$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa File: 7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa (raw, json) Hash identifier: Lp+oIi36pVL2XekNOnP3em6UXiUjkuLzySetfLx915g= Subject key identifier: 6C:58:2C:05:6A:79:01:9E:8E:56:C7:0D:08:48:8C:2E:27:FB:87:F2 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EAF Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:01 +0000 ROA not before: Thu 22 May 2025 20:07:01 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142641 IP address blocks: 2406:840:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3759 (0xeaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:01 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83e5-78d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e1:39:45:02:7c:2c:72:51:bb:30:1d:ba:7e: 0a:95:6a:c7:6a:91:a0:f9:31:24:04:11:ec:61:d4: 69:f2:36:31:bd:ca:4f:c9:5b:ad:cb:e8:18:46:0f: 74:4f:12:76:bf:76:2e:16:b1:3f:57:55:b1:ed:23: 27:af:74:25:20:e6:05:e7:4b:11:25:eb:9d:c1:0c: 63:35:69:33:c7:2e:4c:c1:64:01:66:2e:60:7d:fd: 3e:5a:36:d1:5a:08:1d:07:49:2b:59:1e:8a:b1:73: 4a:e5:f1:1b:32:88:24:df:05:d2:af:98:53:5c:6f: a5:c3:d6:56:38:fc:81:ca:4b:3e:8d:24:c5:ae:c3: 00:b3:f6:a4:0a:d1:36:6f:da:cd:c5:14:42:37:d0: 47:86:65:e1:b4:14:62:0f:02:21:b7:fb:87:31:f7: 8c:f0:db:ec:bc:64:09:94:7f:7a:b7:9a:b5:e4:bb: ba:3d:26:ab:f8:50:9b:4f:b6:6a:22:bb:83:e4:ef: 59:7a:51:5a:db:63:d4:bb:31:68:28:52:d6:91:df: d9:a4:95:90:22:15:17:5a:fa:e5:79:b8:8a:89:42: da:f1:f2:0c:77:88:dd:50:c1:68:2d:40:c9:ce:f0: ce:c1:a6:ea:9c:1d:63:66:8d:2a:5f:fd:39:b3:8b: 98:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:58:2C:05:6A:79:01:9E:8E:56:C7:0D:08:48:8C:2E:27:FB:87:F2 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 9a:6f:5e:43:69:28:43:3a:7a:b3:be:fb:5b:ff:37:4c:ef:ca: 26:71:bf:c7:59:68:2a:30:98:54:00:c3:74:9c:cb:d3:74:6f: 52:d0:5c:e4:c3:a5:2b:01:d0:a4:68:df:28:4c:39:7d:b2:db: 8d:83:0e:bb:84:12:e8:f7:ec:f7:f6:65:b7:9b:11:2a:5d:a2: 10:8f:bd:a3:fe:1e:a5:9e:99:9e:44:58:ea:0c:c0:dc:11:4f: b7:05:aa:c2:8e:af:fd:65:2c:9d:05:15:1c:14:25:69:14:e8: 4b:3f:bc:c5:2f:31:c0:9a:5d:fa:95:df:6e:7a:32:dd:ef:e8: e6:23:bd:f9:de:49:23:98:7a:9d:e4:c5:21:04:bb:2e:a7:d8: b0:93:95:6f:ee:d7:80:74:36:e6:2c:78:5e:5c:40:54:17:35: ef:fb:ea:cf:79:8b:4c:45:ec:35:d8:d7:cb:fa:4f:ad:2a:3e: 38:ff:f5:3f:f0:f5:f3:2d:4d:6a:ea:04:e8:99:02:1c:32:82: ff:50:72:29:40:25:6c:34:af:94:a9:69:26:8b:dc:5a:2c:5a: 52:70:e5:55:fc:80:49:31:17:cc:84:d3:1b:68:9d:cc:70:31: 78:cf:85:3f:a2:d8:04:28:36:fc:e0:e6:bc:cd:18:4f:c7:99: a2:f1:6e:7f -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICDq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzAxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNlNS03OGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeE5RQJ8LHJRuzAdun4KlWrHapGg+TEkBBHsYdRp8jYxvcpPyVuty+gYRg90 TxJ2v3YuFrE/V1Wx7SMnr3QlIOYF50sRJeudwQxjNWkzxy5MwWQBZi5gff0+WjbR WggdB0krWR6KsXNK5fEbMogk3wXSr5hTXG+lw9ZWOPyByks+jSTFrsMAs/akCtE2 b9rNxRRCN9BHhmXhtBRiDwIht/uHMfeM8NvsvGQJlH96t5q15Lu6PSar+FCbT7Zq IruD5O9ZelFa22PUuzFoKFLWkd/ZpJWQIhUXWvrlebiKiULa8fIMd4jdUMFoLUDJ zvDOwabqnB1jZo0qX/05s4uY5wIDAQABo4IClzCCApMwHQYDVR0OBBYEFGxYLAVq eQGejlbHDQhIjC4n+4fyMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvN0ZENThCNjBD QzMxMTFFQ0IyQzRFQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkBghA/zANBgkqhkiG9w0BAQsFAAOCAQEAmm9eQ2koQzp6 s777W/83TO/KJnG/x1loKjCYVADDdJzL03RvUtBc5MOlKwHQpGjfKEw5fbLbjYMO u4QS6Pfs9/Zlt5sRKl2iEI+9o/4epZ6ZnkRY6gzA3BFPtwWqwo6v/WUsnQUVHBQl aRToSz+8xS8xwJpd+pXfbnoy3e/o5iO9+d5JI5h6neTFIQS7LqfYsJOVb+7XgHQ2 5ix4XlxAVBc17/vqz3mLTEXsNdjXy/pPrSo+OP/1P/D18y1NauoE6JkCHDKC/1By KUAlbDSvlKlpJovcWixaUnDlVfyASTEXzITTG2idzHAxeM+FP6LYBCg2/ODmvM0Y T8eZovFufw== -----END CERTIFICATE-----Generated at Mon Jun 2 06:54:25 2025 by rpki-client