$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa File: 2689AA5C860911EAA740B02DC4F9AE02.roa (raw, json) Hash identifier: LZBzDm0lZ4lbcE7G+zxSrVZFkCIgmWX/XAeA4+Zc5p8= Subject key identifier: 1D:18:70:E8:33:7C:19:0B:B9:10:8A:02:E0:7A:0B:DF:E6:28:6C:68 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EF0 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa Signing time: Thu 22 May 2025 20:08:06 +0000 ROA not before: Thu 22 May 2025 20:08:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 209218 IP address blocks: 2406:840:f660::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3824 (0xef0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8426-faee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:2f:2a:d9:61:9f:c5:9b:45:5d:89:19:14:42: 96:a0:3f:ed:63:a0:a9:f1:56:eb:5e:38:03:d0:ca: 21:42:03:82:c3:57:63:55:6d:5e:61:3b:26:a0:f4: 71:d8:6e:b3:64:98:21:ee:06:29:ad:a8:5e:af:9a: 16:c3:ed:f3:68:bf:ac:43:f4:f5:3d:be:a9:88:6a: 95:73:19:84:85:93:d3:ce:9e:4e:ce:91:b9:6a:23: f4:92:35:63:c3:89:fe:50:35:fb:1e:46:25:b1:07: 42:84:36:91:cd:d7:79:c0:0c:3a:dc:10:64:95:35: a6:78:94:6f:e3:cb:f4:4d:39:ee:a6:c6:4e:3a:73: 5d:e3:aa:5d:f0:66:bf:3f:d4:9f:a5:08:7f:e4:c0: 53:69:f5:26:51:af:82:bd:fe:51:b4:14:ec:f3:73: 8f:ef:3b:ec:2d:07:bf:82:e4:b8:e7:8b:f0:3b:e3: 8b:dc:2c:7a:e0:cd:4b:c1:d8:3e:d5:32:a2:4b:b7: ed:5a:5b:5b:3f:e2:78:83:46:93:15:61:7c:0a:a5: 29:e2:86:42:f6:2c:cb:24:6f:12:2d:50:90:b7:d6: 4e:7b:fd:19:6a:db:33:48:23:cb:af:e8:2c:14:3a: 93:bc:65:b6:dc:e6:29:2c:ae:b5:4a:48:11:1a:20: d9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:18:70:E8:33:7C:19:0B:B9:10:8A:02:E0:7A:0B:DF:E6:28:6C:68 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f660::/44 Signature Algorithm: sha256WithRSAEncryption 62:31:32:1c:6e:f4:34:65:19:24:3f:b1:e2:55:98:e2:a6:ae: 6b:20:e4:20:f1:7c:ee:40:3f:ff:e5:71:b8:46:82:f4:7e:d0: 52:f9:04:37:7f:14:a2:fd:33:e4:92:53:d5:41:23:06:b8:b9: 7a:c6:b5:80:a9:3b:10:8d:df:a4:8b:82:b3:8e:89:62:82:58: e1:46:53:f2:c2:a5:99:fb:a3:cd:d6:78:bf:63:9b:88:58:3a: 12:88:64:e7:15:29:cc:5b:c9:1a:ee:a1:1c:45:f3:7e:4a:42: a0:22:a5:aa:be:ed:fa:ce:72:94:50:43:2d:07:82:0b:38:40: 8d:91:75:c3:f3:05:62:0f:96:4a:c5:a9:7c:34:f8:5a:df:ec: 5d:a3:21:be:f7:5f:a2:8f:e6:7f:19:26:7e:5b:32:c6:d6:8e: 59:6c:16:9c:c8:c2:33:bf:af:64:4a:56:b9:f5:81:01:58:4d: 0e:69:74:da:1e:17:1d:e6:86:89:7a:b6:72:2a:ca:77:74:96: d2:7a:e2:a7:cb:28:e1:14:5d:6e:e8:b8:62:d9:e8:e7:bd:aa: b6:73:ee:c0:62:cf:28:98:6a:03:f6:07:4b:bb:04:9a:bf:38: 7e:38:e0:09:25:75:3f:f4:eb:48:0f:fd:e3:9b:a7:1b:0e:81: 73:23:b8:dc -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQyNi1mYWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5i8q2WGfxZtFXYkZFEKWoD/tY6Cp8VbrXjgD0MohQgOCw1djVW1eYTsmoPRx 2G6zZJgh7gYpraher5oWw+3zaL+sQ/T1Pb6piGqVcxmEhZPTzp5OzpG5aiP0kjVj w4n+UDX7HkYlsQdChDaRzdd5wAw63BBklTWmeJRv48v0TTnupsZOOnNd46pd8Ga/ P9SfpQh/5MBTafUmUa+Cvf5RtBTs83OP7zvsLQe/guS454vwO+OL3Cx64M1Lwdg+ 1TKiS7ftWltbP+J4g0aTFWF8CqUp4oZC9izLJG8SLVCQt9ZOe/0ZatszSCPLr+gs FDqTvGW23OYpLK61SkgRGiDZWQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB0YcOgz fBkLuRCKAuB6C9/mKGxoMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjY4OUFBNUM4 NjA5MTFFQUE3NDBCMDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA9mAwDQYJKoZIhvcNAQELBQADggEBAGIxMhxu9DRl GSQ/seJVmOKmrmsg5CDxfO5AP//lcbhGgvR+0FL5BDd/FKL9M+SSU9VBIwa4uXrG tYCpOxCN36SLgrOOiWKCWOFGU/LCpZn7o83WeL9jm4hYOhKIZOcVKcxbyRruoRxF 835KQqAipaq+7frOcpRQQy0Hggs4QI2RdcPzBWIPlkrFqXw0+Frf7F2jIb73X6KP 5n8ZJn5bMsbWjllsFpzIwjO/r2RKVrn1gQFYTQ5pdNoeFx3mhol6tnIqynd0ltJ6 4qfLKOEUXW7ouGLZ6Oe9qrZz7sBizyiYagP2B0u7BJq/OH444AkldT/060gP/eOb pxsOgXMjuNw= -----END CERTIFICATE-----Generated at Mon Jun 2 07:10:27 2025 by rpki-client