$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/F41FC59A743511EFAAFA697CC4F9AE02.roa File: F41FC59A743511EFAAFA697CC4F9AE02.roa (raw, json) Hash identifier: xwTei1kmay/pRgN+3XYoM7CrdGzE4bCbNKzQmDBW+3E= Subject key identifier: 0C:8C:B1:4A:26:A8:CC:D9:C6:E9:21:B3:DC:E7:C9:4A:71:FF:BC:CC Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EAB Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/F41FC59A743511EFAAFA697CC4F9AE02.roa Signing time: Thu 22 May 2025 20:06:58 +0000 ROA not before: Thu 22 May 2025 20:06:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142433 IP address blocks: 2406:840:feaa::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3755 (0xeab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83e2-ab87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:13:75:14:8c:60:80:da:c5:5b:40:e4:93:eb: ec:24:4d:f6:70:88:4a:0b:cd:3c:c6:d3:72:40:85: fe:f7:ba:9c:71:3b:e3:30:99:fe:db:60:6f:3b:93: 83:b4:d4:5a:a8:55:e0:9f:69:a2:22:54:0c:65:33: 8c:f6:31:51:d8:39:e0:56:d1:a1:0c:64:a9:9b:da: e6:17:1d:96:4d:f3:6f:5f:0a:67:97:5c:fa:f8:7e: 51:c5:8a:67:ed:00:45:ba:24:5a:27:cc:58:b2:75: 8a:3f:4e:ec:6c:38:73:74:54:ba:33:31:96:03:4a: 69:85:f0:1d:f0:e4:c2:ba:6a:9a:12:d3:ce:2f:18: e4:3d:74:1c:d9:34:41:bc:69:96:8a:1b:44:40:bf: b3:b4:7e:39:ae:17:f3:ab:b2:13:31:c7:b4:10:d4: dd:d8:c3:93:94:5f:d4:48:0f:25:3e:9a:60:94:d9: 44:ea:4b:62:91:e1:8f:3c:97:0b:08:69:29:ed:3e: 4d:33:52:d9:5a:b2:48:0d:37:12:52:3d:a3:62:52: 63:05:a9:74:ee:b3:eb:06:0f:49:9c:32:36:05:b0: e5:27:19:4b:49:7b:6e:82:bd:82:65:74:90:f0:43: 68:5f:08:59:25:57:9a:d1:08:c5:8b:4a:65:27:7b: f8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:8C:B1:4A:26:A8:CC:D9:C6:E9:21:B3:DC:E7:C9:4A:71:FF:BC:CC X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/F41FC59A743511EFAAFA697CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:feaa::/48 Signature Algorithm: sha256WithRSAEncryption 89:cc:2c:4c:89:3a:de:c4:bd:b2:89:ff:a0:4b:01:76:8d:9a: 61:25:e1:cd:ae:2a:f4:7f:ce:0c:38:60:a3:cf:e9:58:cf:a1: ba:dd:99:10:10:1f:9f:45:85:38:d3:56:16:21:2f:96:06:33: 1e:bd:e3:7e:b4:d5:49:70:7f:9f:a7:1e:a6:e9:a1:f0:ca:c6: 84:ef:1d:9e:91:06:62:35:d6:35:ba:74:ad:35:53:93:ee:b2: e5:3a:21:53:ad:d7:df:a6:bd:15:f2:4f:58:6d:88:1c:47:7b: f5:55:05:81:c3:cf:d9:1f:06:87:45:dc:71:4e:77:dc:f8:d6: b5:a0:92:af:1c:ae:d7:fc:e7:d9:8b:0e:34:b0:97:cf:25:38: 40:52:58:f7:2a:5b:31:13:5c:91:c8:23:dc:58:7a:0a:d1:57: 59:af:b7:43:f7:6e:9f:20:8a:d2:99:14:5c:5f:bc:d0:02:17: 20:5e:88:9c:bf:78:13:b7:9c:ee:98:12:51:72:18:99:af:63: 1c:da:0f:11:b0:82:c4:ff:d2:dd:fc:4e:2d:41:66:3d:c3:7f: 9a:06:f1:01:05:3a:39:d1:49:9a:8d:99:5f:78:ed:00:ad:fc: 3e:f1:2e:e8:17:1d:c0:8d:b1:7c:60:67:a4:36:fd:e2:6a:3f: e2:7c:88:d0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNlMi1hYjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRN1FIxggNrFW0Dkk+vsJE32cIhKC808xtNyQIX+97qccTvjMJn+22BvO5OD tNRaqFXgn2miIlQMZTOM9jFR2DngVtGhDGSpm9rmFx2WTfNvXwpnl1z6+H5RxYpn 7QBFuiRaJ8xYsnWKP07sbDhzdFS6MzGWA0pphfAd8OTCumqaEtPOLxjkPXQc2TRB vGmWihtEQL+ztH45rhfzq7ITMce0ENTd2MOTlF/USA8lPppglNlE6ktikeGPPJcL CGkp7T5NM1LZWrJIDTcSUj2jYlJjBal07rPrBg9JnDI2BbDlJxlLSXtugr2CZXSQ 8ENoXwhZJVea0QjFi0plJ3v4LQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAyMsUom qMzZxukhs9znyUpx/7zMMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRjQxRkM1OUE3 NDM1MTFFRkFBRkE2OTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/qowDQYJKoZIhvcNAQELBQADggEBAInMLEyJOt7E vbKJ/6BLAXaNmmEl4c2uKvR/zgw4YKPP6VjPobrdmRAQH59FhTjTVhYhL5YGMx69 43601Ulwf5+nHqbpofDKxoTvHZ6RBmI11jW6dK01U5PusuU6IVOt19+mvRXyT1ht iBxHe/VVBYHDz9kfBodF3HFOd9z41rWgkq8crtf859mLDjSwl88lOEBSWPcqWzET XJHII9xYegrRV1mvt0P3bp8gitKZFFxfvNACFyBeiJy/eBO3nO6YElFyGJmvYxza DxGwgsT/0t38Ti1BZj3Df5oG8QEFOjnRSZqNmV947QCt/D7xLugXHcCNsXxgZ6Q2 /eJqP+J8iNA= -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:09 2025 by rpki-client