$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/684E2D92AA1111EF9B82966FC4F9AE02.roa File: 684E2D92AA1111EF9B82966FC4F9AE02.roa (raw, json) Hash identifier: 7WFKgYCovYaZCTfwXrc2pEPqJc2cy33DppD1y5hOZ3M= Subject key identifier: DB:32:7A:0C:D7:52:C4:EE:FA:CD:2E:E1:E9:65:7D:C4:B9:96:64:0E Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EA0 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/684E2D92AA1111EF9B82966FC4F9AE02.roa Signing time: Thu 22 May 2025 20:06:48 +0000 ROA not before: Thu 22 May 2025 20:06:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140682 IP address blocks: 2406:840:9960::/44 maxlen: 48 2406:840:feae::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3744 (0xea0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83d8-0bf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9a:2b:32:99:76:0f:3c:53:26:2d:ad:f7:41: b6:3a:7a:c3:a8:2d:f7:20:b0:71:9c:0e:e9:b2:fe: 30:4c:ec:77:2c:3b:41:57:60:81:11:30:47:51:50: 77:42:fc:f5:84:6a:a5:01:d2:2e:d6:c9:15:b0:8c: 50:ba:62:51:49:95:ec:8e:c0:c2:7d:63:61:37:fe: 31:38:fe:03:5c:1a:97:c3:ca:9f:13:9e:af:0b:fc: e5:46:4d:e7:76:4f:a5:f2:f7:fe:86:e1:81:a6:ef: 67:3d:be:b4:2f:53:62:b6:a8:32:57:c8:05:ff:ea: 97:63:19:18:d3:48:24:cc:9a:58:51:ca:78:08:7a: b5:bb:2b:3a:92:4b:f2:e4:78:1e:da:3f:00:81:ba: c3:39:e1:84:b8:fd:ea:52:0c:7f:cf:5c:0c:e2:2a: 3e:01:90:5f:ad:a4:cc:6f:da:ed:9b:a6:16:5a:44: 69:66:f2:a9:d1:c0:f8:c6:a9:13:b6:5d:01:23:33: af:59:4a:12:c2:b9:e8:93:60:42:31:83:a6:b5:26: be:9c:20:6a:07:62:8d:a0:37:e3:aa:34:d1:03:ca: 15:0b:dd:d7:90:7d:dd:00:81:bc:a3:eb:1b:af:49: a9:a7:4f:bb:8e:40:00:42:36:4c:1f:71:51:ee:75: d4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:32:7A:0C:D7:52:C4:EE:FA:CD:2E:E1:E9:65:7D:C4:B9:96:64:0E X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/684E2D92AA1111EF9B82966FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9960::/44 2406:840:feae::/48 Signature Algorithm: sha256WithRSAEncryption 53:ae:9d:e2:04:cf:5b:f3:4f:cf:0f:c5:31:82:5b:e7:7a:30: b8:96:81:c9:94:3d:8e:b9:bc:c1:d3:52:ef:f8:74:c3:33:e7: 6e:e3:83:43:5f:6b:11:ca:40:42:47:45:5c:39:60:52:fc:ed: 2f:f7:ef:81:b2:76:e8:90:ef:2c:35:0f:23:ec:32:e0:15:4a: cd:8e:db:e5:75:2a:0d:fb:40:6d:fc:70:91:dc:63:e7:da:70: b1:be:f6:e3:ff:9a:1d:19:65:b2:cb:e0:e6:78:67:4d:26:6f: cf:f6:f1:71:1c:bc:e3:15:aa:26:76:99:4c:1d:8e:ce:a2:2e: 5d:77:27:46:ef:72:eb:5a:ed:e6:d8:3c:11:f0:3a:60:5a:be: 37:d2:6f:35:f4:21:3c:1b:66:ec:24:39:f0:ca:bc:0b:dd:c1: 58:2f:c6:45:9a:21:6d:f4:8c:a5:a6:75:15:c7:3c:9a:c2:21: 8b:10:27:f4:0b:01:31:a7:96:d6:58:e0:93:5c:7c:c8:05:d1: e6:c7:55:e8:94:6d:06:a0:17:a6:bf:4d:44:c1:cf:3b:45:ed: 76:b5:68:82:1b:c5:fb:73:72:84:8b:6d:97:82:b6:69:79:b2: a9:cb:90:3d:72:ee:0c:29:77:a4:d1:a8:fd:2b:30:97:fb:04: cf:55:cf:10 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNkOC0wYmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJorMpl2DzxTJi2t90G2OnrDqC33ILBxnA7psv4wTOx3LDtBV2CBETBHUVB3 Qvz1hGqlAdIu1skVsIxQumJRSZXsjsDCfWNhN/4xOP4DXBqXw8qfE56vC/zlRk3n dk+l8vf+huGBpu9nPb60L1NitqgyV8gF/+qXYxkY00gkzJpYUcp4CHq1uys6kkvy 5Hge2j8AgbrDOeGEuP3qUgx/z1wM4io+AZBfraTMb9rtm6YWWkRpZvKp0cD4xqkT tl0BIzOvWUoSwrnok2BCMYOmtSa+nCBqB2KNoDfjqjTRA8oVC93XkH3dAIG8o+sb r0mpp0+7jkAAQjZMH3FR7nXUZwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNsyegzX UsTu+s0u4ellfcS5lmQOMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjg0RTJEOTJB QTExMTFFRjlCODI5NjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghAmWADBwAkBghA/q4wDQYJKoZIhvcNAQELBQADggEB AFOuneIEz1vzT88PxTGCW+d6MLiWgcmUPY65vMHTUu/4dMMz527jg0NfaxHKQEJH RVw5YFL87S/374GyduiQ7yw1DyPsMuAVSs2O2+V1Kg37QG38cJHcY+facLG+9uP/ mh0ZZbLL4OZ4Z00mb8/28XEcvOMVqiZ2mUwdjs6iLl13J0bvcuta7ebYPBHwOmBa vjfSbzX0ITwbZuwkOfDKvAvdwVgvxkWaIW30jKWmdRXHPJrCIYsQJ/QLATGnltZY 4JNcfMgF0ebHVeiUbQagF6a/TUTBzztF7Xa1aIIbxftzcoSLbZeCtml5sqnLkD1y 7gwpd6TRqP0rMJf7BM9VzxA= -----END CERTIFICATE-----Generated at Mon Jun 2 07:08:51 2025 by rpki-client