$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/41B221EC862211EA87D9337EC4F9AE02.roa File: 41B221EC862211EA87D9337EC4F9AE02.roa (raw, json) Hash identifier: d0POLYsKeKDrJPyesPggnub2uh2jJtHZmhtzGOOHZwI= Subject key identifier: 3F:9B:02:BA:B0:0B:AC:DC:02:7D:37:79:22:FB:D8:04:13:37:35:17 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0F0A Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/41B221EC862211EA87D9337EC4F9AE02.roa Signing time: Thu 22 May 2025 20:08:29 +0000 ROA not before: Thu 22 May 2025 20:08:29 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4842 IP address blocks: 2406:840:f990::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3850 (0xf0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:29 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f843c-16e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b3:17:a9:0d:b7:cd:3b:94:3d:7b:d0:51:5e: 74:34:69:99:87:8b:93:f1:2f:93:c4:5a:bd:80:a2: b8:a6:cd:66:df:19:d3:f3:ad:7d:38:dc:0c:78:8d: 1b:71:9f:0f:fa:c3:b9:af:c8:09:6c:ff:de:42:b7: e3:a2:50:21:d1:bc:7b:4e:d1:61:92:30:95:7a:59: eb:ae:a5:b3:b9:8e:bc:2d:ac:4c:99:25:b4:82:bc: 37:ee:73:2a:39:8f:85:3e:60:37:1d:91:a5:d8:f7: 87:5c:eb:07:d6:57:e2:c2:0e:50:88:56:55:a3:09: 2d:88:03:10:a7:6d:90:ed:d4:2c:4d:8d:33:1f:2e: 85:53:7d:09:95:3d:11:ac:19:10:5e:28:09:10:c0: 9a:55:9d:93:52:16:8e:b1:00:38:63:52:c7:c3:a2: de:e6:61:c7:da:52:90:98:f0:24:89:d4:72:ed:63: 41:6d:9f:ae:7c:f1:23:bd:7b:5d:bf:6f:47:04:36: a9:94:44:76:d4:08:6e:31:f6:34:2a:d9:4a:4a:23: cc:d2:f8:ca:5e:4c:e1:74:00:9b:b1:0e:d6:4e:aa: 37:1f:7c:db:11:c0:27:d0:ef:ed:24:56:bb:eb:59: 3a:6c:4b:91:a6:1c:2a:19:78:f8:3c:12:67:2c:db: 51:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9B:02:BA:B0:0B:AC:DC:02:7D:37:79:22:FB:D8:04:13:37:35:17 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/41B221EC862211EA87D9337EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f990::/44 Signature Algorithm: sha256WithRSAEncryption 59:84:3c:a9:f8:2e:22:62:86:d0:b5:85:58:9a:f8:5d:84:c6: ce:dc:b2:1b:1e:35:b6:a4:d1:f4:39:94:cb:4d:6b:ac:96:7c: 32:ef:b5:04:9c:77:52:e1:ac:91:53:66:76:7e:3a:d8:b6:73: 59:12:54:11:11:c1:38:03:81:bf:04:80:65:4b:c3:7b:04:95: d8:ca:6f:7d:c7:37:ae:85:5e:33:4e:90:41:99:08:4c:b0:fc: 93:23:67:7d:5f:fe:f4:c6:ca:b6:7f:0a:a8:6e:1b:47:d6:52: 61:80:63:59:48:62:50:bc:d8:e8:79:c8:c3:f1:33:12:73:1d: 18:ef:5c:60:4d:3d:52:8b:1e:df:98:50:88:f7:16:0e:fa:79: e7:a1:98:96:33:55:c0:6c:4a:2a:07:24:9e:c3:13:76:f6:62: d7:46:d3:79:9c:23:84:0e:15:92:e2:2c:51:5d:f7:e2:09:dd: 87:30:fe:22:2a:45:a2:d9:e5:ff:7d:c3:a4:89:d3:4d:90:31: 77:78:2d:ba:c5:83:29:1b:0d:51:58:64:63:c6:fc:0a:bb:0d: 52:3d:ce:1a:7a:a8:1b:68:c4:db:8a:3b:ac:40:9a:27:69:6d: 4c:96:01:d5:08:13:5b:bc:e4:4c:dc:59:61:36:48:71:12:7f: ac:1a:ec:67 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODI5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzYy0xNmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybMXqQ23zTuUPXvQUV50NGmZh4uT8S+TxFq9gKK4ps1m3xnT8619ONwMeI0b cZ8P+sO5r8gJbP/eQrfjolAh0bx7TtFhkjCVelnrrqWzuY68LaxMmSW0grw37nMq OY+FPmA3HZGl2PeHXOsH1lfiwg5QiFZVowktiAMQp22Q7dQsTY0zHy6FU30JlT0R rBkQXigJEMCaVZ2TUhaOsQA4Y1LHw6Le5mHH2lKQmPAkidRy7WNBbZ+ufPEjvXtd v29HBDaplER21AhuMfY0KtlKSiPM0vjKXkzhdACbsQ7WTqo3H3zbEcAn0O/tJFa7 61k6bEuRphwqGXj4PBJnLNtRFQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD+bArqw C6zcAn03eSL72AQTNzUXMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDFCMjIxRUM4 NjIyMTFFQTg3RDkzMzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA+ZAwDQYJKoZIhvcNAQELBQADggEBAFmEPKn4LiJi htC1hVia+F2Exs7cshseNbak0fQ5lMtNa6yWfDLvtQScd1LhrJFTZnZ+Oti2c1kS VBERwTgDgb8EgGVLw3sEldjKb33HN66FXjNOkEGZCEyw/JMjZ31f/vTGyrZ/Cqhu G0fWUmGAY1lIYlC82Oh5yMPxMxJzHRjvXGBNPVKLHt+YUIj3Fg76eeehmJYzVcBs SioHJJ7DE3b2YtdG03mcI4QOFZLiLFFd9+IJ3Ycw/iIqRaLZ5f99w6SJ002QMXd4 LbrFgykbDVFYZGPG/Aq7DVI9zhp6qBtoxNuKO6xAmidpbUyWAdUIE1u85EzcWWE2 SHESf6wa7Gc= -----END CERTIFICATE-----Generated at Wed Jun 4 00:08:33 2025 by rpki-client