$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/F0E6E6B4282511ED8C222B0BC4F9AE02.roa File: F0E6E6B4282511ED8C222B0BC4F9AE02.roa (raw, json) Hash identifier: qJl+NG/iuh3l1t7hw88YtmCAztTckqHSfhqMSQLVD9Q= Subject key identifier: 0F:79:9D:36:58:E0:CE:2F:E5:B7:01:5A:0B:5C:57:75:91:4E:37:82 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EB6 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/F0E6E6B4282511ED8C222B0BC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:09 +0000 ROA not before: Thu 22 May 2025 20:07:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150184 IP address blocks: 2406:840:e300::/44 maxlen: 48 2406:840:fefd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3766 (0xeb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83ed-6dd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f4:dd:71:0f:dc:6a:db:d7:df:17:9d:8a:cd: 6f:0e:f7:3c:86:01:98:73:59:a8:cc:73:e8:99:9e: e4:36:6b:ee:df:d8:02:fa:f7:78:aa:d0:8b:63:25: fa:0e:e1:cb:49:9a:bd:27:89:b1:4c:d2:20:74:af: 0c:f2:a9:23:43:51:f8:7e:21:fa:8d:03:87:c4:7f: 6d:fa:9e:3f:4f:e0:bc:d9:f4:7a:71:99:26:d3:22: ae:af:0a:fe:42:1e:cd:d0:57:46:f3:81:3f:a8:7a: a2:56:29:fd:da:59:0c:c8:66:40:d7:57:0f:5e:b7: 33:81:7a:a0:ca:26:c5:d3:a7:9c:1e:d0:ae:b9:27: 3c:ce:87:3f:23:6e:45:54:5e:60:1f:f8:b4:ab:fd: 1b:d5:2c:51:f5:33:8d:21:62:22:dd:e9:0e:6a:32: 67:a3:13:a9:c1:a6:86:2b:bd:c8:03:47:75:b2:54: 54:a0:00:d5:48:9d:f5:a5:a7:85:83:15:c3:93:76: 01:00:9e:3e:56:15:8d:a6:75:dd:c4:6a:5f:7e:9e: c2:51:91:8e:a1:2f:fb:2c:82:90:0d:81:da:ef:90: 61:5a:e0:76:12:95:3a:8d:5c:4e:3c:44:61:24:04: 40:06:55:25:ee:ad:56:85:9a:76:56:0e:fb:64:42: ee:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:79:9D:36:58:E0:CE:2F:E5:B7:01:5A:0B:5C:57:75:91:4E:37:82 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/F0E6E6B4282511ED8C222B0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e300::/44 2406:840:fefd::/48 Signature Algorithm: sha256WithRSAEncryption 1b:0e:a1:f9:13:7e:45:b0:93:7b:97:0b:ec:52:48:f8:80:f4: 75:4b:90:55:a5:00:a9:54:c7:c3:15:c7:6c:c9:bf:88:b3:7b: 84:3e:94:95:2d:a9:b1:16:00:df:50:45:a6:d0:83:ae:12:31: c3:8c:7b:d5:c6:57:05:36:e5:b1:42:e6:a6:48:10:77:31:1e: 7c:e7:72:d7:48:cd:21:58:79:77:85:3f:c8:d4:a1:d6:75:8e: 69:8e:73:14:ba:63:96:4e:30:4c:32:6c:2b:ee:6f:ee:d4:0b: a0:fc:0f:80:d9:8b:a6:8d:ac:08:22:d4:01:58:c6:53:75:e8: 3e:24:fd:ab:bf:b3:52:1c:90:46:8b:45:ea:f3:81:b0:50:24: 1c:7e:ac:82:e3:b8:f0:57:81:68:e7:5c:e8:e8:97:55:74:de: 7e:21:c2:57:71:fa:a8:8a:d8:31:02:1a:6e:28:14:8d:a3:7d: ce:e8:a4:81:f7:a9:f5:12:03:c1:9e:27:e2:e2:f4:27:b0:12: 07:7a:dd:d4:41:83:d7:67:1e:87:41:eb:18:d5:66:1e:96:cf: 79:22:79:d0:8f:1e:c4:a8:22:c5:f8:e5:8b:95:d2:53:c2:60: 2f:16:51:ed:0b:9a:aa:22:48:8f:50:b1:a2:53:92:21:96:85: 33:cd:88:e2 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNlZC02ZGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPTdcQ/catvX3xedis1vDvc8hgGYc1mozHPomZ7kNmvu39gC+vd4qtCLYyX6 DuHLSZq9J4mxTNIgdK8M8qkjQ1H4fiH6jQOHxH9t+p4/T+C82fR6cZkm0yKurwr+ Qh7N0FdG84E/qHqiVin92lkMyGZA11cPXrczgXqgyibF06ecHtCuuSc8zoc/I25F VF5gH/i0q/0b1SxR9TONIWIi3ekOajJnoxOpwaaGK73IA0d1slRUoADVSJ31paeF gxXDk3YBAJ4+VhWNpnXdxGpffp7CUZGOoS/7LIKQDYHa75BhWuB2EpU6jVxOPERh JARABlUl7q1WhZp2Vg77ZELuIQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFA95nTZY 4M4v5bcBWgtcV3WRTjeCMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRjBFNkU2QjQy ODI1MTFFRDhDMjIyQjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4wADBwAkBghA/v0wDQYJKoZIhvcNAQELBQADggEB ABsOofkTfkWwk3uXC+xSSPiA9HVLkFWlAKlUx8MVx2zJv4ize4Q+lJUtqbEWAN9Q RabQg64SMcOMe9XGVwU25bFC5qZIEHcxHnznctdIzSFYeXeFP8jUodZ1jmmOcxS6 Y5ZOMEwybCvub+7UC6D8D4DZi6aNrAgi1AFYxlN16D4k/au/s1IckEaLRerzgbBQ JBx+rILjuPBXgWjnXOjol1V03n4hwldx+qiK2DECGm4oFI2jfc7opIH3qfUSA8Ge J+Li9CewEgd63dRBg9dnHodB6xjVZh6Wz3kiedCPHsSoIsX45YuV0lPCYC8WUe0L mqoiSI9QsaJTkiGWhTPNiOI= -----END CERTIFICATE-----Generated at Mon Jun 2 06:36:50 2025 by rpki-client