$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B62D2E905C6F11EFAEA11916C4F9AE02.roa File: B62D2E905C6F11EFAEA11916C4F9AE02.roa (raw, json) Hash identifier: FqIN3s7Bgh2AYK9DCGrw9+T7pp2o0EU9tdQggDJvnoM= Subject key identifier: 80:FA:40:99:1D:9C:96:59:9F:E5:59:07:3B:1D:97:2D:EC:09:FF:29 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0F2B Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B62D2E905C6F11EFAEA11916C4F9AE02.roa Signing time: Sun 22 Jun 2025 14:10:32 +0000 ROA not before: Sun 22 Jun 2025 14:10:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 20473 IP address blocks: 2406:840:9190::/44 maxlen: 48 2406:840:9888::/48 maxlen: 48 2406:840:e060::/44 maxlen: 48 2406:840:e070::/44 maxlen: 48 2406:840:fa60::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3883 (0xf2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Jun 22 14:10:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68580ed8-4f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:2c:01:b5:80:4e:b9:b0:6d:33:eb:f3:95: b9:3f:5c:a5:34:ff:a0:27:20:15:d3:91:87:04:4c: f5:b3:58:fd:74:5f:61:ab:65:ad:2d:30:98:b3:75: 17:fd:21:67:8a:01:26:00:84:aa:82:68:8f:07:8b: fe:d7:85:95:24:78:dc:cb:2f:bc:c7:5f:8f:a4:2c: 7a:18:ea:16:5d:14:7f:27:40:55:fe:71:bc:8e:99: 04:e2:6c:db:35:51:aa:1e:f7:f0:2e:f8:46:1a:5f: eb:70:d0:7b:f1:10:64:59:49:95:1d:e7:2a:83:f6: 8e:f5:85:dc:26:b2:f2:c6:fb:f4:fd:c2:ce:fc:bd: c0:93:de:7e:e8:f4:a4:6e:f7:2a:fe:78:82:89:f7: 1f:0b:be:d4:fd:ca:74:fb:5c:9c:5d:7e:4c:bd:b7: 52:f5:70:61:3e:e7:73:a4:01:a6:63:a1:3a:fa:ae: b5:72:68:39:18:cb:9b:9f:00:59:c6:4e:1e:17:a2: 1f:2e:0e:db:a0:67:f0:a6:33:df:b3:ea:a2:5b:17: 93:8d:ca:54:1f:01:a8:22:27:5e:93:10:05:92:77: f1:0c:c6:cc:51:80:b6:ae:93:89:80:3d:13:c1:7b: f2:00:9f:61:07:7f:d2:b4:55:03:ca:29:e9:18:36: e2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:FA:40:99:1D:9C:96:59:9F:E5:59:07:3B:1D:97:2D:EC:09:FF:29 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B62D2E905C6F11EFAEA11916C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9190::/44 2406:840:9888::/48 2406:840:e060::/43 2406:840:fa60::/44 Signature Algorithm: sha256WithRSAEncryption 74:35:49:01:cc:6a:01:8c:b6:b5:fa:30:f9:bb:0c:83:e9:03: d6:95:44:d3:20:aa:73:1f:1f:70:43:02:66:7f:05:df:fa:70: 80:18:b0:13:57:d6:dd:93:4f:de:4f:89:0b:f1:a2:a7:da:a2: 57:df:03:e1:64:f2:99:0d:0d:a3:bb:14:c5:b5:87:d1:51:a9: f3:51:db:3f:a0:74:96:28:55:40:53:52:ce:5e:21:6a:ec:33: 25:af:87:0d:a6:00:8f:80:b8:6d:c4:da:dd:8c:8a:75:1c:1c: d8:bf:c7:46:23:36:d0:24:7f:0a:3e:a6:1f:a7:0f:73:98:57: b8:9d:c5:70:29:93:fc:86:62:4d:74:dc:41:6a:61:a8:4e:c3: c5:aa:ab:e9:d8:de:32:22:a8:f1:55:25:fe:88:1f:87:e9:96: 66:6d:02:7f:53:c5:5a:4e:d0:f6:91:cd:26:be:99:99:4d:d5: 1c:94:7d:eb:7e:43:8a:36:17:aa:da:2f:3f:eb:0f:7f:4d:fe: 6c:54:ad:64:1e:51:e2:c7:5f:bf:82:0c:37:f0:ff:e4:08:ac: 9d:ce:21:ca:da:49:5f:30:13:6d:49:a4:c6:46:89:05:d7:cd: 8d:5e:78:d6:bf:aa:6d:aa:1f:2a:f5:3a:e7:92:5e:b7:8a:d9: 9c:b4:98:55 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICDyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNjIyMTQxMDMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4MGVkOC00ZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+8sAbWATrmwbTPr85W5P1ylNP+gJyAV05GHBEz1s1j9dF9hq2WtLTCYs3UX /SFnigEmAISqgmiPB4v+14WVJHjcyy+8x1+PpCx6GOoWXRR/J0BV/nG8jpkE4mzb NVGqHvfwLvhGGl/rcNB78RBkWUmVHecqg/aO9YXcJrLyxvv0/cLO/L3Ak95+6PSk bvcq/niCifcfC77U/cp0+1ycXX5MvbdS9XBhPudzpAGmY6E6+q61cmg5GMubnwBZ xk4eF6IfLg7boGfwpjPfs+qiWxeTjcpUHwGoIidekxAFknfxDMbMUYC2rpOJgD0T wXvyAJ9hB3/StFUDyinpGDbiBwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFID6QJkd nJZZn+VZBzsdly3sCf8pMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQjYyRDJFOTA1 QzZGMTFFRkFFQTExOTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgACMCQDBwQkBghAkZADBwAkBghAmIgDBwUkBghA4GADBwQkBghA+mAw DQYJKoZIhvcNAQELBQADggEBAHQ1SQHMagGMtrX6MPm7DIPpA9aVRNMgqnMfH3BD AmZ/Bd/6cIAYsBNX1t2TT95PiQvxoqfaolffA+Fk8pkNDaO7FMW1h9FRqfNR2z+g dJYoVUBTUs5eIWrsMyWvhw2mAI+AuG3E2t2MinUcHNi/x0YjNtAkfwo+ph+nD3OY V7idxXApk/yGYk103EFqYahOw8Wqq+nY3jIiqPFVJf6IH4fplmZtAn9TxVpO0PaR zSa+mZlN1RyUfet+Q4o2F6raLz/rD39N/mxUrWQeUeLHX7+CDDfw/+QIrJ3OIcra SV8wE21JpMZGiQXXzY1eeNa/qm2qHyr1OueSXreK2Zy0mFU= -----END CERTIFICATE-----Generated at Fri Jul 4 08:26:34 2025 by rpki-client