$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/40123778C4EE11EEB870DA3AC4F9AE02.roa File: 40123778C4EE11EEB870DA3AC4F9AE02.roa (raw, json) Hash identifier: BUN071x0OHnzm8gITUEsqvf4SlsqXrU+xCyPIEXn55U= Subject key identifier: 65:CE:17:4F:3D:84:34:14:67:41:A1:7B:CC:8F:A9:2C:0A:99:68:DB Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EFD Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/40123778C4EE11EEB870DA3AC4F9AE02.roa Signing time: Thu 22 May 2025 20:08:18 +0000 ROA not before: Thu 22 May 2025 20:08:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 215575 IP address blocks: 2406:840:e520::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3837 (0xefd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8432-dbad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e8:42:90:29:64:1b:39:00:d8:0d:37:c1:68: e1:9a:62:f5:a8:a3:e1:f9:67:57:8d:0a:2c:9b:d7: fa:6e:38:e2:cc:d3:63:61:c7:04:90:94:1b:be:22: 06:0a:6a:06:07:9c:db:97:a2:0f:64:d2:d3:12:2b: 7c:51:44:a7:00:e7:31:2f:1e:82:39:ae:ce:f1:70: e6:37:bc:5d:ce:fe:c9:a6:1f:02:81:5c:ed:e0:29: f6:7e:62:74:66:85:3e:55:df:31:49:a8:29:5f:dd: 15:ae:fa:e7:be:fd:6e:3f:70:55:4b:a6:3b:d7:56: 06:da:1a:bf:0b:aa:a4:c8:e7:a1:90:c1:a1:07:da: 94:ed:33:3f:eb:47:3c:d9:fb:08:af:52:da:44:87: 76:e5:fa:78:b0:9d:20:11:89:6e:72:42:b7:04:3f: d9:59:7a:07:dc:e4:2a:c2:e7:a1:f2:9b:e6:7e:67: 9a:cf:db:3a:9c:33:84:67:59:6e:90:ba:b7:ad:7b: 80:ac:f7:3e:7d:f0:55:c2:e1:be:6b:13:5f:95:9a: 79:13:fb:b0:39:23:26:d2:9b:7d:28:6f:e6:15:c8: ac:95:bb:8f:2b:b2:a8:91:25:e1:69:55:aa:6d:dc: e4:64:82:2e:e9:07:7c:02:be:10:04:9d:3e:e1:90: 0d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:CE:17:4F:3D:84:34:14:67:41:A1:7B:CC:8F:A9:2C:0A:99:68:DB X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/40123778C4EE11EEB870DA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e520::/44 Signature Algorithm: sha256WithRSAEncryption 47:2d:d6:f1:7d:16:3f:a6:71:f6:69:f0:6d:f3:0d:89:f8:66: 6a:af:e3:22:1d:77:8a:20:bf:e8:c2:87:90:b3:ac:db:15:09: 3e:5f:64:94:80:17:13:cd:0a:57:2a:07:cf:18:f8:f7:af:8a: 8c:89:8b:0e:d1:1f:28:0b:19:5f:3e:17:d1:c3:51:ac:47:91: ee:a4:85:6e:1f:40:52:9c:5e:f5:d4:79:87:27:2e:88:de:01: 96:03:cb:0b:a3:69:59:4b:70:f1:9b:82:e9:13:7c:f6:29:67: e3:fb:6e:cd:1b:c0:7d:10:cb:8a:81:1b:c8:d1:e8:b3:33:9b: 65:1c:0c:3f:13:66:5b:e9:2b:1e:a6:a8:ba:d3:4b:21:8a:a4: 99:7f:60:53:6b:ea:69:5f:40:83:81:bd:10:93:34:e3:fc:c4: 92:ee:f2:fe:1f:8b:13:cc:e6:17:98:36:1f:43:f8:8d:56:4b: e2:db:f5:82:e2:18:e7:07:da:97:94:23:50:c1:b6:b6:55:50: e0:f1:0b:66:f0:b5:20:df:4b:c2:ca:79:8d:2e:29:ed:b0:9d: 3c:03:00:2e:28:9f:28:7d:42:21:90:e0:be:2b:a7:9b:ed:d6: 98:12:ff:21:34:9e:61:fe:89:8d:76:ef:fb:d2:87:75:d1:bd: 29:46:a1:00 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzMi1kYmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OhCkClkGzkA2A03wWjhmmL1qKPh+WdXjQosm9f6bjjizNNjYccEkJQbviIG CmoGB5zbl6IPZNLTEit8UUSnAOcxLx6COa7O8XDmN7xdzv7Jph8CgVzt4Cn2fmJ0 ZoU+Vd8xSagpX90Vrvrnvv1uP3BVS6Y711YG2hq/C6qkyOehkMGhB9qU7TM/60c8 2fsIr1LaRId25fp4sJ0gEYluckK3BD/ZWXoH3OQqwueh8pvmfmeaz9s6nDOEZ1lu kLq3rXuArPc+ffBVwuG+axNflZp5E/uwOSMm0pt9KG/mFcislbuPK7KokSXhaVWq bdzkZIIu6Qd8Ar4QBJ0+4ZAN8wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGXOF089 hDQUZ0Ghe8yPqSwKmWjbMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDAxMjM3NzhD NEVFMTFFRUI4NzBEQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA5SAwDQYJKoZIhvcNAQELBQADggEBAEct1vF9Fj+m cfZp8G3zDYn4Zmqv4yIdd4ogv+jCh5CzrNsVCT5fZJSAFxPNClcqB88Y+PevioyJ iw7RHygLGV8+F9HDUaxHke6khW4fQFKcXvXUeYcnLojeAZYDywujaVlLcPGbgukT fPYpZ+P7bs0bwH0Qy4qBG8jR6LMzm2UcDD8TZlvpKx6mqLrTSyGKpJl/YFNr6mlf QIOBvRCTNOP8xJLu8v4fixPM5heYNh9D+I1WS+Lb9YLiGOcH2peUI1DBtrZVUODx C2bwtSDfS8LKeY0uKe2wnTwDAC4onyh9QiGQ4L4rp5vt1pgS/yE0nmH+iY127/vS h3XRvSlGoQA= -----END CERTIFICATE-----Generated at Wed Jun 4 00:05:16 2025 by rpki-client