$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3713C692E4C911EDB49CA55BC4F9AE02.roa File: 3713C692E4C911EDB49CA55BC4F9AE02.roa (raw, json) Hash identifier: eJQiKI9FImlqBCX1vjFOlR8DFZNtv7NKEW9QnerzRkQ= Subject key identifier: 61:E2:09:C2:2A:6E:B2:B4:C1:6E:CE:15:0A:C6:3A:9A:31:7B:33:8A Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EBB Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3713C692E4C911EDB49CA55BC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:16 +0000 ROA not before: Thu 22 May 2025 20:07:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151202 IP address blocks: 2406:840:f0a0::/44 maxlen: 48 2406:840:fe75::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3771 (0xebb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83f3-d66b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:15:b7:20:2c:85:c7:59:40:09:41:7f:03:af: 9a:9d:01:9b:5e:67:cb:79:d1:e4:92:36:dc:93:8f: fc:13:0c:c6:4e:8f:b4:0f:04:63:1d:fe:45:22:11: 67:da:43:91:01:42:ef:4a:34:be:80:25:55:93:1a: d1:22:cf:e4:d8:d4:bd:c4:25:1b:c2:75:27:6d:bc: b4:98:d5:24:2f:96:69:b5:ed:19:a7:96:a5:ae:1a: 16:9a:f2:f0:d2:e0:e0:5b:f2:ef:26:9c:a2:27:bc: 9b:da:c0:41:85:79:e3:45:0f:83:9c:43:02:c6:89: 3a:93:da:3f:73:d3:18:3e:33:2b:8e:01:6f:a9:1a: 0b:83:20:af:2a:1a:5d:c1:d8:b1:36:6e:ec:fa:83: 7d:b0:bb:99:21:cb:21:6d:63:6a:64:83:57:fc:b4: 89:3e:ea:93:94:94:af:32:eb:1e:55:e1:95:7a:b2: b8:7d:dc:4c:dd:14:9a:2a:bf:f1:b6:cc:8f:fa:fa: 5c:7d:a6:d3:9b:08:c5:6f:64:7a:e0:a9:65:ef:9e: 91:59:86:f2:4a:08:ac:08:e2:a9:de:66:67:31:40: 04:09:25:6b:44:b2:ff:c5:bd:63:85:8c:4e:b8:b3: 97:00:91:90:54:35:24:60:08:d8:57:f6:05:77:d4: 6a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E2:09:C2:2A:6E:B2:B4:C1:6E:CE:15:0A:C6:3A:9A:31:7B:33:8A X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3713C692E4C911EDB49CA55BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f0a0::/44 2406:840:fe75::/48 Signature Algorithm: sha256WithRSAEncryption 7d:cf:4d:16:3c:fc:7b:6c:5f:c3:c0:da:8f:53:b3:93:9f:4d: 92:9d:90:08:0e:7e:a7:f6:62:0f:05:01:45:3f:f4:8c:ab:74: 10:b0:1b:23:72:e7:7b:7d:bb:70:7d:0e:ec:b7:d8:19:f0:5b: 86:d1:13:dd:49:93:61:ec:3e:74:16:3b:d8:78:73:03:42:4b: 7f:dd:33:de:52:8e:67:e6:fc:7a:6b:2f:b0:4f:ae:16:ee:45: 6e:ef:8e:0f:2d:d2:58:77:2d:2e:b1:4d:99:a4:81:d4:03:35: 33:3c:85:dd:77:ef:0a:78:d9:8e:e2:b4:b3:5b:b5:18:63:f8: f9:cd:fa:b2:46:78:f6:15:f6:25:88:ea:50:cb:0a:f6:08:38: 6f:a5:4b:f9:2d:9d:fd:d9:cc:69:29:4b:97:78:e5:2b:25:ac: 85:74:cb:57:99:6a:bc:97:4d:ed:c2:87:2e:88:24:34:65:c8: 7e:ec:3e:4f:cf:03:f4:66:d7:6d:38:1b:e8:d6:6c:41:df:35: 6a:0b:7e:ae:62:97:73:10:a0:28:b7:91:29:a2:a5:8e:d0:e9: 6a:32:83:ed:3e:fc:cc:99:8b:44:91:5a:a0:a4:37:95:0f:37: b1:ff:32:74:df:18:b8:ef:65:9c:b8:51:2e:6b:ef:ed:bb:fe: 63:83:34:ca -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNmMy1kNjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBW3ICyFx1lACUF/A6+anQGbXmfLedHkkjbck4/8EwzGTo+0DwRjHf5FIhFn 2kORAULvSjS+gCVVkxrRIs/k2NS9xCUbwnUnbby0mNUkL5Zpte0Zp5alrhoWmvLw 0uDgW/LvJpyiJ7yb2sBBhXnjRQ+DnEMCxok6k9o/c9MYPjMrjgFvqRoLgyCvKhpd wdixNm7s+oN9sLuZIcshbWNqZINX/LSJPuqTlJSvMuseVeGVerK4fdxM3RSaKr/x tsyP+vpcfabTmwjFb2R64Kll756RWYbySgisCOKp3mZnMUAECSVrRLL/xb1jhYxO uLOXAJGQVDUkYAjYV/YFd9Rq4wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGHiCcIq brK0wW7OFQrGOpoxezOKMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMzcxM0M2OTJF NEM5MTFFREI0OUNBNTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA8KADBwAkBghA/nUwDQYJKoZIhvcNAQELBQADggEB AH3PTRY8/HtsX8PA2o9Ts5OfTZKdkAgOfqf2Yg8FAUU/9IyrdBCwGyNy53t9u3B9 Duy32BnwW4bRE91Jk2HsPnQWO9h4cwNCS3/dM95Sjmfm/HprL7BPrhbuRW7vjg8t 0lh3LS6xTZmkgdQDNTM8hd137wp42Y7itLNbtRhj+PnN+rJGePYV9iWI6lDLCvYI OG+lS/ktnf3ZzGkpS5d45SslrIV0y1eZaryXTe3Chy6IJDRlyH7sPk/PA/Rm1204 G+jWbEHfNWoLfq5il3MQoCi3kSmipY7Q6Woyg+0+/MyZi0SRWqCkN5UPN7H/MnTf GLjvZZy4US5r7+27/mODNMo= -----END CERTIFICATE-----Generated at Mon Jun 2 07:03:35 2025 by rpki-client