$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/928BCB08860A11EA89578D31C4F9AE02.roa File: 928BCB08860A11EA89578D31C4F9AE02.roa (raw, json) Hash identifier: b2o8rOSd+ZjAADtr7bHhxx4FrhHUBRyd22eVKkhq0Z8= Subject key identifier: 78:CB:7A:AB:B3:44:4C:19:C4:E0:22:8E:47:40:EA:8C:C7:26:81:69 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EF2 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/928BCB08860A11EA89578D31C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:08 +0000 ROA not before: Thu 22 May 2025 20:08:08 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 209306 IP address blocks: 2406:840:fee0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3826 (0xef2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:08 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8428-2484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f1:dc:dc:17:db:51:2c:88:09:96:bb:3f:8b: 12:c6:e3:3f:da:1a:1b:a9:6e:0d:96:f2:ab:02:7e: 08:e8:9a:80:1e:3c:f7:98:33:1f:85:51:eb:32:3d: b4:71:56:8e:a7:10:a5:9a:bc:ab:e6:76:61:b0:f7: c3:67:8d:6c:19:06:44:92:a2:9d:2d:cb:2e:11:15: c9:44:ee:b9:5b:17:b8:9a:e3:99:73:6c:b2:47:9f: 95:9b:c9:54:aa:e0:58:9a:d4:f0:ed:59:69:bf:35: 15:6a:28:79:05:7c:7d:b8:ae:db:3f:28:14:9c:e0: 98:1a:0e:7f:8c:16:cb:b3:f0:3b:3b:10:d7:55:6d: d1:43:e2:b4:b9:6c:ec:b7:28:63:dd:cb:91:81:48: 54:12:d8:b1:ca:33:2a:5a:c3:24:98:f6:cc:c6:e6: 5c:04:d7:b3:7f:02:db:cc:c1:5d:09:8a:cf:b8:eb: c0:06:d5:43:8d:77:96:ad:72:57:72:69:f4:72:45: 19:8c:9f:56:8f:d5:a6:61:5e:71:46:0f:3b:b4:11: c9:76:49:2b:54:45:c8:95:b4:04:d9:42:53:73:71: 90:81:a5:87:d0:27:3b:21:9d:c6:53:a1:c1:88:e2: fb:52:62:de:f6:8b:b5:d1:c5:bc:59:f1:5c:0f:dc: be:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CB:7A:AB:B3:44:4C:19:C4:E0:22:8E:47:40:EA:8C:C7:26:81:69 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/928BCB08860A11EA89578D31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fee0::/44 Signature Algorithm: sha256WithRSAEncryption 7b:95:34:d1:24:f5:ac:ba:65:b0:f2:f5:9b:1c:8b:bf:98:6a: 56:ba:ed:38:f2:18:7e:ec:07:cc:78:a6:03:8d:70:73:d7:cf: 80:3f:3e:79:00:3e:aa:11:a7:1a:ed:fe:ae:3e:9c:42:c6:4b: 1b:fb:86:95:4f:38:d4:c4:55:18:c6:67:75:79:9b:51:fd:1e: 33:8c:26:0b:78:ad:f7:3b:f8:31:54:b6:66:15:37:35:65:d4: 98:02:43:7d:06:e8:75:ce:8f:cb:83:9a:09:78:e3:b3:39:f4: f0:55:9c:68:8f:71:11:eb:62:b6:39:60:6f:de:04:14:fa:e2: c1:33:f3:64:8c:da:ff:38:51:80:b3:97:34:68:5d:da:07:b4: 19:14:49:d2:94:64:11:f9:71:dd:83:b1:aa:6a:6a:55:32:44: 6c:28:86:c2:ea:9c:d7:a6:5f:cd:28:9b:ef:2c:d5:14:e9:2f: 52:f1:0c:31:7b:83:9d:03:aa:9f:09:c0:23:09:8e:12:e8:3d: 03:7f:b1:23:7b:80:85:70:ef:a9:47:17:04:95:77:6e:13:9a: 7e:a9:49:9a:89:5e:a1:e3:63:0f:82:7e:3e:e5:3a:08:57:c5: 14:1e:82:fe:e7:37:13:bc:9f:08:56:c7:ad:3e:bd:3f:5f:8d: 59:d4:e0:e1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODA4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQyOC0yNDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvHc3BfbUSyICZa7P4sSxuM/2hobqW4NlvKrAn4I6JqAHjz3mDMfhVHrMj20 cVaOpxClmryr5nZhsPfDZ41sGQZEkqKdLcsuERXJRO65Wxe4muOZc2yyR5+Vm8lU quBYmtTw7VlpvzUVaih5BXx9uK7bPygUnOCYGg5/jBbLs/A7OxDXVW3RQ+K0uWzs tyhj3cuRgUhUEtixyjMqWsMkmPbMxuZcBNezfwLbzMFdCYrPuOvABtVDjXeWrXJX cmn0ckUZjJ9Wj9WmYV5xRg87tBHJdkkrVEXIlbQE2UJTc3GQgaWH0Cc7IZ3GU6HB iOL7UmLe9ou10cW8WfFcD9y+8QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHjLequz REwZxOAijkdA6ozHJoFpMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTI4QkNCMDg4 NjBBMTFFQTg5NTc4RDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA/uAwDQYJKoZIhvcNAQELBQADggEBAHuVNNEk9ay6 ZbDy9Zsci7+Yala67TjyGH7sB8x4pgONcHPXz4A/PnkAPqoRpxrt/q4+nELGSxv7 hpVPONTEVRjGZ3V5m1H9HjOMJgt4rfc7+DFUtmYVNzVl1JgCQ30G6HXOj8uDmgl4 47M59PBVnGiPcRHrYrY5YG/eBBT64sEz82SM2v84UYCzlzRoXdoHtBkUSdKUZBH5 cd2DsapqalUyRGwohsLqnNemX80om+8s1RTpL1LxDDF7g50Dqp8JwCMJjhLoPQN/ sSN7gIVw76lHFwSVd24Tmn6pSZqJXqHjYw+Cfj7lOghXxRQegv7nNxO8nwhWx60+ vT9fjVnU4OE= -----END CERTIFICATE-----Generated at Mon Jun 2 07:10:17 2025 by rpki-client