$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/00A27C54FE7311EB8FF2D172C4F9AE02.roa File: 00A27C54FE7311EB8FF2D172C4F9AE02.roa (raw, json) Hash identifier: iwlBcH188ZiSheYBTguGaVbwVAbfNyUmYveMlxPScw4= Subject key identifier: 98:84:6D:50:5E:9F:78:14:4F:FA:27:D7:81:DF:5C:20:5E:C8:FA:D8 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E8F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/00A27C54FE7311EB8FF2D172C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:34 +0000 ROA not before: Thu 22 May 2025 20:06:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136591 IP address blocks: 2406:840:e770::/44 maxlen: 48 2406:840:fef0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3727 (0xe8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83c9-55a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a0:ba:6a:52:3c:7d:45:3f:4b:5a:a6:64:33: 2c:4e:d7:58:5d:fe:4c:d8:76:1b:15:af:7d:1a:84: 51:5c:74:39:a6:fc:4f:1b:76:e2:6c:0b:f4:a6:a9: 32:5f:26:23:c2:ae:92:a6:74:ad:0e:66:cb:41:34: d0:a0:f3:1a:54:9c:9e:f0:61:1e:d9:e2:55:1d:62: be:5d:e0:40:9e:f4:bc:fa:d5:9c:e7:28:40:2a:b5: 0d:44:8a:d6:52:12:f4:5d:7b:e5:e9:05:49:85:43: c9:80:9a:46:d2:24:30:e8:a8:61:4d:f2:ab:a2:58: 49:2e:04:8e:aa:e0:cd:b4:f8:72:a3:93:1f:97:f0: 8e:8c:bf:64:45:5f:8d:b3:03:d8:42:b4:38:e4:18: a8:93:9d:05:f9:93:fe:34:d6:88:c7:39:80:0f:d7: 40:b7:e7:50:ff:15:31:4f:4e:ae:a2:51:b2:f9:7c: 16:1e:4a:c6:ff:4f:39:2b:fd:3a:ee:dc:ac:82:ea: 83:aa:56:ec:cb:a2:a8:6d:dc:4a:c6:fd:d1:a5:40: 5b:e3:93:26:c2:1a:b1:0c:f7:00:20:c7:e2:ac:61: 6b:62:9c:07:ef:17:9b:76:c8:1c:67:9a:6c:d9:c8: 6d:4d:2e:8a:9d:1a:2f:6f:d7:57:55:60:2d:5b:f2: 79:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:84:6D:50:5E:9F:78:14:4F:FA:27:D7:81:DF:5C:20:5E:C8:FA:D8 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/00A27C54FE7311EB8FF2D172C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e770::/44 2406:840:fef0::/48 Signature Algorithm: sha256WithRSAEncryption 7f:06:25:f8:50:1b:28:4a:4c:9e:24:01:69:06:af:26:1a:58: d2:cc:0d:af:67:b9:7a:f1:75:e3:dc:b8:9a:7f:21:35:9f:7e: a8:87:3f:ac:d7:a9:94:96:de:22:21:4f:09:9d:94:0b:4e:97: 71:a9:28:2d:a2:87:fc:1a:49:a3:45:e5:81:7b:5a:af:c8:f9: 6e:12:b9:34:20:41:25:af:63:c5:e3:df:4c:d2:2c:33:94:92: 22:b8:a3:b5:d6:41:c5:83:98:a2:82:41:ef:6c:a0:f8:d7:75: 38:dc:4b:64:79:6b:22:b8:62:48:08:56:6d:6f:7c:df:6e:55: c3:84:95:0c:ac:b5:df:78:17:82:8e:d4:2b:71:5c:a4:93:61: 77:8d:03:c1:e4:72:54:02:06:d2:02:99:04:b2:a1:1f:a7:1d: 07:e3:01:f5:23:6c:b0:ce:24:45:0f:73:83:dc:df:af:95:ef: 01:53:69:98:cc:e5:10:19:52:9d:e1:a7:04:be:5b:59:a1:00: 9c:81:fa:d8:a0:82:c2:5a:21:02:ba:f3:97:e0:98:e1:74:4f: 7d:57:cd:00:d3:00:13:5a:ff:a3:e5:77:8d:0c:66:65:fb:3b: 72:45:e9:fe:6e:84:f4:6d:8d:de:c1:d1:50:81:a9:48:5c:d2: 6e:e0:dc:dd -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNjOS01NWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaC6alI8fUU/S1qmZDMsTtdYXf5M2HYbFa99GoRRXHQ5pvxPG3bibAv0pqky XyYjwq6SpnStDmbLQTTQoPMaVJye8GEe2eJVHWK+XeBAnvS8+tWc5yhAKrUNRIrW UhL0XXvl6QVJhUPJgJpG0iQw6KhhTfKrolhJLgSOquDNtPhyo5Mfl/COjL9kRV+N swPYQrQ45Biok50F+ZP+NNaIxzmAD9dAt+dQ/xUxT06uolGy+XwWHkrG/085K/06 7tysguqDqlbsy6KobdxKxv3RpUBb45MmwhqxDPcAIMfirGFrYpwH7xebdsgcZ5ps 2chtTS6KnRovb9dXVWAtW/J5rwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJiEbVBe n3gUT/on14HfXCBeyPrYMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMDBBMjdDNTRG RTczMTFFQjhGRjJEMTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA53ADBwAkBghA/vAwDQYJKoZIhvcNAQELBQADggEB AH8GJfhQGyhKTJ4kAWkGryYaWNLMDa9nuXrxdePcuJp/ITWffqiHP6zXqZSW3iIh TwmdlAtOl3GpKC2ih/waSaNF5YF7Wq/I+W4SuTQgQSWvY8Xj30zSLDOUkiK4o7XW QcWDmKKCQe9soPjXdTjcS2R5ayK4YkgIVm1vfN9uVcOElQystd94F4KO1CtxXKST YXeNA8HkclQCBtICmQSyoR+nHQfjAfUjbLDOJEUPc4Pc36+V7wFTaZjM5RAZUp3h pwS+W1mhAJyB+tiggsJaIQK685fgmOF0T31XzQDTABNa/6Pld40MZmX7O3JF6f5u hPRtjd7B0VCBqUhc0m7g3N0= -----END CERTIFICATE-----Generated at Tue Jun 3 23:48:20 2025 by rpki-client