$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa File: 4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa (raw, json) Hash identifier: qj/3tFA8f4nEUSTiojbKDkKJp+eC+EWq5wbVDIQHHjY= Subject key identifier: C1:82:A6:56:62:45:D6:B2:15:DF:61:7E:34:68:1E:5A:94:E0:7A:F6 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EE2 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:51 +0000 ROA not before: Thu 22 May 2025 20:07:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153458 IP address blocks: 2406:840:e2c0::/44 maxlen: 48 2406:840:feac::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3810 (0xee2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8416-9d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e9:a2:6d:56:05:8c:fc:00:90:06:53:fb:92: fe:b2:ab:f6:9a:1c:e9:04:85:d8:bd:58:d8:36:fe: be:e0:18:76:68:51:39:3f:fe:9f:54:f4:50:a4:d8: b5:02:84:fe:28:cf:d1:52:0f:8e:d9:75:31:4e:06: 69:bb:73:95:27:47:38:62:36:e6:3c:b5:a4:81:86: 5d:e2:94:03:3e:ff:bb:55:73:e0:e1:ea:84:e2:da: c3:c5:f3:11:98:c6:33:15:32:18:04:55:ae:51:7e: 8f:7d:bb:6f:04:44:4f:b5:b0:bd:22:82:0f:3e:96: 60:24:e3:78:db:89:13:30:1a:3c:b5:f4:c0:89:1c: be:6c:90:da:e3:56:10:9f:ca:0c:da:03:78:c2:66: f2:76:08:95:4c:d0:e5:a5:c6:aa:d5:80:a5:99:79: 08:e4:1b:fa:6c:d1:65:2c:df:4b:3f:04:7e:5d:b0: 36:e2:49:fb:66:18:00:21:cc:75:7b:cd:fb:7e:a7: 13:e3:aa:f2:c9:4f:f4:ab:ba:39:93:19:3d:55:85: 35:97:cc:f8:d9:d3:83:71:e9:a4:af:b1:56:85:3b: 3c:48:15:a4:49:c0:79:9a:42:81:3b:3f:1e:67:ac: a2:bb:08:ef:4d:27:33:20:03:ee:12:2e:45:93:b7: 73:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:82:A6:56:62:45:D6:B2:15:DF:61:7E:34:68:1E:5A:94:E0:7A:F6 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e2c0::/44 2406:840:feac::/48 Signature Algorithm: sha256WithRSAEncryption 7c:3b:1e:78:cd:e7:56:2d:a0:02:94:f7:fa:c7:33:e1:f7:35: 24:9a:48:8d:cb:7f:72:ef:5b:d8:55:e8:92:ba:7d:ae:42:51: 14:c6:b5:3a:3c:8c:a3:a0:2e:3a:0a:5b:7c:ea:af:09:42:45: 54:35:5f:e7:a2:cf:f3:26:4d:90:13:00:1e:67:1b:25:48:26: b4:e2:09:97:c6:8a:75:cd:5b:e2:76:f5:b6:27:48:5b:50:b6: 14:d0:32:d8:ca:d7:b3:74:21:79:70:6b:2a:e1:7f:dd:3a:66: dd:f8:31:59:52:f7:b2:b1:95:c6:3f:79:39:12:02:0b:b3:a5: 5e:31:c0:eb:32:e0:ee:bd:42:9a:81:ae:fb:f4:07:32:86:0d: c9:31:07:d3:c2:77:4a:58:79:fb:96:de:c4:d0:ce:3a:df:21: 1b:ac:13:d9:68:09:12:ee:97:10:8a:f4:65:16:7f:0c:cf:63: c6:b6:b3:89:6b:00:fb:e5:27:b3:15:5f:72:58:d5:ae:95:6c: cd:18:07:1b:f8:4d:7a:d7:9d:f4:15:42:25:11:8f:48:db:06: c3:8a:71:4d:6c:56:1d:8a:d6:c9:c6:c9:5d:3b:15:fb:b7:39: 77:bd:de:ec:f6:b7:ba:81:2d:ed:c6:2c:42:57:18:f4:3d:fc: 8c:4b:83:4c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQxNi05ZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArumibVYFjPwAkAZT+5L+sqv2mhzpBIXYvVjYNv6+4Bh2aFE5P/6fVPRQpNi1 AoT+KM/RUg+O2XUxTgZpu3OVJ0c4YjbmPLWkgYZd4pQDPv+7VXPg4eqE4trDxfMR mMYzFTIYBFWuUX6PfbtvBERPtbC9IoIPPpZgJON424kTMBo8tfTAiRy+bJDa41YQ n8oM2gN4wmbydgiVTNDlpcaq1YClmXkI5Bv6bNFlLN9LPwR+XbA24kn7ZhgAIcx1 e837fqcT46ryyU/0q7o5kxk9VYU1l8z42dODcemkr7FWhTs8SBWkScB5mkKBOz8e Z6yiuwjvTSczIAPuEi5Fk7dzxQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMGCplZi RdayFd9hfjRoHlqU4Hr2MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNEEwREMzRENB MjkyMTFFRkEyRTNCRTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4sADBwAkBghA/qwwDQYJKoZIhvcNAQELBQADggEB AHw7HnjN51YtoAKU9/rHM+H3NSSaSI3Lf3LvW9hV6JK6fa5CURTGtTo8jKOgLjoK W3zqrwlCRVQ1X+eiz/MmTZATAB5nGyVIJrTiCZfGinXNW+J29bYnSFtQthTQMtjK 17N0IXlwayrhf906Zt34MVlS97KxlcY/eTkSAguzpV4xwOsy4O69QpqBrvv0BzKG DckxB9PCd0pYefuW3sTQzjrfIRusE9loCRLulxCK9GUWfwzPY8a2s4lrAPvlJ7MV X3JY1a6VbM0YBxv4TXrXnfQVQiURj0jbBsOKcU1sVh2K1snGyV07Ffu3OXe93uz2 t7qBLe3GLEJXGPQ9/IxLg0w= -----END CERTIFICATE-----Generated at Tue Jun 3 23:59:35 2025 by rpki-client