$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa File: 6A8D54D4411211EEA2E98A76C4F9AE02.roa (raw, json) Hash identifier: Fb8SkZngNWFIDHCH+uxme3/xVHiR5IIpF1Qw+1y7DjA= Subject key identifier: 67:76:B8:5A:CF:E1:E4:63:62:60:F8:81:E3:51:6E:15:70:76:2C:8D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EC0 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:20 +0000 ROA not before: Thu 22 May 2025 20:07:20 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151673 IP address blocks: 2406:840:efa0::/44 maxlen: 48 2406:840:fede::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 14:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3776 (0xec0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:20 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83f8-e89b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4d:ba:e7:61:7a:23:23:cc:dc:56:9c:b0:be: 2c:82:f7:e3:fb:f6:1e:eb:a0:f1:5a:6f:f4:17:ba: ac:39:7a:9f:31:c5:cd:13:18:8d:f3:42:16:f3:ff: 75:a9:52:fe:0f:7f:9a:5a:1e:36:e0:1e:9f:c5:03: 2b:69:d3:e4:43:32:71:dc:b1:74:5a:58:4b:aa:47: ba:d8:dc:1a:10:c4:9d:08:d0:6a:8f:e4:2c:90:e4: 48:f0:05:a4:e9:ff:e5:27:0a:e0:50:1e:01:07:41: 96:c1:a0:29:1e:1d:db:82:7a:35:fe:60:94:d2:6c: a4:8e:0b:78:d0:d6:e3:8c:e7:1d:67:b7:2e:14:aa: 31:e0:f9:6c:49:9f:1b:90:45:66:f2:cb:60:b1:45: d5:9f:78:47:81:c3:c9:5c:ad:21:6f:f3:ff:50:21: cc:7b:43:0d:13:fa:f3:07:99:99:60:0d:9b:fa:96: 1e:bd:bf:40:67:c8:6b:9c:23:e1:96:70:fd:60:7e: 9e:3c:16:30:08:93:26:32:51:6a:28:36:e7:04:d0: 27:9e:73:af:79:f3:a5:9b:5b:f6:09:0b:74:38:ee: f2:ee:8f:f9:8a:82:28:7c:92:85:63:b8:23:30:ba: 3b:f2:01:cc:af:cb:91:b0:06:da:6f:d7:47:d6:2d: 1c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:76:B8:5A:CF:E1:E4:63:62:60:F8:81:E3:51:6E:15:70:76:2C:8D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:efa0::/44 2406:840:fede::/48 Signature Algorithm: sha256WithRSAEncryption a5:34:e8:49:54:58:84:6e:41:bc:2f:78:d5:d9:e9:92:79:80: 3b:33:7f:57:0e:11:1d:bf:55:28:73:51:39:dd:a0:d3:9b:cd: 7d:d0:26:be:e2:28:5d:27:ae:b3:69:38:8e:4a:4d:59:f8:e6: c3:71:bb:4c:63:b1:fb:84:a4:a1:99:2d:ae:1a:1e:8e:1e:06: fe:b2:ae:08:72:d7:bf:09:67:b3:e6:cb:fe:63:3a:61:0f:5b: 9b:10:02:d9:82:05:17:2a:a8:17:b8:be:64:0e:86:ef:76:a8: ac:2e:19:77:33:0b:c0:bd:a0:ba:f5:c9:62:ee:4a:c9:e7:fa: 1a:61:c1:33:67:55:51:39:18:30:83:86:94:12:dc:4f:d6:0e: e7:cd:f6:74:3f:9c:d7:8d:72:83:b8:7c:7c:c0:45:9a:b5:ec: 0f:01:ec:51:a8:23:d5:36:4e:9f:2c:83:8d:c6:03:27:92:23: ec:ef:d4:a9:6e:04:02:86:74:7c:e3:20:17:29:8e:74:46:4b: 76:48:7a:95:92:cf:e3:37:a1:76:5f:78:ee:db:fb:ea:a5:02: 72:1b:6e:41:91:e9:90:5c:f1:a8:bc:a3:a5:66:d3:01:aa:54: 2f:b6:a2:70:59:22:de:99:21:2c:dd:4d:14:f9:96:39:16:24: 08:0d:05:cd -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzIwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNmOC1lODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqE2652F6IyPM3FacsL4sgvfj+/Ye66DxWm/0F7qsOXqfMcXNExiN80IW8/91 qVL+D3+aWh424B6fxQMradPkQzJx3LF0WlhLqke62NwaEMSdCNBqj+QskORI8AWk 6f/lJwrgUB4BB0GWwaApHh3bgno1/mCU0mykjgt40NbjjOcdZ7cuFKox4PlsSZ8b kEVm8stgsUXVn3hHgcPJXK0hb/P/UCHMe0MNE/rzB5mZYA2b+pYevb9AZ8hrnCPh lnD9YH6ePBYwCJMmMlFqKDbnBNAnnnOvefOlm1v2CQt0OO7y7o/5ioIofJKFY7gj MLo78gHMr8uRsAbab9dH1i0cjwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGd2uFrP 4eRjYmD4geNRbhVwdiyNMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkE4RDU0RDQ0 MTEyMTFFRUEyRTk4QTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA76ADBwAkBghA/t4wDQYJKoZIhvcNAQELBQADggEB AKU06ElUWIRuQbwveNXZ6ZJ5gDszf1cOER2/VShzUTndoNObzX3QJr7iKF0nrrNp OI5KTVn45sNxu0xjsfuEpKGZLa4aHo4eBv6yrghy178JZ7Pmy/5jOmEPW5sQAtmC BRcqqBe4vmQOhu92qKwuGXczC8C9oLr1yWLuSsnn+hphwTNnVVE5GDCDhpQS3E/W DufN9nQ/nNeNcoO4fHzARZq17A8B7FGoI9U2Tp8sg43GAyeSI+zv1KluBAKGdHzj IBcpjnRGS3ZIepWSz+M3oXZfeO7b++qlAnIbbkGR6ZBc8ai8o6Vm0wGqVC+2onBZ It6ZISzdTRT5ljkWJAgNBc0= -----END CERTIFICATE-----Generated at Tue Oct 28 12:38:17 2025 by rpki-client