$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8C3FFF5ED31D11EDA062A43DC4F9AE02.roa File: 8C3FFF5ED31D11EDA062A43DC4F9AE02.roa (raw, json) Hash identifier: xkC1cZ8OFugyoQis4PmqiPudcz8zjvnRhqBeASMtSmo= Subject key identifier: 34:80:0C:8A:DA:6A:FA:1F:18:D0:79:42:98:D4:10:43:25:3F:70:C3 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EE6 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8C3FFF5ED31D11EDA062A43DC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:54 +0000 ROA not before: Thu 22 May 2025 20:07:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 199310 IP address blocks: 2406:840:9680::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3814 (0xee6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f841a-b771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:36:bf:00:0c:e8:f6:2d:fc:86:41:c9:49:76: 30:59:3e:bc:0d:5c:ee:16:dd:8b:ab:a8:7a:f9:89: 8f:33:7e:63:80:d3:f8:8a:84:09:de:35:61:41:0a: 06:13:b1:f7:55:71:7b:ac:b5:27:be:2a:95:d5:dc: cd:6c:de:23:7c:70:d5:31:a6:31:7c:0a:71:77:e0: 93:e3:b3:bc:94:be:29:68:6f:de:10:5e:cc:d2:7b: c4:35:62:5c:4b:ff:29:17:e8:2e:6b:f5:25:1a:dc: 8d:4e:11:06:0a:3a:5d:30:49:5d:d6:17:08:03:1c: 6b:da:30:ee:bd:98:4e:89:cf:f9:82:40:c1:aa:40: 20:c9:f6:5b:84:d9:d1:6d:7f:02:cc:8e:1b:d4:22: 3c:c6:04:6b:f5:20:72:39:4e:00:23:ba:75:a6:16: 08:55:d0:1b:c9:bf:96:36:64:33:3a:86:ef:ea:62: 60:46:33:8c:b5:5c:eb:57:00:5c:4c:9f:1a:5e:bd: 95:1c:1b:17:6e:42:f2:0b:e4:d4:06:7c:03:40:72: 19:8e:28:bb:28:27:2b:a5:3b:16:bf:41:f3:08:32: 59:2b:4f:d8:c1:f5:31:60:48:fd:69:4f:2a:3f:11: 50:f1:e0:0f:b5:4b:b1:96:b5:c2:78:90:24:01:cd: 18:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:80:0C:8A:DA:6A:FA:1F:18:D0:79:42:98:D4:10:43:25:3F:70:C3 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8C3FFF5ED31D11EDA062A43DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9680::/44 Signature Algorithm: sha256WithRSAEncryption 85:bc:cf:12:23:f2:47:0c:28:ad:50:a7:dc:48:a2:59:26:3f: 5e:19:04:25:1a:a1:4f:a3:0c:38:0b:dd:d3:66:12:d8:8c:24: cd:10:63:f2:a1:e7:82:59:16:85:0d:e3:99:6f:b2:4e:cc:f3: 5d:f1:84:3b:e9:94:78:29:72:5b:e7:34:88:96:c6:4a:71:e3: 16:08:25:52:e5:82:22:2b:7f:41:5f:f0:42:03:8e:bc:1e:fd: b2:05:62:93:8d:88:f7:c4:1d:a8:ad:ed:6e:66:a9:05:4b:67: 66:d3:d8:18:05:4b:7d:0a:e4:3d:af:a8:ea:c6:61:bd:8c:d7: 2c:12:20:ed:75:59:d5:7f:7d:19:d2:48:11:4d:8a:dd:14:ef: 13:21:4b:52:ff:e7:29:62:eb:e3:b5:de:27:05:cc:88:e4:ab: 6d:21:7e:45:a6:61:cb:f6:3d:f8:92:88:df:ad:3f:2a:35:d6: 3a:96:8d:33:b6:1a:83:1a:53:7d:06:62:48:4c:85:5b:ac:40: 04:af:a4:eb:4e:4f:01:7b:ae:17:f0:01:0e:50:52:86:57:fb: 39:9d:c2:3c:7f:ba:da:02:f0:45:e0:87:a8:51:2a:27:65:18: 4f:a0:e5:3b:0c:5f:97:86:bc:f0:87:92:68:66:1c:fc:a8:0d: e3:c3:ea:df -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQxYS1iNzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxja/AAzo9i38hkHJSXYwWT68DVzuFt2Lq6h6+YmPM35jgNP4ioQJ3jVhQQoG E7H3VXF7rLUnviqV1dzNbN4jfHDVMaYxfApxd+CT47O8lL4paG/eEF7M0nvENWJc S/8pF+gua/UlGtyNThEGCjpdMEld1hcIAxxr2jDuvZhOic/5gkDBqkAgyfZbhNnR bX8CzI4b1CI8xgRr9SByOU4AI7p1phYIVdAbyb+WNmQzOobv6mJgRjOMtVzrVwBc TJ8aXr2VHBsXbkLyC+TUBnwDQHIZjii7KCcrpTsWv0HzCDJZK0/YwfUxYEj9aU8q PxFQ8eAPtUuxlrXCeJAkAc0YYwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDSADIra avofGNB5QpjUEEMlP3DDMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOEMzRkZGNUVE MzFEMTFFREEwNjJBNDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAloAwDQYJKoZIhvcNAQELBQADggEBAIW8zxIj8kcM KK1Qp9xIolkmP14ZBCUaoU+jDDgL3dNmEtiMJM0QY/Kh54JZFoUN45lvsk7M813x hDvplHgpclvnNIiWxkpx4xYIJVLlgiIrf0Ff8EIDjrwe/bIFYpONiPfEHait7W5m qQVLZ2bT2BgFS30K5D2vqOrGYb2M1ywSIO11WdV/fRnSSBFNit0U7xMhS1L/5yli 6+O13icFzIjkq20hfkWmYcv2PfiSiN+tPyo11jqWjTO2GoMaU30GYkhMhVusQASv pOtOTwF7rhfwAQ5QUoZX+zmdwjx/utoC8EXgh6hRKidlGE+g5TsMX5eGvPCHkmhm HPyoDePD6t8= -----END CERTIFICATE-----Generated at Wed Jun 4 00:09:30 2025 by rpki-client