$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa File: 2FDC8EDAD99911ED92E86C7BC4F9AE02.roa (raw, json) Hash identifier: 8GYue3rx8qVESF7JrwA5g2Y0nOLag+p8FjuLvQ41VSc= Subject key identifier: C3:30:CD:48:25:BB:6A:6B:49:04:08:AA:CB:F8:0A:1F:7F:A6:F1:73 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EB8 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:13 +0000 ROA not before: Thu 22 May 2025 20:07:13 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151187 IP address blocks: 2406:840:9800::/43 maxlen: 48 2406:840:fed3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3768 (0xeb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:13 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83f0-9ae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:85:5f:d2:59:c5:60:d9:9a:67:f8:15:fc:5c: dd:57:ab:47:fa:08:ed:bf:98:bb:68:c9:89:f3:df: d8:91:45:ea:91:ad:c5:02:fc:b0:2f:9d:aa:a3:44: 2d:90:85:cd:5e:43:af:58:a4:74:91:f9:d6:b3:1b: 2e:dd:bf:4d:7d:7e:11:00:28:0c:c7:03:9a:cb:60: 35:5e:3e:cc:d5:a9:fd:72:b3:e2:b7:c3:9b:d1:c0: af:91:cc:b1:85:5c:2d:09:97:cb:f1:cf:31:1b:2e: e1:ec:a5:65:e6:86:96:56:ae:01:96:12:99:d6:65: 72:b8:33:fe:d2:4d:a4:ba:eb:f3:3a:e4:29:88:90: a8:d5:ec:b2:94:fa:14:3e:14:b8:ef:e5:70:24:5d: 17:b7:67:6b:2b:73:80:97:32:e9:dc:b4:46:68:97: 83:35:24:27:65:d1:96:bd:73:25:90:5b:9c:3c:e3: d5:0b:0f:28:2c:f3:35:89:ee:22:1a:5b:30:41:e3: 0a:93:2e:c2:b4:a9:cc:8b:fe:16:69:0c:aa:32:37: 8c:fd:53:80:ea:d2:01:20:b4:61:bc:5c:00:de:1d: 11:8b:74:64:b8:4e:68:5b:b4:03:c0:61:3b:ef:d8: 9b:5d:61:39:ad:85:7c:87:13:46:93:41:42:8d:e9: c5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:30:CD:48:25:BB:6A:6B:49:04:08:AA:CB:F8:0A:1F:7F:A6:F1:73 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9800::/43 2406:840:fed3::/48 Signature Algorithm: sha256WithRSAEncryption 32:26:ee:2f:17:ed:c1:ea:8f:11:a6:3a:34:6c:fb:0f:44:75: 99:8f:4a:42:46:83:dc:fe:dc:38:71:be:97:6f:bc:32:3f:84: 81:07:6a:9a:e4:ea:c0:6a:b0:2c:2b:9d:16:f1:d4:19:4e:fb: 6f:fc:49:b8:3c:e1:cd:b9:68:f0:32:4e:7b:54:84:8c:75:18: 28:7b:e1:62:43:b7:54:02:4f:67:1a:11:20:d8:a2:dc:d2:2b: 55:1a:47:1d:73:92:46:1c:ff:7d:af:46:a9:40:ab:bf:25:33: b3:20:f5:de:83:73:a3:7a:e0:44:f0:af:5b:c6:cb:8e:84:4c: 97:e4:01:e9:65:e9:61:be:43:39:60:3a:96:2b:cb:2e:5d:b3: d6:42:ad:06:31:3c:04:ec:dd:52:f3:36:91:f6:80:cc:79:c6: 5d:9a:e4:90:19:10:76:a3:4c:ad:bc:63:72:6d:ef:e3:d0:f7: c7:99:70:fc:3e:d1:c7:59:04:28:41:4a:2d:c0:97:fc:00:db: ac:31:8f:3f:cb:34:85:18:12:e5:0c:3d:68:57:7e:e3:14:4e: c5:10:1b:49:f6:23:6d:4a:5c:2f:8d:bc:ce:06:76:1f:b7:f8: 21:a8:fb:98:ba:7b:3c:88:0a:4e:07:b0:d7:52:5a:91:c9:05: 87:12:7e:e8 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzEzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNmMC05YWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIVf0lnFYNmaZ/gV/FzdV6tH+gjtv5i7aMmJ89/YkUXqka3FAvywL52qo0Qt kIXNXkOvWKR0kfnWsxsu3b9NfX4RACgMxwOay2A1Xj7M1an9crPit8Ob0cCvkcyx hVwtCZfL8c8xGy7h7KVl5oaWVq4BlhKZ1mVyuDP+0k2kuuvzOuQpiJCo1eyylPoU PhS47+VwJF0Xt2drK3OAlzLp3LRGaJeDNSQnZdGWvXMlkFucPOPVCw8oLPM1ie4i GlswQeMKky7CtKnMi/4WaQyqMjeM/VOA6tIBILRhvFwA3h0Ri3RkuE5oW7QDwGE7 79ibXWE5rYV8hxNGk0FCjenFtwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMMwzUgl u2prSQQIqsv4Ch9/pvFzMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkZEQzhFREFE OTk5MTFFRDkyRTg2QzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwUkBghAmAADBwAkBghA/tMwDQYJKoZIhvcNAQELBQADggEB ADIm7i8X7cHqjxGmOjRs+w9EdZmPSkJGg9z+3DhxvpdvvDI/hIEHaprk6sBqsCwr nRbx1BlO+2/8Sbg84c25aPAyTntUhIx1GCh74WJDt1QCT2caESDYotzSK1UaRx1z kkYc/32vRqlAq78lM7Mg9d6Dc6N64ETwr1vGy46ETJfkAell6WG+QzlgOpYryy5d s9ZCrQYxPATs3VLzNpH2gMx5xl2a5JAZEHajTK28Y3Jt7+PQ98eZcPw+0cdZBChB Si3Al/wA26wxjz/LNIUYEuUMPWhXfuMUTsUQG0n2I21KXC+NvM4Gdh+3+CGo+5i6 ezyICk4HsNdSWpHJBYcSfug= -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:07 2025 by rpki-client