$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa File: 445DBF2E1B9C11EEB9C23D62C4F9AE02.roa (raw, json) Hash identifier: XIionvKBmz40XDRIczbqZBet0JCfXxjkzrfmU5z4/R4= Subject key identifier: 13:A2:A8:F1:7B:2E:16:D7:A2:33:73:E7:80:11:69:20:7C:A7:53:D1 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EBF Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:19 +0000 ROA not before: Thu 22 May 2025 20:07:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151494 IP address blocks: 2406:840:9150::/44 maxlen: 48 2406:840:feda::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3775 (0xebf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83f7-2db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6b:96:44:a8:fc:a6:de:b5:67:2d:fa:fa:1e: 2d:57:04:31:46:96:b4:23:c7:c6:f0:49:d2:e2:97: 0e:11:2d:42:3b:03:86:de:11:3c:fd:2a:39:dd:7b: 69:cc:6d:f8:9b:b4:61:f1:d8:8e:6a:ba:4a:d8:a9: f6:75:fb:4d:34:fb:9f:69:16:f6:4d:a6:9b:2f:e6: aa:ee:85:3c:da:53:77:4e:32:5f:08:80:90:b9:85: 6b:1a:fc:81:c1:89:40:de:b8:ee:f8:bf:08:ce:9d: 2a:43:e9:8e:aa:be:29:19:a9:61:df:7f:e6:a4:a1: 2b:d1:f6:50:77:a6:e9:b1:97:bb:83:f2:3a:00:05: 80:10:32:9f:a0:d8:ae:68:83:cd:2b:75:28:4f:97: d0:b3:aa:40:87:3c:d9:8d:24:8c:b1:44:c4:05:8d: db:c9:7a:c6:cb:02:a3:79:e6:11:2b:1d:3c:8f:a4: 06:31:c6:f3:1f:44:a8:b3:78:5e:c0:b7:d8:59:3b: e9:37:4e:29:17:e2:da:b5:3b:50:02:e8:49:c7:a5: d8:62:11:8d:2c:19:e5:fa:b9:52:72:32:73:15:30: d5:b3:d7:a9:b8:e1:f3:78:9b:5a:13:f9:88:d5:da: d6:70:b2:d9:4e:10:b6:25:66:df:82:ce:49:92:07: 8b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A2:A8:F1:7B:2E:16:D7:A2:33:73:E7:80:11:69:20:7C:A7:53:D1 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9150::/44 2406:840:feda::/48 Signature Algorithm: sha256WithRSAEncryption a8:ad:3b:78:4e:1f:66:ff:b6:5f:5e:54:eb:35:d9:bb:cc:04: 2d:39:84:fa:58:2d:90:c5:26:55:53:36:d5:7f:6f:93:4b:c8: e0:ff:50:05:8b:12:ad:aa:0c:99:98:bc:0a:9e:cd:44:fe:47: c1:43:fd:ca:91:eb:c0:e6:ce:dd:d9:e0:01:91:86:94:0d:02: a7:07:8d:04:56:25:66:c8:cd:18:17:34:08:b4:00:33:10:e6: 9f:31:13:18:bf:7d:5d:ba:72:a6:f6:c8:25:8c:91:3e:69:43: da:6b:71:70:2b:a3:0e:f8:48:7e:91:fb:b6:f3:11:b7:1e:e9: 5f:86:1f:91:96:9a:80:5a:eb:36:c0:35:e3:8b:87:61:d4:4c: 78:d5:24:16:30:08:e2:af:3b:72:fa:38:30:48:ab:53:d2:3c: 7c:bb:e7:6b:38:96:f4:0d:52:35:71:2c:23:3a:7b:df:a4:a6: 0f:29:d3:00:c6:80:a5:d8:74:e9:75:ed:eb:38:cd:62:6a:2f: 22:77:74:d5:a9:40:15:a6:36:ba:73:7a:5e:8e:94:6e:0b:d1: 4d:b1:bf:8b:c6:85:a7:7f:a9:d0:5d:72:c6:ef:45:52:41:f6: 6a:08:91:5e:02:2e:c8:bf:c2:c5:a6:51:32:bc:76:91:52:6b: 28:f9:90:20 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNmNy0yZGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2uWRKj8pt61Zy36+h4tVwQxRpa0I8fG8EnS4pcOES1COwOG3hE8/So53Xtp zG34m7Rh8diOarpK2Kn2dftNNPufaRb2TaabL+aq7oU82lN3TjJfCICQuYVrGvyB wYlA3rju+L8Izp0qQ+mOqr4pGalh33/mpKEr0fZQd6bpsZe7g/I6AAWAEDKfoNiu aIPNK3UoT5fQs6pAhzzZjSSMsUTEBY3byXrGywKjeeYRKx08j6QGMcbzH0Sos3he wLfYWTvpN04pF+LatTtQAuhJx6XYYhGNLBnl+rlScjJzFTDVs9epuOHzeJtaE/mI 1drWcLLZThC2JWbfgs5JkgeLDQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBOiqPF7 LhbXojNz54ARaSB8p1PRMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDQ1REJGMkUx QjlDMTFFRUI5QzIzRDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghAkVADBwAkBghA/towDQYJKoZIhvcNAQELBQADggEB AKitO3hOH2b/tl9eVOs12bvMBC05hPpYLZDFJlVTNtV/b5NLyOD/UAWLEq2qDJmY vAqezUT+R8FD/cqR68Dmzt3Z4AGRhpQNAqcHjQRWJWbIzRgXNAi0ADMQ5p8xExi/ fV26cqb2yCWMkT5pQ9prcXArow74SH6R+7bzEbce6V+GH5GWmoBa6zbANeOLh2HU THjVJBYwCOKvO3L6ODBIq1PSPHy752s4lvQNUjVxLCM6e9+kpg8p0wDGgKXYdOl1 7es4zWJqLyJ3dNWpQBWmNrpzel6OlG4L0U2xv4vGhad/qdBdcsbvRVJB9moIkV4C Lsi/wsWmUTK8dpFSayj5kCA= -----END CERTIFICATE-----Generated at Wed Jun 4 00:11:36 2025 by rpki-client