$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa File: 98F3E1F44BDA11ED90671B29C4F9AE02.roa (raw, json) Hash identifier: gl3BlVxTfvVo2NhPZ5oq0C9c+DjNC8pRGCnAO6tVr8M= Subject key identifier: B3:7A:C4:DD:3D:3D:60:83:6F:7D:F8:C4:6F:25:6A:B2:4E:4F:2C:02 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EB7 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:11 +0000 ROA not before: Thu 22 May 2025 20:07:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150373 IP address blocks: 2406:840:e340::/44 maxlen: 48 2406:840:fed4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3767 (0xeb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83ee-f433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:22:7d:4e:b1:2c:b5:5e:d1:d6:1b:10:92:39: 78:8c:eb:52:44:e2:79:7d:81:fa:30:b6:84:b2:31: 0e:d0:82:74:a8:8b:da:3b:f5:35:cd:3b:5b:9e:89: bb:20:de:a5:77:8b:16:73:0b:26:3b:70:c6:90:48: 93:06:08:75:dc:5a:9c:4f:ed:24:f9:0a:41:f9:65: a4:2c:f7:62:eb:bf:6f:b9:fa:58:c9:be:7f:31:ab: a5:34:0f:13:c0:38:8d:50:e4:a7:30:27:f3:fa:f9: cb:1c:3c:19:bc:c0:f6:4b:e7:8f:4e:3b:ef:16:af: e7:88:9d:2d:67:12:5e:b5:1a:06:1f:e4:46:c7:f2: e8:51:51:99:06:fc:53:a7:4f:02:03:13:05:46:3a: a3:0a:00:dc:cf:5d:6e:63:86:43:a8:dd:82:d8:cd: b4:2f:2c:3f:5f:37:ed:1a:33:35:69:d5:8f:7d:8d: 04:23:09:88:b8:73:c4:4a:a8:af:39:de:96:70:12: 99:72:5b:19:30:a7:43:76:0b:9f:bf:ec:47:f3:d3: 7f:8a:b1:b4:06:f1:43:e8:0d:39:2a:a8:bc:77:11: c2:a7:3b:b2:0b:71:35:b6:74:a3:5c:4f:c5:af:eb: a8:73:e9:18:e6:7f:a8:cd:56:ac:d8:c2:76:7f:73: 16:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:7A:C4:DD:3D:3D:60:83:6F:7D:F8:C4:6F:25:6A:B2:4E:4F:2C:02 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e340::/44 2406:840:fed4::/48 Signature Algorithm: sha256WithRSAEncryption 3c:53:27:21:9e:80:ec:f2:e1:00:79:e9:04:10:48:ad:53:c7: d1:65:47:e0:15:16:a6:a8:df:6a:71:a0:c8:87:a9:b5:45:74: e5:d0:eb:4b:22:35:81:da:82:78:53:28:b0:f0:7e:7e:59:1e: cb:7b:1d:f2:7e:98:39:5c:cc:9c:05:fe:1d:85:09:e2:81:12: 6a:b9:25:07:ba:1c:c7:1d:df:55:55:69:c2:31:f9:3a:e8:69: 10:15:da:1a:f2:18:7c:d3:43:15:d1:9a:1e:4b:57:d1:97:53: 4a:a0:dc:ce:41:7a:ec:b0:03:b4:47:0c:83:51:7f:69:4f:5d: c9:b8:e1:da:cc:f3:ad:07:cd:af:67:66:52:9c:7f:e1:33:31: ec:e5:44:80:cb:9a:66:f4:73:40:9e:8a:9d:3e:f6:f8:2e:56: 68:7c:56:b9:5f:34:4f:80:cb:86:ef:00:42:a9:5a:e6:43:a3: 04:79:4f:1e:04:6b:69:0e:11:48:3a:e1:b6:a6:c9:30:5c:e4: 5e:18:76:5e:18:ff:2a:b3:dc:e3:76:fd:2e:31:5d:d1:77:fc: 70:ed:0d:0d:c6:c8:dc:f9:39:18:7d:56:24:40:4f:57:3c:77: d7:c0:4e:68:03:91:53:be:ec:46:e3:48:73:e8:49:71:a3:b4: 62:26:33:31 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNlZS1mNDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yJ9TrEstV7R1hsQkjl4jOtSROJ5fYH6MLaEsjEO0IJ0qIvaO/U1zTtbnom7 IN6ld4sWcwsmO3DGkEiTBgh13FqcT+0k+QpB+WWkLPdi679vufpYyb5/MaulNA8T wDiNUOSnMCfz+vnLHDwZvMD2S+ePTjvvFq/niJ0tZxJetRoGH+RGx/LoUVGZBvxT p08CAxMFRjqjCgDcz11uY4ZDqN2C2M20Lyw/XzftGjM1adWPfY0EIwmIuHPESqiv Od6WcBKZclsZMKdDdgufv+xH89N/irG0BvFD6A05Kqi8dxHCpzuyC3E1tnSjXE/F r+uoc+kY5n+ozVas2MJ2f3MWNQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLN6xN09 PWCDb334xG8larJOTywCMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOThGM0UxRjQ0 QkRBMTFFRDkwNjcxQjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA40ADBwAkBghA/tQwDQYJKoZIhvcNAQELBQADggEB ADxTJyGegOzy4QB56QQQSK1Tx9FlR+AVFqao32pxoMiHqbVFdOXQ60siNYHagnhT KLDwfn5ZHst7HfJ+mDlczJwF/h2FCeKBEmq5JQe6HMcd31VVacIx+TroaRAV2hry GHzTQxXRmh5LV9GXU0qg3M5BeuywA7RHDINRf2lPXcm44drM860Hza9nZlKcf+Ez MezlRIDLmmb0c0Ceip0+9vguVmh8VrlfNE+Ay4bvAEKpWuZDowR5Tx4Ea2kOEUg6 4bamyTBc5F4Ydl4Y/yqz3ON2/S4xXdF3/HDtDQ3GyNz5ORh9ViRAT1c8d9fATmgD kVO+7EbjSHPoSXGjtGImMzE= -----END CERTIFICATE-----Generated at Wed Jun 4 00:08:45 2025 by rpki-client