$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/186D9F7AF44811EF93880F6BC4F9AE02.roa File: 186D9F7AF44811EF93880F6BC4F9AE02.roa (raw, json) Hash identifier: A34ChikekKE3fA03ngpMWsh+oSzFie4mpzlpkN00M+I= Subject key identifier: 50:CB:D7:2F:4B:A5:E5:E8:1C:23:40:FF:93:63:44:21:AB:32:54:41 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E45 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/186D9F7AF44811EF93880F6BC4F9AE02.roa Signing time: Sat 15 Mar 2025 14:27:10 +0000 ROA not before: Sat 15 Mar 2025 14:27:10 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153633 IP address blocks: 2406:840:e200::/44 maxlen: 48 2406:840:fea9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3653 (0xe45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C Validity Not Before: Mar 15 14:27:10 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67d58e3d-1eeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:84:12:68:4d:44:d8:96:50:e0:56:b0:7d:bc: 31:35:ec:fd:df:aa:f1:ba:b4:cc:e0:30:e9:a6:cb: 4e:21:12:02:81:b6:5e:62:5e:99:11:33:01:38:f9: 7e:b0:8e:bd:7f:cb:b3:92:44:5c:11:91:1e:7a:78: 6b:21:c1:6b:d1:f0:5f:de:be:3d:db:49:87:cb:8f: 01:a1:3f:dd:43:f6:48:32:08:d8:e4:4c:89:44:19: 51:29:2a:34:e2:12:69:fa:9e:c4:3d:98:a2:72:8d: 7c:5e:34:af:09:bd:a6:6b:6f:66:48:01:f9:bf:e4: ea:29:e9:fa:d2:05:5a:01:b0:c6:45:07:c3:b8:12: ae:a6:a1:8e:19:9f:b8:a7:50:99:cb:cf:a1:19:33: a1:d0:91:61:6b:c9:ca:e3:0f:22:02:84:29:1c:8d: 40:1a:ec:d1:c3:32:dd:2e:68:d0:78:63:15:03:fd: 8d:ce:fc:56:fc:0c:28:23:26:21:bb:6e:35:7a:8e: b9:98:1a:8e:48:6d:0d:28:30:85:7a:49:73:22:5b: 6c:95:3d:1c:66:da:5d:14:5c:d6:1d:1d:60:de:91: a0:ca:d6:00:ff:8d:17:97:a3:82:55:ab:c0:f4:32: f6:a8:f7:d0:4b:a5:4f:52:af:93:59:13:9a:21:7e: dd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:CB:D7:2F:4B:A5:E5:E8:1C:23:40:FF:93:63:44:21:AB:32:54:41 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/186D9F7AF44811EF93880F6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e200::/44 2406:840:fea9::/48 Signature Algorithm: sha256WithRSAEncryption 72:fc:f4:44:52:b6:24:81:18:e1:de:80:90:28:41:a2:44:1c: d4:d8:89:5b:98:6f:43:ec:9a:49:86:15:21:95:d0:21:57:8d: 47:27:19:94:83:d3:11:62:ce:71:11:08:c6:1a:1a:fc:ac:f6: 0e:3f:9a:5f:e6:f4:23:4d:d4:b3:6d:82:75:7e:c7:26:75:21: 52:5c:5a:a8:29:f9:78:68:9b:c5:4e:f3:32:85:e9:7c:f0:71: c8:e6:9b:a4:15:94:92:55:de:5f:27:51:c7:a0:1f:b1:09:ff: 11:b6:4b:90:53:92:0c:d9:1a:a0:45:c7:ee:ac:91:48:a2:4e: 8b:7f:5c:1b:ad:9b:13:bc:88:a2:98:4a:b7:02:69:05:b5:b1: 00:f8:90:44:cc:13:04:ab:cc:64:24:95:8f:42:d9:23:0e:87: 1f:11:ec:4e:04:2d:ee:78:ca:85:ce:b7:05:46:d2:d0:4e:db: 12:35:1c:8b:b4:25:ad:a7:6b:55:a4:23:f8:5d:ae:bc:80:06: 38:9e:ff:08:d7:9a:43:9c:9a:f5:66:5d:42:c8:f3:41:00:ae: bc:33:c7:d0:af:be:76:25:39:73:d8:b3:46:2f:f9:41:65:21: dd:65:b3:1b:f4:da:e7:d7:fe:f3:dc:ad:c9:81:d1:c6:a4:d0: 6c:48:70:06 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwMzE1MTQyNzEwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q1OGUzZC0xZWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYQSaE1E2JZQ4FawfbwxNez936rxurTM4DDppstOIRICgbZeYl6ZETMBOPl+ sI69f8uzkkRcEZEeenhrIcFr0fBf3r4920mHy48BoT/dQ/ZIMgjY5EyJRBlRKSo0 4hJp+p7EPZiico18XjSvCb2ma29mSAH5v+TqKen60gVaAbDGRQfDuBKupqGOGZ+4 p1CZy8+hGTOh0JFha8nK4w8iAoQpHI1AGuzRwzLdLmjQeGMVA/2NzvxW/AwoIyYh u241eo65mBqOSG0NKDCFeklzIltslT0cZtpdFFzWHR1g3pGgytYA/40Xl6OCVavA 9DL2qPfQS6VPUq+TWROaIX7ddQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFDL1y9L peXoHCNA/5NjRCGrMlRBMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTg2RDlGN0FG NDQ4MTFFRjkzODgwRjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4gADBwAkBghA/qkwDQYJKoZIhvcNAQELBQADggEB AHL89ERStiSBGOHegJAoQaJEHNTYiVuYb0PsmkmGFSGV0CFXjUcnGZSD0xFiznER CMYaGvys9g4/ml/m9CNN1LNtgnV+xyZ1IVJcWqgp+Xhom8VO8zKF6Xzwccjmm6QV lJJV3l8nUcegH7EJ/xG2S5BTkgzZGqBFx+6skUiiTot/XButmxO8iKKYSrcCaQW1 sQD4kETMEwSrzGQklY9C2SMOhx8R7E4ELe54yoXOtwVG0tBO2xI1HIu0Ja2na1Wk I/hdrryABjie/wjXmkOcmvVmXULI80EArrwzx9CvvnYlOXPYs0Yv+UFlId1lsxv0 2ufX/vPcrcmB0cak0GxIcAY= -----END CERTIFICATE-----Generated at Sat Apr 5 02:02:57 2025 by rpki-client