$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/48CCA85EC45611EF833A954CC4F9AE02.roa File: 48CCA85EC45611EF833A954CC4F9AE02.roa (raw, json) Hash identifier: MeHG8eKmn/oKcjxxOvKwvSpEcUb943zFoHn6iujcVvM= Subject key identifier: A9:D6:F7:4C:56:6B:04:40:86:93:AE:9E:70:E2:BF:2F:22:62:0B:AB Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0DFE Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/48CCA85EC45611EF833A954CC4F9AE02.roa Signing time: Fri 27 Dec 2024 13:54:11 +0000 ROA not before: Fri 27 Dec 2024 13:54:11 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138535 IP address blocks: 2406:840:e621::/48 maxlen: 48 2406:840:feab::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3582 (0xdfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C Validity Not Before: Dec 27 13:54:11 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=676eb183-3697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4d:2d:b4:a6:96:1d:89:29:dd:58:12:4d:14: f5:1d:c5:0e:1a:07:91:63:79:b6:8e:c4:2e:98:56: 5b:c5:df:4f:21:43:70:90:02:f9:96:ee:ce:0a:c8: 09:2c:82:3b:c6:0a:28:b3:d1:19:3c:80:00:13:6f: cf:d2:48:17:3a:26:55:16:94:12:c2:e7:6c:c6:4b: cc:f6:4f:08:dc:81:ab:06:cb:69:a4:d0:d8:79:fd: ca:fe:e8:66:ad:31:41:d4:91:bd:a5:ed:5b:fe:68: 7b:20:a7:66:c9:02:62:96:af:ff:3b:61:db:72:2a: de:8b:d6:13:9c:c9:2f:d8:29:e9:e1:60:7a:a2:25: 55:f4:c6:b9:d2:3b:20:97:c0:e6:97:91:0f:0a:d0: 09:5e:19:33:ec:68:99:8d:a4:36:0a:80:38:65:f7: d3:3f:3d:7f:dd:b0:ff:2c:fa:c5:70:81:d7:f6:46: a1:aa:ea:18:0e:9a:82:df:6c:73:51:09:fc:a1:73: 44:5f:2b:02:d7:88:6b:a1:9b:70:95:c3:3a:8a:be: d0:38:fb:8d:4f:43:97:5a:09:c1:ab:71:5b:0f:ce: 0d:8d:41:62:5d:63:da:c3:0e:5c:93:3b:83:3b:bc: d7:7b:86:83:b6:27:14:ed:6b:c1:ad:4c:bc:ed:e3: 2d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:D6:F7:4C:56:6B:04:40:86:93:AE:9E:70:E2:BF:2F:22:62:0B:AB X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/48CCA85EC45611EF833A954CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e621::/48 2406:840:feab::/48 Signature Algorithm: sha256WithRSAEncryption a3:82:f2:0b:da:ab:86:2a:6c:c3:04:a7:6c:ae:e9:d5:83:8e: 4f:5b:fa:69:5a:8a:42:9d:55:c2:e5:9a:57:42:9e:7f:53:19: 88:71:ec:7d:6b:69:68:8f:3a:60:b5:ee:2b:90:9e:bd:b3:1a: a2:a2:0a:d6:37:50:06:3e:ac:88:a2:ec:8c:64:33:d4:43:23: 87:62:6e:ee:93:33:12:a6:c6:30:6f:41:fb:f0:1a:e4:98:86: e9:f6:d7:52:68:46:e5:e5:cc:3c:52:87:ef:ec:ed:da:66:f8: de:d0:9c:20:22:1a:df:6d:d8:54:2c:7e:61:c8:3b:76:29:57: 76:5a:7b:ab:77:79:66:77:54:cf:8f:b6:f8:a3:70:ed:0f:15: 97:dc:93:c7:e9:da:8f:5b:fa:eb:7d:17:22:43:5d:e1:81:94: 7a:7c:d8:b6:49:bd:35:e5:48:57:b2:77:ee:15:ee:b3:6c:a9: d9:0f:9f:38:24:53:33:47:7e:f3:d4:92:7c:89:a0:6d:b0:b5: 89:75:f1:d3:90:8f:ca:70:83:49:c8:f3:b0:ae:10:87:7b:10: 09:2b:b7:a4:ee:60:66:14:b6:aa:ea:aa:dd:c4:e1:65:70:89: 82:d7:e4:86:ab:73:f2:b0:b1:23:d6:36:50:85:9b:61:8c:7b: 30:8e:a1:97 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQxMjI3MTM1NDExWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZlYjE4My0zNjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4E0ttKaWHYkp3VgSTRT1HcUOGgeRY3m2jsQumFZbxd9PIUNwkAL5lu7OCsgJ LII7xgoos9EZPIAAE2/P0kgXOiZVFpQSwudsxkvM9k8I3IGrBstppNDYef3K/uhm rTFB1JG9pe1b/mh7IKdmyQJilq//O2Hbcirei9YTnMkv2Cnp4WB6oiVV9Ma50jsg l8Dml5EPCtAJXhkz7GiZjaQ2CoA4ZffTPz1/3bD/LPrFcIHX9kahquoYDpqC32xz UQn8oXNEXysC14hroZtwlcM6ir7QOPuNT0OXWgnBq3FbD84NjUFiXWPaww5ckzuD O7zXe4aDticU7WvBrUy87eMt7wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKnW90xW awRAhpOunnDivy8iYgurMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDhDQ0E4NUVD NDU2MTFFRjgzM0E5NTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBghA5iEDBwAkBghA/qswDQYJKoZIhvcNAQELBQADggEB AKOC8gvaq4YqbMMEp2yu6dWDjk9b+mlaikKdVcLlmldCnn9TGYhx7H1raWiPOmC1 7iuQnr2zGqKiCtY3UAY+rIii7IxkM9RDI4dibu6TMxKmxjBvQfvwGuSYhun211Jo RuXlzDxSh+/s7dpm+N7QnCAiGt9t2FQsfmHIO3YpV3Zae6t3eWZ3VM+PtvijcO0P FZfck8fp2o9b+ut9FyJDXeGBlHp82LZJvTXlSFeyd+4V7rNsqdkPnzgkUzNHfvPU knyJoG2wtYl18dOQj8pwg0nI87CuEId7EAkrt6TuYGYUtqrqqt3E4WVwiYLX5Iar c/KwsSPWNlCFm2GMezCOoZc= -----END CERTIFICATE-----Generated at Sat Apr 5 02:15:55 2025 by rpki-client