$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa File: 3A7A29DE6AD411EEBEC80C30C4F9AE02.roa (raw, json) Hash identifier: Y0Yrl8SZNY1aXL5DhI7NtwGPJi157x3J+JJgWDp9qEc= Subject key identifier: 81:D6:31:AB:00:E2:5B:EA:F7:A1:B7:0F:E9:C7:A1:A1:D1:E2:75:C3 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EBC Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:17 +0000 ROA not before: Thu 22 May 2025 20:07:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151331 IP address blocks: 2406:840:fed7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 15:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3772 (0xebc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83f4-f15c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:1b:d1:83:0c:4e:04:41:a4:05:d7:3f:ea:b9: 0c:da:b4:ef:22:c8:7a:1c:c1:7a:36:72:35:a4:f1: 37:2e:4b:05:1f:57:b3:b0:b2:dc:7b:44:4a:61:f2: 4e:7f:64:f2:60:58:d5:c4:3b:d0:0c:fb:e0:4f:9c: 36:9a:f0:81:d5:4c:58:ed:fa:93:7b:6f:6b:b6:0b: 34:4c:fd:d7:93:10:8c:7d:54:2d:ed:ed:3b:d7:50: a9:6e:2c:02:d0:b3:fc:53:5e:7a:59:d9:06:64:ff: d5:f7:42:0c:32:e5:cc:c0:f4:79:d4:2a:ed:c4:49: 46:c5:75:93:89:43:46:58:7b:76:a4:9c:8c:36:30: f4:93:fd:96:07:46:0d:05:66:2c:4e:a2:60:a1:76: 5e:dc:18:8a:06:d1:35:c4:29:fd:6d:e0:08:79:6f: c4:92:70:5d:4f:93:ec:d2:47:7c:8f:81:b6:bd:ea: 88:e9:97:05:0d:43:fc:84:e8:4e:51:25:1a:d8:a8: 25:89:36:ba:8c:07:8e:8b:bd:2f:72:31:39:26:85: 8c:8b:6a:68:3e:7d:9c:98:84:33:0d:bb:58:3d:e6: 82:fb:31:23:f3:09:ba:1d:12:04:8d:90:a3:a2:21: fa:73:1b:b9:e7:37:65:79:7b:41:10:98:29:6d:49: b2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D6:31:AB:00:E2:5B:EA:F7:A1:B7:0F:E9:C7:A1:A1:D1:E2:75:C3 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fed7::/48 Signature Algorithm: sha256WithRSAEncryption 85:82:e8:c4:25:98:91:63:32:66:ea:f9:0c:8e:ee:aa:26:b3: 48:bf:91:6d:4a:cd:3f:95:19:59:b8:d0:9a:61:2f:fa:34:f8: 67:87:80:eb:ae:90:59:b7:a5:6f:51:e4:5f:05:29:2e:ab:79: 7b:7d:83:a9:81:e5:8e:1c:6d:48:ec:af:9c:28:c1:1e:8f:7f: c6:d5:94:61:bd:67:a2:c1:94:95:8f:c2:ff:ea:30:65:9f:43: 7c:ae:a3:c2:2a:91:58:b4:03:c1:1a:53:0d:2f:e4:eb:eb:39: 04:cd:2d:37:a3:c0:e9:7f:80:b3:ca:a0:56:ad:22:26:2f:07: aa:c6:43:34:9f:59:d1:65:91:72:46:65:d5:99:23:b6:80:e5: 5e:b0:63:2e:1c:2e:0e:e8:95:df:42:ab:12:7a:4b:cf:4e:2e: b5:74:45:e6:dd:a2:3c:fe:bf:9f:b1:1a:10:42:51:47:07:de: 33:99:27:78:d2:03:80:59:f8:2d:4b:21:e2:d4:ad:af:25:d7: 62:a2:62:07:ab:f6:a6:fc:5a:c9:e3:41:22:55:69:45:86:07: ff:9d:b1:2f:42:92:05:9d:11:74:97:4b:32:97:76:30:f0:cd: 4b:78:b9:bd:b8:83:87:fb:bb:d8:21:92:97:f3:1a:cb:33:db: 4f:86:19:91 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNmNC1mMTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RvRgwxOBEGkBdc/6rkM2rTvIsh6HMF6NnI1pPE3LksFH1ezsLLce0RKYfJO f2TyYFjVxDvQDPvgT5w2mvCB1UxY7fqTe29rtgs0TP3XkxCMfVQt7e0711CpbiwC 0LP8U156WdkGZP/V90IMMuXMwPR51CrtxElGxXWTiUNGWHt2pJyMNjD0k/2WB0YN BWYsTqJgoXZe3BiKBtE1xCn9beAIeW/EknBdT5Ps0kd8j4G2veqI6ZcFDUP8hOhO USUa2KgliTa6jAeOi70vcjE5JoWMi2poPn2cmIQzDbtYPeaC+zEj8wm6HRIEjZCj oiH6cxu55zdleXtBEJgpbUmytwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIHWMasA 4lvq96G3D+nHoaHR4nXDMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvM0E3QTI5REU2 QUQ0MTFFRUJFQzgwQzMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/tcwDQYJKoZIhvcNAQELBQADggEBAIWC6MQlmJFj Mmbq+QyO7qoms0i/kW1KzT+VGVm40JphL/o0+GeHgOuukFm3pW9R5F8FKS6reXt9 g6mB5Y4cbUjsr5wowR6Pf8bVlGG9Z6LBlJWPwv/qMGWfQ3yuo8IqkVi0A8EaUw0v 5OvrOQTNLTejwOl/gLPKoFatIiYvB6rGQzSfWdFlkXJGZdWZI7aA5V6wYy4cLg7o ld9CqxJ6S89OLrV0Rebdojz+v5+xGhBCUUcH3jOZJ3jSA4BZ+C1LIeLUra8l12Ki Yger9qb8WsnjQSJVaUWGB/+dsS9CkgWdEXSXSzKXdjDwzUt4ub24g4f7u9ghkpfz Gssz20+GGZE= -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:54 2025 by rpki-client