$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6CDD5244825F11EBAD45B931C4F9AE02.roa File: 6CDD5244825F11EBAD45B931C4F9AE02.roa (raw, json) Hash identifier: 2apyKDVQM0W9w+ia6nDM/lfhRSOqbMzBzF6L+PQRrJ0= Subject key identifier: CD:8D:C6:DC:D8:2B:2C:80:78:FD:CB:3F:84:FE:FF:8C:08:C2:F9:56 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EA7 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6CDD5244825F11EBAD45B931C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:54 +0000 ROA not before: Thu 22 May 2025 20:06:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 141712 IP address blocks: 2406:840:e110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3751 (0xea7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83de-312d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:61:11:0d:0a:e0:b1:28:55:37:be:32:9c:45: 7d:49:dc:8b:a0:b8:be:d0:4c:6a:aa:7b:0d:84:50: 5b:15:2a:9f:7a:03:5c:36:5e:1a:70:d8:43:b8:0a: 4f:d4:2b:2a:49:df:78:04:a5:ad:06:49:51:cd:55: 79:d4:b0:e5:9e:f0:0e:c4:d9:78:4c:48:08:c1:ff: d2:2a:66:5e:5c:2c:2c:06:65:6e:fd:c1:5d:77:b4: 57:01:3e:c5:60:72:82:19:6a:7a:86:7e:34:6d:da: 32:59:0c:a8:17:fe:e7:ec:d4:42:e9:ae:5f:0b:2b: 0c:cd:ce:45:00:4d:3b:6e:83:46:63:58:d1:5a:5e: 54:a0:2d:9a:b6:12:9d:0c:33:04:34:59:7b:eb:6e: d8:56:59:27:a4:6e:a1:61:1e:94:35:4b:6f:09:06: 43:54:d0:0d:0d:26:c2:c1:c0:45:b6:a6:9e:cd:bc: e7:17:3a:ca:d6:ad:7b:bd:ea:f8:1a:21:3a:ac:51: 58:c8:a0:52:d8:a6:b4:60:16:2f:c7:b1:4d:2c:3f: ab:0d:43:4f:38:44:ee:32:d4:78:95:0c:81:64:e2: 6a:db:8a:c8:05:2f:b0:f5:73:98:c7:e8:30:b9:93: 5d:11:78:0c:dd:72:c8:35:94:58:de:9b:8a:cb:2e: 4d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:8D:C6:DC:D8:2B:2C:80:78:FD:CB:3F:84:FE:FF:8C:08:C2:F9:56 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6CDD5244825F11EBAD45B931C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e110::/44 Signature Algorithm: sha256WithRSAEncryption 7a:d3:d9:b3:bf:ef:5b:7f:bc:4a:4b:83:0d:2b:cf:b1:61:08: 2e:4a:fb:ba:5d:05:a2:f9:42:c2:dc:b5:67:66:c8:6a:95:cc: d3:ae:e9:cf:5c:06:4a:38:5b:4c:1a:9e:01:c9:94:3c:27:4b: 24:b8:db:27:54:da:b4:5a:d2:c2:a4:da:0b:55:08:e7:7e:ab: 5e:84:22:ff:eb:93:07:9c:59:56:7f:a6:1a:b6:78:b7:9a:65: dc:26:76:0f:f2:70:5d:8d:5e:b3:d9:40:99:64:fe:a7:53:0e: 99:c9:6f:eb:26:22:06:ec:44:16:16:ee:ae:18:c1:37:fc:2b: 3b:1e:6c:dc:8a:3d:54:67:df:ee:c5:e2:57:28:21:5a:cf:98: 3c:32:0a:0a:82:9f:18:6d:a3:39:98:51:c4:64:7d:34:37:bc: 95:92:7a:e2:82:da:7b:68:ab:99:dc:f4:b7:1a:22:5d:fe:4c: 6d:1e:3d:4d:8b:cd:18:3d:7b:70:f6:fb:6c:0f:92:6a:e3:eb: 31:57:1f:22:76:91:8d:9d:54:96:a8:cb:ae:86:02:ef:95:e9: df:d6:7f:e5:78:92:0d:3a:b7:4e:2d:c4:26:14:4e:1d:1d:f0: 9c:d1:ee:7d:73:bc:05:41:34:63:90:8f:ad:d8:d1:c6:a5:5a: 0c:8a:23:73 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNkZS0zMTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2ERDQrgsShVN74ynEV9SdyLoLi+0ExqqnsNhFBbFSqfegNcNl4acNhDuApP 1CsqSd94BKWtBklRzVV51LDlnvAOxNl4TEgIwf/SKmZeXCwsBmVu/cFdd7RXAT7F YHKCGWp6hn40bdoyWQyoF/7n7NRC6a5fCysMzc5FAE07boNGY1jRWl5UoC2athKd DDMENFl7627YVlknpG6hYR6UNUtvCQZDVNANDSbCwcBFtqaezbznFzrK1q17ver4 GiE6rFFYyKBS2Ka0YBYvx7FNLD+rDUNPOETuMtR4lQyBZOJq24rIBS+w9XOYx+gw uZNdEXgM3XLINZRY3puKyy5NYwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFM2NxtzY KyyAeP3LP4T+/4wIwvlWMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkNERDUyNDQ4 MjVGMTFFQkFENDVCOTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4RAwDQYJKoZIhvcNAQELBQADggEBAHrT2bO/71t/ vEpLgw0rz7FhCC5K+7pdBaL5QsLctWdmyGqVzNOu6c9cBko4W0wangHJlDwnSyS4 2ydU2rRa0sKk2gtVCOd+q16EIv/rkwecWVZ/phq2eLeaZdwmdg/ycF2NXrPZQJlk /qdTDpnJb+smIgbsRBYW7q4YwTf8KzsebNyKPVRn3+7F4lcoIVrPmDwyCgqCnxht ozmYUcRkfTQ3vJWSeuKC2ntoq5nc9LcaIl3+TG0ePU2LzRg9e3D2+2wPkmrj6zFX HyJ2kY2dVJaoy66GAu+V6d/Wf+V4kg06t04txCYUTh0d8JzR7n1zvAVBNGOQj63Y 0calWgyKI3M= -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:00 2025 by rpki-client