$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CA3AFA2C3F4011EE8922E662C4F9AE02.roa File: CA3AFA2C3F4011EE8922E662C4F9AE02.roa (raw, json) Hash identifier: rCdTT9NaPv09nalv3zN/4Jpx9wFxTg5nqMPx5LTfiG0= Subject key identifier: B1:61:51:E4:08:2E:B4:12:7C:93:84:1E:AD:0B:77:98:0F:68:BF:B9 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0F02 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CA3AFA2C3F4011EE8922E662C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:22 +0000 ROA not before: Thu 22 May 2025 20:08:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 216452 IP address blocks: 2406:840:9ff0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3842 (0xf02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8436-6dc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c9:7d:ad:9b:4e:46:dc:1e:5b:27:d2:e0:df: d7:7e:40:c1:9f:92:46:2d:79:d6:13:f9:4e:e5:93: 71:43:9c:de:4e:65:d3:dc:86:90:f0:7f:e3:ff:ff: 43:0a:5e:e5:98:db:37:2e:83:68:45:5b:e0:09:02: b7:c5:e9:f4:d1:ed:a7:c8:75:08:79:8c:55:62:e5: 6e:ae:f3:2a:00:7d:6f:c5:c8:3b:79:56:1c:08:a2: da:8e:62:d6:33:b7:d2:da:0e:6a:9f:73:4f:c8:86: 3b:91:3f:73:49:74:98:db:99:6f:da:b3:f1:2e:bd: dd:23:02:8a:8f:e3:9a:ab:f7:45:cf:0b:1b:ab:76: 28:2b:90:d6:56:7b:91:e4:f0:43:c0:b6:cf:38:66: 6d:52:05:6f:95:37:36:44:2d:fb:d5:51:de:cc:8f: 70:c8:b5:54:5d:38:5b:fd:4f:47:03:4c:91:ab:6d: ec:48:7b:cc:a5:d5:6c:76:38:6e:f6:20:38:78:6a: 8d:ad:3c:39:2a:5b:c1:1c:65:ba:2c:06:ed:32:54: b1:a3:8b:d5:6b:83:ca:ef:51:9f:f9:76:62:8e:2a: 4c:9e:91:8d:ea:1b:75:31:1c:ee:4f:a8:8d:e1:45: 6c:07:c0:72:66:39:71:f6:74:90:88:34:a2:72:ca: 79:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:61:51:E4:08:2E:B4:12:7C:93:84:1E:AD:0B:77:98:0F:68:BF:B9 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CA3AFA2C3F4011EE8922E662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9ff0::/44 Signature Algorithm: sha256WithRSAEncryption 6f:48:87:96:ba:6f:a4:f2:b5:1b:6d:7b:a8:1d:a5:0f:8c:bb: 49:5a:75:2e:f6:95:01:39:52:37:43:bd:49:80:42:57:78:4f: bc:52:22:5a:07:ff:b2:13:02:ed:c2:57:87:88:28:0d:74:d5: 04:c9:0b:de:7f:ab:f9:93:cd:b2:af:93:fb:7f:74:27:14:b7: 3e:49:95:cb:a1:b3:39:51:02:1b:12:0b:4e:6d:21:83:02:66: 14:35:a9:8d:4f:e8:51:0d:3f:15:ff:26:31:10:af:4b:ee:29: 6e:7a:1f:61:1a:69:bd:10:08:fb:51:1e:e2:09:44:a2:9f:3f: 60:54:66:15:f7:8f:5c:a3:3c:6e:28:b9:7d:0a:a8:cc:01:74: 42:91:54:21:0a:d2:28:b6:4d:78:29:04:c6:42:80:5c:f8:97: 9d:7e:76:38:5b:23:a4:fd:78:01:d0:84:ad:37:64:2b:42:ea: a3:6a:15:a6:b5:4c:39:7e:c0:1b:44:0f:94:77:5c:6b:96:0b: 68:c3:93:68:7c:fb:5f:e6:5d:6c:00:c3:6c:0e:7c:1a:a5:3c: 71:2d:e1:71:a9:19:d7:d1:80:85:91:4f:a9:00:70:ff:e6:42: 9f:7c:98:58:79:52:48:1a:9a:aa:86:c3:92:fd:ca:0e:d1:8d: 8e:5b:7b:67 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODIyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzNi02ZGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsl9rZtORtweWyfS4N/XfkDBn5JGLXnWE/lO5ZNxQ5zeTmXT3IaQ8H/j//9D Cl7lmNs3LoNoRVvgCQK3xen00e2nyHUIeYxVYuVurvMqAH1vxcg7eVYcCKLajmLW M7fS2g5qn3NPyIY7kT9zSXSY25lv2rPxLr3dIwKKj+Oaq/dFzwsbq3YoK5DWVnuR 5PBDwLbPOGZtUgVvlTc2RC371VHezI9wyLVUXThb/U9HA0yRq23sSHvMpdVsdjhu 9iA4eGqNrTw5KlvBHGW6LAbtMlSxo4vVa4PK71Gf+XZijipMnpGN6ht1MRzuT6iN 4UVsB8ByZjlx9nSQiDSicsp5lQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLFhUeQI LrQSfJOEHq0Ld5gPaL+5MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0EzQUZBMkMz RjQwMTFFRTg5MjJFNjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAn/AwDQYJKoZIhvcNAQELBQADggEBAG9Ih5a6b6Ty tRtte6gdpQ+Mu0ladS72lQE5UjdDvUmAQld4T7xSIloH/7ITAu3CV4eIKA101QTJ C95/q/mTzbKvk/t/dCcUtz5JlcuhszlRAhsSC05tIYMCZhQ1qY1P6FENPxX/JjEQ r0vuKW56H2Eaab0QCPtRHuIJRKKfP2BUZhX3j1yjPG4ouX0KqMwBdEKRVCEK0ii2 TXgpBMZCgFz4l51+djhbI6T9eAHQhK03ZCtC6qNqFaa1TDl+wBtED5R3XGuWC2jD k2h8+1/mXWwAw2wOfBqlPHEt4XGpGdfRgIWRT6kAcP/mQp98mFh5UkgamqqGw5L9 yg7RjY5be2c= -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:42 2025 by rpki-client