$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/826245A8913111EBB0F6C809C4F9AE02.roa File: 826245A8913111EBB0F6C809C4F9AE02.roa (raw, json) Hash identifier: XpiVGtPUPJN3tijSZj6o2UhTpNVkL5xD8sDmbpizO5Y= Subject key identifier: B8:B0:54:40:44:3C:38:10:22:A6:06:AF:53:E8:A5:87:B8:37:17:97 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EF5 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/826245A8913111EBB0F6C809C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:11 +0000 ROA not before: Thu 22 May 2025 20:08:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 211571 IP address blocks: 2406:840:e500::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3829 (0xef5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f842a-910b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:67:b0:be:51:35:5d:ff:0b:30:fa:03:d5:6d: c2:64:07:75:4e:27:52:a2:2d:c4:8e:a1:5a:62:bf: bd:42:5c:6f:3c:3c:18:5a:c1:d9:3c:f4:21:38:e5: 46:45:0a:1f:8f:36:84:de:a6:81:8b:c6:25:c2:1b: 1f:bf:79:51:4e:f7:24:41:13:a5:9c:f1:93:ee:92: 9b:68:0d:e1:55:29:d8:d0:a9:5c:d3:e3:c1:d2:dc: e4:71:31:57:cf:72:f5:03:ec:d2:e9:bb:6e:70:d1: 9a:9b:ca:85:9d:07:ea:c6:1b:69:b0:b4:e0:2b:6b: b7:59:a7:95:25:4c:c7:e6:79:e9:8d:9f:6c:0a:41: b5:43:a3:08:8c:e6:9b:f2:b8:7b:4d:f2:76:82:2c: d2:52:ea:9b:52:db:d8:e0:13:cc:7a:20:4b:82:00: 7e:07:d4:b9:e3:00:30:cc:cd:fd:6a:45:0c:af:48: aa:19:a3:ca:e9:22:6c:5b:a1:73:6c:fe:e6:aa:05: 4e:c1:b4:88:3c:c7:8c:30:85:46:eb:35:f6:d6:c2: f5:16:fc:84:1f:a8:45:af:ed:1f:bc:ad:33:d4:7d: fe:cd:66:a4:c0:6c:9b:ae:ec:21:58:c8:b0:5f:8d: 5f:72:a2:cb:8b:ce:18:67:2b:a6:8d:76:74:99:ce: 9c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B0:54:40:44:3C:38:10:22:A6:06:AF:53:E8:A5:87:B8:37:17:97 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/826245A8913111EBB0F6C809C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e500::/44 Signature Algorithm: sha256WithRSAEncryption 92:00:8e:57:56:7b:95:27:e0:ba:37:58:b7:6b:c0:36:71:a3: 8a:23:9a:22:f1:88:b3:04:61:ca:de:84:fa:e5:94:f4:22:e6: b5:b4:10:8e:52:7e:63:c9:96:51:ad:2c:4e:ae:62:45:0b:22: 1b:08:21:b4:a8:63:e7:2a:1c:e3:63:c4:97:ab:43:88:a9:21: d1:32:58:a8:e3:5d:64:76:1b:75:e4:6c:a2:f2:76:99:c6:60: ed:e3:ed:88:d9:65:95:eb:b9:b1:89:ad:29:6f:6f:a3:0c:33: 66:a4:34:8f:70:e8:07:d0:97:b4:7f:83:bf:30:1f:a6:0a:86: 24:15:a0:8a:c4:69:dd:60:7f:8d:f9:64:c5:e8:8c:7e:43:ee: 06:fe:3b:c4:d4:ec:fb:d8:7e:8b:d3:bd:f7:3f:34:9f:a4:c0: f0:3e:e8:4c:06:62:a4:87:c1:2c:e7:42:e3:b7:8c:05:5a:81: 8a:db:53:cc:a2:62:d2:9d:88:d5:e7:91:74:88:53:2a:1f:e2: 02:6e:96:2d:94:d3:8d:0a:7a:fd:c3:21:fd:46:80:2e:a5:2b: 3b:fc:2e:e3:d6:19:62:3c:93:7e:da:80:29:49:19:a2:4e:6c: b4:67:02:4e:6c:09:92:e3:2a:75:90:d1:cd:7a:d4:ee:39:80: 9c:56:49:03 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQyYS05MTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGewvlE1Xf8LMPoD1W3CZAd1TidSoi3EjqFaYr+9QlxvPDwYWsHZPPQhOOVG RQofjzaE3qaBi8Ylwhsfv3lRTvckQROlnPGT7pKbaA3hVSnY0Klc0+PB0tzkcTFX z3L1A+zS6btucNGam8qFnQfqxhtpsLTgK2u3WaeVJUzH5nnpjZ9sCkG1Q6MIjOab 8rh7TfJ2gizSUuqbUtvY4BPMeiBLggB+B9S54wAwzM39akUMr0iqGaPK6SJsW6Fz bP7mqgVOwbSIPMeMMIVG6zX21sL1FvyEH6hFr+0fvK0z1H3+zWakwGybruwhWMiw X41fcqLLi84YZyumjXZ0mc6cnwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLiwVEBE PDgQIqYGr1PopYe4NxeXMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODI2MjQ1QTg5 MTMxMTFFQkIwRjZDODA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA5QAwDQYJKoZIhvcNAQELBQADggEBAJIAjldWe5Un 4Lo3WLdrwDZxo4ojmiLxiLMEYcrehPrllPQi5rW0EI5SfmPJllGtLE6uYkULIhsI IbSoY+cqHONjxJerQ4ipIdEyWKjjXWR2G3XkbKLydpnGYO3j7YjZZZXrubGJrSlv b6MMM2akNI9w6AfQl7R/g78wH6YKhiQVoIrEad1gf435ZMXojH5D7gb+O8TU7PvY fovTvfc/NJ+kwPA+6EwGYqSHwSznQuO3jAVagYrbU8yiYtKdiNXnkXSIUyof4gJu li2U040Kev3DIf1GgC6lKzv8LuPWGWI8k37agClJGaJObLRnAk5sCZLjKnWQ0c16 1O45gJxWSQM= -----END CERTIFICATE-----Generated at Mon Jun 2 07:17:38 2025 by rpki-client