$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B1A3BAC48FB411EAA396FB5CC4F9AE02.roa File: B1A3BAC48FB411EAA396FB5CC4F9AE02.roa (raw, json) Hash identifier: ZYsJQhdXE1TR+mKsJ6oeyCJrc94LemtTPgHcY5Jsh8U= Subject key identifier: EF:7B:FD:71:E5:41:F5:DD:A8:73:AE:8C:F7:43:6F:48:66:3D:FE:C2 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E9C Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B1A3BAC48FB411EAA396FB5CC4F9AE02.roa Signing time: Thu 22 May 2025 20:06:45 +0000 ROA not before: Thu 22 May 2025 20:06:45 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139317 IP address blocks: 2406:840::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3740 (0xe9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:45 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83d5-572b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:30:00:cd:9c:b0:42:b0:e8:c0:7c:2f:37: 66:7a:af:41:b0:18:52:07:aa:79:e0:cb:51:b2:5c: 61:89:b0:30:1d:c9:7e:b6:15:25:8c:95:06:8a:74: 66:84:11:b3:75:e8:eb:21:37:eb:cc:df:17:83:30: d8:58:9a:9d:9b:70:4c:c3:b1:7d:69:00:04:bd:71: 2c:c5:f5:3e:db:e3:b6:3d:62:41:80:d5:66:1f:1d: 29:a3:ad:88:7b:c0:65:f6:5a:6d:c4:1f:0d:9c:49: 49:ab:5f:41:57:48:c4:2d:8f:49:62:c6:50:7b:81: 05:63:af:da:53:f8:fa:ec:2b:fe:0c:cf:a1:49:eb: 32:3e:10:70:0d:17:3b:2e:fb:24:c3:77:68:1a:e9: a3:ac:ca:1e:28:b3:29:aa:f3:1d:c5:20:56:d4:e6: be:d5:1b:19:fe:75:30:8e:bc:7b:39:dc:29:f4:9e: 40:f3:71:f8:f1:a8:80:96:92:2e:96:46:ca:0e:d9: 46:d8:0f:e0:b7:13:62:2c:17:06:db:38:5b:2a:e8: 3a:e0:d4:52:71:b6:e0:6e:cc:b1:9e:14:7d:ab:b2: 63:46:f1:8d:3c:7b:64:7c:17:34:ad:cb:87:7c:15: a7:d8:21:73:06:c7:9f:30:d8:9e:f4:15:0a:bb:db: ab:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:7B:FD:71:E5:41:F5:DD:A8:73:AE:8C:F7:43:6F:48:66:3D:FE:C2 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B1A3BAC48FB411EAA396FB5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840::/32 Signature Algorithm: sha256WithRSAEncryption 4e:2c:2b:d1:b6:a2:cd:53:2d:27:3b:2b:16:0c:e9:e2:ff:8c: ba:ef:f4:8c:31:0f:4f:03:36:16:7e:ca:70:a0:aa:b4:5d:ce: f2:ae:ea:74:8a:8c:08:39:43:c9:75:89:33:06:58:38:eb:2a: fd:78:51:93:ad:db:1c:9e:21:2d:95:fa:5e:5d:b0:98:a7:cf: 04:f3:7f:dc:55:eb:22:54:85:7d:f2:0a:de:b5:98:8a:bd:36: 7d:dd:45:31:ee:9d:b3:f2:21:4a:b8:1b:e7:a0:65:03:1f:7e: 48:eb:46:2e:eb:b1:fa:85:b4:fc:a3:5b:8d:c8:21:a1:c0:82: 86:bf:5e:e7:1f:ae:9b:e5:58:56:bc:00:2a:f9:c4:33:43:fa: f7:a2:7e:9f:e3:f2:5e:76:1e:c5:fb:61:f2:b9:9f:0f:63:59: d5:c9:63:45:11:b6:e4:0b:a1:ee:79:d7:ae:e2:6c:b2:e4:29: bc:b1:6b:79:36:ac:02:75:eb:a3:b3:01:d3:09:e5:15:cf:6c: de:da:e8:de:ea:72:f5:1a:b1:d5:8e:58:cf:dc:c9:36:e8:fb: 7a:f0:e8:1c:a9:ed:16:4c:37:d1:f8:c9:82:25:da:4b:19:9e: 32:c3:0a:8d:de:e3:b5:c8:4c:b3:ca:ca:38:9d:b7:45:a2:89: 55:6b:0c:c3 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjQ1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNkNS01NzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLkwAM2csEKw6MB8Lzdmeq9BsBhSB6p54MtRslxhibAwHcl+thUljJUGinRm hBGzdejrITfrzN8XgzDYWJqdm3BMw7F9aQAEvXEsxfU+2+O2PWJBgNVmHx0po62I e8Bl9lptxB8NnElJq19BV0jELY9JYsZQe4EFY6/aU/j67Cv+DM+hSesyPhBwDRc7 Lvskw3doGumjrMoeKLMpqvMdxSBW1Oa+1RsZ/nUwjrx7Odwp9J5A83H48aiAlpIu lkbKDtlG2A/gtxNiLBcG2zhbKug64NRScbbgbsyxnhR9q7JjRvGNPHtkfBc0rcuH fBWn2CFzBsefMNie9BUKu9ur6wIDAQABo4ICljCCApIwHQYDVR0OBBYEFO97/XHl QfXdqHOujPdDb0hmPf7CMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQjFBM0JBQzQ4 RkI0MTFFQUEzOTZGQjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBghAMA0GCSqGSIb3DQEBCwUAA4IBAQBOLCvRtqLNUy0n OysWDOni/4y67/SMMQ9PAzYWfspwoKq0Xc7yrup0iowIOUPJdYkzBlg46yr9eFGT rdscniEtlfpeXbCYp88E83/cVesiVIV98gretZiKvTZ93UUx7p2z8iFKuBvnoGUD H35I60Yu67H6hbT8o1uNyCGhwIKGv17nH66b5VhWvAAq+cQzQ/r3on6f4/Jedh7F +2HyuZ8PY1nVyWNFEbbkC6Huedeu4myy5Cm8sWt5NqwCdeujswHTCeUVz2ze2uje 6nL1GrHVjljP3Mk26Pt68Ogcqe0WTDfR+MmCJdpLGZ4ywwqN3uO1yEyzyso4nbdF oolVawzD -----END CERTIFICATE-----Generated at Mon Jun 2 07:15:28 2025 by rpki-client