$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9818EAFC71DC11EFAC022E35C4F9AE02.roa File: 9818EAFC71DC11EFAC022E35C4F9AE02.roa (raw, json) Hash identifier: 1Qpjr/Z7nOrRrAeyzHC3uSVMRtT28VrUolSWiARNOaE= Subject key identifier: 10:A3:A1:EF:69:21:6A:23:C9:AF:FF:BE:29:04:91:D3:E2:DD:CF:1E Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EDE Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9818EAFC71DC11EFAC022E35C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:47 +0000 ROA not before: Thu 22 May 2025 20:07:47 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153331 IP address blocks: 2406:840:fca0::/44 maxlen: 48 2406:840:fea5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3806 (0xede) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:47 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8413-91e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c3:33:c9:ae:44:61:00:17:f1:7f:fa:92:7f: e2:54:29:77:c0:1b:b5:d0:29:74:36:86:90:82:d2: 8e:dd:41:ba:e3:2a:aa:81:70:45:33:a1:68:4a:8d: 14:ea:63:c1:ec:0a:c7:b1:64:7e:af:52:01:ad:ca: e9:17:af:8c:fe:3e:55:4d:7d:e7:43:72:c0:79:86: 10:06:88:2d:d4:92:2c:09:f2:5f:d5:af:79:67:25: 0c:04:75:67:bf:0c:44:97:5f:a9:46:99:e5:08:8c: 78:0b:2c:8e:0c:31:4e:ed:f8:04:88:bc:77:97:4e: 25:2a:29:73:cb:30:8b:c6:f3:d5:de:c9:74:10:a1: 19:ec:61:0e:ac:53:b5:37:47:0d:c5:c5:d0:60:19: 3c:13:62:dc:3f:aa:21:ad:e1:9b:42:f2:13:1a:e1: f1:d0:ab:a1:8d:66:0e:91:1c:8c:02:ef:e1:92:34: e6:97:e8:f3:21:f6:b3:61:fc:ee:ee:53:dd:37:ee: 4e:07:bc:c1:5f:cf:2d:1f:e1:65:18:53:ba:1d:30: 09:7e:b8:f1:5e:ba:3d:f6:a5:26:03:66:3a:f7:b6: 3a:eb:62:45:02:b5:42:67:17:90:cc:66:02:e9:81: 3b:ea:30:2f:f6:b4:aa:85:f0:f5:d5:b9:70:eb:3a: ac:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A3:A1:EF:69:21:6A:23:C9:AF:FF:BE:29:04:91:D3:E2:DD:CF:1E X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9818EAFC71DC11EFAC022E35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fca0::/44 2406:840:fea5::/48 Signature Algorithm: sha256WithRSAEncryption 69:6e:30:be:ee:37:a5:3b:28:7a:b4:2e:38:3a:e6:38:5f:ee: 2b:b9:bf:6b:e4:b8:d8:bf:e4:97:09:25:f2:1b:6f:1e:ad:8c: 7e:7e:e9:fd:49:39:8e:26:ca:97:2b:95:ed:e9:ce:07:ba:ec: 26:1a:8e:c1:63:12:c1:94:78:b0:9e:75:67:59:2d:d8:f3:34: da:cd:cd:c0:03:33:88:a4:39:0e:65:13:c1:c8:b5:a5:e7:26: c8:d8:8e:04:a6:bc:01:bf:91:82:50:e7:d6:36:7e:69:8c:69: 32:ec:f7:15:27:d0:1d:c2:69:8e:c1:b7:76:6a:e7:e3:02:8d: 6a:38:dd:e5:c2:dc:24:3b:9e:70:e0:e7:8c:67:d0:11:5b:8e: 3a:95:19:df:ae:c0:52:b9:9a:bf:0f:8f:ed:ff:93:d6:4b:4c: b6:4b:0e:a3:25:9b:da:c1:d8:0e:82:ff:69:df:80:98:21:7a: e4:16:c2:80:cb:3f:38:a6:dc:48:c3:c0:e4:d8:6a:2c:aa:da: 3f:f6:3e:ad:46:58:61:15:55:5f:12:58:76:da:85:2c:4c:9f: 8a:42:d1:26:38:97:66:7c:7d:6e:72:d2:76:6b:20:58:1d:72: 52:7c:15:c2:d3:31:36:72:b1:5c:48:d8:c3:90:32:89:4e:a1: 8e:e2:35:ea -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzQ3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQxMy05MWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MMzya5EYQAX8X/6kn/iVCl3wBu10Cl0NoaQgtKO3UG64yqqgXBFM6FoSo0U 6mPB7ArHsWR+r1IBrcrpF6+M/j5VTX3nQ3LAeYYQBogt1JIsCfJf1a95ZyUMBHVn vwxEl1+pRpnlCIx4CyyODDFO7fgEiLx3l04lKilzyzCLxvPV3sl0EKEZ7GEOrFO1 N0cNxcXQYBk8E2LcP6ohreGbQvITGuHx0KuhjWYOkRyMAu/hkjTml+jzIfazYfzu 7lPdN+5OB7zBX88tH+FlGFO6HTAJfrjxXro99qUmA2Y697Y662JFArVCZxeQzGYC 6YE76jAv9rSqhfD11blw6zqstQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBCjoe9p IWojya//vikEkdPi3c8eMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTgxOEVBRkM3 MURDMTFFRkFDMDIyRTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/KADBwAkBghA/qUwDQYJKoZIhvcNAQELBQADggEB AGluML7uN6U7KHq0Ljg65jhf7iu5v2vkuNi/5JcJJfIbbx6tjH5+6f1JOY4mypcr le3pzge67CYajsFjEsGUeLCedWdZLdjzNNrNzcADM4ikOQ5lE8HItaXnJsjYjgSm vAG/kYJQ59Y2fmmMaTLs9xUn0B3CaY7Bt3Zq5+MCjWo43eXC3CQ7nnDg54xn0BFb jjqVGd+uwFK5mr8Pj+3/k9ZLTLZLDqMlm9rB2A6C/2nfgJgheuQWwoDLPzim3EjD wOTYaiyq2j/2Pq1GWGEVVV8SWHbahSxMn4pC0SY4l2Z8fW5y0nZrIFgdclJ8FcLT MTZysVxI2MOQMolOoY7iNeo= -----END CERTIFICATE-----Generated at Wed Jun 4 00:15:37 2025 by rpki-client