$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa File: 86F5AD8C0B6D11ED81E33B71C4F9AE02.roa (raw, json) Hash identifier: cf0uvOzDYaEIkApHeVXKsIl16trtJG5m3TW96TXoMB8= Subject key identifier: EC:11:BC:FD:95:56:E3:14:8A:00:35:88:29:C9:9E:81:42:A1:7F:2A Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EB4 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:07 +0000 ROA not before: Thu 22 May 2025 20:07:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150141 IP address blocks: 2406:840:e280::/44 maxlen: 48 2406:840:fef5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3764 (0xeb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83ea-eb83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f2:93:a4:06:be:fd:26:e5:12:d3:76:bd:d9: a6:75:15:29:da:f5:58:11:ae:8c:78:05:5f:6c:06: 33:40:20:68:91:91:80:3a:92:19:ba:00:1f:17:7b: 9b:b4:db:6a:10:ad:47:f6:55:da:6c:94:d9:a6:bf: b0:9e:12:8f:92:ff:3a:e9:18:6c:a1:63:f9:63:3c: 2f:bd:c8:48:c3:9f:66:aa:4b:e1:64:a7:a9:63:9d: 5e:af:15:7e:95:33:83:c0:ef:d7:27:9a:35:4c:f2: ab:74:12:4d:7d:13:9f:1e:86:e7:fb:f8:05:43:fa: f2:15:3c:5c:a3:62:4d:49:30:6b:5b:92:6d:31:a1: 00:27:64:4f:8c:18:3d:11:53:77:78:64:56:29:cb: 55:ce:77:af:f5:e2:f0:1b:57:43:fa:87:c0:a6:85: 32:83:48:19:b3:dc:0d:c6:d1:c1:64:33:b7:37:92: bb:e3:85:a9:58:39:77:a1:bb:51:f2:4f:a8:dd:f1: 38:15:32:9e:3b:a0:0b:bb:e5:13:0a:e8:62:1b:c5: 17:bf:b5:17:80:17:f4:4e:a4:b3:a5:cc:39:81:75: 87:31:ea:04:e8:11:f3:6c:2f:9b:d9:1b:37:29:ba: 7a:9f:60:58:11:fe:a9:3e:be:eb:d9:3c:2b:77:c0: af:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:11:BC:FD:95:56:E3:14:8A:00:35:88:29:C9:9E:81:42:A1:7F:2A X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e280::/44 2406:840:fef5::/48 Signature Algorithm: sha256WithRSAEncryption 68:80:b8:31:db:06:88:40:bb:81:0d:23:2c:0e:27:bc:92:69: 63:de:1c:ac:bf:e0:76:65:b7:d1:5d:38:17:dc:a4:f7:9b:1a: f8:d9:c7:4d:cd:4f:e3:f6:39:54:e3:f2:62:cc:15:92:69:d6: 63:71:b0:2e:4f:d9:c3:af:ec:d7:72:21:05:02:2b:79:fd:e1: 32:e9:f2:a5:25:19:e5:55:87:bc:bf:08:f4:70:0d:c2:bc:d5: 7b:b2:c5:97:58:d9:48:d8:0e:f1:c6:e1:ab:07:b8:b3:8a:59: a7:a3:26:06:2b:c4:d6:68:b4:d1:4e:db:2c:c8:34:15:a5:ec: 7a:0c:97:89:6f:48:7b:5c:b7:6f:90:57:6d:d2:cd:25:47:02: 1b:6d:93:5b:21:8d:0a:c6:19:d6:7a:fc:0d:92:80:61:57:9e: dd:11:d3:89:1a:e0:c0:31:57:c7:72:72:15:52:61:e8:13:14: 49:02:df:5a:fc:41:6a:b0:3b:38:0d:57:59:72:bd:8d:dd:7f: 21:d4:1c:85:80:3b:c5:84:5f:55:be:3a:5a:84:bf:09:ec:24: 7e:9b:5d:ef:6a:0f:bd:51:a5:36:4c:03:1a:ad:c2:73:16:8d: 23:a6:9e:ac:7e:a3:65:33:e7:03:40:c9:d8:cc:a4:2e:7a:6b: 90:e6:61:42 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNlYS1lYjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufKTpAa+/SblEtN2vdmmdRUp2vVYEa6MeAVfbAYzQCBokZGAOpIZugAfF3ub tNtqEK1H9lXabJTZpr+wnhKPkv866RhsoWP5YzwvvchIw59mqkvhZKepY51erxV+ lTODwO/XJ5o1TPKrdBJNfROfHobn+/gFQ/ryFTxco2JNSTBrW5JtMaEAJ2RPjBg9 EVN3eGRWKctVznev9eLwG1dD+ofApoUyg0gZs9wNxtHBZDO3N5K744WpWDl3obtR 8k+o3fE4FTKeO6ALu+UTCuhiG8UXv7UXgBf0TqSzpcw5gXWHMeoE6BHzbC+b2Rs3 Kbp6n2BYEf6pPr7r2Twrd8Cv/wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOwRvP2V VuMUigA1iCnJnoFCoX8qMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODZGNUFEOEMw QjZEMTFFRDgxRTMzQjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4oADBwAkBghA/vUwDQYJKoZIhvcNAQELBQADggEB AGiAuDHbBohAu4ENIywOJ7ySaWPeHKy/4HZlt9FdOBfcpPebGvjZx03NT+P2OVTj 8mLMFZJp1mNxsC5P2cOv7NdyIQUCK3n94TLp8qUlGeVVh7y/CPRwDcK81XuyxZdY 2UjYDvHG4asHuLOKWaejJgYrxNZotNFO2yzINBWl7HoMl4lvSHtct2+QV23SzSVH Ahttk1shjQrGGdZ6/A2SgGFXnt0R04ka4MAxV8dychVSYegTFEkC31r8QWqwOzgN V1lyvY3dfyHUHIWAO8WEX1W+OlqEvwnsJH6bXe9qD71RpTZMAxqtwnMWjSOmnqx+ o2Uz5wNAydjMpC56a5DmYUI= -----END CERTIFICATE-----Generated at Wed Jun 4 00:09:24 2025 by rpki-client