$ rpki-client -vvf rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/EF885538C28B11EBBF310469C4F9AE02.roa File: EF885538C28B11EBBF310469C4F9AE02.roa (raw, json) Hash identifier: RF/S4KRa0Daxc1wRMUy6rkjMc6TZCjTUC2lD+JidsGI= Subject key identifier: 03:5D:EB:A2:48:AE:12:0B:A1:F0:24:96:D6:2D:CE:98:F5:43:5C:92 Certificate issuer: /CN=A916B18B/serialNumber=FDE36B6E949398E52D95E89D40BDF60B25DB69B9 Certificate serial: 17B5 Authority key identifier: FD:E3:6B:6E:94:93:98:E5:2D:95:E8:9D:40:BD:F6:0B:25:DB:69:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eNrbpSTmOUtleidQL32CyXbabk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/EF885538C28B11EBBF310469C4F9AE02.roa Signing time: Sun 22 Dec 2024 16:54:07 +0000 ROA not before: Sun 22 Dec 2024 16:54:07 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 56207 IP address blocks: 2403:4c0:7000::/36 maxlen: 36 2403:4c0:7800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/_eNrbpSTmOUtleidQL32CyXbabk.crl rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/_eNrbpSTmOUtleidQL32CyXbabk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eNrbpSTmOUtleidQL32CyXbabk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6069 (0x17b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B18B Validity Not Before: Dec 22 16:54:07 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6768442f-6fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d9:54:34:e7:a0:21:24:31:c8:7b:d4:6a:ee: 0c:9e:6f:26:ae:0b:97:7b:98:ae:a5:d2:1c:8c:06: 70:b8:b2:7b:85:2f:13:62:2d:ef:9f:62:9c:cf:30: 08:ef:b6:93:fe:63:94:46:df:8f:85:fd:5e:b7:66: 44:38:73:2b:de:f2:40:54:84:9e:4b:d7:f7:2a:e7: ed:bb:9e:2e:1c:a1:df:81:e7:18:97:d3:1a:e4:a2: f7:41:d7:32:7d:7c:b8:78:c1:11:82:95:63:5e:27: cd:95:23:86:06:8e:a8:ee:4a:51:5c:ec:51:8d:97: 40:fd:b0:8f:01:44:6e:51:75:52:4d:9d:0f:f8:39: 5d:53:6c:20:9b:5e:e8:56:f3:cc:18:80:17:80:a1: a0:cc:fe:cd:f3:bc:14:05:25:a1:2f:92:c5:89:6e: 20:d8:de:56:99:3d:bb:4d:63:33:59:73:eb:09:97: 88:b1:32:8b:93:55:ff:1a:e8:c8:3e:71:9e:da:73: e8:3a:e0:4b:bb:38:08:43:9b:fc:9b:e4:0f:4c:42: ea:db:e5:fa:4a:c0:65:a0:18:78:14:29:5c:99:5a: 41:b0:21:26:bd:10:02:1f:ef:7f:02:ee:ea:f2:3a: e5:a2:08:87:c1:f6:2a:62:20:23:80:84:68:15:8f: f2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:5D:EB:A2:48:AE:12:0B:A1:F0:24:96:D6:2D:CE:98:F5:43:5C:92 X509v3 Authority Key Identifier: keyid:FD:E3:6B:6E:94:93:98:E5:2D:95:E8:9D:40:BD:F6:0B:25:DB:69:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/_eNrbpSTmOUtleidQL32CyXbabk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eNrbpSTmOUtleidQL32CyXbabk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/EF885538C28B11EBBF310469C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:4c0:7000::/36 Signature Algorithm: sha256WithRSAEncryption 62:b6:65:ab:72:3a:01:5c:05:46:d3:69:ae:4a:fa:67:fa:0a: 0b:46:fc:0f:19:68:2a:58:0b:21:77:f9:49:32:66:09:62:61: c2:25:8d:ae:8d:a7:3a:3c:e7:58:24:b5:3d:76:47:c0:3c:c0: 16:2a:14:9e:23:c9:f9:98:20:08:f3:8f:1f:22:e4:41:6b:a5: 45:f2:92:36:53:0a:13:3a:99:20:da:92:8b:a6:53:67:32:25: 4a:9a:ac:8e:3f:a0:7b:1a:a5:78:40:8c:55:51:f7:d6:bc:ca: 5f:25:1e:6f:16:cf:ca:e2:82:e5:54:7f:a3:13:af:b6:c1:61: 01:1a:d9:21:85:55:24:e7:b2:72:7f:22:af:c8:74:a6:f1:c2: 8b:62:1e:19:f8:07:e1:d7:9a:71:76:82:46:4b:f8:d7:bd:2f: e3:ff:87:4e:43:84:43:05:75:23:21:0f:ca:e9:54:d4:a7:a5: 60:71:89:15:0f:08:7d:3f:7e:7b:4c:26:d6:b7:ad:72:1e:16: 05:33:2d:9d:78:30:af:dd:c5:07:71:56:cf:1b:29:03:6c:d9: 9c:ea:3e:b8:f3:f2:c3:58:61:d8:96:6f:f4:3c:cc:b5:31:fe: e4:d1:3f:7b:a0:09:d3:68:a4:88:43:e7:5c:c2:90:5d:70:58: 73:59:b5:6e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICF7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOEIxMTAvBgNVBAUTKEZERTM2QjZFOTQ5Mzk4RTUyRDk1RTg5RDQwQkRGNjBC MjVEQjY5QjkwHhcNMjQxMjIyMTY1NDA3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY4NDQyZi02ZmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9lUNOegISQxyHvUau4Mnm8mrguXe5iupdIcjAZwuLJ7hS8TYi3vn2KczzAI 77aT/mOURt+Phf1et2ZEOHMr3vJAVISeS9f3Kuftu54uHKHfgecYl9Ma5KL3Qdcy fXy4eMERgpVjXifNlSOGBo6o7kpRXOxRjZdA/bCPAURuUXVSTZ0P+DldU2wgm17o VvPMGIAXgKGgzP7N87wUBSWhL5LFiW4g2N5WmT27TWMzWXPrCZeIsTKLk1X/GujI PnGe2nPoOuBLuzgIQ5v8m+QPTELq2+X6SsBloBh4FClcmVpBsCEmvRACH+9/Au7q 8jrlogiHwfYqYiAjgIRoFY/yfQIDAQABo4IClzCCApMwHQYDVR0OBBYEFANd66JI rhILofAkltYtzpj1Q1ySMB8GA1UdIwQYMBaAFP3ja26Uk5jlLZXonUC99gsl22m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE4Qi82MjhERTUwMkRG MjMxMUU3OTcyMjVEMkVDNEY5QUUwMi9fZU5yYnBTVG1PVXRsZWlkUUwzMkN5WGJh YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19lTnJicFNUbU9VdGxlaWRRTDMyQ3lYYmFiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIxOEIvNjI4REU1MDJERjIzMTFFNzk3MjI1RDJFQzRGOUFFMDIvRUY4ODU1MzhD MjhCMTFFQkJGMzEwNDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAwTAcDANBgkqhkiG9w0BAQsFAAOCAQEAYrZlq3I6AVwF RtNprkr6Z/oKC0b8DxloKlgLIXf5STJmCWJhwiWNro2nOjznWCS1PXZHwDzAFioU niPJ+ZggCPOPHyLkQWulRfKSNlMKEzqZINqSi6ZTZzIlSpqsjj+gexqleECMVVH3 1rzKXyUebxbPyuKC5VR/oxOvtsFhARrZIYVVJOeycn8ir8h0pvHCi2IeGfgH4dea cXaCRkv4170v4/+HTkOEQwV1IyEPyulU1KelYHGJFQ8IfT9+e0wm1retch4WBTMt nXgwr93FB3FWzxspA2zZnOo+uPPyw1hh2JZv9DzMtTH+5NE/e6AJ02ikiEPnXMKQ XXBYc1m1bg== -----END CERTIFICATE-----Generated at Tue Apr 8 20:35:59 2025 by rpki-client