$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5FCBF00EB89511EFA8E14384C4F9AE02.roa File: 5FCBF00EB89511EFA8E14384C4F9AE02.roa (raw, json) Hash identifier: RQiBfp2teSxJG8bxQ6L+W1HgPexcxwQpSl/Q7MgrGxA= Subject key identifier: 9A:68:9D:A8:64:30:38:83:4E:F1:19:07:3F:39:BA:90:59:87:DE:FE Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E93 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5FCBF00EB89511EFA8E14384C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:37 +0000 ROA not before: Thu 22 May 2025 20:06:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137908 IP address blocks: 2406:840:ee40::/44 maxlen: 48 2406:840:feaf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3731 (0xe93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83cd-6e80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:51:08:95:70:15:99:42:63:a9:79:a9:c1: d0:3b:9d:db:8b:57:91:5c:bb:83:a5:17:4f:a2:0a: db:10:96:79:22:c8:4a:75:e7:55:de:5a:33:f7:20: bc:bc:b9:83:23:ee:f7:24:a8:89:fa:9c:84:69:8a: a4:8b:cf:d8:cc:d9:85:b3:49:55:88:aa:7a:52:24: 4c:f7:90:d5:4b:e9:ef:b0:6b:8c:e8:83:ac:d7:8b: 54:a9:16:98:26:36:45:0f:92:5b:fb:5e:07:4f:16: a7:d1:04:ba:85:59:13:1e:41:ee:32:4e:4b:df:3b: 4d:4f:8a:3d:1f:36:46:44:b2:0d:f6:bd:9b:4c:0d: f9:1c:a9:36:5d:af:a9:22:2e:f7:2f:a2:e2:9d:20: 08:31:9d:ff:79:4c:70:9f:64:e2:17:b5:24:b5:b9: e1:fb:c1:04:5b:74:1f:df:42:84:43:d6:03:fd:ee: 56:d7:b9:35:a7:75:8f:6a:14:31:14:da:ce:5d:df: 84:92:ae:ed:f0:54:5c:03:f3:df:e7:b3:6f:db:3d: 6d:be:ec:e8:b1:cc:f7:a3:d8:7e:de:46:56:b7:c6: fe:3d:1b:68:07:81:67:a7:f1:3c:a8:1a:83:19:8f: 07:d8:61:74:25:ff:31:b8:fa:19:c3:ee:45:61:dd: 2e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:68:9D:A8:64:30:38:83:4E:F1:19:07:3F:39:BA:90:59:87:DE:FE X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5FCBF00EB89511EFA8E14384C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:ee40::/44 2406:840:feaf::/48 Signature Algorithm: sha256WithRSAEncryption 35:07:c3:50:30:f6:62:de:a6:0d:cd:6d:d7:c4:48:67:f0:5c: 36:c8:3f:59:9d:09:18:db:89:99:a3:8b:d7:94:94:83:46:a7: 4e:d8:0e:14:a5:14:c4:82:f2:fd:ef:93:76:99:a7:68:da:c5: f1:c2:60:55:d4:ef:89:79:46:ed:e4:15:84:4d:89:79:bc:bc: d9:ce:17:11:6e:b4:66:71:90:ea:13:d2:03:cb:54:b1:85:d5: 80:a0:8d:64:6f:6f:fc:22:17:12:ff:4f:ea:12:57:c6:0e:e6: 0d:f0:a9:55:0a:00:8c:71:5d:f5:36:9f:3c:cd:76:04:95:bc: e2:41:b0:09:fc:ea:a3:e0:85:38:23:ab:06:14:fa:61:c1:e3: 80:eb:43:76:a0:d9:a6:1f:fc:81:d5:0b:3c:9f:e5:de:3f:31: bd:87:0e:c7:c7:1b:cb:47:85:93:a5:dd:5a:b0:64:0e:2c:06: fa:30:96:3d:5e:54:f2:35:42:ab:66:21:b2:76:1d:00:de:8f: 65:6b:90:c0:8c:c8:67:4c:2a:62:72:99:03:48:4e:31:16:2c: 08:8b:ad:82:5d:10:ed:3f:6b:55:34:67:2f:24:c1:6b:af:fa: de:37:80:d8:3b:79:17:57:37:2e:77:e9:14:61:6b:a8:2c:43: a3:31:b9:cc -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNjZC02ZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMdRCJVwFZlCY6l5qcHQO53bi1eRXLuDpRdPogrbEJZ5IshKdedV3loz9yC8 vLmDI+73JKiJ+pyEaYqki8/YzNmFs0lViKp6UiRM95DVS+nvsGuM6IOs14tUqRaY JjZFD5Jb+14HTxan0QS6hVkTHkHuMk5L3ztNT4o9HzZGRLIN9r2bTA35HKk2Xa+p Ii73L6LinSAIMZ3/eUxwn2TiF7Uktbnh+8EEW3Qf30KEQ9YD/e5W17k1p3WPahQx FNrOXd+Ekq7t8FRcA/Pf57Nv2z1tvuzoscz3o9h+3kZWt8b+PRtoB4Fnp/E8qBqD GY8H2GF0Jf8xuPoZw+5FYd0u6QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJponahk MDiDTvEZBz85upBZh97+MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNUZDQkYwMEVC ODk1MTFFRkE4RTE0Mzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA7kADBwAkBghA/q8wDQYJKoZIhvcNAQELBQADggEB ADUHw1Aw9mLepg3NbdfESGfwXDbIP1mdCRjbiZmji9eUlINGp07YDhSlFMSC8v3v k3aZp2jaxfHCYFXU74l5Ru3kFYRNiXm8vNnOFxFutGZxkOoT0gPLVLGF1YCgjWRv b/wiFxL/T+oSV8YO5g3wqVUKAIxxXfU2nzzNdgSVvOJBsAn86qPghTgjqwYU+mHB 44DrQ3ag2aYf/IHVCzyf5d4/Mb2HDsfHG8tHhZOl3VqwZA4sBvowlj1eVPI1Qqtm IbJ2HQDej2VrkMCMyGdMKmJymQNITjEWLAiLrYJdEO0/a1U0Zy8kwWuv+t43gNg7 eRdXNy536RRha6gsQ6Mxucw= -----END CERTIFICATE-----Generated at Mon Jun 2 07:13:46 2025 by rpki-client