$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa File: C8FB88AEFAC411EDBFE0012DC4F9AE02.roa (raw, json) Hash identifier: hKJS+CR/BEmD+1t0Xi6Sk0ogOHC3cdWP3rZhPmzxMJI= Subject key identifier: 4F:D0:81:B8:39:61:65:5B:E9:B9:FB:B1:D2:15:FF:F2:54:C6:E9:52 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E8E Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa Signing time: Thu 22 May 2025 20:06:33 +0000 ROA not before: Thu 22 May 2025 20:06:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136535 IP address blocks: 2406:840:fe27::/48 maxlen: 48 2406:840:fe74::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3726 (0xe8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83c9-9531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d1:dc:d7:f8:33:d0:d5:8c:98:73:2d:22:b5: 69:83:22:7e:0d:78:33:ac:82:9b:d6:22:90:e2:6d: 5d:11:13:b2:74:4f:94:3f:57:dc:c8:1c:e6:99:73: 91:80:fe:1a:9b:5c:10:b6:66:76:fc:2e:bc:5d:98: 0b:7d:b5:d5:88:df:eb:ea:81:96:78:bc:48:8f:80: 44:2c:dd:a5:4b:9f:3d:f3:d0:3a:86:72:8c:cd:78: 7a:ec:ad:e9:9b:fc:fc:2b:14:b4:eb:43:af:e3:dd: 3a:c9:95:2c:e1:a0:8d:8f:fe:7f:f7:3d:37:66:35: 7c:81:af:19:c3:f5:80:fd:d8:32:92:c9:93:9d:8a: a6:f8:e6:8f:13:af:03:bb:4b:83:b7:71:43:fa:41: 65:3e:99:17:69:da:08:7b:ab:df:90:85:74:57:2a: 54:80:bf:03:a2:77:29:3b:b4:e5:b5:25:83:9a:35: c5:30:8b:64:09:d5:e0:37:f5:6c:5a:d9:ee:94:c7: 18:66:15:17:c7:ba:a5:b2:12:47:39:6d:bc:0c:68: a3:42:c8:01:57:c0:3d:61:e0:da:47:59:20:6d:1e: 97:77:30:05:aa:62:1f:a7:15:88:40:a0:89:8a:c8: d7:49:a7:db:c8:42:1e:52:cf:d1:d9:91:2e:34:6b: ba:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D0:81:B8:39:61:65:5B:E9:B9:FB:B1:D2:15:FF:F2:54:C6:E9:52 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fe27::/48 2406:840:fe74::/48 Signature Algorithm: sha256WithRSAEncryption a6:f9:95:37:9b:d3:ea:21:f4:59:ac:f7:f2:e1:65:f7:0e:15: 51:3e:3e:c6:b9:75:71:c9:9f:cc:0a:2a:f3:37:40:d1:10:a7: bc:0d:a5:88:1d:10:82:6f:e9:8c:10:f5:52:7d:25:0c:b6:66: 97:eb:af:b7:1d:f5:b4:98:05:99:b5:a2:0a:06:2d:4a:9e:96: a4:76:7c:a5:5f:71:bb:f6:04:02:f2:c7:3c:9d:37:30:82:95: ae:31:23:c0:dc:d5:b1:cf:db:99:40:9e:2e:38:a2:7f:af:5a: d9:0b:50:b4:99:94:e5:23:74:68:06:fe:71:0a:c9:34:48:a0: 8b:e0:2e:07:df:02:f5:11:5e:3f:1b:11:02:7b:e6:c4:3c:13: 9e:91:e4:84:66:97:c7:53:a6:56:0d:ef:24:36:2a:bc:73:0a: b3:e5:9a:88:26:c9:c9:11:18:db:8e:b8:04:aa:b8:53:a4:b5: b2:66:2e:bc:00:2e:1e:c7:29:05:84:db:1c:f1:51:5c:bb:17: c2:6e:9c:32:81:4b:f9:dd:f4:3e:3a:68:55:94:74:60:03:46: b8:ff:6a:cd:76:d7:b1:74:41:bf:73:96:5c:7b:c7:a3:40:58: b6:1f:b4:57:8c:8a:ca:a0:b2:7b:3a:f0:f6:6b:06:90:dc:f0: e7:06:83:74 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNjOS05NTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9Hc1/gz0NWMmHMtIrVpgyJ+DXgzrIKb1iKQ4m1dEROydE+UP1fcyBzmmXOR gP4am1wQtmZ2/C68XZgLfbXViN/r6oGWeLxIj4BELN2lS58989A6hnKMzXh67K3p m/z8KxS060Ov4906yZUs4aCNj/5/9z03ZjV8ga8Zw/WA/dgyksmTnYqm+OaPE68D u0uDt3FD+kFlPpkXadoIe6vfkIV0VypUgL8DoncpO7TltSWDmjXFMItkCdXgN/Vs WtnulMcYZhUXx7qlshJHOW28DGijQsgBV8A9YeDaR1kgbR6XdzAFqmIfpxWIQKCJ isjXSafbyEIeUs/R2ZEuNGu6KwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFE/Qgbg5 YWVb6bn7sdIV//JUxulSMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQzhGQjg4QUVG QUM0MTFFREJGRTAwMTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBghA/icDBwAkBghA/nQwDQYJKoZIhvcNAQELBQADggEB AKb5lTeb0+oh9Fms9/LhZfcOFVE+Psa5dXHJn8wKKvM3QNEQp7wNpYgdEIJv6YwQ 9VJ9JQy2Zpfrr7cd9bSYBZm1ogoGLUqelqR2fKVfcbv2BALyxzydNzCCla4xI8Dc 1bHP25lAni44on+vWtkLULSZlOUjdGgG/nEKyTRIoIvgLgffAvURXj8bEQJ75sQ8 E56R5IRml8dTplYN7yQ2KrxzCrPlmogmyckRGNuOuASquFOktbJmLrwALh7HKQWE 2xzxUVy7F8JunDKBS/nd9D46aFWUdGADRrj/as1217F0Qb9zllx7x6NAWLYftFeM isqgsns68PZrBpDc8OcGg3Q= -----END CERTIFICATE-----Generated at Tue Jun 3 23:55:23 2025 by rpki-client