$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa File: 961B87D456A111EEB7EDA93AC4F9AE02.roa (raw, json) Hash identifier: wBRrsBQqCJXQr096GSfXqAAemYiv7/cAacwqEzL1oBQ= Subject key identifier: AC:CC:3F:10:73:D9:29:92:F9:69:9B:65:56:39:F8:46:DD:D6:FE:9D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E99 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa Signing time: Thu 22 May 2025 20:06:42 +0000 ROA not before: Thu 22 May 2025 20:06:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139216 IP address blocks: 2406:840:e0e0::/44 maxlen: 48 2406:840:eee0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3737 (0xe99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83d2-46e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bd:f6:e4:b8:5f:2d:62:61:5d:c5:52:50:a4: 8f:00:dd:f7:c2:e4:ee:85:d1:97:ce:b6:53:71:21: 9e:fd:6c:a3:60:a8:7f:98:f4:1a:47:95:e6:e7:c6: b6:cf:61:5a:cd:10:91:8e:f4:bc:62:fd:3d:c8:36: d2:b3:eb:f4:ad:e9:03:8c:d3:bb:be:fa:2d:b6:3a: 78:bb:f7:08:46:6f:f0:59:89:89:b9:7b:47:ba:7c: 75:06:2a:31:2e:7b:c9:9d:a1:d6:69:5c:0e:0a:c9: b8:ed:5c:3c:03:f8:94:e0:5f:8c:c4:bd:ac:28:dc: dd:2b:d7:1d:f6:b9:d9:c3:66:0c:f4:24:f6:86:04: 9e:d2:f1:cd:03:f2:92:af:fe:ec:0d:d4:79:23:82: 28:4d:51:35:bf:00:d5:9c:fb:6e:4e:fa:4b:7f:3d: 3a:95:de:91:e7:b8:cb:29:bd:06:ac:b1:fd:cf:fc: 09:95:95:32:fa:92:7b:9e:41:b8:90:c9:c7:d5:4d: c3:8e:e8:2c:95:03:dc:32:ad:7d:21:4e:3b:cd:f8: 09:34:ee:73:41:29:37:3e:88:0d:bc:1e:67:03:62: 65:97:4b:7d:d9:1e:f8:5a:9b:63:61:a7:70:f3:7e: c4:69:91:bd:d5:60:52:0a:a6:f0:82:67:02:e9:1b: 0c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CC:3F:10:73:D9:29:92:F9:69:9B:65:56:39:F8:46:DD:D6:FE:9D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e0e0::/44 2406:840:eee0::/44 Signature Algorithm: sha256WithRSAEncryption 7f:8f:28:86:a0:39:bd:a0:86:49:08:ce:99:da:d1:ba:49:cb: 62:02:31:dd:19:a6:4b:cf:46:61:fd:60:6c:a3:ab:6c:f5:03: fa:1e:50:7c:96:de:57:17:5e:1c:7c:5c:d4:1f:4a:00:aa:f4: 5b:73:c0:22:bf:10:d2:59:dd:20:ff:19:22:b6:14:d6:91:70: fe:89:59:a2:a3:04:c7:a3:66:1f:1f:68:86:6b:da:7e:ce:4c: 1e:c2:b8:67:d5:f4:56:cd:f8:91:a3:ec:ae:94:95:56:c3:af: b5:5c:50:a7:bf:6a:79:bf:08:d4:0b:63:19:ab:a5:b7:a6:78: e4:f9:04:e8:f8:09:32:5b:56:45:cc:6c:00:39:b2:92:bd:d2: 6e:8e:32:c6:50:cd:46:9b:d4:f3:9c:11:25:8d:2f:e2:c3:7e: 04:24:61:a3:4f:45:d1:0b:58:79:3c:ac:bb:b2:5d:dd:1a:0b: 37:90:84:1e:04:ed:be:fb:9e:d8:86:9a:08:99:17:21:92:c1: 2c:e9:48:df:c3:b8:53:51:d3:90:3f:cb:24:ce:2a:6c:67:74: b1:c3:e1:2e:94:29:73:98:bd:e3:23:b7:be:fa:3a:dd:b5:83: 8a:1a:e9:a1:bf:45:b8:7a:77:95:ee:b2:93:c2:db:a8:d0:a7: a2:16:05:85 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNkMi00NmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7325LhfLWJhXcVSUKSPAN33wuTuhdGXzrZTcSGe/WyjYKh/mPQaR5Xm58a2 z2FazRCRjvS8Yv09yDbSs+v0rekDjNO7vvottjp4u/cIRm/wWYmJuXtHunx1Biox LnvJnaHWaVwOCsm47Vw8A/iU4F+MxL2sKNzdK9cd9rnZw2YM9CT2hgSe0vHNA/KS r/7sDdR5I4IoTVE1vwDVnPtuTvpLfz06ld6R57jLKb0GrLH9z/wJlZUy+pJ7nkG4 kMnH1U3DjugslQPcMq19IU47zfgJNO5zQSk3PogNvB5nA2Jll0t92R74WptjYadw 837EaZG91WBSCqbwgmcC6RsMLwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKzMPxBz 2SmS+WmbZVY5+Ebd1v6dMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTYxQjg3RDQ1 NkExMTFFRUI3RURBOTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4OADBwQkBghA7uAwDQYJKoZIhvcNAQELBQADggEB AH+PKIagOb2ghkkIzpna0bpJy2ICMd0ZpkvPRmH9YGyjq2z1A/oeUHyW3lcXXhx8 XNQfSgCq9FtzwCK/ENJZ3SD/GSK2FNaRcP6JWaKjBMejZh8faIZr2n7OTB7CuGfV 9FbN+JGj7K6UlVbDr7VcUKe/anm/CNQLYxmrpbemeOT5BOj4CTJbVkXMbAA5spK9 0m6OMsZQzUab1POcESWNL+LDfgQkYaNPRdELWHk8rLuyXd0aCzeQhB4E7b77ntiG mgiZFyGSwSzpSN/DuFNR05A/yyTOKmxndLHD4S6UKXOYveMjt776Ot21g4oa6aG/ Rbh6d5XuspPC26jQp6IWBYU= -----END CERTIFICATE-----Generated at Mon Jun 2 06:53:42 2025 by rpki-client