$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C4F96E22C45511EFBC458A49C4F9AE02.roa File: C4F96E22C45511EFBC458A49C4F9AE02.roa (raw, json) Hash identifier: lDx0nFrjWCbfo0ksTluidwsTedJEvMXMl5Y9DTgG+D8= Subject key identifier: A5:D1:BF:48:31:85:96:A2:F2:54:66:C1:E9:60:AE:56:80:6B:6F:78 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0DFB Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C4F96E22C45511EFBC458A49C4F9AE02.roa Signing time: Fri 27 Dec 2024 13:27:16 +0000 ROA not before: Fri 27 Dec 2024 13:27:16 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138401 IP address blocks: 2406:840:f860::/44 maxlen: 48 2406:840:fea1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3579 (0xdfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C Validity Not Before: Dec 27 13:27:16 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=676eab34-b24c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:70:25:5a:65:e0:3a:00:fa:c1:da:df:9d:6c: 88:46:8f:20:c4:f2:95:cd:5f:24:e7:48:da:1c:a8: d4:6b:5c:6f:e6:4b:5a:ed:36:4d:52:65:bd:f4:66: c0:81:e5:01:0f:ff:38:9f:c9:b5:81:ba:76:61:c1: e2:c8:b4:4c:0d:be:cd:54:36:95:cb:4b:01:76:db: aa:3c:20:f7:fe:60:d3:4c:fd:80:ed:db:16:3e:d3: e9:49:35:05:60:f2:52:0c:e6:3d:01:d9:67:d4:af: f6:3e:de:8f:f3:27:5b:8a:9d:5d:5c:35:8d:19:86: 3e:a2:88:0e:98:55:b4:0d:56:eb:a9:2e:34:3e:94: 00:3f:23:3c:8d:15:88:f6:dd:c5:5b:87:0d:bf:36: 0c:88:17:ee:32:ae:36:be:38:a5:48:62:c5:a0:18: 38:5f:95:3a:e3:f3:52:c9:4b:a1:49:48:64:eb:d5: bc:a3:6d:18:91:06:52:04:d7:29:58:c3:b7:e8:30: 84:3a:b2:8e:f8:31:b1:c7:c8:cc:22:a8:20:a1:dc: 04:42:36:60:07:fe:bf:36:09:30:b5:a0:ff:49:95: de:b3:65:0c:75:b3:cb:86:29:5b:68:d1:b7:f9:7b: d6:d5:da:08:27:c9:12:8f:54:a9:c5:ae:d7:d4:88: 91:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D1:BF:48:31:85:96:A2:F2:54:66:C1:E9:60:AE:56:80:6B:6F:78 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C4F96E22C45511EFBC458A49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f860::/44 2406:840:fea1::/48 Signature Algorithm: sha256WithRSAEncryption 97:a9:a0:53:55:d3:0d:cf:12:7a:8f:b9:36:69:f4:40:c4:e9: 58:82:bc:bf:fa:4e:c0:99:00:14:e8:96:e2:52:2a:9b:75:c6: 93:1d:de:da:ab:50:05:cf:94:d4:be:39:c2:c0:26:86:d3:b9: ea:aa:7c:44:d1:39:f2:98:94:de:b4:5b:d0:fb:90:7c:56:d8: f2:36:a3:51:b3:49:78:7b:ca:d4:66:77:31:89:94:dd:9e:41: 03:1f:0e:34:82:68:e9:a0:8f:15:31:2a:88:7c:90:8a:96:51: af:14:37:4b:87:59:6b:f8:4d:6a:39:dc:68:1b:72:3d:cd:18: f6:29:2b:27:9c:17:19:41:af:2f:97:e6:57:c5:3d:58:a2:2a: 02:20:4b:a7:66:d4:db:d3:e8:1f:3f:7a:8f:e0:34:5f:35:e9: d0:16:5d:9c:6d:3f:66:a4:0f:7e:e1:2c:9b:01:32:9b:fa:fc: e6:0e:16:c4:a4:be:cd:21:4f:83:66:5e:52:26:f5:b6:09:44: 33:53:b2:83:c7:cc:9f:3b:e9:aa:cc:b1:ee:9a:09:ee:f8:39: 02:bf:cc:d8:3c:70:33:fb:94:10:22:16:0d:d8:f3:39:3c:08: 80:64:bf:39:69:be:99:41:b9:c4:0f:2d:13:ce:fc:21:30:18: 1c:e9:10:08 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQxMjI3MTMyNzE2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZlYWIzNC1iMjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnAlWmXgOgD6wdrfnWyIRo8gxPKVzV8k50jaHKjUa1xv5kta7TZNUmW99GbA geUBD/84n8m1gbp2YcHiyLRMDb7NVDaVy0sBdtuqPCD3/mDTTP2A7dsWPtPpSTUF YPJSDOY9Adln1K/2Pt6P8ydbip1dXDWNGYY+oogOmFW0DVbrqS40PpQAPyM8jRWI 9t3FW4cNvzYMiBfuMq42vjilSGLFoBg4X5U64/NSyUuhSUhk69W8o20YkQZSBNcp WMO36DCEOrKO+DGxx8jMIqggodwEQjZgB/6/NgkwtaD/SZXes2UMdbPLhilbaNG3 +XvW1doIJ8kSj1Spxa7X1IiRYwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKXRv0gx hZai8lRmwelgrlaAa294MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQzRGOTZFMjJD NDU1MTFFRkJDNDU4QTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA+GADBwAkBghA/qEwDQYJKoZIhvcNAQELBQADggEB AJepoFNV0w3PEnqPuTZp9EDE6ViCvL/6TsCZABToluJSKpt1xpMd3tqrUAXPlNS+ OcLAJobTueqqfETROfKYlN60W9D7kHxW2PI2o1GzSXh7ytRmdzGJlN2eQQMfDjSC aOmgjxUxKoh8kIqWUa8UN0uHWWv4TWo53Ggbcj3NGPYpKyecFxlBry+X5lfFPVii KgIgS6dm1NvT6B8/eo/gNF816dAWXZxtP2akD37hLJsBMpv6/OYOFsSkvs0hT4Nm XlIm9bYJRDNTsoPHzJ876arMse6aCe74OQK/zNg8cDP7lBAiFg3Y8zk8CIBkvzlp vplBucQPLRPO/CEwGBzpEAg= -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:00 2025 by rpki-client