$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa File: BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa (raw, json) Hash identifier: N8Xw+Uy1c5Q/lf+yqzGZn1OSNqcCEDuh7k6PnSnBnjw= Subject key identifier: 24:6C:29:4D:C3:34:12:D1:16:1D:6A:4B:1B:D6:78:92:33:14:38:AF Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EF9 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa Signing time: Thu 22 May 2025 20:08:14 +0000 ROA not before: Thu 22 May 2025 20:08:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 212034 IP address blocks: 2406:840:f890::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3833 (0xef9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f842e-8861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:53:f3:be:ce:fb:37:9d:c9:d6:0c:33:1e:e2: b5:de:73:71:14:ad:94:db:5e:26:f9:d4:6f:bd:73: d6:0e:1e:0c:6c:70:4f:fb:a2:4d:75:bd:c6:68:0f: 6f:a4:e0:33:ba:59:bb:c5:76:81:5e:8e:1a:9f:1b: 15:41:01:16:fc:26:89:1a:79:67:d0:46:a7:13:b3: 8b:06:98:b2:f8:b3:7e:0f:c9:9d:a3:35:78:11:36: 36:2e:28:3e:35:1f:21:f9:3f:1c:fa:f8:e2:27:8c: f7:44:10:7d:9c:6b:a2:11:12:3d:cc:b9:80:04:c5: b6:b0:88:8f:12:74:18:f5:db:ea:9f:8e:c7:25:cd: f3:61:88:bd:09:2c:5f:c0:05:9f:72:ec:14:e9:2b: ea:6d:02:94:3e:46:33:f0:0d:2a:88:1e:1b:83:cf: f3:7b:31:05:64:6d:fa:b0:dc:cd:40:a1:f4:55:2f: c0:92:71:b8:23:4a:d3:65:ca:97:76:6e:0b:55:d2: 45:aa:03:77:00:94:cb:19:9f:18:89:6f:fd:77:69: 4b:f2:78:f2:df:b1:78:d2:c1:f7:eb:a2:5c:2c:d5: 49:7a:a9:a4:8c:96:3c:54:71:55:f7:33:48:10:8e: f4:77:d0:06:ff:8e:f4:64:00:23:45:90:40:1e:7c: 66:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:6C:29:4D:C3:34:12:D1:16:1D:6A:4B:1B:D6:78:92:33:14:38:AF X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f890::/44 Signature Algorithm: sha256WithRSAEncryption 98:11:36:d5:d9:d4:83:b8:c2:af:6a:a3:2d:19:3e:8b:bc:b2: 01:0d:6b:c4:cd:01:04:87:c7:8b:ca:74:0f:ee:e4:b0:5b:92: 1c:ec:e4:23:ac:0a:ac:0f:33:f6:76:b9:f3:ad:61:7e:d8:3e: e3:33:40:76:fb:f9:82:df:11:1d:29:fd:7d:f0:37:b4:67:37: c0:53:55:2e:2b:79:82:ad:fb:4f:0d:d6:6e:1a:73:92:7d:28: 5f:16:2f:f7:cf:f1:25:48:71:65:93:49:19:a6:43:30:e3:99: 6f:15:4a:9d:0c:20:c4:e0:0c:e5:7a:78:e4:0c:9c:c2:4b:17: 2a:b0:0d:2c:6d:99:3e:5b:c0:79:6a:94:5a:d8:7e:60:04:53: 0d:e0:29:f8:e6:4d:b7:f3:3a:86:72:6b:65:2c:a6:25:d9:45: 40:44:db:25:dd:68:32:45:41:96:92:2d:f4:c1:ed:a1:ea:75: 77:82:7a:cc:a7:79:0a:28:0b:05:1c:4c:0a:4f:7f:84:91:36: 8e:0a:e6:20:37:c0:75:2a:c4:5d:c0:b7:8c:d9:45:76:ee:11: 0c:ce:ca:69:2d:65:15:16:04:f6:47:b6:8e:d1:37:0e:cd:71: e5:00:bb:74:06:8a:0b:2d:00:95:b6:98:6b:d2:b9:d6:8b:55: 53:4f:95:9e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQyZS04ODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FPzvs77N53J1gwzHuK13nNxFK2U214m+dRvvXPWDh4MbHBP+6JNdb3GaA9v pOAzulm7xXaBXo4anxsVQQEW/CaJGnln0EanE7OLBpiy+LN+D8mdozV4ETY2Lig+ NR8h+T8c+vjiJ4z3RBB9nGuiERI9zLmABMW2sIiPEnQY9dvqn47HJc3zYYi9CSxf wAWfcuwU6SvqbQKUPkYz8A0qiB4bg8/zezEFZG36sNzNQKH0VS/AknG4I0rTZcqX dm4LVdJFqgN3AJTLGZ8YiW/9d2lL8njy37F40sH366JcLNVJeqmkjJY8VHFV9zNI EI70d9AG/470ZAAjRZBAHnxmKwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCRsKU3D NBLRFh1qSxvWeJIzFDivMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQkJDOEQ3QkE5 RTgwMTFFQkE3QzNGQzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA+JAwDQYJKoZIhvcNAQELBQADggEBAJgRNtXZ1IO4 wq9qoy0ZPou8sgENa8TNAQSHx4vKdA/u5LBbkhzs5COsCqwPM/Z2ufOtYX7YPuMz QHb7+YLfER0p/X3wN7RnN8BTVS4reYKt+08N1m4ac5J9KF8WL/fP8SVIcWWTSRmm QzDjmW8VSp0MIMTgDOV6eOQMnMJLFyqwDSxtmT5bwHlqlFrYfmAEUw3gKfjmTbfz OoZya2UspiXZRUBE2yXdaDJFQZaSLfTB7aHqdXeCesyneQooCwUcTApPf4SRNo4K 5iA3wHUqxF3At4zZRXbuEQzOymktZRUWBPZHto7RNw7NceUAu3QGigstAJW2mGvS udaLVVNPlZ4= -----END CERTIFICATE-----Generated at Tue Jun 3 23:57:57 2025 by rpki-client