$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EB6D8A161F4B11EFB166F834C4F9AE02.roa File: EB6D8A161F4B11EFB166F834C4F9AE02.roa (raw, json) Hash identifier: Acrlb+cXL12iPIoap/qR+ZXJFoLfJOu7cADcqvF7BD4= Subject key identifier: 09:11:B7:E9:3B:D7:6E:1C:D5:62:BE:9F:4E:17:84:99:AE:0F:C5:25 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0ECA Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EB6D8A161F4B11EFB166F834C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:29 +0000 ROA not before: Thu 22 May 2025 20:07:29 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152892 IP address blocks: 2406:840:e330::/44 maxlen: 48 2406:840:fe9d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3786 (0xeca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:29 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8401-4db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:2c:08:e6:54:1a:80:c5:d0:21:e3:07:dd:1a: 0a:90:8e:e8:dc:d9:61:44:06:d4:8c:0d:e9:67:eb: 7a:d8:05:83:72:94:68:bf:ec:3e:38:ce:9e:61:e9: c4:58:f6:49:23:e4:31:7f:c7:d7:fc:ee:a3:ee:c7: 7c:7f:82:d2:d4:34:c5:5d:6c:99:d0:57:bc:17:38: 61:73:e0:f3:02:fc:a2:2a:ee:5c:37:51:85:d6:42: 7d:83:5c:20:40:ed:57:ab:17:66:5c:c1:e6:83:7e: 72:f0:fd:2a:0c:5b:91:6d:a6:33:0f:c4:04:5b:50: 22:be:9a:9b:98:72:57:1c:70:ad:a8:f9:65:87:af: af:4e:69:fc:78:a1:23:11:1d:1b:33:2c:77:d9:4f: eb:a0:16:e7:6b:0b:b3:d6:a7:2c:53:b3:3a:26:6a: 16:31:d9:6a:b9:f4:b7:4f:b9:ce:fd:d2:4a:03:22: 65:54:a0:5b:22:0b:3c:1d:9c:30:67:e2:b0:ae:13: 30:66:bc:05:23:2f:46:2b:72:d6:7f:a7:3f:90:61: e1:78:13:bc:4d:e1:d9:71:4c:b9:9c:a2:d6:32:10: 05:a7:72:17:68:2a:63:cc:5f:c8:ee:67:f2:60:7a: 64:5e:71:5e:ef:cd:56:3b:6c:6a:93:66:62:29:ac: 00:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:11:B7:E9:3B:D7:6E:1C:D5:62:BE:9F:4E:17:84:99:AE:0F:C5:25 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EB6D8A161F4B11EFB166F834C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e330::/44 2406:840:fe9d::/48 Signature Algorithm: sha256WithRSAEncryption 33:66:9c:ac:85:f9:20:a5:ea:0a:de:a6:2b:32:f5:9c:03:bc: aa:fe:af:c2:ed:f6:17:f9:92:1a:33:28:d1:1d:06:a1:00:0d: 35:ad:a8:4b:16:ba:7f:5a:b8:5f:b9:80:96:1f:f2:3a:37:5c: 57:3e:f8:51:97:8f:5f:79:ba:0b:88:62:7a:24:8a:38:4a:d9: 7e:d2:c7:45:fd:bd:2b:39:7a:4c:c9:6b:53:75:5c:63:28:b8: 0a:06:af:92:0e:ec:0b:4b:7f:a3:9f:24:a0:c7:a3:00:50:b4: 72:88:26:54:8f:07:96:ae:7d:49:b8:63:20:16:96:4a:af:83: 33:9e:22:2e:ac:23:45:a9:92:46:81:fc:28:18:87:38:9f:16: 31:1d:58:3f:8c:2e:2b:ff:f9:9f:70:52:c8:e9:cc:ae:3f:9e: 4f:f7:fd:7e:b4:bc:04:98:5f:66:e5:c0:48:c2:b0:9b:24:23: d3:88:4d:79:46:32:23:65:3a:03:e3:68:d8:36:8e:69:0e:d1: 9b:d9:fa:62:a7:e9:5b:9d:a6:60:ca:48:0e:1b:86:5b:7b:f7: 8a:1f:75:67:0c:d0:22:c3:04:f1:e3:87:e7:83:f4:ce:97:1c: 10:5d:3c:1c:aa:c8:2b:59:e7:30:54:e8:61:aa:82:9f:7a:05: 03:a1:10:d0 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzI5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQwMS00ZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7SwI5lQagMXQIeMH3RoKkI7o3NlhRAbUjA3pZ+t62AWDcpRov+w+OM6eYenE WPZJI+Qxf8fX/O6j7sd8f4LS1DTFXWyZ0Fe8Fzhhc+DzAvyiKu5cN1GF1kJ9g1wg QO1XqxdmXMHmg35y8P0qDFuRbaYzD8QEW1AivpqbmHJXHHCtqPllh6+vTmn8eKEj ER0bMyx32U/roBbnawuz1qcsU7M6JmoWMdlqufS3T7nO/dJKAyJlVKBbIgs8HZww Z+KwrhMwZrwFIy9GK3LWf6c/kGHheBO8TeHZcUy5nKLWMhAFp3IXaCpjzF/I7mfy YHpkXnFe781WO2xqk2ZiKawASwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAkRt+k7 124c1WK+n04XhJmuD8UlMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRUI2RDhBMTYx RjRCMTFFRkIxNjZGODM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4zADBwAkBghA/p0wDQYJKoZIhvcNAQELBQADggEB ADNmnKyF+SCl6grepisy9ZwDvKr+r8Lt9hf5khozKNEdBqEADTWtqEsWun9auF+5 gJYf8jo3XFc++FGXj195uguIYnokijhK2X7Sx0X9vSs5ekzJa1N1XGMouAoGr5IO 7AtLf6OfJKDHowBQtHKIJlSPB5aufUm4YyAWlkqvgzOeIi6sI0WpkkaB/CgYhzif FjEdWD+MLiv/+Z9wUsjpzK4/nk/3/X60vASYX2blwEjCsJskI9OITXlGMiNlOgPj aNg2jmkO0ZvZ+mKn6VudpmDKSA4bhlt794ofdWcM0CLDBPHjh+eD9M6XHBBdPByq yCtZ5zBU6GGqgp96BQOhENA= -----END CERTIFICATE-----Generated at Mon Jun 2 06:55:11 2025 by rpki-client