$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa File: AE3E17129AD611EA9A86E163C4F9AE02.roa (raw, json) Hash identifier: 8mJs4t3x4AScDrWG2SHCZ5ic+k35VpvDGttBeuELg6g= Subject key identifier: F1:74:20:7C:E6:29:31:CE:9B:EB:C9:15:38:96:E5:B0:96:E9:B7:AB Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0F07 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:26 +0000 ROA not before: Thu 22 May 2025 20:08:26 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 39753 IP address blocks: 2406:840:f100::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3847 (0xf07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:26 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f843a-6032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ff:ae:b8:ee:30:fa:b1:94:86:c1:7f:ce:33: ba:c5:a9:c8:b4:f1:58:1d:8d:70:d4:ab:0c:d9:98: 15:bb:3c:79:65:35:ea:03:c3:93:cf:79:8d:6e:da: 58:85:74:fb:e0:4a:94:51:af:4e:84:ce:3e:b4:94: e2:d7:2f:1e:e2:fd:b8:b5:51:db:90:96:23:a9:a8: 7d:13:91:c3:dc:07:49:f7:64:eb:6d:a2:a2:cf:e0: 39:83:f9:01:a5:0e:11:ea:cd:e1:5c:c8:d2:61:2c: 4d:5c:4e:6b:57:27:8b:ba:70:66:d5:03:7d:ea:54: 3d:6f:31:ca:ee:42:98:f9:77:80:0b:b3:b9:b9:e8: ff:ea:36:68:a8:d2:4a:60:d3:6b:5b:5d:b6:e3:8d: 45:1d:e0:0f:03:d8:e8:99:e7:32:27:77:9a:2a:39: 94:4c:56:d4:04:c2:c8:15:9c:6f:73:16:66:bf:25: a6:6f:ee:7b:40:cf:18:49:7e:af:8c:8e:15:91:ea: 59:e1:21:75:07:ca:31:58:48:c8:61:5e:7f:76:de: 1a:d3:9e:db:b8:7b:25:3b:ec:98:ba:65:35:3f:7e: da:6a:1e:35:93:73:13:ef:5e:71:82:67:94:90:b3: 26:10:01:dc:0f:10:9d:96:74:b9:09:bb:46:ba:4d: e5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:74:20:7C:E6:29:31:CE:9B:EB:C9:15:38:96:E5:B0:96:E9:B7:AB X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f100::/44 Signature Algorithm: sha256WithRSAEncryption 2b:e3:43:9e:d3:60:ee:e9:8b:71:29:f8:93:b7:9a:d1:5e:69: 84:a3:d3:8e:44:c1:47:a5:81:6a:87:9c:bd:46:f4:ff:a2:de: 37:c0:27:7b:cd:68:81:e4:4d:3b:b5:c2:e8:47:0c:c7:a6:19: 75:4e:c2:c6:b0:73:64:e6:b5:eb:c2:c7:d3:1b:d8:e6:e0:a9: 4c:98:86:f2:19:f5:83:73:02:46:53:f1:d4:fb:fc:60:b0:e0: 14:3e:ad:1e:f6:d0:d5:bf:0e:47:4a:29:df:95:65:8f:b9:f5: 50:93:69:c5:56:09:40:5e:72:35:c2:d8:1b:3a:ae:61:8f:ab: 97:d2:55:93:f7:15:bc:a7:f3:8a:9b:c7:a8:0b:71:6d:3b:a3: b1:01:11:14:72:f5:3a:49:30:a3:50:d7:cb:58:fb:2f:9d:97: b1:a1:ab:30:7c:77:68:76:02:05:ea:dd:61:63:b1:ec:d8:a0: 8b:36:78:cc:17:3f:f3:4a:3b:05:e9:6d:09:a0:23:e3:7c:18: 03:c4:6f:6f:f6:e7:d0:de:2d:05:9b:52:d6:79:9e:17:05:d1: 5c:38:69:85:05:5e:13:b6:82:fb:ee:df:c8:e5:f3:44:b0:fd: 5b:1b:a8:10:e0:a1:3d:28:51:e6:96:33:08:7e:39:ea:4a:db: 70:0d:ea:32 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODI2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzYS02MDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxf+uuO4w+rGUhsF/zjO6xanItPFYHY1w1KsM2ZgVuzx5ZTXqA8OTz3mNbtpY hXT74EqUUa9OhM4+tJTi1y8e4v24tVHbkJYjqah9E5HD3AdJ92TrbaKiz+A5g/kB pQ4R6s3hXMjSYSxNXE5rVyeLunBm1QN96lQ9bzHK7kKY+XeAC7O5uej/6jZoqNJK YNNrW122441FHeAPA9jomecyJ3eaKjmUTFbUBMLIFZxvcxZmvyWmb+57QM8YSX6v jI4VkepZ4SF1B8oxWEjIYV5/dt4a057buHslO+yYumU1P37aah41k3MT715xgmeU kLMmEAHcDxCdlnS5CbtGuk3lvwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPF0IHzm KTHOm+vJFTiW5bCW6berMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQUUzRTE3MTI5 QUQ2MTFFQTlBODZFMTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA8QAwDQYJKoZIhvcNAQELBQADggEBACvjQ57TYO7p i3Ep+JO3mtFeaYSj045EwUelgWqHnL1G9P+i3jfAJ3vNaIHkTTu1wuhHDMemGXVO wsawc2TmtevCx9Mb2ObgqUyYhvIZ9YNzAkZT8dT7/GCw4BQ+rR720NW/DkdKKd+V ZY+59VCTacVWCUBecjXC2Bs6rmGPq5fSVZP3Fbyn84qbx6gLcW07o7EBERRy9TpJ MKNQ18tY+y+dl7GhqzB8d2h2AgXq3WFjsezYoIs2eMwXP/NKOwXpbQmgI+N8GAPE b2/259DeLQWbUtZ5nhcF0Vw4aYUFXhO2gvvu38jl80Sw/VsbqBDgoT0oUeaWMwh+ OepK23AN6jI= -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:30 2025 by rpki-client