$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A16CFB8E71DC11EFB72B3835C4F9AE02.roa File: A16CFB8E71DC11EFB72B3835C4F9AE02.roa (raw, json) Hash identifier: sNpSfmIxpMNYOXS7w9cz0AmWmZTFAyKV+Ca0ZlXN0vM= Subject key identifier: AF:F4:26:E5:C9:EE:0C:85:5C:BA:7E:B7:DA:29:E1:BA:A4:B6:A8:6D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EDD Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A16CFB8E71DC11EFB72B3835C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:46 +0000 ROA not before: Thu 22 May 2025 20:07:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153330 IP address blocks: 2406:840:9a00::/40 maxlen: 48 2406:840:ca00::/40 maxlen: 48 2406:840:cc00::/40 maxlen: 48 2406:840:cf00::/40 maxlen: 48 2406:840:fea2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3805 (0xedd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8412-7e2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:97:20:0a:70:2f:77:7a:b1:43:a8:e4:24:e3: f3:0f:a9:8c:f3:45:5b:e5:e8:87:5b:a7:ca:7f:37: c6:af:3a:bf:bd:ba:2d:3b:33:04:26:cd:81:95:ce: 6a:aa:85:12:a6:2c:22:12:ec:c9:d8:9d:9d:14:50: 12:82:5a:59:3b:6d:20:08:ee:25:c2:06:ab:0a:ba: c4:92:ea:8d:68:cf:d6:9d:e2:e4:e7:bc:e3:58:83: a4:52:c9:5f:d0:af:2a:cd:8c:83:bf:22:6e:e7:e3: ca:c3:86:a5:09:3c:20:f0:23:25:0e:30:56:b8:83: d1:cd:68:d5:b2:4b:c8:90:35:ff:c1:0d:3e:85:e6: 89:b4:44:6e:10:20:26:ea:fe:35:d0:f7:03:a7:29: ed:5c:23:f1:df:d7:8e:c1:a3:94:e1:5d:22:24:3b: b2:ef:a7:c6:01:7a:cf:94:55:cf:e9:09:fd:96:2b: 61:c3:0a:18:e2:cc:6d:24:bb:5f:19:94:fd:55:43: 6f:b8:43:2f:e9:44:bb:57:7c:4c:48:a1:7f:2c:2e: 47:aa:9c:98:e3:13:5f:9c:01:63:ad:20:dd:e2:eb: 9a:cb:b5:cb:98:89:75:72:eb:b9:03:9c:4e:ef:d8: 1e:ed:f4:77:d6:1e:c3:99:1b:e8:a7:95:0c:33:17: de:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F4:26:E5:C9:EE:0C:85:5C:BA:7E:B7:DA:29:E1:BA:A4:B6:A8:6D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A16CFB8E71DC11EFB72B3835C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9a00::/40 2406:840:ca00::/40 2406:840:cc00::/40 2406:840:cf00::/40 2406:840:fea2::/48 Signature Algorithm: sha256WithRSAEncryption 33:ce:f4:61:f8:d7:d9:d7:97:28:37:5f:af:49:d8:cf:1e:16: ef:14:ff:6a:8a:14:8a:45:ae:06:e7:df:7f:ba:e0:ef:8e:c6: 8f:a7:de:d1:89:54:64:2d:da:8e:af:26:cb:bf:53:fa:dd:b7: 15:96:f5:12:85:7b:77:cf:a9:a1:47:39:5e:12:49:f8:0c:7d: ae:82:cc:de:0c:5b:cf:87:7f:09:08:38:96:d4:3a:e9:8d:cb: 31:f5:fc:0f:2f:ba:81:ac:4d:ed:1f:7f:89:40:c9:54:c4:61: ba:27:6e:a2:b2:b7:11:bb:55:6f:0a:3e:3f:bf:62:95:c3:e7: ae:56:3d:45:da:9b:98:43:b1:b0:32:b0:d0:26:6c:49:97:36: 50:76:2b:83:3b:79:e5:6f:95:b2:f6:46:16:13:58:05:cc:44: 42:1b:c9:f5:e3:27:7a:6c:64:04:8c:82:c7:06:81:c3:73:0e: 8b:16:4b:5e:7c:95:8f:e0:59:16:8d:2f:20:45:ea:10:0c:8e: 88:ae:98:17:ce:79:a4:ba:94:e6:7c:87:c5:34:20:03:d8:da: a3:c8:a0:5d:4c:7f:18:42:82:72:6b:69:49:70:e2:20:43:37: 86:98:8c:26:ab:93:af:1f:de:55:ec:b5:d5:c8:12:c3:07:26: f4:3c:15:8d -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICDt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQxMi03ZTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ZcgCnAvd3qxQ6jkJOPzD6mM80Vb5eiHW6fKfzfGrzq/vbotOzMEJs2Blc5q qoUSpiwiEuzJ2J2dFFASglpZO20gCO4lwgarCrrEkuqNaM/WneLk57zjWIOkUslf 0K8qzYyDvyJu5+PKw4alCTwg8CMlDjBWuIPRzWjVskvIkDX/wQ0+heaJtERuECAm 6v410PcDpyntXCPx39eOwaOU4V0iJDuy76fGAXrPlFXP6Qn9lithwwoY4sxtJLtf GZT9VUNvuEMv6US7V3xMSKF/LC5HqpyY4xNfnAFjrSDd4uuay7XLmIl1cuu5A5xO 79ge7fR31h7DmRvop5UMMxfeSwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFK/0JuXJ 7gyFXLp+t9op4bqktqhtMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQTE2Q0ZCOEU3 MURDMTFFRkI3MkIzODM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMC8EAgACMCkDBgAkBghAmgMGACQGCEDKAwYAJAYIQMwDBgAkBghAzwMHACQG CED+ojANBgkqhkiG9w0BAQsFAAOCAQEAM870YfjX2deXKDdfr0nYzx4W7xT/aooU ikWuBufff7rg747Gj6fe0YlUZC3ajq8my79T+t23FZb1EoV7d8+poUc5XhJJ+Ax9 roLM3gxbz4d/CQg4ltQ66Y3LMfX8Dy+6gaxN7R9/iUDJVMRhuiduorK3EbtVbwo+ P79ilcPnrlY9RdqbmEOxsDKw0CZsSZc2UHYrgzt55W+VsvZGFhNYBcxEQhvJ9eMn emxkBIyCxwaBw3MOixZLXnyVj+BZFo0vIEXqEAyOiK6YF855pLqU5nyHxTQgA9ja o8igXUx/GEKCcmtpSXDiIEM3hpiMJquTrx/eVey11cgSwwcm9DwVjQ== -----END CERTIFICATE-----Generated at Wed Jun 4 00:13:38 2025 by rpki-client