$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/28E35E4898F211ED9FB5D80DC4F9AE02.roa File: 28E35E4898F211ED9FB5D80DC4F9AE02.roa (raw, json) Hash identifier: 3rfvelTpkGIVSx6swNlRbMEKIqAJwLp3a6nGC9gVNp0= Subject key identifier: BB:81:6A:1E:5D:4F:6D:E3:3C:E5:9C:11:EF:28:4F:57:D6:11:1A:AB Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Certificate serial: 28D1 Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/28E35E4898F211ED9FB5D80DC4F9AE02.roa Signing time: Sat 24 May 2025 15:43:32 +0000 ROA not before: Sat 24 May 2025 15:43:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 17557 IP address blocks: 2001:dec:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10449 (0x28d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Validity Not Before: May 24 15:43:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6831e924-446d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:93:f9:7e:72:24:e9:83:57:b8:f1:a3:e0:00: 21:ef:aa:2d:63:8d:31:eb:af:4c:0b:5e:f5:4e:87: 59:96:94:f3:f3:32:7f:0c:56:a2:bc:fd:57:05:5c: ac:f2:95:11:69:e4:91:30:39:37:fc:30:65:2e:8b: 11:0f:66:68:8e:e9:3b:7e:fb:9b:d7:07:3b:c4:39: b6:36:9d:b4:55:5c:3d:6b:e3:f6:ce:b7:a3:e9:f2: d9:22:99:19:4d:36:cb:a3:f0:00:e6:1c:27:67:a3: be:2f:28:ea:04:2c:97:1d:e5:a9:08:bc:9f:b9:25: 29:c5:c7:27:6c:7d:33:68:54:33:fc:e5:09:cd:fe: 92:6b:df:13:79:ac:a4:27:37:be:01:05:5b:44:f0: db:75:a6:a1:14:b5:2f:ae:97:7a:22:cf:e3:d2:42: a5:25:e4:71:ad:5f:cb:3f:44:d5:05:2b:14:0c:8b: 9e:27:5f:e1:ff:1f:be:15:0c:4a:90:63:f8:65:6b: 68:3d:f0:6a:18:54:64:e9:95:fb:8d:ec:b0:f7:e8: 99:db:ae:e6:80:b5:97:c5:ba:4d:c6:aa:fa:75:a0: 5b:ad:64:77:5c:1d:8d:ae:4e:5f:1a:e3:02:2f:37: 60:b5:6c:75:97:85:f9:24:5f:79:d5:f5:23:bc:bf: bc:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:81:6A:1E:5D:4F:6D:E3:3C:E5:9C:11:EF:28:4F:57:D6:11:1A:AB X509v3 Authority Key Identifier: keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/28E35E4898F211ED9FB5D80DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dec:8000::/48 Signature Algorithm: sha256WithRSAEncryption 34:6e:74:6f:52:bb:50:3d:e0:c0:44:46:e4:0c:0e:bd:0c:69: 01:fc:04:6a:30:da:a0:72:b8:4d:48:7d:4d:00:84:56:6c:b7: 7d:e4:3c:6a:45:16:88:46:6f:0a:0d:aa:1b:08:eb:ef:49:4c: e9:b3:72:76:c3:5b:57:a1:ba:86:bb:15:4b:27:bf:3a:bb:46: 11:e9:60:87:2a:ca:cf:ce:72:fe:8c:5f:8b:2a:a3:84:7b:7a: 5c:3a:dd:65:71:80:a6:7f:09:51:e2:77:df:42:28:ca:63:ba: fc:84:06:31:b6:34:ef:51:a4:4d:3a:c4:63:1c:3e:08:38:0a: 7a:4e:f4:81:f5:76:d7:b0:be:02:c4:a3:67:17:48:3d:62:a2: 01:ab:d5:3f:97:a8:56:7f:bd:f9:a0:85:40:52:d5:2c:7b:a1: 67:e9:89:4a:6e:45:0b:4f:5a:c2:e4:f1:fc:8f:25:cb:81:92: b1:47:bb:d9:11:1d:0a:55:e1:97:e6:fb:20:c3:83:d5:f6:bd: a3:52:8a:7b:82:f1:25:6a:17:f6:35:e1:32:5b:f1:81:6e:70: f5:30:68:ce:43:3c:d5:09:e5:11:7c:9d:ba:3d:1f:14:76:d3: fb:c7:16:4e:f9:3c:33:cd:6c:28:a3:46:1b:8a:b6:83:5a:14: 33:2d:8b:80 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKDkwMDlFNzQxOTZENDhCMDM5NjRGMUZDNTZDRkU0NDZF QzUwNDhDRjcwHhcNMjUwNTI0MTU0MzMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMxZTkyNC00NDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZP5fnIk6YNXuPGj4AAh76otY40x669MC171TodZlpTz8zJ/DFaivP1XBVys 8pURaeSRMDk3/DBlLosRD2Zojuk7fvub1wc7xDm2Np20VVw9a+P2zrej6fLZIpkZ TTbLo/AA5hwnZ6O+LyjqBCyXHeWpCLyfuSUpxccnbH0zaFQz/OUJzf6Sa98Teayk Jze+AQVbRPDbdaahFLUvrpd6Is/j0kKlJeRxrV/LP0TVBSsUDIueJ1/h/x++FQxK kGP4ZWtoPfBqGFRk6ZX7jeyw9+iZ267mgLWXxbpNxqr6daBbrWR3XB2Nrk5fGuMC LzdgtWx1l4X5JF951fUjvL+8oQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLuBah5d T23jPOWcEe8oT1fWERqrMB8GA1UdIwQYMBaAFJAJ50GW1IsDlk8fxWz+RG7FBIz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni9CQzFEQzFGNkMx NzUxMUU0QTJDN0I3NENDNEY5QUUwMi9rQW5uUVpiVWl3T1dUeF9GYlA1RWJzVUVq UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tBbm5RWmJVaXdPV1R4X0ZiUDVFYnNVRWpQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvQkMxREMxRjZDMTc1MTFFNEEyQzdCNzRDQzRGOUFFMDIvMjhFMzVFNDg5 OEYyMTFFRDlGQjVEODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3sgAAwDQYJKoZIhvcNAQELBQADggEBADRudG9Su1A9 4MBERuQMDr0MaQH8BGow2qByuE1IfU0AhFZst33kPGpFFohGbwoNqhsI6+9JTOmz cnbDW1ehuoa7FUsnvzq7RhHpYIcqys/Ocv6MX4sqo4R7elw63WVxgKZ/CVHid99C KMpjuvyEBjG2NO9RpE06xGMcPgg4CnpO9IH1dtewvgLEo2cXSD1iogGr1T+XqFZ/ vfmghUBS1Sx7oWfpiUpuRQtPWsLk8fyPJcuBkrFHu9kRHQpV4Zfm+yDDg9X2vaNS inuC8SVqF/Y14TJb8YFucPUwaM5DPNUJ5RF8nbo9HxR20/vHFk75PDPNbCijRhuK toNaFDMti4A= -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:35 2025 by rpki-client