$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/539AFA66240F11EF8FFD251CC4F9AE02.roa File: 539AFA66240F11EF8FFD251CC4F9AE02.roa (raw, json) Hash identifier: SBHyRsw1Akot0R40Kp1lLrQPbq19PcB+TKIlSWPyGrQ= Subject key identifier: 99:C9:23:7A:87:A2:C6:5B:6C:66:FF:53:75:15:A6:65:08:AB:EB:AC Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EF4 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/539AFA66240F11EF8FFD251CC4F9AE02.roa Signing time: Thu 22 May 2025 20:08:09 +0000 ROA not before: Thu 22 May 2025 20:08:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 210384 IP address blocks: 2406:840:9860::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 20:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3828 (0xef4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8429-d2f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:11:ea:6e:08:41:f1:f9:7b:83:93:31:fe:4a: 94:68:e8:37:fb:b2:9a:d4:9b:df:44:8c:86:bf:b6: 72:c9:1a:a1:88:84:85:e9:9a:b5:31:3f:23:48:1c: 0f:07:b4:e6:17:e6:bc:28:89:bd:ea:76:8d:3e:42: b8:71:41:8a:11:b0:e5:51:cb:94:7c:36:a8:10:ee: c2:52:8f:26:fd:92:0a:ab:2d:f6:aa:5f:1c:c0:c1: 85:5d:26:2e:13:8b:56:62:59:d4:8a:dd:59:a3:39: 99:02:0e:ad:a4:6e:ad:80:2e:71:66:b5:cb:ac:ca: 3d:41:6d:44:88:9c:94:be:19:b4:1a:56:a5:02:f5: 90:7f:a1:dc:39:4b:17:53:57:31:ba:a2:d5:09:01: b3:9c:4d:dd:9e:4f:f7:1d:ea:a4:8c:39:4e:67:b8: ca:61:de:36:6d:72:5d:33:24:81:01:db:99:c7:99: e7:24:4e:fa:09:33:58:07:19:90:55:b0:86:b2:a3: 73:6f:a9:fc:af:41:a7:d5:83:7e:c1:99:e7:e9:60: 29:39:7b:9f:13:bf:57:ab:48:a5:8f:ae:92:d5:61: 08:56:08:9e:0a:0d:0d:8e:33:b2:86:a3:e1:00:d4: ad:b8:1b:17:8c:24:7e:1e:b4:f5:52:8e:ed:37:51: 60:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:C9:23:7A:87:A2:C6:5B:6C:66:FF:53:75:15:A6:65:08:AB:EB:AC X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/539AFA66240F11EF8FFD251CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9860::/44 Signature Algorithm: sha256WithRSAEncryption 70:f5:e2:8a:f4:87:0e:49:54:fd:15:79:d7:33:60:a9:d6:88: 14:64:d3:9c:24:6d:c4:a1:50:ff:a0:da:b2:dd:5d:05:b7:20: c7:cd:70:05:f6:6e:e1:cb:1f:98:1e:a8:62:91:7d:2c:86:8b: fe:b8:6e:dd:f5:28:ee:80:c8:f9:3c:0d:54:5a:0a:0a:31:98: f0:36:31:98:45:eb:0f:6b:fe:cf:7f:f2:b1:11:c0:50:24:18: f0:f0:9f:e6:d3:70:09:61:f5:b6:d7:a7:32:41:ca:d6:9b:58: 7d:6b:40:fe:f9:0d:b6:cb:c3:27:7c:21:58:1b:11:99:e0:50: 81:da:f6:41:7b:c0:5b:7c:6e:49:56:d9:64:7b:d3:94:58:1c: 25:bc:2b:76:30:e2:02:11:a3:fb:48:b9:5c:bb:05:52:f2:ca: de:3e:20:fd:2a:f5:12:6e:c2:51:8f:3e:fb:f3:2d:8d:7d:94: b9:cd:9a:33:8c:b1:cc:cc:6a:a9:8b:f3:30:4e:47:a6:8d:c2: e5:d9:c9:64:76:6c:1d:19:38:fb:b3:1d:b1:1d:e1:50:52:c6: e0:8f:4a:be:b0:3b:e0:cc:27:89:c5:65:a0:3e:7a:42:1a:67: bf:5e:c8:15:7c:69:cf:e2:52:bd:d4:bd:e8:1b:e9:e4:ef:b8: 21:bf:1c:01 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQyOS1kMmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxHqbghB8fl7g5Mx/kqUaOg3+7Ka1JvfRIyGv7ZyyRqhiISF6Zq1MT8jSBwP B7TmF+a8KIm96naNPkK4cUGKEbDlUcuUfDaoEO7CUo8m/ZIKqy32ql8cwMGFXSYu E4tWYlnUit1ZozmZAg6tpG6tgC5xZrXLrMo9QW1EiJyUvhm0GlalAvWQf6HcOUsX U1cxuqLVCQGznE3dnk/3HeqkjDlOZ7jKYd42bXJdMySBAduZx5nnJE76CTNYBxmQ VbCGsqNzb6n8r0Gn1YN+wZnn6WApOXufE79Xq0ilj66S1WEIVgieCg0NjjOyhqPh ANStuBsXjCR+HrT1Uo7tN1Fg5QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJnJI3qH osZbbGb/U3UVpmUIq+usMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNTM5QUZBNjYy NDBGMTFFRjhGRkQyNTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAmGAwDQYJKoZIhvcNAQELBQADggEBAHD14or0hw5J VP0VedczYKnWiBRk05wkbcShUP+g2rLdXQW3IMfNcAX2buHLH5geqGKRfSyGi/64 bt31KO6AyPk8DVRaCgoxmPA2MZhF6w9r/s9/8rERwFAkGPDwn+bTcAlh9bbXpzJB ytabWH1rQP75DbbLwyd8IVgbEZngUIHa9kF7wFt8bklW2WR705RYHCW8K3Yw4gIR o/tIuVy7BVLyyt4+IP0q9RJuwlGPPvvzLY19lLnNmjOMsczMaqmL8zBOR6aNwuXZ yWR2bB0ZOPuzHbEd4VBSxuCPSr6wO+DMJ4nFZaA+ekIaZ79eyBV8ac/iUr3Uvegb 6eTvuCG/HAE= -----END CERTIFICATE-----Generated at Sat Oct 25 23:15:16 2025 by rpki-client