$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8E5EC00837B811EF93152431C4F9AE02.roa File: 8E5EC00837B811EF93152431C4F9AE02.roa (raw, json) Hash identifier: HGH4IiFop4uSyNqtsGahEZDEj8zRrItr0WogRfc1VYM= Subject key identifier: 70:AD:46:60:04:1B:FA:3B:A2:90:99:7E:20:09:2F:B9:0D:3F:DD:1D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E9D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8E5EC00837B811EF93152431C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:46 +0000 ROA not before: Thu 22 May 2025 20:06:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139589 IP address blocks: 2406:840:f200::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3741 (0xe9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83d6-03bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e4:1e:35:b9:ca:c9:3c:9a:8c:da:7a:a2:52: 49:6a:86:53:59:36:29:c0:68:90:d1:da:7e:49:aa: 7c:32:d0:e2:af:99:3b:55:f8:b2:43:57:41:fa:68: 5d:a5:95:10:27:4c:1c:b0:d7:9b:69:63:79:a7:44: 95:2f:50:5a:26:b8:e7:26:71:62:20:13:02:eb:0f: e0:c5:e3:5a:b6:f8:a7:57:2f:10:4d:49:51:1b:a4: 73:c1:f3:77:ba:74:ed:52:35:b5:68:c2:49:93:cd: a0:98:91:58:a5:97:1b:73:52:b1:a7:c6:59:65:35: e8:7d:2b:71:28:e0:d0:af:aa:e6:32:9f:d7:1c:e4: c3:ed:a7:1d:c5:f0:94:4b:8b:17:4d:83:8b:4c:7c: 82:2a:18:16:d5:fc:a2:00:6d:46:00:5d:62:d1:54: 40:1a:cf:e4:ce:32:fd:b9:df:da:5a:89:37:8e:46: 35:2b:75:3e:ff:f8:a4:f8:78:a0:59:29:7a:ba:29: 7c:01:d5:ac:6f:4c:17:fb:76:90:ad:6c:db:e8:6c: e9:a0:03:64:80:66:3b:9b:f6:fc:9f:20:a6:1d:33: de:10:30:2d:81:e2:30:e6:8c:fb:11:fd:af:43:f5: e5:38:10:f2:cc:59:91:55:1f:1a:55:e7:bc:ba:00: 5a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AD:46:60:04:1B:FA:3B:A2:90:99:7E:20:09:2F:B9:0D:3F:DD:1D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8E5EC00837B811EF93152431C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f200::/44 Signature Algorithm: sha256WithRSAEncryption 84:b6:0f:a0:43:ef:33:4e:c1:55:3a:43:b2:69:57:59:4c:04: a7:97:f7:4e:7e:5a:b3:c1:fa:42:d7:e0:99:ee:b4:ad:3a:03: fa:3f:a1:8a:5c:33:01:ff:46:8f:82:12:46:5e:c3:67:a2:36: e2:cb:b6:16:8e:b5:25:81:de:68:fd:75:9d:32:90:0c:0d:e9: 82:64:60:a8:8f:78:51:8e:16:7f:98:ef:03:36:89:9c:61:f2: a7:a9:0e:cd:38:9d:ed:91:94:ae:4e:95:b1:a3:4f:a4:71:34: 66:aa:69:2a:4b:88:98:e0:d6:64:b3:f3:6e:05:af:22:68:70: f4:9b:3e:4e:26:41:a2:c1:ea:9e:79:9d:10:1e:bf:ea:de:51: 25:fd:c8:78:65:00:bf:5d:50:45:6f:6c:2a:50:cb:c5:42:e3: 15:d3:00:d4:39:d3:73:9d:b7:65:04:d9:70:c3:7d:60:87:04: 24:1e:df:ac:c2:57:40:d9:13:93:a6:e6:01:0f:5f:e4:e3:a0: db:0a:9b:52:c4:e2:38:a2:a8:5b:a3:08:b0:84:6f:66:06:e7: a7:99:67:28:ee:2d:7a:db:ef:f8:d2:03:df:2d:4f:ea:b3:ed: ce:db:eb:c6:19:80:7a:1d:b7:04:4f:3c:88:a0:4e:a5:f8:6f: 18:b6:f1:41 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNkNi0wM2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+QeNbnKyTyajNp6olJJaoZTWTYpwGiQ0dp+Sap8MtDir5k7VfiyQ1dB+mhd pZUQJ0wcsNebaWN5p0SVL1BaJrjnJnFiIBMC6w/gxeNatvinVy8QTUlRG6RzwfN3 unTtUjW1aMJJk82gmJFYpZcbc1Kxp8ZZZTXofStxKODQr6rmMp/XHOTD7acdxfCU S4sXTYOLTHyCKhgW1fyiAG1GAF1i0VRAGs/kzjL9ud/aWok3jkY1K3U+//ik+Hig WSl6uil8AdWsb0wX+3aQrWzb6GzpoANkgGY7m/b8nyCmHTPeEDAtgeIw5oz7Ef2v Q/XlOBDyzFmRVR8aVee8ugBaRQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHCtRmAE G/o7opCZfiAJL7kNP90dMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOEU1RUMwMDgz N0I4MTFFRjkzMTUyNDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA8gAwDQYJKoZIhvcNAQELBQADggEBAIS2D6BD7zNO wVU6Q7JpV1lMBKeX905+WrPB+kLX4JnutK06A/o/oYpcMwH/Ro+CEkZew2eiNuLL thaOtSWB3mj9dZ0ykAwN6YJkYKiPeFGOFn+Y7wM2iZxh8qepDs04ne2RlK5OlbGj T6RxNGaqaSpLiJjg1mSz824FryJocPSbPk4mQaLB6p55nRAev+reUSX9yHhlAL9d UEVvbCpQy8VC4xXTANQ503Odt2UE2XDDfWCHBCQe36zCV0DZE5Om5gEPX+TjoNsK m1LE4jiiqFujCLCEb2YG56eZZyjuLXrb7/jSA98tT+qz7c7b68YZgHodtwRPPIig TqX4bxi28UE= -----END CERTIFICATE-----Generated at Mon Jun 2 07:08:47 2025 by rpki-client