$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa File: E8F58AF442CD11EFB80CD237C4F9AE02.roa (raw, json) Hash identifier: e7HcmXHja9c/xwbDe+cEzW/RHg3QL9qsLe3oRfU9g4g= Subject key identifier: EC:EB:D1:F1:9F:29:93:60:B3:17:99:F7:89:34:83:96:6A:AD:AC:A8 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0ED4 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:38 +0000 ROA not before: Thu 22 May 2025 20:07:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153170 IP address blocks: 2406:840:fd60::/44 maxlen: 48 2406:840:fe98::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3796 (0xed4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f840a-99a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b8:89:50:ab:a0:63:7a:86:e4:27:98:a3:c7: eb:4c:d6:d4:ee:84:29:2b:16:5a:3e:1e:8b:bc:75: 9b:36:22:89:68:cb:4b:44:9d:74:d3:94:76:d5:d1: a9:7a:52:70:e6:c2:00:03:72:9a:3b:dd:1e:3e:6c: bf:eb:0f:4d:44:f3:2f:7b:0f:93:30:fa:d2:d5:fe: af:66:b7:d1:69:94:f4:ea:c8:23:ee:13:cb:38:85: 99:3f:64:df:df:8e:3e:4b:8a:aa:51:71:4a:4d:67: 5d:bb:bc:be:64:85:ce:a7:68:f5:82:13:62:e0:95: e6:78:92:ec:4b:a7:78:70:dc:58:69:eb:aa:65:74: 4b:aa:11:b0:59:9b:63:c8:cd:46:d6:94:7f:4e:96: 36:2a:67:46:ec:16:36:5c:b0:f6:6d:f9:2f:8a:97: a1:d3:98:e1:0d:46:be:ad:d7:6c:93:2c:0f:c4:e2: 44:e6:6e:ba:48:d8:21:fc:22:62:23:34:56:ee:b1: aa:c1:86:46:cc:25:f9:17:ab:9f:35:58:1d:ba:57: 20:73:1d:e7:24:19:10:9d:d6:07:49:d3:4c:c3:f0: ce:6e:a0:fd:1f:6b:b5:72:59:71:64:ee:25:44:88: 02:09:d5:19:72:dd:db:24:2c:bc:7c:ef:20:2b:ac: 65:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:EB:D1:F1:9F:29:93:60:B3:17:99:F7:89:34:83:96:6A:AD:AC:A8 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fd60::/44 2406:840:fe98::/48 Signature Algorithm: sha256WithRSAEncryption 6e:0e:d0:88:52:8b:4d:cd:7c:a8:47:95:68:a6:8d:dd:89:8d: 66:ed:d7:ac:c9:77:ef:49:82:89:84:94:f6:41:ce:bb:27:ba: 1a:23:10:b9:ac:c0:76:a8:cb:98:4b:3f:01:28:27:6e:76:17: 24:6e:02:bd:1a:4c:2c:e0:ab:ed:df:cc:fc:82:e7:ff:e9:88: 00:af:42:51:4e:64:a4:98:d1:7a:dc:25:62:9e:fe:a8:04:df: f5:84:80:55:0b:3b:ae:75:8d:f7:2f:0b:75:e7:f8:4a:a1:9b: c3:5d:d5:42:19:1f:4c:89:22:f7:2d:64:c2:23:85:1f:e5:14: 8d:66:e4:c2:e2:d0:0b:39:0e:ea:2b:8a:d1:cb:40:78:b7:30: c0:3e:4e:72:d2:a3:05:b7:64:43:3c:2d:33:b8:c4:ab:b0:9d: 30:16:39:34:d1:4c:f4:65:bc:35:35:28:8f:f2:cc:6c:85:e2: 28:e3:4b:9f:a8:a0:ed:63:02:fd:bd:08:03:0d:6a:f1:aa:71: f5:e3:d9:2c:2f:03:4d:72:11:4a:39:86:6a:0a:32:be:3a:0e: 9e:72:3c:7b:55:9a:e7:8a:e2:60:53:c2:7d:0f:40:a0:f0:b8: cc:a2:7e:ec:7f:d4:d2:0d:e1:95:7b:1b:71:8a:f5:0f:dd:87: 68:2b:b9:cd -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQwYS05OWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7iJUKugY3qG5CeYo8frTNbU7oQpKxZaPh6LvHWbNiKJaMtLRJ1005R21dGp elJw5sIAA3KaO90ePmy/6w9NRPMvew+TMPrS1f6vZrfRaZT06sgj7hPLOIWZP2Tf 344+S4qqUXFKTWddu7y+ZIXOp2j1ghNi4JXmeJLsS6d4cNxYaeuqZXRLqhGwWZtj yM1G1pR/TpY2KmdG7BY2XLD2bfkvipeh05jhDUa+rddskywPxOJE5m66SNgh/CJi IzRW7rGqwYZGzCX5F6ufNVgdulcgcx3nJBkQndYHSdNMw/DObqD9H2u1cllxZO4l RIgCCdUZct3bJCy8fO8gK6xlQQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOzr0fGf KZNgsxeZ94k0g5ZqrayoMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRThGNThBRjQ0 MkNEMTFFRkI4MENEMjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/WADBwAkBghA/pgwDQYJKoZIhvcNAQELBQADggEB AG4O0IhSi03NfKhHlWimjd2JjWbt16zJd+9JgomElPZBzrsnuhojELmswHaoy5hL PwEoJ252FyRuAr0aTCzgq+3fzPyC5//piACvQlFOZKSY0XrcJWKe/qgE3/WEgFUL O651jfcvC3Xn+Eqhm8Nd1UIZH0yJIvctZMIjhR/lFI1m5MLi0As5DuoritHLQHi3 MMA+TnLSowW3ZEM8LTO4xKuwnTAWOTTRTPRlvDU1KI/yzGyF4ijjS5+ooO1jAv29 CAMNavGqcfXj2SwvA01yEUo5hmoKMr46Dp5yPHtVmueK4mBTwn0PQKDwuMyifux/ 1NIN4ZV7G3GK9Q/dh2gruc0= -----END CERTIFICATE-----Generated at Tue Jun 3 23:49:51 2025 by rpki-client