$ rpki-client -vvf rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/D87376860A1511F09D97420DC4F9AE02.roa File: D87376860A1511F09D97420DC4F9AE02.roa (raw, json) Hash identifier: DBHtGCQQDfMpiwGGsmk/EkvovYeutKnxcD7IbMh0Lsw= Subject key identifier: 41:3C:51:AF:ED:0F:96:82:39:28:16:F1:82:AE:8E:6E:DE:4F:0F:14 Certificate issuer: /CN=A9112FE1/serialNumber=3D1FCB7255C52503E10AE584B1189A15CF56074E Certificate serial: 31 Authority key identifier: 3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/D87376860A1511F09D97420DC4F9AE02.roa Signing time: Tue 20 May 2025 04:32:41 +0000 ROA not before: Tue 20 May 2025 04:32:41 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137443 IP address blocks: 2404:de80::/32 maxlen: 32 2404:de80::/39 maxlen: 39 2404:de80:0:1::/64 maxlen: 64 2404:de80:400::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.crl rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112FE1, serialNumber=3D1FCB7255C52503E10AE584B1189A15CF56074E Validity Not Before: May 20 04:32:41 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=682c05e9-d410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:83:fe:38:62:9e:68:46:32:51:62:c8:32:52: b8:14:f8:e1:d5:46:1f:7a:48:60:0a:ac:5e:7f:c6: e2:56:19:36:fd:95:67:e1:50:b3:59:2c:75:8e:85: c3:83:53:57:09:6e:86:5b:45:64:a9:07:de:11:fe: 15:5e:1f:99:55:af:0f:aa:b0:11:3b:5d:12:77:56: 59:9c:79:be:7d:a0:93:6c:78:2d:2b:17:cf:4c:c9: c7:32:e8:36:a8:62:1d:1a:27:8d:db:b6:32:22:3f: 4b:dc:b9:5c:32:ec:2e:2d:c5:1e:15:c0:1f:3c:a3: b7:2f:6c:74:ea:dc:49:7f:25:c4:ba:9b:19:24:79: 3d:59:5e:f6:ed:a3:ab:ad:cb:3f:a1:ca:ee:e2:63: c4:fc:ec:93:1d:9d:c3:17:40:6b:45:1f:cb:56:39: 66:8b:38:d3:4e:e7:19:1e:76:b2:90:5b:9d:03:0c: 51:48:f9:96:aa:b1:15:a7:28:52:78:95:41:d7:8e: e8:f8:95:ec:4d:4a:7e:e8:56:98:8c:b1:10:c2:5e: 37:cc:1f:02:38:8a:6a:b6:1f:68:7a:da:99:00:47: 93:b8:9f:2c:45:85:8f:de:83:8c:4e:2b:f8:95:01: 8e:29:14:a0:67:a1:ee:a1:06:a1:6b:44:c3:5c:f8: 7c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3C:51:AF:ED:0F:96:82:39:28:16:F1:82:AE:8E:6E:DE:4F:0F:14 X509v3 Authority Key Identifier: keyid:3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/D87376860A1511F09D97420DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:de80::/32 Signature Algorithm: sha256WithRSAEncryption 53:79:fd:66:c3:5b:6a:0e:7b:e6:5d:93:d7:22:45:24:cb:e7: 45:e1:4d:11:32:5d:72:c1:58:d9:5c:67:14:dd:4a:34:1a:9b: 14:f1:78:a8:1f:b8:1d:ef:50:e1:a5:bc:41:d1:55:47:4a:37: 27:38:5b:ed:b6:95:5c:da:d6:87:9d:78:5d:07:d8:cf:c1:06: 11:60:cb:f7:91:3b:fe:97:82:97:cb:90:07:6e:09:06:3a:21: f3:27:fa:4d:1b:d8:2a:e5:61:f0:d2:06:ff:fa:3b:29:24:7e: 1d:d8:71:04:45:db:e6:da:d4:f5:93:35:03:da:47:33:72:1f: 8e:53:19:29:60:a9:58:6b:cd:b6:fb:18:da:bf:96:11:50:72: d2:27:d2:51:ef:24:84:7a:ae:b7:c2:b4:85:86:db:b6:36:d3: 35:2e:b0:18:33:a0:64:63:9a:82:9c:0b:cc:30:86:bd:79:dd: d4:a3:2c:4d:f8:bc:92:0a:e3:87:a4:0a:db:fc:80:6d:30:6a: 05:42:9b:cf:9c:1a:2e:8e:71:00:a4:79:46:a3:b2:33:de:52: 7c:86:5f:be:40:d5:b2:33:4a:1f:ba:1c:b4:3c:da:6c:63:d2: 1e:d0:10:b4:a2:bd:e2:eb:6e:39:c4:34:f4:4d:99:2d:da:01: 2f:61:84:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MkZFMTExMC8GA1UEBRMoM0QxRkNCNzI1NUM1MjUwM0UxMEFFNTg0QjExODlBMTVD RjU2MDc0RTAeFw0yNTA1MjAwNDMyNDFaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmMwNWU5LWQ0MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwg/44Yp5oRjJRYsgyUrgU+OHVRh96SGAKrF5/xuJWGTb9lWfhULNZLHWOhcOD U1cJboZbRWSpB94R/hVeH5lVrw+qsBE7XRJ3Vlmceb59oJNseC0rF89Myccy6Dao Yh0aJ43btjIiP0vcuVwy7C4txR4VwB88o7cvbHTq3El/JcS6mxkkeT1ZXvbto6ut yz+hyu7iY8T87JMdncMXQGtFH8tWOWaLONNO5xkedrKQW50DDFFI+ZaqsRWnKFJ4 lUHXjuj4lexNSn7oVpiMsRDCXjfMHwI4imq2H2h62pkAR5O4nyxFhY/eg4xOK/iV AY4pFKBnoe6hBqFrRMNc+Hy/AgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUQTxRr+0P loI5KBbxgq6Obt5PDxQwHwYDVR0jBBgwFoAUPR/LclXFJQPhCuWEsRiaFc9WB04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyRkUxL0M0NTYxMDJFMDlG MTExRjA4QjQ0QTMyNUM0RjlBRTAyL1BSX0xjbFhGSlFQaEN1V0VzUmlhRmM5V0Iw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFJfTGNsWEZKUVBoQ3VXRXNSaWFGYzlXQjA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkZFMS9DNDU2MTAyRTA5RjExMUYwOEI0NEEzMjVDNEY5QUUwMi9EODczNzY4NjBB MTUxMUYwOUQ5NzQyMERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQE3oAwDQYJKoZIhvcNAQELBQADggEBAFN5/WbDW2oOe+Zd k9ciRSTL50XhTREyXXLBWNlcZxTdSjQamxTxeKgfuB3vUOGlvEHRVUdKNyc4W+22 lVza1oedeF0H2M/BBhFgy/eRO/6XgpfLkAduCQY6IfMn+k0b2CrlYfDSBv/6Oykk fh3YcQRF2+ba1PWTNQPaRzNyH45TGSlgqVhrzbb7GNq/lhFQctIn0lHvJIR6rrfC tIWG27Y20zUusBgzoGRjmoKcC8wwhr153dSjLE34vJIK44ekCtv8gG0wagVCm8+c Gi6OcQCkeUajsjPeUnyGX75A1bIzSh+6HLQ82mxj0h7QELSiveLrbjnENPRNmS3a AS9hhHc= -----END CERTIFICATE-----Generated at Tue Jun 3 23:51:40 2025 by rpki-client