$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa File: D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa (raw, json) Hash identifier: JBejhn2Pc0mBcQW4NBZfCcZNBanW/v82rIJ/rTpxb/Y= Subject key identifier: C7:A0:93:4C:9F:18:51:38:8B:8F:87:53:C6:4E:D5:AA:42:9E:BD:91 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EBA Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa Signing time: Thu 22 May 2025 20:07:15 +0000 ROA not before: Thu 22 May 2025 20:07:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151194 IP address blocks: 2406:840:e570::/44 maxlen: 48 2406:840:fefe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3770 (0xeba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83f2-6ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:51:88:c2:b6:b1:c8:2c:9c:5c:c9:c3:8c:7a: 1a:5d:c5:ea:65:16:c1:0c:1b:79:58:e0:b2:13:4a: b5:e9:57:22:99:bf:6f:ec:d0:97:e0:e9:2c:b8:07: 37:45:c3:0d:91:bb:25:41:1d:18:8e:ba:4d:6d:e7: 11:0f:aa:b7:b6:6a:57:9b:9e:fe:d9:d5:03:c5:b7: a7:0f:04:90:64:61:fa:5d:fa:7b:52:27:f2:c7:44: 41:46:30:89:f2:64:e5:96:d9:42:db:45:ed:14:eb: ad:40:a9:0e:bd:32:74:9e:1f:5f:4e:ad:13:5b:0c: d2:33:54:5b:2d:13:9e:53:31:cf:c7:89:cd:e6:a4: e4:08:53:fa:c2:0e:15:78:e3:b8:72:09:b3:42:bd: d0:a5:88:c2:60:2c:57:e4:48:bf:61:74:82:f8:65: 6c:8a:cf:09:11:ca:a9:18:58:b7:ed:d9:1b:ff:c4: c5:ee:ea:be:2e:44:c1:c7:84:29:d3:46:ad:a3:16: 8c:22:94:01:a9:39:6a:15:4f:fc:fd:4c:d9:70:b3: 6f:31:70:6d:41:20:bb:90:73:9c:4d:8d:fb:5c:9a: 4f:3c:e0:29:e3:39:12:39:27:ff:ca:33:4f:b7:d1: 4a:d7:b6:62:5a:08:b7:4d:f7:4d:5d:72:53:3b:61: ee:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A0:93:4C:9F:18:51:38:8B:8F:87:53:C6:4E:D5:AA:42:9E:BD:91 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e570::/44 2406:840:fefe::/48 Signature Algorithm: sha256WithRSAEncryption 36:80:95:86:fa:2f:65:98:c2:68:2d:5d:af:4c:0b:8c:41:61: 47:c1:e3:9e:9d:10:55:ce:6b:8f:a6:42:25:8b:04:f6:64:ae: 0b:2a:bf:83:7d:d7:a0:12:71:b8:74:d5:e9:64:72:db:6d:3e: 59:6c:f5:ee:fb:aa:bc:d1:8b:23:f8:d6:01:e0:35:a1:26:01: f0:dc:2e:1c:1d:ea:1c:b5:e8:01:cb:04:ba:3d:79:9c:bb:52: 7f:71:3a:bb:2c:e3:e3:91:2c:9b:2a:e5:51:5e:55:87:aa:90: e5:f9:3f:78:94:8d:10:49:f4:7e:b6:80:91:85:01:ff:ad:a3: 7f:52:ce:42:a7:7d:dc:87:c5:ac:75:2c:66:c8:cf:d8:10:8e: 2b:52:d5:38:f3:64:a8:77:d6:3f:7e:bf:bd:69:01:f4:73:e1: fc:d1:45:8d:23:27:85:b7:76:21:4c:29:49:e4:2c:c6:26:95: d3:26:d2:b5:29:b5:bd:9d:c3:94:ab:c6:44:0d:55:91:0f:8b: 8f:4d:16:a6:02:69:00:2c:15:06:da:02:a4:e5:c5:4e:b5:32: 18:86:73:96:45:ce:2d:4a:42:92:cf:15:8d:94:2e:17:73:3f: 73:d5:5d:be:f6:2f:15:64:a8:5e:0e:ec:cf:6e:5e:3c:56:16: 1d:26:fa:5a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNmMi02ZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVGIwraxyCycXMnDjHoaXcXqZRbBDBt5WOCyE0q16Vcimb9v7NCX4OksuAc3 RcMNkbslQR0YjrpNbecRD6q3tmpXm57+2dUDxbenDwSQZGH6Xfp7Uifyx0RBRjCJ 8mTlltlC20XtFOutQKkOvTJ0nh9fTq0TWwzSM1RbLROeUzHPx4nN5qTkCFP6wg4V eOO4cgmzQr3QpYjCYCxX5Ei/YXSC+GVsis8JEcqpGFi37dkb/8TF7uq+LkTBx4Qp 00atoxaMIpQBqTlqFU/8/UzZcLNvMXBtQSC7kHOcTY37XJpPPOAp4zkSOSf/yjNP t9FK17ZiWgi3TfdNXXJTO2HuVQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMegk0yf GFE4i4+HU8ZO1apCnr2RMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRDJFQjg2RUFE RjNEMTFFRDhBRUNCRjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA5XADBwAkBghA/v4wDQYJKoZIhvcNAQELBQADggEB ADaAlYb6L2WYwmgtXa9MC4xBYUfB456dEFXOa4+mQiWLBPZkrgsqv4N916AScbh0 1elkctttPlls9e77qrzRiyP41gHgNaEmAfDcLhwd6hy16AHLBLo9eZy7Un9xOrss 4+ORLJsq5VFeVYeqkOX5P3iUjRBJ9H62gJGFAf+to39SzkKnfdyHxax1LGbIz9gQ jitS1TjzZKh31j9+v71pAfRz4fzRRY0jJ4W3diFMKUnkLMYmldMm0rUptb2dw5Sr xkQNVZEPi49NFqYCaQAsFQbaAqTlxU61MhiGc5ZFzi1KQpLPFY2ULhdzP3PVXb72 LxVkqF4O7M9uXjxWFh0m+lo= -----END CERTIFICATE-----Generated at Fri Jul 4 06:47:16 2025 by rpki-client