$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1E895050316D11EFB8CB9276C4F9AE02.roa File: 1E895050316D11EFB8CB9276C4F9AE02.roa (raw, json) Hash identifier: UYm30RCSwmaYggPAAGF79eezWt8yF74FbGY/Hbn+l6Y= Subject key identifier: AA:79:FC:B6:92:F1:A7:41:EC:CA:9F:BD:83:46:65:E6:D4:A3:04:F7 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0F0D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1E895050316D11EFB8CB9276C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:31 +0000 ROA not before: Thu 22 May 2025 20:08:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63279 IP address blocks: 2406:840:ece0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3853 (0xf0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f843f-82f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a8:f0:82:a5:da:2e:8d:f3:ff:89:35:13:65: 6e:25:ec:b4:5b:3c:54:2c:d0:9d:5c:cf:0d:b9:fb: 57:07:8e:e8:75:18:13:e1:50:05:ba:e4:eb:74:6a: 87:61:7d:49:bf:d2:c9:49:d2:fb:05:91:2a:5f:21: 3f:14:3c:19:a7:30:fb:ad:d3:15:04:da:05:aa:aa: ec:cd:e6:91:a1:27:6d:d8:21:64:b9:ac:e1:84:93: 7e:ec:b9:ed:6e:ba:90:79:96:92:8a:7c:a7:cf:b7: 35:b7:46:50:4c:9f:86:79:fc:f6:6d:9b:2e:3f:14: 06:28:1c:5e:3c:92:36:db:20:6e:be:6f:89:b2:75: f1:2c:ab:3f:a1:b3:16:ad:1f:6a:88:8e:5c:6a:18: ba:10:52:b2:6a:06:81:37:c3:68:e2:29:97:cc:35: 24:5d:08:3b:df:0f:71:2b:61:c4:f0:b0:6d:4b:bf: 9c:91:4a:c7:aa:a8:58:d8:9b:6c:d8:ab:fe:24:58: d7:17:76:d8:13:0a:60:3f:fa:25:b4:a4:6b:26:c7: 31:6f:ea:fd:2a:e6:f1:3f:b9:20:d9:fa:c8:1b:28: f8:22:42:58:a6:18:64:97:44:87:13:6c:a3:5d:37: 82:2b:9c:50:60:71:13:b2:ae:57:22:14:ca:cc:7f: b4:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:79:FC:B6:92:F1:A7:41:EC:CA:9F:BD:83:46:65:E6:D4:A3:04:F7 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1E895050316D11EFB8CB9276C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:ece0::/44 Signature Algorithm: sha256WithRSAEncryption 16:83:45:88:e3:38:db:49:89:92:af:cc:31:d1:c5:9d:20:45: 4a:09:32:c6:ae:9c:bb:7d:ce:86:84:30:4d:e8:cd:20:1c:cd: 7e:5a:2a:bd:6b:51:12:80:e1:26:a1:e2:96:27:46:fa:40:d4: ae:c7:c7:a3:dd:e5:00:5c:00:33:90:5a:2d:89:3f:77:b8:90: 8a:d9:fe:37:fa:9c:b4:c7:90:c2:b1:03:73:1e:33:35:4f:fd: 30:81:dc:0e:ad:95:35:4e:93:3b:05:62:4f:62:4b:53:b0:f9: 3a:a8:3f:ef:74:11:9b:6c:87:57:05:8e:5b:0c:8c:56:cb:27: 82:ba:00:e0:a4:d2:ef:f6:b4:70:9a:95:5a:4d:47:ff:5e:3c: f4:9c:d3:31:ed:15:1f:4c:84:5f:55:7c:76:1c:32:99:80:8e: 9d:18:cf:71:41:81:d8:ad:64:c0:d4:76:a4:f2:a1:be:49:b3: c0:a9:dc:07:91:26:64:2b:01:f2:9f:30:ef:fb:e1:81:79:42: 03:9f:ef:63:bb:84:4d:cf:02:a0:97:4c:bd:62:13:56:b3:d1: 65:b5:75:49:f3:18:81:44:77:11:db:08:e1:85:c0:83:73:30: b9:88:b8:36:32:e4:20:8f:24:ff:b9:76:b5:b8:50:89:30:f1: 10:72:a9:0b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzZi04MmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6jwgqXaLo3z/4k1E2VuJey0WzxULNCdXM8NuftXB47odRgT4VAFuuTrdGqH YX1Jv9LJSdL7BZEqXyE/FDwZpzD7rdMVBNoFqqrszeaRoSdt2CFkuazhhJN+7Lnt brqQeZaSinynz7c1t0ZQTJ+Gefz2bZsuPxQGKBxePJI22yBuvm+JsnXxLKs/obMW rR9qiI5cahi6EFKyagaBN8No4imXzDUkXQg73w9xK2HE8LBtS7+ckUrHqqhY2Jts 2Kv+JFjXF3bYEwpgP/oltKRrJscxb+r9KubxP7kg2frIGyj4IkJYphhkl0SHE2yj XTeCK5xQYHETsq5XIhTKzH+0MwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKp5/LaS 8adB7MqfvYNGZebUowT3MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUU4OTUwNTAz MTZEMTFFRkI4Q0I5Mjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA7OAwDQYJKoZIhvcNAQELBQADggEBABaDRYjjONtJ iZKvzDHRxZ0gRUoJMsaunLt9zoaEME3ozSAczX5aKr1rURKA4Sah4pYnRvpA1K7H x6Pd5QBcADOQWi2JP3e4kIrZ/jf6nLTHkMKxA3MeMzVP/TCB3A6tlTVOkzsFYk9i S1Ow+TqoP+90EZtsh1cFjlsMjFbLJ4K6AOCk0u/2tHCalVpNR/9ePPSc0zHtFR9M hF9VfHYcMpmAjp0Yz3FBgditZMDUdqTyob5Js8Cp3AeRJmQrAfKfMO/74YF5QgOf 72O7hE3PAqCXTL1iE1az0WW1dUnzGIFEdxHbCOGFwINzMLmIuDYy5CCPJP+5drW4 UIkw8RByqQs= -----END CERTIFICATE-----Generated at Wed Jun 4 00:14:27 2025 by rpki-client