$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EC31F29ABEFC11EC82FBEC0AC4F9AE02.roa File: EC31F29ABEFC11EC82FBEC0AC4F9AE02.roa (raw, json) Hash identifier: AlUfftsZLeRMkqK+M7lxBsk8umVmMVOLypGBfSfzBmE= Subject key identifier: 9B:28:EE:D7:47:FF:75:46:24:2E:0E:15:E2:9D:48:8B:1F:86:EA:30 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EB2 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EC31F29ABEFC11EC82FBEC0AC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:05 +0000 ROA not before: Thu 22 May 2025 20:07:04 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149475 IP address blocks: 2406:840:e666::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3762 (0xeb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:04 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83e8-d97c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:45:4a:00:75:40:ef:74:36:97:e9:a7:e0:ec: 5f:00:95:07:a5:e7:5e:3b:ac:9f:c5:26:c9:5a:6e: 22:59:e7:de:4a:c2:fa:fc:a3:1a:76:3a:51:7b:33: b5:3c:68:5e:c0:f7:1e:b1:28:5a:ba:8a:f4:71:d4: c4:dd:f1:c8:15:75:8c:56:c8:26:de:71:0e:6b:a7: f0:a5:aa:5b:a6:66:00:c5:01:0c:99:e9:77:0d:4a: c7:b5:3b:a7:4e:e8:ee:26:84:6e:7d:59:88:f2:f7: 97:4a:f8:2d:c6:02:b1:00:f1:65:6e:4b:a2:b1:fd: a8:63:4a:67:6a:df:ab:cc:ae:c8:b8:59:ab:43:00: 24:9b:5f:e2:7c:40:cd:f3:6a:ee:9b:64:1c:f5:8a: 77:62:15:04:8e:6f:c4:5d:10:6e:bd:13:35:63:3d: c4:94:38:c0:9e:a0:f9:f0:f2:c1:2b:85:a3:b1:81: 0a:9f:33:51:4d:01:cc:e8:74:87:cf:c0:17:11:19: 3e:7e:d8:2f:02:06:12:51:25:d5:a9:46:49:11:f2: 6a:47:fc:06:e7:d5:ca:f3:8a:36:57:1c:f8:c7:e1: c6:0a:d4:0c:9b:b2:22:be:07:49:24:f4:7c:6e:8c: 36:a8:bc:5d:5a:8b:78:02:cd:e0:a4:bb:86:24:e6: 06:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:28:EE:D7:47:FF:75:46:24:2E:0E:15:E2:9D:48:8B:1F:86:EA:30 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EC31F29ABEFC11EC82FBEC0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e666::/47 Signature Algorithm: sha256WithRSAEncryption 6c:7a:9c:15:7f:5f:c3:0b:a7:0a:3b:da:ec:c7:f0:9f:78:77: 6e:15:cf:fd:9b:f0:95:95:44:d5:a3:09:b6:b7:2e:db:e4:0e: 72:dd:82:cc:ea:ab:c0:e6:e2:1e:7d:37:86:ad:d1:6a:cb:0f: 05:37:ae:5f:a1:c1:cb:d6:77:89:d6:55:57:88:70:4c:34:18: d7:5b:80:92:ef:d8:1a:58:a1:d7:32:95:a1:cc:2d:30:c8:c7: 18:86:de:ff:a2:8b:f3:e6:8b:f4:55:c1:63:31:56:02:5d:56: 04:02:cd:6f:e7:a0:91:10:54:eb:31:73:6d:f3:56:5e:9c:18: b8:dd:6e:aa:20:9a:89:fc:6b:cd:9a:7d:83:bb:f3:e7:a9:5b: 13:7f:b9:56:eb:3d:b3:e2:a3:4b:1f:ca:74:c5:8d:30:41:69: fa:43:7d:55:6e:9d:68:79:c7:e7:ab:60:cf:49:0b:be:61:2c: 90:0b:1c:b2:46:70:24:44:18:8c:b3:cc:ae:ec:9b:fb:31:2c: 80:f4:72:e9:f0:90:3c:8e:8d:1c:08:37:ac:e5:0e:45:03:54: e3:b6:70:85:51:bb:d4:af:09:1a:48:4a:17:35:36:7c:2d:42: 0e:fc:3c:4d:86:5e:07:bd:47:c3:d1:b1:1c:cb:ac:e6:ec:d9: b0:90:45:05 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzA0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNlOC1kOTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0VKAHVA73Q2l+mn4OxfAJUHpedeO6yfxSbJWm4iWefeSsL6/KMadjpRezO1 PGhewPcesShauor0cdTE3fHIFXWMVsgm3nEOa6fwpapbpmYAxQEMmel3DUrHtTun TujuJoRufVmI8veXSvgtxgKxAPFlbkuisf2oY0pnat+rzK7IuFmrQwAkm1/ifEDN 82rum2Qc9Yp3YhUEjm/EXRBuvRM1Yz3ElDjAnqD58PLBK4WjsYEKnzNRTQHM6HSH z8AXERk+ftgvAgYSUSXVqUZJEfJqR/wG59XK84o2Vxz4x+HGCtQMm7IivgdJJPR8 bow2qLxdWot4As3gpLuGJOYGNQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJso7tdH /3VGJC4OFeKdSIsfhuowMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRUMzMUYyOUFC RUZDMTFFQzgyRkJFQzBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkBghA5mYwDQYJKoZIhvcNAQELBQADggEBAGx6nBV/X8ML pwo72uzH8J94d24Vz/2b8JWVRNWjCba3LtvkDnLdgszqq8Dm4h59N4at0WrLDwU3 rl+hwcvWd4nWVVeIcEw0GNdbgJLv2BpYodcylaHMLTDIxxiG3v+ii/Pmi/RVwWMx VgJdVgQCzW/noJEQVOsxc23zVl6cGLjdbqogmon8a82afYO78+epWxN/uVbrPbPi o0sfynTFjTBBafpDfVVunWh5x+erYM9JC75hLJALHLJGcCREGIyzzK7sm/sxLID0 cunwkDyOjRwIN6zlDkUDVOO2cIVRu9SvCRpIShc1NnwtQg78PE2GXge9R8PRsRzL rObs2bCQRQU= -----END CERTIFICATE-----Generated at Tue Jun 3 23:47:25 2025 by rpki-client