$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/55EFA6C0ECF711EF88590A69C4F9AE02.roa File: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (raw, json) Hash identifier: FC93rdM/vdZQAg1QRdAMhOId3DELs7nG9wTwZW4DnWQ= Subject key identifier: 98:D3:52:86:F5:12:CF:27:7B:DD:74:4E:75:D0:B7:4B:53:EA:04:5B Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: 28 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/55EFA6C0ECF711EF88590A69C4F9AE02.roa Signing time: Mon 17 Feb 2025 06:20:51 +0000 ROA not before: Mon 17 Feb 2025 06:20:51 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 0 IP address blocks: 2405:4b00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D Validity Not Before: Feb 17 06:20:51 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67b2d543-24df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4f:f1:22:08:3a:60:fe:4b:0d:33:af:c7:5e: b0:24:70:8a:78:18:16:20:08:18:a5:d3:df:33:9e: 54:31:51:68:2d:f8:76:d6:32:03:d9:c9:0b:ab:9b: 0b:bc:4c:94:65:a4:17:c9:80:f7:30:b2:a8:21:83: fb:32:41:f5:b4:37:b5:d9:d1:49:7d:e6:4d:68:ce: de:b1:67:2e:e1:8f:99:55:0d:c2:de:df:14:a4:bf: da:c3:4c:c5:a4:31:a0:cc:00:cd:67:82:89:b1:9e: e7:96:5f:95:ca:62:29:eb:ae:cd:ee:e6:3b:12:1e: 9c:a5:f5:82:67:16:3e:40:71:f8:42:29:b7:af:4a: bf:de:2f:b6:78:e6:76:44:75:da:14:dd:53:1f:90: d8:6e:c9:ad:38:cc:b9:2d:cb:44:ff:26:16:0d:3b: b4:b0:72:e4:b8:f0:e1:6a:59:46:68:14:f9:c0:83: 42:88:ab:af:aa:5e:e0:55:32:81:10:c7:0e:a7:00: fa:a6:99:bb:c9:ea:17:fc:af:59:c3:cc:05:f4:30: f7:82:15:a9:8e:68:73:7e:cc:3f:59:c9:04:36:b8: 7b:9c:71:e5:24:3c:7e:83:ed:27:08:df:4a:fc:73: 8f:7c:95:d9:11:30:09:b6:d5:93:e2:cd:9e:20:4c: 56:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D3:52:86:F5:12:CF:27:7B:DD:74:4E:75:D0:B7:4B:53:EA:04:5B X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/55EFA6C0ECF711EF88590A69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:4b00::/32 Signature Algorithm: sha256WithRSAEncryption 11:af:f5:31:95:f6:7f:b5:c1:64:d5:1d:da:f4:2f:ec:73:f8: e3:c8:03:a5:a8:1b:90:6c:a5:ea:f1:26:bc:7d:69:b0:83:f4: 06:64:c1:d9:6d:39:b0:1a:75:3a:5d:2d:c4:bc:a0:2f:94:87: 6d:55:d5:8e:2d:00:c7:72:d8:73:2c:e4:04:0c:d7:8a:1c:24: 84:8f:c8:83:9f:38:c5:ee:31:d2:44:b5:94:fd:62:ac:52:68: 77:da:30:04:e6:b6:4c:92:12:a4:d5:67:4a:24:31:6f:c9:f6: a8:59:9d:44:71:b5:12:37:9a:d3:ae:97:0d:60:45:d8:21:41: d2:ed:6f:0f:b8:07:3f:7c:ff:96:e6:97:cb:19:1d:a5:55:55: ad:52:c2:f6:6e:5e:f7:a8:d3:19:6d:cb:69:40:84:2f:03:e3: 65:1f:12:53:94:79:0a:b9:55:da:b6:bf:e0:08:89:de:32:15: 1e:88:b7:a1:49:3d:f4:7f:48:69:d2:73:74:27:b9:75:36:d9: 85:5b:82:8a:21:61:39:0d:4f:b9:ea:b6:94:69:72:8b:5c:b0: cb:43:5f:c9:b7:b7:b4:5f:5f:14:4c:e8:b4:f5:27:50:93:29: f6:ed:20:ba:71:b7:83:63:9b:0a:0e:ec:7f:db:77:32:c8:7f: 14:90:ad:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QzQ4RDExMC8GA1UEBRMoODY0NDRBMzM0OTE1MTIxNEI0RjI3MTFCMkM1REEwQ0I5 OUU1MEYxMzAeFw0yNTAyMTcwNjIwNTFaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjJkNTQzLTI0ZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGT/EiCDpg/ksNM6/HXrAkcIp4GBYgCBil098znlQxUWgt+HbWMgPZyQurmwu8 TJRlpBfJgPcwsqghg/syQfW0N7XZ0Ul95k1ozt6xZy7hj5lVDcLe3xSkv9rDTMWk MaDMAM1ngomxnueWX5XKYinrrs3u5jsSHpyl9YJnFj5AcfhCKbevSr/eL7Z45nZE ddoU3VMfkNhuya04zLkty0T/JhYNO7SwcuS48OFqWUZoFPnAg0KIq6+qXuBVMoEQ xw6nAPqmmbvJ6hf8r1nDzAX0MPeCFamOaHN+zD9ZyQQ2uHucceUkPH6D7ScI30r8 c498ldkRMAm21ZPizZ4gTFabAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUmNNShvUS zyd73XROddC3S1PqBFswHwYDVR0jBBgwFoAUhkRKM0kVEhS08nEbLF2gy5nlDxMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDNDhELzBDMjE1OEIyQjJD OTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGtSS00wa1ZFaFMwOG5FYkxGMmd5NW5sRHhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzQ4RC8wQzIxNThCMkIyQzkxMUVGOTAzRjc4ODNDNEY5QUUwMi81NUVGQTZDMEVD RjcxMUVGODg1OTBBNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQFSwAwDQYJKoZIhvcNAQELBQADggEBABGv9TGV9n+1wWTV Hdr0L+xz+OPIA6WoG5BsperxJrx9abCD9AZkwdltObAadTpdLcS8oC+Uh21V1Y4t AMdy2HMs5AQM14ocJISPyIOfOMXuMdJEtZT9YqxSaHfaMATmtkySEqTVZ0okMW/J 9qhZnURxtRI3mtOulw1gRdghQdLtbw+4Bz98/5bml8sZHaVVVa1SwvZuXveo0xlt y2lAhC8D42UfElOUeQq5Vdq2v+AIid4yFR6It6FJPfR/SGnSc3QnuXU22YVbgooh YTkNT7nqtpRpcotcsMtDX8m3t7RfXxRM6LT1J1CTKfbtILpxt4NjmwoO7H/bdzLI fxSQrUU= -----END CERTIFICATE-----Generated at Sat Apr 5 07:14:27 2025 by rpki-client