$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5FCBF00EB89511EFA8E14384C4F9AE02.roa File: 5FCBF00EB89511EFA8E14384C4F9AE02.roa (raw, json) Hash identifier: dPXIgxEydrx2gaU777/9P5/gzs2Oee108w5f6bFwzp0= Subject key identifier: D3:4E:D6:CC:0D:B9:93:75:31:11:05:AF:FA:EB:A8:37:0D:C5:8D:29 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0DDD Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5FCBF00EB89511EFA8E14384C4F9AE02.roa Signing time: Thu 12 Dec 2024 14:30:00 +0000 ROA not before: Thu 12 Dec 2024 14:30:00 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137908 IP address blocks: 2406:840:ee40::/44 maxlen: 48 2406:840:feaf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3549 (0xddd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C Validity Not Before: Dec 12 14:30:00 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=675af367-714a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1e:4b:68:dd:7b:e5:04:72:0d:e6:48:46:17: fd:0c:08:b7:91:d2:56:09:c4:7f:5f:94:a9:17:52: 17:43:a4:97:19:aa:a9:ab:1c:b0:64:a6:59:2b:1d: b7:78:91:76:42:cc:e9:a2:e4:5c:27:f9:ec:05:55: fe:e0:b6:d1:fd:e5:d5:9c:3c:83:b1:d1:b0:fd:fa: 56:d7:78:b7:c2:7b:9f:54:3c:3a:53:a6:ed:1d:c1: 8c:8e:85:84:4e:74:65:5d:e6:46:38:eb:3e:28:26: f3:24:70:09:78:10:48:09:1b:8a:93:66:e9:71:23: 3b:00:7d:e3:54:30:c7:00:67:0f:2c:f1:8d:6a:87: 9d:27:a4:c1:bc:d5:73:1d:1f:9a:f8:7f:8f:0e:42: 6e:02:79:7a:c0:14:9f:fe:e3:bd:5c:9d:64:ab:7b: 6a:e1:2b:ac:a1:60:c3:f8:8b:07:44:c4:95:85:3a: 86:a9:c6:e1:7d:65:92:cb:6a:e9:0a:ea:46:7a:81: 26:65:3a:8f:12:82:83:da:7a:f7:dd:2c:b6:54:79: 43:b4:26:41:30:17:9e:37:7c:01:e9:c3:91:76:c3: 43:cb:60:e7:ac:65:f4:b2:96:57:36:5b:4d:36:4b: 2f:f9:d9:75:06:ff:99:49:7a:d9:c2:6c:11:3f:71: 07:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:4E:D6:CC:0D:B9:93:75:31:11:05:AF:FA:EB:A8:37:0D:C5:8D:29 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/5FCBF00EB89511EFA8E14384C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:ee40::/44 2406:840:feaf::/48 Signature Algorithm: sha256WithRSAEncryption 58:d3:3f:30:46:c2:b1:23:68:6d:c3:53:2f:79:a4:24:c4:35: fc:ab:06:75:0a:ae:fe:b9:21:08:7d:18:76:25:71:90:1f:a9: 88:70:9d:90:fc:cf:c3:b0:2f:f8:1d:33:33:87:e6:2a:e6:02: d7:84:18:f3:de:d1:1b:fe:ff:b6:bd:ce:be:8f:20:28:c8:ab: 01:17:9b:93:5c:01:22:da:0d:32:2c:74:2a:0b:6a:cc:cb:c5: d0:04:7a:95:9f:3f:de:3c:ba:92:cf:57:ad:93:a2:a7:34:4d: 7a:cb:15:99:1d:89:23:a4:1d:26:52:aa:42:17:63:ae:bb:94: b8:6d:94:80:7b:f0:d5:47:76:5a:84:bd:bb:4f:d8:9d:4a:5a: 6f:61:a4:f3:9f:22:44:fa:61:09:b5:f4:ec:e9:96:6b:33:ed: d6:9a:46:77:c7:b3:07:52:cb:b3:bc:cf:47:fc:68:e9:62:d2: b0:9a:f0:00:30:da:4e:ae:e5:24:c3:17:e8:e1:37:e8:da:97: ea:60:39:15:3b:25:f4:65:36:eb:c6:8f:45:d0:6e:95:5f:e6: 7b:6a:e6:5d:c8:57:dd:06:93:ce:34:65:7e:12:8e:79:f3:2a: 3c:9d:26:00:6d:ff:ad:33:fb:e3:7b:e5:c0:a2:aa:d4:88:7d: 21:90:4f:ce -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQxMjEyMTQzMDAwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVhZjM2Ny03MTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuh5LaN175QRyDeZIRhf9DAi3kdJWCcR/X5SpF1IXQ6SXGaqpqxywZKZZKx23 eJF2QszpouRcJ/nsBVX+4LbR/eXVnDyDsdGw/fpW13i3wnufVDw6U6btHcGMjoWE TnRlXeZGOOs+KCbzJHAJeBBICRuKk2bpcSM7AH3jVDDHAGcPLPGNaoedJ6TBvNVz HR+a+H+PDkJuAnl6wBSf/uO9XJ1kq3tq4SusoWDD+IsHRMSVhTqGqcbhfWWSy2rp CupGeoEmZTqPEoKD2nr33Sy2VHlDtCZBMBeeN3wB6cORdsNDy2DnrGX0spZXNltN Nksv+dl1Bv+ZSXrZwmwRP3EHEQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNNO1swN uZN1MREFr/rrqDcNxY0pMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNUZDQkYwMEVC ODk1MTFFRkE4RTE0Mzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA7kADBwAkBghA/q8wDQYJKoZIhvcNAQELBQADggEB AFjTPzBGwrEjaG3DUy95pCTENfyrBnUKrv65IQh9GHYlcZAfqYhwnZD8z8OwL/gd MzOH5irmAteEGPPe0Rv+/7a9zr6PICjIqwEXm5NcASLaDTIsdCoLaszLxdAEepWf P948upLPV62Toqc0TXrLFZkdiSOkHSZSqkIXY667lLhtlIB78NVHdlqEvbtP2J1K Wm9hpPOfIkT6YQm19Ozplmsz7daaRnfHswdSy7O8z0f8aOli0rCa8AAw2k6u5STD F+jhN+jal+pgORU7JfRlNuvGj0XQbpVf5ntq5l3IV90Gk840ZX4SjnnzKjydJgBt /60z++N75cCiqtSIfSGQT84= -----END CERTIFICATE-----Generated at Sat Apr 5 02:23:02 2025 by rpki-client