$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9B24119EC81411EEA71B4757C4F9AE02.roa File: 9B24119EC81411EEA71B4757C4F9AE02.roa (raw, json) Hash identifier: wstQpG0JkLOAdVFnRg49eFkxX1kD4m0cWpOhn/w3k70= Subject key identifier: 2E:BA:45:42:DA:5F:D2:74:C2:07:FA:86:96:9D:D7:48:29:24:74:36 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E9E Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9B24119EC81411EEA71B4757C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:47 +0000 ROA not before: Thu 22 May 2025 20:06:47 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139791 IP address blocks: 2406:840:9d00::/40 maxlen: 48 2406:840:c700::/40 maxlen: 48 2406:840:c900::/40 maxlen: 48 2406:840:e900::/40 maxlen: 48 2406:840:feca::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3742 (0xe9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:47 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83d7-f031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:29:e8:1b:8c:55:9a:41:f7:ac:64:59:62:6f: 3f:f1:21:de:ef:de:98:55:b7:72:d6:10:e5:c3:19: d1:b0:2e:72:c0:9e:ab:6e:69:50:d8:e4:3d:14:81: 81:47:d2:4f:a9:c8:4e:63:19:5e:24:f4:d3:01:51: 1b:7a:56:20:32:f9:3b:82:d2:de:3f:36:15:cb:44: 72:17:4a:03:b9:62:05:69:a1:c2:83:dc:a2:ac:d0: bb:ef:a9:f6:a6:89:c9:22:40:45:c4:88:c6:d8:c6: 86:c2:49:b2:70:1e:87:b5:08:db:25:1c:76:fe:66: 39:bb:c9:0f:e2:95:3f:e3:59:05:eb:b1:34:0f:ac: ee:d1:68:33:69:76:60:76:57:35:60:2f:60:58:4c: 40:7f:0d:f1:51:d9:48:9e:2a:1b:9e:88:a0:c3:e8: 6a:5a:b5:dc:ed:22:03:1f:f6:1b:f5:db:df:7a:72: c2:e5:b4:fe:e9:b5:41:1e:e3:a9:be:69:4d:d3:51: 4c:37:8b:d6:e3:bf:82:18:98:be:af:fe:c6:de:c5: f9:f1:49:4e:d6:aa:27:43:55:7e:32:b1:83:5d:59: df:12:73:db:dc:d1:8b:12:5a:4d:97:76:0d:44:aa: 3d:5e:69:77:b6:3f:6f:d2:61:e1:58:ee:18:d9:7c: 99:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:BA:45:42:DA:5F:D2:74:C2:07:FA:86:96:9D:D7:48:29:24:74:36 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9B24119EC81411EEA71B4757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9d00::/40 2406:840:c700::/40 2406:840:c900::/40 2406:840:e900::/40 2406:840:feca::/48 Signature Algorithm: sha256WithRSAEncryption 9d:74:36:6f:f4:17:fe:a2:2e:1d:e8:f3:3d:64:eb:a2:7f:e5: 4a:be:7a:ef:b4:9e:b1:9d:7c:dd:66:28:2c:97:33:8f:03:7c: 64:14:6e:14:d9:09:d3:ef:fb:bd:7d:e7:6f:b9:39:50:85:67: ea:49:e3:27:65:eb:69:77:f9:3b:1e:30:51:18:d8:4b:2e:56: 32:bb:b7:b7:7e:69:3e:d1:ca:2f:dd:b2:ed:cb:45:ca:fa:29: 2f:96:ca:5b:74:5b:f7:05:a9:d9:dc:cd:54:c6:7a:a5:dd:2a: 9c:12:49:3f:97:70:77:63:2f:e3:4e:41:4a:c2:ac:f6:f3:df: d0:90:aa:df:c8:fe:c1:ea:1d:9e:c2:8a:d2:01:bc:bc:89:84: 45:11:6d:05:33:79:36:68:05:f9:72:fd:e9:55:0d:28:33:e8: f6:54:a2:9a:10:25:6b:7f:c7:2b:fb:cd:16:43:22:f0:f9:8a: e3:61:39:8d:9a:da:44:4b:f1:50:12:52:ce:57:a9:53:73:c1: 5a:e8:e0:44:95:9b:a1:b0:14:04:5a:78:a7:54:c8:46:94:ac: c0:40:ce:a0:7b:9a:49:b6:ef:3c:aa:32:21:ba:86:18:8d:78: 0c:38:ab:25:02:1d:bf:d1:44:5f:11:59:4e:b9:30:e7:19:35: 44:73:e7:b9 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICDp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjQ3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNkNy1mMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+CnoG4xVmkH3rGRZYm8/8SHe796YVbdy1hDlwxnRsC5ywJ6rbmlQ2OQ9FIGB R9JPqchOYxleJPTTAVEbelYgMvk7gtLePzYVy0RyF0oDuWIFaaHCg9yirNC776n2 ponJIkBFxIjG2MaGwkmycB6HtQjbJRx2/mY5u8kP4pU/41kF67E0D6zu0WgzaXZg dlc1YC9gWExAfw3xUdlIniobnoigw+hqWrXc7SIDH/Yb9dvfenLC5bT+6bVBHuOp vmlN01FMN4vW47+CGJi+r/7G3sX58UlO1qonQ1V+MrGDXVnfEnPb3NGLElpNl3YN RKo9Xml3tj9v0mHhWO4Y2XyZ8QIDAQABo4ICuDCCArQwHQYDVR0OBBYEFC66RULa X9J0wgf6hpad10gpJHQ2MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOUIyNDExOUVD ODE0MTFFRUE3MUI0NzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMC8EAgACMCkDBgAkBghAnQMGACQGCEDHAwYAJAYIQMkDBgAkBghA6QMHACQG CED+yjANBgkqhkiG9w0BAQsFAAOCAQEAnXQ2b/QX/qIuHejzPWTron/lSr5677Se sZ183WYoLJczjwN8ZBRuFNkJ0+/7vX3nb7k5UIVn6knjJ2XraXf5Ox4wURjYSy5W Mru3t35pPtHKL92y7ctFyvopL5bKW3Rb9wWp2dzNVMZ6pd0qnBJJP5dwd2Mv405B SsKs9vPf0JCq38j+weodnsKK0gG8vImERRFtBTN5NmgF+XL96VUNKDPo9lSimhAl a3/HK/vNFkMi8PmK42E5jZraREvxUBJSzlepU3PBWujgRJWbobAUBFp4p1TIRpSs wEDOoHuaSbbvPKoyIbqGGI14DDirJQIdv9FEXxFZTrkw5xk1RHPnuQ== -----END CERTIFICATE-----Generated at Mon Jun 2 07:16:11 2025 by rpki-client