84:75:2e:a4:c0:bb:1b: 75:3e:f4:f9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNkYy02YzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCMEe8SxchPX2UI7uR2DH311G4DD6QXwrQaeJp/Bp0UcCXUzzyYpin5y5NyP k6Y2s8pBETqdskxipKHiRiiwIuRXfTWmLQUc+oR2fhw5NX6jmphDQnrh5Z+YOinx kTwcD3fGL/LXPx2Qfjz2WkoMwVI4/ijhS0qGWwpZZu84qhG8uNWFeVX9zWtLF+Y0 KX8ml7Y1E5NYLqWoX0YC8IfwPR7OZ3W1PLGaMMqn7SukdAAVCe1Yq5ZLdh6b/CFp yWX7ZTMze5ZgxG5AVf0fVJ4b+5ltR3YQfHmZR3VCjRyRI/CiaFWVG2AzLMlWYvUd 15wE5X+qucZO2AzNXT1cvvimBwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNdmLYTS Gz1/87+NmACD3UqkJ6gkMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjA3Mzg5QkU3 QzFBMTFFQkFCQTg2RjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4eAwDQYJKoZIhvcNAQELBQADggEBAISVfaVJqA9+ 2sejz/xGsG2FMnM8MqXh5zVKV8Dv8xU9MnkAmFc0EgpXX75BYjXPwFYIpsTi5Zq7 Ag+Rdh56MQcfPXFhpCF4i7oazFqY9phuRSZCLx8+iFU4+yEVjEPOiXJEI+uZMsr0 efukO4yUSlih9eAe5CGcwS5IcJskNaWNdFtBGx+nnamA1ILHcIAHRwck38d1wKjb uzW4FQ0N3GME7zWfdYnyP4APPxpzMZ6wru2HQ3XfFpVelqtJZ0NOWqM0PzEo2X1R KoMe+naM7c+c4UCu7cfF+djbOwUlB+f6tcApDLZSt5vxZAZExX/YD8ORESDEhHUu pMC7G3U+9Pk= -----END CERTIFICATE-----Generated at Fri Oct 24 12:19:17 2025 by rpki-client