$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa File: 189A3E5816C811EFAA6A4727C4F9AE02.roa (raw, json) Hash identifier: WCZ+mm2P9E7Ga2Eug6oqNSldLGdm+jlhXRxIZvf8D6g= Subject key identifier: 79:7A:7E:CF:93:D2:BE:21:59:14:18:56:E3:F8:18:1F:57:E8:09:1D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E88 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:27 +0000 ROA not before: Thu 22 May 2025 20:06:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132479 IP address blocks: 2406:840:fdd0::/44 maxlen: 48 2406:840:fecf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3720 (0xe88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83c3-3670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:59:56:a7:cb:aa:9f:d7:8d:6d:d5:d6:3f:9e: 5d:60:47:8b:7c:2a:10:ac:44:40:b7:a8:7c:8c:10: 87:42:ee:c9:d7:5c:31:99:18:99:59:33:66:37:4e: 6a:a4:33:1b:66:c4:82:8a:04:5e:09:0b:82:3a:dd: 66:6a:49:b0:4c:1d:84:c3:00:b9:eb:ab:0c:20:9d: 9d:b4:45:bc:56:73:b4:0b:55:9b:88:07:9b:2d:5b: 08:d7:8c:c1:03:bb:e0:de:fd:fd:6d:f3:1d:e4:5e: 2c:f7:de:ca:ba:64:98:58:45:72:31:9e:0c:5a:8a: ee:8d:ad:c9:fc:4b:bb:4b:54:e3:d8:40:b7:95:78: 47:2e:01:79:29:ef:d2:31:c4:cb:dd:dc:fd:bd:05: 42:7a:39:8e:cc:f8:79:e3:1f:68:a2:23:c4:8d:fc: 04:3e:22:27:c3:d3:58:06:eb:fc:21:25:63:18:f6: 31:54:5d:87:39:50:86:2a:8f:0d:70:11:6b:16:be: 06:8b:c1:9a:6f:1f:74:cd:9f:0b:b9:79:3c:bc:ca: d1:73:35:f3:05:c6:d2:7f:05:9b:92:c8:85:16:a1: e9:13:83:34:bd:e4:bb:f6:74:62:8c:47:70:c8:99: 32:e9:8f:bc:a0:19:85:92:1f:27:f2:03:5e:e9:71: c3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:7A:7E:CF:93:D2:BE:21:59:14:18:56:E3:F8:18:1F:57:E8:09:1D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fdd0::/44 2406:840:fecf::/48 Signature Algorithm: sha256WithRSAEncryption 2c:65:5f:46:67:9f:a6:4d:2a:73:30:66:9f:4b:4d:66:86:44: 4f:63:6f:63:19:8a:af:ff:60:b3:1f:1c:9e:53:3a:05:6b:e0: b5:36:f1:29:90:70:61:ba:8b:94:6b:a8:96:93:f8:5b:69:b9: d7:ea:d4:4c:0f:a0:7a:89:82:7a:73:e2:15:c3:5c:af:7e:92: f2:74:91:75:a9:3c:6b:e8:21:c6:fb:6e:4d:ae:e1:0b:7a:8a: 1e:9f:90:ab:1e:d4:34:82:ec:d4:0f:37:fe:19:f6:93:f3:c3: c7:dd:3f:48:a3:fd:2c:c8:f2:b9:f8:a1:bc:bd:21:54:4d:89: cb:e7:82:43:46:40:77:d7:40:48:0a:2a:5c:2a:17:9d:8f:70: 07:5c:27:61:bb:70:24:f2:3f:19:17:45:57:70:d9:7a:c4:52: 48:08:26:84:14:6c:78:bd:a7:e4:2c:3e:e4:3d:16:2a:8f:84: 0a:98:b2:ca:3d:38:46:e0:24:1d:c2:8c:9f:bb:8f:98:2d:4e: 59:0f:58:4b:87:3e:08:38:b3:1b:1a:d7:7e:f6:32:80:05:9e: b4:6d:fb:df:36:5b:84:11:6d:ec:bb:3a:1f:04:8d:29:be:43: b6:70:91:20:ef:0a:5c:af:a1:ae:10:6c:8d:ea:26:10:ff:aa: 58:54:a4:a6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNjMy0zNjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1lWp8uqn9eNbdXWP55dYEeLfCoQrERAt6h8jBCHQu7J11wxmRiZWTNmN05q pDMbZsSCigReCQuCOt1makmwTB2EwwC566sMIJ2dtEW8VnO0C1WbiAebLVsI14zB A7vg3v39bfMd5F4s997KumSYWEVyMZ4MWoruja3J/Eu7S1Tj2EC3lXhHLgF5Ke/S McTL3dz9vQVCejmOzPh54x9ooiPEjfwEPiInw9NYBuv8ISVjGPYxVF2HOVCGKo8N cBFrFr4Gi8Gabx90zZ8LuXk8vMrRczXzBcbSfwWbksiFFqHpE4M0veS79nRijEdw yJky6Y+8oBmFkh8n8gNe6XHDGwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHl6fs+T 0r4hWRQYVuP4GB9X6AkdMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTg5QTNFNTgx NkM4MTFFRkFBNkE0NzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/dADBwAkBghA/s8wDQYJKoZIhvcNAQELBQADggEB ACxlX0Znn6ZNKnMwZp9LTWaGRE9jb2MZiq//YLMfHJ5TOgVr4LU28SmQcGG6i5Rr qJaT+Ftpudfq1EwPoHqJgnpz4hXDXK9+kvJ0kXWpPGvoIcb7bk2u4Qt6ih6fkKse 1DSC7NQPN/4Z9pPzw8fdP0ij/SzI8rn4oby9IVRNicvngkNGQHfXQEgKKlwqF52P cAdcJ2G7cCTyPxkXRVdw2XrEUkgIJoQUbHi9p+QsPuQ9FiqPhAqYsso9OEbgJB3C jJ+7j5gtTlkPWEuHPgg4sxsa1372MoAFnrRt+982W4QRbey7Oh8EjSm+Q7ZwkSDv Clyvoa4QbI3qJhD/qlhUpKY= -----END CERTIFICATE-----Generated at Wed Jun 4 00:07:32 2025 by rpki-client