$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A21B6A3E71DC11EFB72B3835C4F9AE02.roa File: A21B6A3E71DC11EFB72B3835C4F9AE02.roa (raw, json) Hash identifier: cm7279dPCX0IkzrHlQmLyF80Gaf7t7qUk7QG3RowHZ8= Subject key identifier: A4:6A:B7:D0:BD:8F:45:FF:B0:81:4D:70:EA:57:BB:8A:E8:F4:F3:03 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EDF Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A21B6A3E71DC11EFB72B3835C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:48 +0000 ROA not before: Thu 22 May 2025 20:07:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153332 IP address blocks: 2406:840:9b00::/40 maxlen: 48 2406:840:cb00::/40 maxlen: 48 2406:840:cd00::/40 maxlen: 48 2406:840:f700::/40 maxlen: 48 2406:840:fea3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3807 (0xedf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8414-f903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:17:06:78:b8:13:4e:b2:00:6e:14:89:82:0c: 24:15:e6:d0:b8:22:8e:f8:81:c6:0d:85:b9:6c:7f: dc:24:1c:fd:d6:f8:d3:85:ff:ab:64:fd:45:37:fc: 7a:0f:06:66:6c:79:7a:da:06:25:42:19:34:3f:8a: e2:50:95:2f:ec:83:f4:04:0e:4e:85:64:84:a0:8f: 92:b5:b4:83:9f:e5:1f:3c:75:12:49:f3:ba:5b:bc: c7:23:78:04:a4:1f:cf:6d:57:0f:b2:dd:f6:b9:af: d4:ed:40:81:56:23:4b:80:b3:ec:8b:99:de:53:02: d1:2c:fd:a3:85:26:5c:13:c9:af:dc:2b:a7:1e:63: ff:02:54:a7:3e:54:ce:45:62:ff:e9:90:ad:9b:a1: b7:bb:55:57:52:65:f6:90:a5:14:80:e6:1b:ec:d8: dc:68:d0:d3:01:e4:1a:84:63:c3:76:3c:6c:f3:d8: c7:ae:a3:f3:1b:9d:87:89:c6:cb:6b:5b:18:42:5c: d8:a9:f4:7b:0a:71:be:8f:bd:ab:d4:04:71:71:2e: 49:61:b2:27:b8:f2:57:48:23:0f:9f:0f:98:ab:74: 27:6f:28:8b:2a:c7:26:19:af:c1:ca:ed:7a:1c:0b: 9f:fe:7e:82:fc:f9:aa:ef:8d:5d:27:32:8a:13:3e: d6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:6A:B7:D0:BD:8F:45:FF:B0:81:4D:70:EA:57:BB:8A:E8:F4:F3:03 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A21B6A3E71DC11EFB72B3835C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9b00::/40 2406:840:cb00::/40 2406:840:cd00::/40 2406:840:f700::/40 2406:840:fea3::/48 Signature Algorithm: sha256WithRSAEncryption 34:e8:70:67:4a:55:8a:98:d0:2c:b0:fe:35:8b:44:c6:05:92: 32:86:5e:06:78:f9:f2:d1:d6:c6:57:91:9d:e2:fd:05:17:37: 87:c4:ec:80:66:57:68:90:97:0c:12:e4:2d:dd:99:cb:d6:a6: e0:9c:ca:75:1c:77:60:00:44:cb:91:9a:6c:dc:05:58:2d:24: 68:ff:5d:32:f0:7b:92:c0:06:d1:01:34:94:56:1a:22:44:d6: 73:9b:e0:aa:7d:bd:c4:fa:20:8e:29:bb:9d:29:1d:c0:d3:3f: 7f:f9:da:ab:70:1e:83:b3:7d:25:f9:ba:42:4d:1f:98:bd:2d: 9c:27:0f:1e:09:69:8a:d6:a0:ac:36:02:b9:59:18:4a:45:0a: b3:d0:d8:b4:1e:31:e9:c9:05:ef:c2:a4:8c:d6:a1:84:a7:1d: 17:93:c8:49:e9:6c:c8:94:4e:72:2d:9c:85:8d:62:4a:c2:ad: a4:02:f4:c7:04:6a:1c:04:89:4a:1f:ff:ec:05:2e:31:73:c9: 3b:ff:51:87:80:55:c3:51:76:23:43:98:e3:1e:c4:aa:f3:0b: 1f:ff:60:95:6b:0b:d5:17:3b:e1:ea:07:30:8a:a7:90:62:7e: 50:c5:e5:fa:ef:ae:03:0e:ce:f9:67:22:b8:5d:c7:e1:c0:72: 01:eb:e4:8a -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICDt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQxNC1mOTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhcGeLgTTrIAbhSJggwkFebQuCKO+IHGDYW5bH/cJBz91vjThf+rZP1FN/x6 DwZmbHl62gYlQhk0P4riUJUv7IP0BA5OhWSEoI+StbSDn+UfPHUSSfO6W7zHI3gE pB/PbVcPst32ua/U7UCBViNLgLPsi5neUwLRLP2jhSZcE8mv3CunHmP/AlSnPlTO RWL/6ZCtm6G3u1VXUmX2kKUUgOYb7NjcaNDTAeQahGPDdjxs89jHrqPzG52HicbL a1sYQlzYqfR7CnG+j72r1ARxcS5JYbInuPJXSCMPnw+Yq3QnbyiLKscmGa/Byu16 HAuf/n6C/Pmq741dJzKKEz7WZwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFKRqt9C9 j0X/sIFNcOpXu4ro9PMDMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQTIxQjZBM0U3 MURDMTFFRkI3MkIzODM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMC8EAgACMCkDBgAkBghAmwMGACQGCEDLAwYAJAYIQM0DBgAkBghA9wMHACQG CED+ozANBgkqhkiG9w0BAQsFAAOCAQEANOhwZ0pVipjQLLD+NYtExgWSMoZeBnj5 8tHWxleRneL9BRc3h8TsgGZXaJCXDBLkLd2Zy9am4JzKdRx3YABEy5GabNwFWC0k aP9dMvB7ksAG0QE0lFYaIkTWc5vgqn29xPogjim7nSkdwNM/f/naq3Aeg7N9Jfm6 Qk0fmL0tnCcPHglpitagrDYCuVkYSkUKs9DYtB4x6ckF78KkjNahhKcdF5PISels yJROci2chY1iSsKtpAL0xwRqHASJSh//7AUuMXPJO/9Rh4BVw1F2I0OY4x7EqvML H/9glWsL1Rc74eoHMIqnkGJ+UMXl+u+uAw7O+WciuF3H4cByAevkig== -----END CERTIFICATE-----Generated at Mon Jun 2 07:01:15 2025 by rpki-client