$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa File: 8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa (raw, json) Hash identifier: aEo8V5NJw4O96oVA7/90vwjUnKpP9OJCmZ/GzZG3k70= Subject key identifier: BF:2E:93:99:BB:52:66:41:28:32:05:08:01:D2:D7:B1:66:15:C3:DA Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EB5 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:08 +0000 ROA not before: Thu 22 May 2025 20:07:08 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150173 IP address blocks: 2406:840:fa00::/44 maxlen: 48 2406:840:fed1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3765 (0xeb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:08 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83ec-c082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:44:4d:35:de:ae:49:dd:db:8f:86:53:56:99: 2d:65:4d:e5:3d:59:b3:a4:7e:44:7e:87:32:c0:53: fb:a0:30:ca:84:49:73:f7:9b:4d:f9:e4:c7:54:78: 49:e1:f0:0e:45:a2:7d:ea:e3:37:52:46:91:41:5c: 7c:c8:32:c7:3e:36:3e:41:cd:5c:7b:e0:8a:26:1a: d4:81:2c:75:48:a8:db:25:0e:a2:79:ed:3d:32:d9: 40:86:02:92:fd:b6:16:f7:5a:b3:f0:3e:3d:0f:66: a1:60:7c:bd:a7:0e:4c:d7:5f:1a:02:a0:81:3f:e9: f0:34:26:f1:cc:75:70:e2:de:c0:f4:f9:83:cb:9f: 55:28:49:5b:10:e8:1a:a1:7d:44:e9:a6:fa:1f:b6: 77:4f:09:fe:2b:f5:70:53:fd:66:ab:0f:6b:44:18: 49:76:79:5c:50:d6:31:80:4b:69:3a:b5:43:c8:ed: 0d:89:10:4b:69:bc:bc:04:c3:0b:06:18:7e:bd:86: 57:18:ac:b6:13:fc:eb:52:0e:a3:8e:95:91:3b:62: d0:ec:01:fd:0e:c5:b6:30:93:92:14:08:39:81:82: 6b:3d:fe:5c:cb:43:ed:11:f2:c2:d3:50:6d:c0:be: c9:f0:3b:c8:21:03:ab:ba:cc:9c:e7:07:f2:46:76: bf:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:2E:93:99:BB:52:66:41:28:32:05:08:01:D2:D7:B1:66:15:C3:DA X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fa00::/44 2406:840:fed1::/48 Signature Algorithm: sha256WithRSAEncryption 03:cc:7d:35:1d:0a:34:bf:d5:c4:d3:f7:ed:0d:40:4b:09:ca: 46:b3:4d:82:e3:99:0c:a6:94:aa:70:fa:50:92:68:ba:74:6f: 9f:b2:bd:52:96:94:cb:54:3b:29:3a:09:46:d7:dc:00:79:39: 61:8d:ef:71:79:3b:d1:d2:e8:a9:d0:85:ec:72:0a:0f:df:63: bd:b4:36:ff:29:ac:16:d7:db:07:11:b4:8f:a3:1a:91:c3:a3: 17:75:73:28:9d:40:fa:27:4f:f7:ae:02:93:72:3b:dc:b6:5c: cb:e3:e0:42:bb:19:fe:d9:1f:18:df:fd:26:06:d0:18:3e:e5: bc:af:ac:bb:58:9d:a9:ad:b6:92:cf:7a:bf:66:90:70:3c:a6: 5c:03:d0:f8:f9:11:67:65:9e:1b:69:37:e0:64:f5:95:8e:a8: 95:97:d6:32:55:40:45:f4:40:4e:b8:ae:d9:27:ec:90:62:7b: 8b:72:c8:6c:12:a7:94:e4:3a:69:1a:af:83:42:ae:dc:68:a3: 51:b0:18:34:d6:b6:aa:a0:2a:5a:4e:f2:29:71:39:03:d9:d0: 05:a8:a1:c5:7c:b2:e5:bd:52:4b:2b:71:1f:14:f0:0d:94:42: 8e:f4:78:fa:d5:3e:ab:f7:8a:47:80:57:7c:7d:37:c9:07:42: 5f:b1:1e:fc -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzA4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNlYy1jMDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2URNNd6uSd3bj4ZTVpktZU3lPVmzpH5EfocywFP7oDDKhElz95tN+eTHVHhJ 4fAORaJ96uM3UkaRQVx8yDLHPjY+Qc1ce+CKJhrUgSx1SKjbJQ6iee09MtlAhgKS /bYW91qz8D49D2ahYHy9pw5M118aAqCBP+nwNCbxzHVw4t7A9PmDy59VKElbEOga oX1E6ab6H7Z3Twn+K/VwU/1mqw9rRBhJdnlcUNYxgEtpOrVDyO0NiRBLaby8BMML Bhh+vYZXGKy2E/zrUg6jjpWRO2LQ7AH9DsW2MJOSFAg5gYJrPf5cy0PtEfLC01Bt wL7J8DvIIQOrusyc5wfyRna/3wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFL8uk5m7 UmZBKDIFCAHS17FmFcPaMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOEFCQUI5QjQy MzlFMTFFREFEM0JBMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA+gADBwAkBghA/tEwDQYJKoZIhvcNAQELBQADggEB AAPMfTUdCjS/1cTT9+0NQEsJykazTYLjmQymlKpw+lCSaLp0b5+yvVKWlMtUOyk6 CUbX3AB5OWGN73F5O9HS6KnQhexyCg/fY720Nv8prBbX2wcRtI+jGpHDoxd1cyid QPonT/euApNyO9y2XMvj4EK7Gf7ZHxjf/SYG0Bg+5byvrLtYnamttpLPer9mkHA8 plwD0Pj5EWdlnhtpN+Bk9ZWOqJWX1jJVQEX0QE64rtkn7JBie4tyyGwSp5TkOmka r4NCrtxoo1GwGDTWtqqgKlpO8ilxOQPZ0AWoocV8suW9UksrcR8U8A2UQo70ePrV Pqv3ikeAV3x9N8kHQl+xHvw= -----END CERTIFICATE-----Generated at Wed Jun 4 00:11:37 2025 by rpki-client