$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B23BF526EEA811EEA9FA8348C4F9AE02.roa File: B23BF526EEA811EEA9FA8348C4F9AE02.roa (raw, json) Hash identifier: fRPWkQYYIeT+5dXtErNMXa/KNLBWg6VQdfpZMVAYX7o= Subject key identifier: DE:CD:7A:C6:96:14:89:88:23:CB:F9:34:7B:CF:3A:C4:FD:BD:BF:5C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EFE Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B23BF526EEA811EEA9FA8348C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:19 +0000 ROA not before: Thu 22 May 2025 20:08:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 215743 IP address blocks: 2406:840:9160::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3838 (0xefe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8433-52ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:33:7b:c4:f4:6b:03:e1:3d:8f:c0:3b:e5:e1: a2:81:48:7f:54:67:a2:c6:ef:59:62:34:fa:0d:80: dd:ed:94:c5:7f:ec:96:56:03:44:80:fd:40:83:12: 0d:02:eb:fe:c9:dc:b3:35:8c:94:e4:b9:9e:82:f8: 0c:a1:66:73:35:53:32:36:7b:af:9e:e8:e5:78:b5: d8:a6:21:6f:89:91:fc:85:6e:3f:a4:4e:d8:f2:98: 88:1a:46:ad:5b:7b:8a:5a:69:24:f7:11:b9:49:67: 8c:54:e8:13:9a:d9:82:5f:77:7b:27:4b:99:8a:36: 24:26:27:51:ed:37:51:7a:ef:31:69:04:cc:41:87: 62:e4:d2:6a:07:97:a8:de:31:7f:10:e4:c6:6c:9a: 0e:32:cd:e5:5b:b5:b1:e8:f4:7d:8a:bb:5a:1c:d0: ea:79:69:59:8a:5b:09:92:1c:7d:5b:c0:dc:db:1d: 84:6d:11:42:36:15:78:0b:22:f5:17:94:5c:e1:b0: 3c:fd:c2:31:ad:62:be:97:a1:ca:31:6d:35:d6:30: b8:f3:fc:7a:15:4c:1e:b5:28:cc:0f:58:4a:4b:00: 17:0d:59:3c:60:35:a6:95:ad:49:76:63:6b:90:9f: 46:fd:6a:96:fc:c9:4f:6f:df:8f:a5:fa:93:81:f1: 4f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CD:7A:C6:96:14:89:88:23:CB:F9:34:7B:CF:3A:C4:FD:BD:BF:5C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B23BF526EEA811EEA9FA8348C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9160::/44 Signature Algorithm: sha256WithRSAEncryption 30:b0:07:b6:42:05:8b:79:85:09:5e:11:6b:3a:2e:2f:31:83: bc:32:d0:ad:42:86:dc:e3:47:1a:b6:ae:c1:ca:01:d1:96:53: e6:68:df:de:b4:0e:c0:93:4a:5d:a3:93:37:ac:4c:be:88:64: 46:f9:6f:78:66:f1:d1:fa:9d:89:e7:06:53:4b:ff:ea:cb:9c: 8d:42:79:14:9a:d5:ba:ac:a2:7e:89:8e:9a:fc:fa:7a:c7:dc: d2:4d:91:52:be:d1:85:3a:96:1a:01:07:17:6a:d2:90:e8:2c: 84:af:3b:1a:40:97:cd:ea:cf:66:bf:85:9b:b7:20:4b:0b:9a: ab:d0:ee:dc:64:bc:f8:d8:da:ca:6f:c8:60:8c:1d:aa:e7:47: d9:c0:64:aa:2a:fc:40:7e:9f:fd:02:d1:22:f7:10:16:7c:67: 6d:54:36:66:20:8d:39:29:fe:a2:a0:2d:ac:a0:d7:2f:1b:53: ca:0f:57:5a:b9:ef:b1:85:6c:57:c8:0c:0f:ad:73:54:c7:b4: 04:7e:ed:58:e4:95:87:6e:91:e0:3d:f3:06:37:89:ab:2e:b2: a7:fc:7b:5e:45:7b:fd:36:cb:83:22:3b:69:eb:2e:03:54:6a: 1b:25:c4:1b:65:05:ae:e7:12:88:81:94:b9:77:69:6d:d7:32: fe:45:1c:85 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzMy01MmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjN7xPRrA+E9j8A75eGigUh/VGeixu9ZYjT6DYDd7ZTFf+yWVgNEgP1AgxIN Auv+ydyzNYyU5LmegvgMoWZzNVMyNnuvnujleLXYpiFviZH8hW4/pE7Y8piIGkat W3uKWmkk9xG5SWeMVOgTmtmCX3d7J0uZijYkJidR7TdReu8xaQTMQYdi5NJqB5eo 3jF/EOTGbJoOMs3lW7Wx6PR9irtaHNDqeWlZilsJkhx9W8Dc2x2EbRFCNhV4CyL1 F5Rc4bA8/cIxrWK+l6HKMW011jC48/x6FUwetSjMD1hKSwAXDVk8YDWmla1JdmNr kJ9G/WqW/MlPb9+PpfqTgfFP0QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFN7NesaW FImII8v5NHvPOsT9vb9cMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQjIzQkY1MjZF RUE4MTFFRUE5RkE4MzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAkWAwDQYJKoZIhvcNAQELBQADggEBADCwB7ZCBYt5 hQleEWs6Li8xg7wy0K1ChtzjRxq2rsHKAdGWU+Zo3960DsCTSl2jkzesTL6IZEb5 b3hm8dH6nYnnBlNL/+rLnI1CeRSa1bqson6Jjpr8+nrH3NJNkVK+0YU6lhoBBxdq 0pDoLISvOxpAl83qz2a/hZu3IEsLmqvQ7txkvPjY2spvyGCMHarnR9nAZKoq/EB+ n/0C0SL3EBZ8Z21UNmYgjTkp/qKgLayg1y8bU8oPV1q577GFbFfIDA+tc1THtAR+ 7VjklYdukeA98wY3iasusqf8e15Fe/02y4MiO2nrLgNUahslxBtlBa7nEoiBlLl3 aW3XMv5FHIU= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:20 2025 by rpki-client