$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6E59D5EE1A3C11EE8A846877C4F9AE02.roa File: 6E59D5EE1A3C11EE8A846877C4F9AE02.roa (raw, json) Hash identifier: sOWYQJzZdQ3PVzR2eQJP+nH/9Rub1+ZMWEGJlpiFqsI= Subject key identifier: 13:AE:EA:00:26:DB:AA:53:EF:E6:9E:BD:AC:21:83:5D:FE:F0:6B:74 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EBE Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6E59D5EE1A3C11EE8A846877C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:18 +0000 ROA not before: Thu 22 May 2025 20:07:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151490 IP address blocks: 2406:840:fa40::/48 maxlen: 48 2406:840:fedb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3774 (0xebe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83f6-df64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8b:e9:9c:0e:5a:52:5a:f9:55:51:38:87:58: ca:ea:e5:cb:15:b0:bc:d3:bf:9e:26:47:40:e4:41: 9e:cb:8d:43:a3:14:7d:23:09:08:e4:12:15:57:ee: c7:c8:b3:ea:1b:98:fa:ae:f0:7a:63:81:04:e7:6e: f1:09:da:15:74:84:88:4b:f8:f5:f3:a2:d4:61:89: 7f:64:cd:c1:77:45:b1:03:ce:2a:12:39:2c:21:bd: 91:70:3c:b0:66:62:f2:51:85:5b:98:df:7f:ea:f3: 29:86:77:f3:03:0d:69:8c:64:cf:b5:86:91:e8:45: 84:1c:ac:38:c2:bb:bf:a8:42:0e:3b:98:8a:05:e1: d9:15:17:f0:b9:96:ce:c7:b9:e7:82:65:98:e1:0e: 61:97:95:c5:dc:13:9c:e6:93:81:62:b4:d2:d4:3f: c5:87:ed:2e:2b:95:0e:23:4e:ca:8c:ee:c8:71:4c: 74:3f:5c:06:35:5f:3d:14:bb:95:63:95:f6:86:14: 1e:42:e4:b8:73:64:42:33:4b:37:84:7f:e7:7b:8a: 8f:79:07:e5:3f:07:93:05:5a:f5:86:4c:86:35:18: fd:ab:2e:b5:dd:82:36:4b:b5:6d:48:b2:1a:61:45: 3e:7f:47:77:fe:01:b6:96:b8:28:36:55:15:a6:a2: 42:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:AE:EA:00:26:DB:AA:53:EF:E6:9E:BD:AC:21:83:5D:FE:F0:6B:74 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6E59D5EE1A3C11EE8A846877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fa40::/48 2406:840:fedb::/48 Signature Algorithm: sha256WithRSAEncryption 32:fd:67:cf:eb:a2:55:e3:82:d5:97:a6:02:ff:46:4c:4e:88: 47:14:16:20:44:d3:bf:d9:ad:cd:18:80:24:a1:a3:95:58:ab: 8c:4e:db:b4:dd:af:92:17:47:2d:f3:56:81:65:06:8c:57:62: 24:30:de:1e:90:26:e8:0b:6e:dd:57:7d:59:3a:61:69:ef:cd: 26:95:a2:4e:bd:a4:56:29:65:f2:63:cc:0c:34:f5:bc:76:d2: 8e:cd:74:ae:e1:f7:4a:8d:93:c1:41:76:ba:c5:b6:b3:41:8b: b4:7e:38:90:70:77:72:ba:d6:4b:5b:fd:ee:72:b2:71:a7:75: 78:d0:3b:3b:5f:57:bc:26:c3:bc:97:d8:fd:40:60:b6:ba:2a: 31:64:f6:d0:1a:f4:38:67:4b:a0:1f:77:52:fa:08:d2:27:ac: a8:17:36:53:e6:c3:02:0c:a4:96:55:3d:8b:67:04:c7:29:2b: 9e:f5:ee:83:f8:1c:a4:ed:ac:92:5b:e3:8a:e1:68:ba:80:e3: 1f:b4:fb:60:72:94:ef:38:50:04:23:a8:0d:14:56:54:9a:d1: 43:57:a6:61:21:18:54:1a:f2:38:22:ce:d6:ff:5e:db:b1:5f: 18:2c:eb:3f:4d:ce:d5:22:19:56:6d:b5:ac:27:3e:e5:6b:f2: 8b:a2:e1:27 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNmNi1kZjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YvpnA5aUlr5VVE4h1jK6uXLFbC807+eJkdA5EGey41DoxR9IwkI5BIVV+7H yLPqG5j6rvB6Y4EE527xCdoVdISIS/j186LUYYl/ZM3Bd0WxA84qEjksIb2RcDyw ZmLyUYVbmN9/6vMphnfzAw1pjGTPtYaR6EWEHKw4wru/qEIOO5iKBeHZFRfwuZbO x7nngmWY4Q5hl5XF3BOc5pOBYrTS1D/Fh+0uK5UOI07KjO7IcUx0P1wGNV89FLuV Y5X2hhQeQuS4c2RCM0s3hH/ne4qPeQflPweTBVr1hkyGNRj9qy613YI2S7VtSLIa YUU+f0d3/gG2lrgoNlUVpqJCAQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBOu6gAm 26pT7+aevawhg13+8Gt0MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkU1OUQ1RUUx QTNDMTFFRThBODQ2ODc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBghA+kADBwAkBghA/tswDQYJKoZIhvcNAQELBQADggEB ADL9Z8/rolXjgtWXpgL/RkxOiEcUFiBE07/Zrc0YgCSho5VYq4xO27Tdr5IXRy3z VoFlBoxXYiQw3h6QJugLbt1XfVk6YWnvzSaVok69pFYpZfJjzAw09bx20o7NdK7h 90qNk8FBdrrFtrNBi7R+OJBwd3K61ktb/e5ysnGndXjQOztfV7wmw7yX2P1AYLa6 KjFk9tAa9DhnS6Afd1L6CNInrKgXNlPmwwIMpJZVPYtnBMcpK5717oP4HKTtrJJb 44rhaLqA4x+0+2BylO84UAQjqA0UVlSa0UNXpmEhGFQa8jgiztb/XtuxXxgs6z9N ztUiGVZttawnPuVr8oui4Sc= -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:45 2025 by rpki-client