$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa File: 21A658D2BA5311EEB6DF2E4BC4F9AE02.roa (raw, json) Hash identifier: Vgu8ZCYx267olwsE5U1q384XvLjFysI3HCv/+BGg2fk= Subject key identifier: 9F:5E:73:42:66:88:F1:B0:CC:A4:D7:03:75:5B:4E:0F:06:93:F8:75 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0F00 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa Signing time: Thu 22 May 2025 20:08:21 +0000 ROA not before: Thu 22 May 2025 20:08:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 216056 IP address blocks: 2406:840:eef0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3840 (0xf00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:21 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8435-ceae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9e:50:88:92:d0:6c:90:db:42:7b:20:27:56: dd:6d:c5:67:89:94:86:64:db:10:19:bc:d5:f1:e2: 75:99:9b:4a:ee:d3:60:99:17:3d:89:b9:8d:ff:9e: 24:53:99:9e:e9:76:ac:cb:22:aa:44:8f:04:07:ba: a5:77:ce:10:66:dc:16:cc:48:81:80:a1:8a:78:20: c3:b1:fb:c2:60:e1:5f:5d:6e:99:13:ee:c0:99:84: 05:88:90:52:45:1f:e9:bc:c6:d8:a6:21:0e:30:84: 36:4f:5e:7a:d9:80:5d:1a:8f:bb:59:aa:aa:07:60: 57:6b:6e:53:d8:05:5d:1e:09:10:90:bb:52:4a:67: a0:c8:d5:97:6e:e1:0c:fe:8c:15:cd:ae:22:70:26: 79:16:71:7b:f7:cf:60:6b:a7:db:d0:c5:c2:85:aa: 71:fa:3e:2c:15:96:b7:c2:73:93:b4:cd:9c:59:af: 46:da:c8:b7:f0:61:bd:61:9d:6b:37:fc:cd:2d:bf: 3b:2f:a1:27:e7:fd:c6:59:19:ec:16:41:fd:c4:bf: be:78:1b:f3:3f:30:ff:75:69:50:d6:ec:e3:0b:f9: ba:a1:9c:c3:d9:c3:cf:02:01:2f:d5:98:1e:e0:b3: 93:fc:11:18:8e:89:9d:34:c6:c2:a6:70:75:21:17: f7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:5E:73:42:66:88:F1:B0:CC:A4:D7:03:75:5B:4E:0F:06:93:F8:75 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:eef0::/44 Signature Algorithm: sha256WithRSAEncryption 32:c7:2a:29:24:40:00:63:b0:4d:30:02:ad:f5:3b:fb:9c:ab: 6f:ec:dc:2c:04:f8:26:8b:4f:96:ee:ed:06:3d:2c:f4:a4:e2: 8a:14:46:85:f1:57:73:07:3f:aa:f6:e9:ac:6a:fb:57:d2:d8: f1:82:93:b5:69:55:21:66:6a:3b:fe:d5:d3:19:bc:11:8a:96: 7a:a2:84:84:a9:68:b3:2f:4e:85:82:5c:d4:54:9d:24:7b:cc: 78:6d:3d:8d:c5:aa:72:50:db:a5:a7:3c:0d:d6:91:19:4b:9d: fc:aa:ed:7c:bb:5b:66:a0:26:46:10:5b:05:55:68:ce:42:8c: ef:7d:1f:5a:0d:67:6a:ac:2b:88:77:e8:23:b8:d8:d8:de:c9: 55:8d:8e:ef:00:fa:e5:f0:f9:b3:07:1f:0c:33:a6:5c:5b:8a: 86:13:07:d4:24:ca:bf:26:d0:fd:ff:80:0d:8c:78:42:ee:8d: 60:83:3a:63:bd:7d:52:0e:fc:03:78:de:fb:4c:25:56:09:17: bf:ca:c9:9b:67:dd:22:f8:5f:9b:83:94:b6:3e:d0:f6:4c:67: 84:bb:02:25:ce:2c:1e:4a:37:60:28:02:2a:c9:3f:61:5e:b7: 9a:d6:93:a0:06:fd:ae:f3:12:d8:68:fd:54:89:c6:e0:36:ea: a5:2c:07:ed -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODIxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzNS1jZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA255QiJLQbJDbQnsgJ1bdbcVniZSGZNsQGbzV8eJ1mZtK7tNgmRc9ibmN/54k U5me6XasyyKqRI8EB7qld84QZtwWzEiBgKGKeCDDsfvCYOFfXW6ZE+7AmYQFiJBS RR/pvMbYpiEOMIQ2T1562YBdGo+7WaqqB2BXa25T2AVdHgkQkLtSSmegyNWXbuEM /owVza4icCZ5FnF7989ga6fb0MXChapx+j4sFZa3wnOTtM2cWa9G2si38GG9YZ1r N/zNLb87L6En5/3GWRnsFkH9xL++eBvzPzD/dWlQ1uzjC/m6oZzD2cPPAgEv1Zge 4LOT/BEYjomdNMbCpnB1IRf3lwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJ9ec0Jm iPGwzKTXA3VbTg8Gk/h1MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjFBNjU4RDJC QTUzMTFFRUI2REYyRTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA7vAwDQYJKoZIhvcNAQELBQADggEBADLHKikkQABj sE0wAq31O/ucq2/s3CwE+CaLT5bu7QY9LPSk4ooURoXxV3MHP6r26axq+1fS2PGC k7VpVSFmajv+1dMZvBGKlnqihISpaLMvToWCXNRUnSR7zHhtPY3FqnJQ26WnPA3W kRlLnfyq7Xy7W2agJkYQWwVVaM5CjO99H1oNZ2qsK4h36CO42NjeyVWNju8A+uXw +bMHHwwzplxbioYTB9Qkyr8m0P3/gA2MeELujWCDOmO9fVIO/AN43vtMJVYJF7/K yZtn3SL4X5uDlLY+0PZMZ4S7AiXOLB5KN2AoAirJP2Fet5rWk6AG/a7zEtho/VSJ xuA26qUsB+0= -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:15 2025 by rpki-client