$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E884E4DE42CD11EFB80CD237C4F9AE02.roa File: E884E4DE42CD11EFB80CD237C4F9AE02.roa (raw, json) Hash identifier: SfoKNVoXTAir9kZ0A0VFI/ecANCFWT3i2ce+uTVfJOY= Subject key identifier: 56:84:88:5F:59:80:7C:B5:E6:ED:05:8E:14:E9:80:A2:53:34:E2:78 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0ED3 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E884E4DE42CD11EFB80CD237C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:37 +0000 ROA not before: Thu 22 May 2025 20:07:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153168 IP address blocks: 2406:840:fd50::/44 maxlen: 48 2406:840:fe9a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3795 (0xed3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8408-9ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a1:56:aa:33:19:7d:42:80:ab:68:e6:3d:6a: 25:bb:f9:2a:ab:f8:51:ec:2e:9b:52:b4:12:2e:a5: 79:c5:af:a8:e8:50:ef:25:88:2e:1f:c2:bf:4b:eb: 7d:72:5c:56:67:12:00:f2:dc:94:4b:b2:76:66:5b: 78:bb:62:df:33:bd:1b:e6:44:e6:bf:09:23:1c:f8: 29:a9:4a:4a:61:3d:45:74:44:2a:63:54:f1:f7:2b: cb:da:62:a2:90:9e:6a:bf:6b:76:8f:d7:8e:4b:98: b0:8b:c0:b2:19:fe:f1:05:5c:f9:f9:ac:9d:85:05: 14:9c:29:76:2f:40:00:5a:65:f6:1a:2d:20:4d:b7: 4b:5a:ee:76:90:e5:ed:a0:a7:b0:a2:fc:8f:8c:2e: 88:b2:91:ca:04:ae:f7:9e:9f:73:e5:fd:f0:4c:00: 00:17:ec:84:b2:2f:fb:86:d6:96:62:8b:7d:29:03: 1e:bb:d2:b1:c8:1a:74:9c:cc:4e:da:e1:03:6b:e5: d4:09:25:42:12:3e:91:ad:b4:58:dd:f3:7c:20:6d: 65:c4:bd:27:e5:5f:06:7d:c3:3f:b4:5c:7c:a6:53: 2c:39:cc:c7:b5:88:48:ce:bc:cb:60:a3:10:3c:87: 80:15:9c:bf:3e:67:ab:a9:99:ee:0e:11:f8:95:93: a8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:84:88:5F:59:80:7C:B5:E6:ED:05:8E:14:E9:80:A2:53:34:E2:78 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E884E4DE42CD11EFB80CD237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fd50::/44 2406:840:fe9a::/48 Signature Algorithm: sha256WithRSAEncryption 65:92:93:60:b6:08:50:a7:1a:a5:b5:f6:0d:2c:af:11:71:52: 7e:7e:bb:92:01:64:f7:fb:11:cb:94:c0:a0:e6:d2:b3:dd:0c: 82:2f:b0:3e:79:09:16:d1:f4:6b:5a:ba:43:03:d0:9c:57:c9: 1d:ae:1a:e2:79:e3:17:81:db:a2:ad:28:8e:95:48:7b:78:e8: 0d:47:92:fc:18:42:d5:82:3b:e0:e8:40:d1:ce:d8:c0:aa:79: 9f:21:bd:b6:8b:23:a2:9e:c5:a3:cb:c2:c7:06:f2:f7:a7:88: 8d:0b:59:4a:e8:47:0b:43:53:2c:76:01:c3:a1:ed:84:ee:de: 56:6a:e9:2b:c2:0f:b4:8c:85:c2:94:25:bf:23:4f:97:a6:21: d5:45:0e:1f:f7:05:36:a8:27:39:fb:4f:43:e7:a7:7f:2d:e2: 17:66:10:a3:16:21:18:9d:cf:91:6e:df:64:6d:4a:ae:46:1f: cf:ec:48:b1:e5:23:24:93:4d:c3:3b:21:1b:75:ad:3c:8c:d8: d9:f4:51:15:61:b0:37:a9:48:d8:d7:3a:fc:46:ce:bf:3c:b5: f1:d6:c7:dc:e2:5c:5e:09:28:c1:b7:30:41:57:2e:3d:e3:59: 23:8e:c5:dc:cf:29:8e:45:e6:c6:26:8c:ad:55:fb:f9:ea:f3: cf:f2:f1:a6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQwOC05YWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaFWqjMZfUKAq2jmPWolu/kqq/hR7C6bUrQSLqV5xa+o6FDvJYguH8K/S+t9 clxWZxIA8tyUS7J2Zlt4u2LfM70b5kTmvwkjHPgpqUpKYT1FdEQqY1Tx9yvL2mKi kJ5qv2t2j9eOS5iwi8CyGf7xBVz5+aydhQUUnCl2L0AAWmX2Gi0gTbdLWu52kOXt oKewovyPjC6IspHKBK73np9z5f3wTAAAF+yEsi/7htaWYot9KQMeu9KxyBp0nMxO 2uEDa+XUCSVCEj6RrbRY3fN8IG1lxL0n5V8GfcM/tFx8plMsOczHtYhIzrzLYKMQ PIeAFZy/PmerqZnuDhH4lZOoyQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFaEiF9Z gHy15u0FjhTpgKJTNOJ4MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRTg4NEU0REU0 MkNEMTFFRkI4MENEMjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/VADBwAkBghA/powDQYJKoZIhvcNAQELBQADggEB AGWSk2C2CFCnGqW19g0srxFxUn5+u5IBZPf7EcuUwKDm0rPdDIIvsD55CRbR9Gta ukMD0JxXyR2uGuJ54xeB26KtKI6VSHt46A1HkvwYQtWCO+DoQNHO2MCqeZ8hvbaL I6KexaPLwscG8veniI0LWUroRwtDUyx2AcOh7YTu3lZq6SvCD7SMhcKUJb8jT5em IdVFDh/3BTaoJzn7T0Pnp38t4hdmEKMWIRidz5Fu32RtSq5GH8/sSLHlIySTTcM7 IRt1rTyM2Nn0URVhsDepSNjXOvxGzr88tfHWx9ziXF4JKMG3MEFXLj3jWSOOxdzP KY5F5sYmjK1V+/nq88/y8aY= -----END CERTIFICATE-----Generated at Wed Jun 4 00:09:10 2025 by rpki-client