$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1FE119E6482111EE8400F57AC4F9AE02.roa File: 1FE119E6482111EE8400F57AC4F9AE02.roa (raw, json) Hash identifier: Dt208/MahRvzleSjoIOlRI/mxrGCcZZhsA63L4QHCCk= Subject key identifier: 4E:A8:13:55:47:49:4B:CF:3F:D3:0B:2A:95:E4:C0:B4:29:36:3C:2B Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EC2 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1FE119E6482111EE8400F57AC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:22 +0000 ROA not before: Thu 22 May 2025 20:07:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151785 IP address blocks: 2406:840:9300::/40 maxlen: 48 2406:840:f680::/44 maxlen: 48 2406:840:fe73::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3778 (0xec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83fa-3e9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4a:1d:86:df:77:7f:01:16:53:99:dc:f5:7d: 20:c8:77:e6:5f:ef:74:fd:c1:e8:48:65:6d:c3:4e: 7d:d6:be:da:f7:1f:25:d1:48:b9:1d:7e:7d:7a:92: cc:2c:95:45:ad:6c:ca:33:12:08:b2:f8:36:6f:9f: 56:54:de:e5:f4:da:98:f7:1a:df:ea:60:28:58:50: a6:a8:98:03:34:85:e9:eb:9f:f4:a6:08:94:5b:ff: 9b:75:58:35:5c:43:fa:c6:a3:a5:60:cd:7e:47:09: de:d2:4c:f3:f6:fb:80:f2:3c:70:3d:41:a9:ea:21: 95:c8:75:d3:15:ce:86:e8:d1:d2:dc:a4:7c:68:2e: 6b:24:2f:24:2e:e5:2b:7b:62:52:8c:14:29:54:2b: 5c:9a:27:8e:ba:07:21:4d:c7:d5:24:ee:e8:1d:91: cd:20:cd:6c:d5:99:6d:15:0f:ef:c6:30:9f:19:65: e7:c4:70:54:9a:ec:1b:56:1c:21:5c:0d:5c:14:b9: 1b:58:bc:ff:bb:93:01:ad:2e:b2:9b:9e:24:ee:1f: 87:12:4c:97:4c:47:f9:5b:4f:f7:a6:d2:00:ac:3b: 06:b5:cb:9c:fd:12:92:68:6e:d6:5a:5f:12:e2:a7: 64:13:a8:12:e1:e9:53:3a:ab:db:72:09:20:40:0c: db:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A8:13:55:47:49:4B:CF:3F:D3:0B:2A:95:E4:C0:B4:29:36:3C:2B X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1FE119E6482111EE8400F57AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9300::/40 2406:840:f680::/44 2406:840:fe73::/48 Signature Algorithm: sha256WithRSAEncryption 43:13:bd:d7:4b:5c:5d:bc:a0:fe:ca:33:64:bc:40:87:cf:3b: 59:b7:42:cc:4e:41:56:19:82:47:12:31:92:fc:a5:84:4b:21: 36:a0:51:ab:5e:13:01:bc:4f:60:e4:11:36:08:54:8e:95:da: a6:0f:4e:60:bd:b8:60:c2:e0:69:e1:65:da:03:cd:23:77:7e: db:00:e8:7c:f8:a9:72:13:e3:b1:97:89:ae:35:b8:fb:4f:bb: 49:e5:b3:e2:27:ea:06:2f:0c:36:32:c0:83:47:79:aa:b6:d5: a8:cc:cd:5e:9b:db:2e:3a:35:0a:b0:f4:2a:15:75:4a:b7:41: 43:5b:ac:33:42:a7:fe:00:61:40:b0:65:84:21:18:4d:f6:2d: bf:dc:8d:70:f4:2f:a8:92:7c:1a:cd:5e:64:5d:80:a1:ce:b2: f8:42:8c:a6:7b:03:ad:6d:09:3a:11:a3:61:0e:f8:03:e3:91: 1a:04:47:4a:bc:6c:91:ce:35:99:92:55:bf:b5:1c:79:c7:a8: da:e3:41:6b:e5:ad:f2:42:a6:2d:0a:ed:d3:bf:95:84:2d:26: 79:93:c4:07:fd:c3:05:1c:b7:ed:4c:39:ab:8b:3c:57:75:cc: d0:41:bc:ae:78:71:fd:26:e8:9b:6b:2f:3c:e8:d8:99:2a:8f: 39:29:5a:45 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICDsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzIyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNmYS0zZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEodht93fwEWU5nc9X0gyHfmX+90/cHoSGVtw0591r7a9x8l0Ui5HX59epLM LJVFrWzKMxIIsvg2b59WVN7l9NqY9xrf6mAoWFCmqJgDNIXp65/0pgiUW/+bdVg1 XEP6xqOlYM1+Rwne0kzz9vuA8jxwPUGp6iGVyHXTFc6G6NHS3KR8aC5rJC8kLuUr e2JSjBQpVCtcmieOugchTcfVJO7oHZHNIM1s1ZltFQ/vxjCfGWXnxHBUmuwbVhwh XA1cFLkbWLz/u5MBrS6ym54k7h+HEkyXTEf5W0/3ptIArDsGtcuc/RKSaG7WWl8S 4qdkE6gS4elTOqvbcgkgQAzbwwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFE6oE1VH SUvPP9MLKpXkwLQpNjwrMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUZFMTE5RTY0 ODIxMTFFRTg0MDBGNTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgACMBoDBgAkBghAkwMHBCQGCED2gAMHACQGCED+czANBgkqhkiG9w0B AQsFAAOCAQEAQxO910tcXbyg/sozZLxAh887WbdCzE5BVhmCRxIxkvylhEshNqBR q14TAbxPYOQRNghUjpXapg9OYL24YMLgaeFl2gPNI3d+2wDofPipchPjsZeJrjW4 +0+7SeWz4ifqBi8MNjLAg0d5qrbVqMzNXpvbLjo1CrD0KhV1SrdBQ1usM0Kn/gBh QLBlhCEYTfYtv9yNcPQvqJJ8Gs1eZF2Aoc6y+EKMpnsDrW0JOhGjYQ74A+ORGgRH Srxskc41mZJVv7Uceceo2uNBa+Wt8kKmLQrt07+VhC0meZPEB/3DBRy37Uw5q4s8 V3XM0EG8rnhx/Sbom2svPOjYmSqPOSlaRQ== -----END CERTIFICATE-----Generated at Wed Jun 4 00:12:35 2025 by rpki-client