$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D6AC3AC614FF11EDBC31B571C4F9AE02.roa File: D6AC3AC614FF11EDBC31B571C4F9AE02.roa (raw, json) Hash identifier: 0JgkihJTJJ407t5F9t/khlt5e8fomt/k1iXbMS0uGkE= Subject key identifier: E8:23:78:42:24:67:9A:07:F0:A1:4C:00:B0:B2:37:18:E2:CC:7D:66 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E8B Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D6AC3AC614FF11EDBC31B571C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:30 +0000 ROA not before: Thu 22 May 2025 20:06:30 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134413 IP address blocks: 2406:840:fef2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3723 (0xe8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:30 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83c6-5070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:05:5d:a4:70:c4:2b:45:4e:30:2f:49:85: 9a:8b:5f:2c:dd:e9:9f:0a:98:4f:5f:1d:20:f9:03: 48:a9:77:5e:70:d6:f6:11:3c:5e:04:23:00:c2:d0: 69:b7:9d:a4:54:88:6b:9a:e8:ec:94:f2:b4:31:f6: 53:e0:31:99:07:f7:23:7f:7a:95:dc:77:95:5d:0a: 5b:3d:3e:8a:93:6a:3f:d1:b5:88:d4:7b:c8:39:74: 32:6d:1e:35:83:d9:ad:9a:de:88:bb:d2:49:58:7b: c7:70:5e:6a:72:ea:58:99:9f:f3:c2:2a:2d:3d:9a: f0:77:51:6c:b2:9b:fd:01:96:18:1d:1b:9b:65:40: 8a:04:79:fd:84:ab:ac:48:e4:88:9f:33:50:3c:fe: 76:1e:a6:63:d9:e3:df:53:69:d1:2e:31:8e:82:18: d8:4f:90:e9:9c:7e:68:b1:c3:02:7d:16:71:73:c7: d9:bc:62:99:a5:86:00:e1:7a:1c:05:81:91:66:2b: 0a:c1:ae:13:03:9a:96:f2:b6:d9:2e:e3:80:68:69: f9:3a:75:53:21:da:2f:89:88:9b:40:ad:8f:21:ad: 94:e5:4c:39:cb:bc:79:fc:99:e5:68:64:48:87:ce: 5b:90:a3:3a:db:bf:77:ce:41:4b:21:84:a7:9d:5b: 52:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:23:78:42:24:67:9A:07:F0:A1:4C:00:B0:B2:37:18:E2:CC:7D:66 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D6AC3AC614FF11EDBC31B571C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fef2::/48 Signature Algorithm: sha256WithRSAEncryption 11:2f:32:08:ba:c5:8a:40:75:9f:56:48:ce:58:6c:23:00:89: b7:94:bd:ae:05:ca:85:dc:ba:95:d0:3a:b6:3f:60:42:06:d3: 23:48:59:85:d3:31:44:cc:49:1f:25:a0:2e:56:fe:7a:26:13: 94:52:42:25:db:d1:59:fb:53:ca:2f:de:30:4d:11:75:ad:55: 62:2f:81:e6:82:0d:0b:b9:87:7a:bb:9a:70:10:3c:66:ac:1f: ab:11:60:b2:04:22:7c:c3:e5:17:39:bb:47:e9:71:20:cd:34: 86:f4:e7:4c:9c:b5:ff:ea:c3:08:1a:87:08:98:b7:60:b2:cb: 2f:99:5d:e9:4f:5f:c2:0a:50:b6:24:e2:b5:9b:6b:36:bd:e4: 28:35:a5:22:fa:a4:e7:ce:6f:0f:b1:b4:8d:d8:38:8e:c9:d6: 6e:0f:31:c9:99:e6:d9:04:b8:13:e1:c7:e7:5e:4e:0e:9c:90: 5c:ee:34:36:20:28:a8:91:c1:bf:73:74:f6:09:29:92:3a:91: ae:2c:70:98:71:e4:06:df:e5:aa:98:5d:b7:a8:ab:e1:c4:ee: 07:91:66:de:02:3d:2a:6c:d5:67:57:a8:ef:fc:a4:67:8e:48: eb:44:82:af:05:4a:fe:c2:22:27:d9:4f:80:ba:d8:8e:18:fd: 00:04:a4:72 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjMwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNjNi01MDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7wFXaRwxCtFTjAvSYWai18s3emfCphPXx0g+QNIqXdecNb2ETxeBCMAwtBp t52kVIhrmujslPK0MfZT4DGZB/cjf3qV3HeVXQpbPT6Kk2o/0bWI1HvIOXQybR41 g9mtmt6Iu9JJWHvHcF5qcupYmZ/zwiotPZrwd1Fsspv9AZYYHRubZUCKBHn9hKus SOSInzNQPP52HqZj2ePfU2nRLjGOghjYT5DpnH5oscMCfRZxc8fZvGKZpYYA4Xoc BYGRZisKwa4TA5qW8rbZLuOAaGn5OnVTIdoviYibQK2PIa2U5Uw5y7x5/JnlaGRI h85bkKM62793zkFLIYSnnVtSzQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOgjeEIk Z5oH8KFMALCyNxjizH1mMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRDZBQzNBQzYx NEZGMTFFREJDMzFCNTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/vIwDQYJKoZIhvcNAQELBQADggEBABEvMgi6xYpA dZ9WSM5YbCMAibeUva4FyoXcupXQOrY/YEIG0yNIWYXTMUTMSR8loC5W/nomE5RS QiXb0Vn7U8ov3jBNEXWtVWIvgeaCDQu5h3q7mnAQPGasH6sRYLIEInzD5Rc5u0fp cSDNNIb050yctf/qwwgahwiYt2Cyyy+ZXelPX8IKULYk4rWbaza95Cg1pSL6pOfO bw+xtI3YOI7J1m4PMcmZ5tkEuBPhx+deTg6ckFzuNDYgKKiRwb9zdPYJKZI6ka4s cJhx5Abf5aqYXbeoq+HE7geRZt4CPSps1WdXqO/8pGeOSOtEgq8FSv7CIifZT4C6 2I4Y/QAEpHI= -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:08 2025 by rpki-client