$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa File: CACEAE268AD011EE9E1DAF84C4F9AE02.roa (raw, json) Hash identifier: rwCi4N2uX34Km2z6Ql6zL5LZdvljVpjUyo2PHNV/dyc= Subject key identifier: EF:6B:22:27:E0:D8:57:FE:DC:E8:DB:D2:D1:F9:F3:74:24:8A:BC:84 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EC4 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:24 +0000 ROA not before: Thu 22 May 2025 20:07:24 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152118 IP address blocks: 2406:840:e880::/44 maxlen: 48 2406:840:fec4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3780 (0xec4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:24 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83fc-ad2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:18:0a:21:70:ba:f9:d0:75:83:5c:9a:83:75: 36:cd:c9:22:e1:79:e7:9c:5f:f3:95:fc:a7:c8:01: d3:cf:be:64:29:99:08:2c:d9:2a:d3:56:86:f7:5b: fd:7a:86:c4:26:8d:1c:d5:51:f9:d0:f6:c9:f3:db: f3:fb:8a:7c:07:d2:f1:68:be:fe:33:3d:07:6f:61: 7c:de:cf:e5:8e:fd:5c:b8:8a:5c:04:90:9f:e1:36: e1:75:3c:7c:dc:c7:5f:00:95:f7:01:5c:90:87:f1: 7f:85:56:c3:9a:8b:d2:0b:6a:25:05:d9:f9:17:39: c1:f4:50:af:92:3b:51:b8:44:f3:bf:b6:8a:8c:83: 1c:05:b3:f7:93:63:11:82:15:13:09:cb:79:c1:d4: ee:ac:fd:fa:54:a3:24:33:bb:5d:88:d4:58:8e:d1: c5:20:75:59:d3:5e:10:ae:2c:5f:93:1f:af:12:38: f4:df:3d:0a:c0:9d:89:17:db:0b:54:15:6c:51:2d: dd:39:16:2d:2b:8f:69:25:67:fc:52:f8:3b:d0:8d: 6a:b5:c6:f3:d3:d1:43:79:3e:e1:72:07:a9:7c:73: 58:c5:88:1d:92:fe:28:60:61:c4:48:5e:92:56:d1: ff:ad:3a:a0:c1:b3:47:15:3b:54:d4:cf:18:d6:70: 14:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:6B:22:27:E0:D8:57:FE:DC:E8:DB:D2:D1:F9:F3:74:24:8A:BC:84 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e880::/44 2406:840:fec4::/48 Signature Algorithm: sha256WithRSAEncryption 7e:23:ea:10:10:68:cf:5e:08:cd:f9:06:79:62:cc:8c:fc:f5: cc:fb:6c:8e:fc:c0:83:31:90:ca:94:cf:05:e2:11:7a:5d:38: b7:af:ce:0a:4d:91:f8:ce:2c:a4:2c:8c:9a:a5:b2:6d:a3:12: 42:d6:0e:83:e2:31:66:ca:ba:e8:04:5d:f5:91:1f:4d:ad:6e: 1b:72:a7:01:48:25:2a:67:09:95:75:16:07:28:90:1e:23:c5: b9:03:ed:50:d8:16:36:7a:c9:e5:25:9c:cc:80:7a:d1:54:58: ea:1b:93:83:e1:b4:37:9a:04:0b:9c:98:fc:ae:df:c8:12:7b: 0e:33:9c:96:76:15:c6:40:bf:78:6e:f7:96:ec:c8:97:a1:15: 9a:79:cc:9b:00:53:18:99:da:cc:8c:84:03:71:66:6f:12:f0: f4:9c:98:4e:21:19:67:db:3a:88:b3:ba:f4:42:8f:ad:e8:28: 5d:75:93:0e:a9:10:bb:b7:37:da:30:97:7f:bb:9a:f2:5d:5f: 2c:63:2c:75:a7:15:09:30:7f:d6:ff:5f:ab:50:b4:21:6b:bb: b6:33:bc:3c:1a:e9:94:db:a8:14:86:19:d2:86:39:2e:e4:fa: 17:4c:9e:b8:f4:32:9f:a5:04:31:a5:06:e5:d9:a4:46:70:4e: 27:08:39:f8 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzI0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNmYy1hZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xgKIXC6+dB1g1yag3U2zcki4XnnnF/zlfynyAHTz75kKZkILNkq01aG91v9 eobEJo0c1VH50PbJ89vz+4p8B9LxaL7+Mz0Hb2F83s/ljv1cuIpcBJCf4TbhdTx8 3MdfAJX3AVyQh/F/hVbDmovSC2olBdn5FznB9FCvkjtRuETzv7aKjIMcBbP3k2MR ghUTCct5wdTurP36VKMkM7tdiNRYjtHFIHVZ014Qrixfkx+vEjj03z0KwJ2JF9sL VBVsUS3dORYtK49pJWf8Uvg70I1qtcbz09FDeT7hcgepfHNYxYgdkv4oYGHESF6S VtH/rTqgwbNHFTtU1M8Y1nAUjQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFO9rIifg 2Ff+3Ojb0tH583QkiryEMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0FDRUFFMjY4 QUQwMTFFRTlFMURBRjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA6IADBwAkBghA/sQwDQYJKoZIhvcNAQELBQADggEB AH4j6hAQaM9eCM35BnlizIz89cz7bI78wIMxkMqUzwXiEXpdOLevzgpNkfjOLKQs jJqlsm2jEkLWDoPiMWbKuugEXfWRH02tbhtypwFIJSpnCZV1FgcokB4jxbkD7VDY FjZ6yeUlnMyAetFUWOobk4PhtDeaBAucmPyu38gSew4znJZ2FcZAv3hu95bsyJeh FZp5zJsAUxiZ2syMhANxZm8S8PScmE4hGWfbOoizuvRCj63oKF11kw6pELu3N9ow l3+7mvJdXyxjLHWnFQkwf9b/X6tQtCFru7YzvDwa6ZTbqBSGGdKGOS7k+hdMnrj0 Mp+lBDGlBuXZpEZwTicIOfg= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:28 2025 by rpki-client