$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/979DE50A71DC11EFAC022E35C4F9AE02.roa File: 979DE50A71DC11EFAC022E35C4F9AE02.roa (raw, json) Hash identifier: fJ1PlDeP0o1GybD3M+6AlQFaa84GF2RiPJ5qaRJVBI0= Subject key identifier: CD:02:6F:86:56:DF:95:1F:2F:C8:1A:5F:AB:C7:6B:4A:FD:93:93:93 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EB3 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/979DE50A71DC11EFAC022E35C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:06 +0000 ROA not before: Thu 22 May 2025 20:07:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149510 IP address blocks: 2406:840:fc90::/44 maxlen: 48 2406:840:fea7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3763 (0xeb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83e9-fa15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:08:41:3e:ca:e2:7d:e2:01:9e:f3:7c:71:1a: 8f:c3:d9:37:1b:79:5e:ad:ad:c1:46:9a:5f:74:93: 6a:c0:a7:14:49:dc:28:3d:53:71:70:d8:06:a1:6a: 4d:68:03:0c:57:31:38:86:71:88:38:67:25:8f:d4: 93:b5:1b:be:be:0b:02:3d:6d:3e:4f:63:3f:8d:35: 3b:05:ce:ea:81:9d:86:9f:01:b6:7f:62:d7:84:78: 6f:06:c8:d2:dc:29:5c:8c:17:3a:d8:83:aa:45:ea: 4c:fb:13:df:16:26:94:d4:b6:bc:b6:e8:03:b4:25: 1c:0e:54:b7:6f:2a:0a:8a:67:db:84:7e:88:75:2a: 49:48:b0:9c:51:c8:9f:30:88:13:ff:47:1d:c8:40: b7:85:f9:d9:79:85:f7:3d:b8:8a:4e:7d:be:3e:68: 52:ce:99:9c:20:de:7f:7f:e0:e0:a3:b5:35:90:a7: 4f:7e:2e:44:8f:c0:5e:08:50:7b:73:e9:93:fd:b3: 18:3c:1f:03:00:80:86:50:11:89:53:0e:e5:44:31: 5e:a3:1c:c8:97:4a:fb:1a:a2:d0:99:40:70:76:bf: 9e:66:79:c5:5c:3a:9a:a5:d0:9d:08:7e:b7:4b:d3: 6d:ff:f3:e8:67:ad:17:99:69:95:2d:64:79:ac:46: cf:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:02:6F:86:56:DF:95:1F:2F:C8:1A:5F:AB:C7:6B:4A:FD:93:93:93 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/979DE50A71DC11EFAC022E35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fc90::/44 2406:840:fea7::/48 Signature Algorithm: sha256WithRSAEncryption 73:d4:3a:12:f8:95:00:63:73:69:16:f5:9a:ee:3f:34:b5:9a: b5:be:44:67:a7:45:78:db:2b:38:c7:b3:03:6e:3a:53:b3:fb: 03:86:e5:82:4d:1d:96:6f:95:7e:2c:fe:c7:ff:60:ef:bb:13: 78:29:9e:c7:e0:b1:ce:bc:13:53:ae:97:8f:42:72:2e:26:76: fb:ba:cd:aa:17:5f:3f:78:a3:2f:fa:4b:75:cd:3a:35:01:19: c9:01:94:ac:0f:71:37:0e:ab:d8:65:54:c9:1a:f5:74:76:4d: ef:28:7f:1d:cc:c6:dd:11:69:33:49:15:04:ec:57:f1:c3:59: 37:81:d6:3f:85:92:e2:f5:ba:f0:94:a5:44:4d:e7:c9:b0:da: e9:cd:5c:df:d3:42:7d:39:34:6e:d0:53:86:57:a6:a9:81:b8: 49:24:d7:3f:15:2c:a8:e0:fb:0c:b9:c0:ba:92:c4:f0:0e:cf: 57:4c:63:94:32:e2:ff:54:32:22:43:a0:0b:94:a7:36:ad:e1: 5e:9b:f3:03:98:01:a9:51:c6:79:6e:4a:33:2a:f9:0d:0b:a1: 09:36:8b:95:af:9b:c5:6f:d3:4e:22:ec:c2:a4:da:1a:e4:af: 9e:ea:0a:14:26:e3:51:cc:14:f8:4c:a2:97:6b:a2:1b:6c:9c: 10:63:93:2c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNlOS1mYTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6whBPsrifeIBnvN8cRqPw9k3G3lera3BRppfdJNqwKcUSdwoPVNxcNgGoWpN aAMMVzE4hnGIOGclj9STtRu+vgsCPW0+T2M/jTU7Bc7qgZ2GnwG2f2LXhHhvBsjS 3ClcjBc62IOqRepM+xPfFiaU1La8tugDtCUcDlS3byoKimfbhH6IdSpJSLCcUcif MIgT/0cdyEC3hfnZeYX3PbiKTn2+PmhSzpmcIN5/f+Dgo7U1kKdPfi5Ej8BeCFB7 c+mT/bMYPB8DAICGUBGJUw7lRDFeoxzIl0r7GqLQmUBwdr+eZnnFXDqapdCdCH63 S9Nt//PoZ60XmWmVLWR5rEbPiQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFM0Cb4ZW 35UfL8gaX6vHa0r9k5OTMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTc5REU1MEE3 MURDMTFFRkFDMDIyRTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/JADBwAkBghA/qcwDQYJKoZIhvcNAQELBQADggEB AHPUOhL4lQBjc2kW9ZruPzS1mrW+RGenRXjbKzjHswNuOlOz+wOG5YJNHZZvlX4s /sf/YO+7E3gpnsfgsc68E1Oul49Cci4mdvu6zaoXXz94oy/6S3XNOjUBGckBlKwP cTcOq9hlVMka9XR2Te8ofx3Mxt0RaTNJFQTsV/HDWTeB1j+FkuL1uvCUpURN58mw 2unNXN/TQn05NG7QU4ZXpqmBuEkk1z8VLKjg+wy5wLqSxPAOz1dMY5Qy4v9UMiJD oAuUpzat4V6b8wOYAalRxnluSjMq+Q0LoQk2i5Wvm8Vv004i7MKk2hrkr57qChQm 41HMFPhMopdrohtsnBBjkyw= -----END CERTIFICATE-----Generated at Mon Jun 2 07:08:54 2025 by rpki-client