$ rpki-client -vvf rpki.apnic.net/member_repository/A917E458/27BE840E30D811F0A7BE2E4FC4F9AE02/0E6E2FF4590A11F0B7FD292DC4F9AE02.roa File: 0E6E2FF4590A11F0B7FD292DC4F9AE02.roa (raw, json) Hash identifier: 7soTZ6EDnpP6A/A05OpE2en3043bE7DF3odg+8Ew9cU= Subject key identifier: C2:CD:1E:60:B2:4E:D2:9D:08:3B:A3:42:42:04:A9:31:60:3A:EF:2B Certificate issuer: /CN=A917E458/serialNumber=EF762CC94219E09923A11B0D3C430E7F35C8D864 Certificate serial: 1C Authority key identifier: EF:76:2C:C9:42:19:E0:99:23:A1:1B:0D:3C:43:0E:7F:35:C8:D8:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/73YsyUIZ4JkjoRsNPEMOfzXI2GQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E458/27BE840E30D811F0A7BE2E4FC4F9AE02/0E6E2FF4590A11F0B7FD292DC4F9AE02.roa Signing time: Fri 04 Jul 2025 19:06:58 +0000 ROA not before: Fri 04 Jul 2025 19:06:58 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140919 IP address blocks: 2402:960::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E458/27BE840E30D811F0A7BE2E4FC4F9AE02/73YsyUIZ4JkjoRsNPEMOfzXI2GQ.crl rsync://rpki.apnic.net/member_repository/A917E458/27BE840E30D811F0A7BE2E4FC4F9AE02/73YsyUIZ4JkjoRsNPEMOfzXI2GQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/73YsyUIZ4JkjoRsNPEMOfzXI2GQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 08:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E458, serialNumber=EF762CC94219E09923A11B0D3C430E7F35C8D864 Validity Not Before: Jul 4 19:06:58 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68682651-62c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d0:7d:3a:a9:53:68:20:98:e4:fe:41:07:80: 60:a8:78:99:ee:a1:b3:98:69:cb:9e:5c:a0:d4:2f: ad:94:b9:30:d5:6c:c2:09:45:65:6c:af:40:bc:df: bc:21:7d:09:07:ef:de:cd:bf:7c:8c:04:aa:a5:c1: c4:cd:fd:8d:bc:66:0b:de:34:4f:ff:24:44:cd:a3: be:f4:91:4f:f6:82:0a:db:0a:7b:bf:02:d2:20:81: a1:7c:ed:a4:ed:f6:fe:59:6c:38:e6:6a:b5:14:42: 73:84:10:e0:9e:26:14:99:00:ea:ac:8c:19:a0:03: e1:1c:7e:ab:b2:d0:bd:4b:f3:6c:d0:36:3f:9a:84: b1:a3:06:dc:88:c2:8d:ef:b5:59:3b:92:f9:a3:02: 93:14:99:68:8e:a3:7c:d3:4a:46:f4:5b:ec:20:dd: 3e:e9:56:6c:71:3e:18:29:d3:28:c1:8c:11:23:ec: 3a:26:a6:72:91:0d:6c:d0:3b:12:8e:79:15:55:c8: 82:0d:0a:5d:d9:49:3f:03:1c:56:d2:d0:fa:37:31: d2:5b:55:21:66:dd:32:03:e6:02:92:f0:c3:20:82: 55:d9:ab:19:06:37:08:9b:dd:df:ad:b0:f4:cc:b7: fa:81:2c:66:8e:d7:15:44:71:17:87:a4:12:c8:65: ea:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:CD:1E:60:B2:4E:D2:9D:08:3B:A3:42:42:04:A9:31:60:3A:EF:2B X509v3 Authority Key Identifier: keyid:EF:76:2C:C9:42:19:E0:99:23:A1:1B:0D:3C:43:0E:7F:35:C8:D8:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E458/27BE840E30D811F0A7BE2E4FC4F9AE02/73YsyUIZ4JkjoRsNPEMOfzXI2GQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/73YsyUIZ4JkjoRsNPEMOfzXI2GQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E458/27BE840E30D811F0A7BE2E4FC4F9AE02/0E6E2FF4590A11F0B7FD292DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:960::/32 Signature Algorithm: sha256WithRSAEncryption 15:d9:44:d4:cb:b9:13:17:ca:55:3b:73:d2:4a:29:fa:c9:b8: 9e:71:fe:0c:45:48:95:cd:2c:59:31:5d:12:5b:e3:9a:d1:b4: 5b:65:e2:44:ed:f3:5c:b9:7d:91:03:a0:68:76:4f:7e:5e:8a: 9c:54:9f:05:b2:3b:f9:b3:d4:34:d6:15:8b:09:f9:21:9b:bf: 20:17:9a:3a:2e:75:96:a7:64:17:ce:85:c0:40:db:68:31:b1: bb:3f:6e:34:1c:fa:8e:bf:83:2b:24:20:87:1e:89:d0:c0:8b: 9b:44:ba:d1:cf:32:0b:b7:87:06:8b:ce:9f:a6:ed:f8:f5:8d: 8d:b6:ae:39:bd:01:26:00:b4:df:9a:89:88:02:e2:6c:a2:d9: 74:c9:73:cb:b7:a1:6e:c6:57:3b:ea:39:cd:6a:e2:00:8a:95: 23:39:dd:03:0f:43:53:4a:c8:c3:62:7a:49:a7:e4:bc:9b:15: 59:70:43:bd:9a:45:1b:f5:20:fa:ad:01:ba:a5:fa:e4:23:c4: d7:53:75:2b:f0:34:3e:f3:25:0c:24:5b:68:aa:63:f1:f3:e5: 9c:c9:16:8a:3e:a4:27:66:ad:fd:ef:dc:09:9c:5b:c6:9b:a8: 71:0e:8c:08:55:10:ed:36:10:6a:81:4f:96:93:d1:c2:a9:68: e3:b2:17:9a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTQ1ODExMC8GA1UEBRMoRUY3NjJDQzk0MjE5RTA5OTIzQTExQjBEM0M0MzBFN0Yz NUM4RDg2NDAeFw0yNTA3MDQxOTA2NThaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjgyNjUxLTYyYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC10H06qVNoIJjk/kEHgGCoeJnuobOYacueXKDUL62UuTDVbMIJRWVsr0C837wh fQkH797Nv3yMBKqlwcTN/Y28ZgveNE//JETNo770kU/2ggrbCnu/AtIggaF87aTt 9v5ZbDjmarUUQnOEEOCeJhSZAOqsjBmgA+Ecfquy0L1L82zQNj+ahLGjBtyIwo3v tVk7kvmjApMUmWiOo3zTSkb0W+wg3T7pVmxxPhgp0yjBjBEj7DompnKRDWzQOxKO eRVVyIINCl3ZST8DHFbS0Po3MdJbVSFm3TID5gKS8MMgglXZqxkGNwib3d+tsPTM t/qBLGaO1xVEcReHpBLIZerxAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUws0eYLJO 0p0IO6NCQgSpMWA67yswHwYDVR0jBBgwFoAU73YsyUIZ4JkjoRsNPEMOfzXI2GQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFNDU4LzI3QkU4NDBFMzBE ODExRjBBN0JFMkU0RkM0RjlBRTAyLzczWXN5VUlaNEpram9Sc05QRU1PZnpYSTJH US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzNZc3lVSVo0Smtqb1JzTlBFTU9melhJMkdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ1OC8yN0JFODQwRTMwRDgxMUYwQTdCRTJFNEZDNEY5QUUwMi8wRTZFMkZGNDU5 MEExMUYwQjdGRDI5MkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCCWAwDQYJKoZIhvcNAQELBQADggEBABXZRNTLuRMXylU7 c9JKKfrJuJ5x/gxFSJXNLFkxXRJb45rRtFtl4kTt81y5fZEDoGh2T35eipxUnwWy O/mz1DTWFYsJ+SGbvyAXmjoudZanZBfOhcBA22gxsbs/bjQc+o6/gyskIIceidDA i5tEutHPMgu3hwaLzp+m7fj1jY22rjm9ASYAtN+aiYgC4myi2XTJc8u3oW7GVzvq Oc1q4gCKlSM53QMPQ1NKyMNiekmn5LybFVlwQ72aRRv1IPqtAbql+uQjxNdTdSvw ND7zJQwkW2iqY/Hz5ZzJFoo+pCdmrf3v3AmcW8abqHEOjAhVEO02EGqBT5aT0cKp aOOyF5o= -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:58 2025 by rpki-client