$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/752774D616A111F0B2CDBC72C4F9AE02.roa File: 752774D616A111F0B2CDBC72C4F9AE02.roa (raw, json) Hash identifier: d+1sX6tY5J0jwkyX1i5fUM/tk/BpB8/UlFulaWgxJOc= Subject key identifier: 09:30:56:CE:64:E9:8E:93:E0:7E:67:EF:55:7F:72:82:16:94:58:46 Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: 7A Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/752774D616A111F0B2CDBC72C4F9AE02.roa Signing time: Fri 11 Apr 2025 06:51:56 +0000 ROA not before: Fri 11 Apr 2025 06:51:56 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 211691 IP address blocks: 2405:a280:ff00::/44 maxlen: 44 2405:a280:ff80::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 05:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C, serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Apr 11 06:51:56 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67f8bc0c-1446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9d:12:e1:91:7a:f8:59:61:cc:8d:d4:ec:c5: 6f:0c:07:6c:28:cd:06:9b:de:4d:c2:ea:90:16:3b: 3b:29:89:15:10:80:38:b1:14:c4:d8:58:cc:1d:99: c3:d5:28:9a:2d:6b:1b:f1:35:7b:a7:d3:30:e4:d2: e8:ea:cf:be:31:3a:95:20:a1:9b:e4:78:c9:e0:53: 8f:44:53:44:f9:23:5e:a9:c7:c6:e2:b9:a7:51:89: 39:dd:23:31:27:06:9f:fb:bc:dd:1a:2c:5c:5b:31: 5b:2f:a0:3a:cd:fe:38:c0:e9:ef:25:cc:6c:d3:96: fe:9c:d6:fb:a3:9a:03:e2:a2:19:4f:0c:1e:05:8b: 2a:25:23:c9:50:51:a6:9c:44:aa:45:ff:27:4b:3e: 63:c4:03:35:a8:36:e7:18:9f:e1:06:f9:2d:e6:19: cd:19:43:38:3b:22:30:a5:3c:7c:68:f6:32:dd:34: 72:d9:aa:a2:7a:39:e5:fd:88:e4:66:59:20:40:d5: 01:23:81:d9:86:58:db:a8:7c:e1:87:07:a7:87:86: 88:5a:f7:18:78:47:b0:46:89:f5:69:d7:c7:37:be: 31:1f:c4:1e:3d:9f:94:fb:1a:12:a1:c5:f5:a6:f9: 1e:cc:b5:18:1f:8f:00:61:69:6d:5a:3c:70:75:23: bb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:30:56:CE:64:E9:8E:93:E0:7E:67:EF:55:7F:72:82:16:94:58:46 X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/752774D616A111F0B2CDBC72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:a280:ff00::/44 2405:a280:ff80::/44 Signature Algorithm: sha256WithRSAEncryption 57:e6:82:94:51:3d:30:83:44:0e:c3:a5:54:60:07:6e:39:ab: e1:b8:67:d1:42:7d:cb:6a:59:b6:8d:65:51:9e:a2:32:2f:68: 0d:5e:37:b9:cb:54:b1:eb:10:67:b6:35:0c:48:28:8c:e3:30: ef:b6:2f:ed:5d:39:99:7e:e0:bd:21:3b:9a:a7:5a:9b:83:0c: 0f:63:ca:41:6c:7d:af:9b:3f:66:ec:25:6f:6e:01:d0:a9:c3: 31:c1:57:c7:d2:93:c5:2b:62:ab:d2:a3:4e:66:d7:7a:b4:ba: 02:4f:ef:39:29:33:53:95:7d:60:7f:a0:33:12:74:6c:72:c9: a2:a6:e2:39:e0:63:d5:fa:75:29:23:b3:dc:9d:a5:f2:b0:99: c4:26:92:ef:ff:f5:a1:66:23:c0:78:1f:5f:b8:d0:91:4d:81: 01:3c:e8:33:4e:30:c6:96:5f:bf:02:c1:d5:52:a0:78:5a:ae: 3b:6e:ed:4f:33:e6:27:d9:85:90:3d:06:de:e8:ea:43:30:37: 36:35:45:3e:55:62:cc:ad:f2:58:cd:d7:7b:c9:c3:9e:15:cf: 37:c8:ea:73:8d:d1:57:16:cb:97:01:b3:1e:69:8b:72:ec:29: 27:69:48:9c:dc:d4:51:d4:9d:2f:6e:60:c8:76:06:e1:3c:da: 40:6f:83:ef -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDkyQzExMC8GA1UEBRMoODE3REQzODAyRjI2RTU3RUNFODI2NUNFODYyNkZDQkI5 QzY0RTlENDAeFw0yNTA0MTEwNjUxNTZaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjhiYzBjLTE0NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNnRLhkXr4WWHMjdTsxW8MB2wozQab3k3C6pAWOzspiRUQgDixFMTYWMwdmcPV KJotaxvxNXun0zDk0ujqz74xOpUgoZvkeMngU49EU0T5I16px8biuadRiTndIzEn Bp/7vN0aLFxbMVsvoDrN/jjA6e8lzGzTlv6c1vujmgPiohlPDB4FiyolI8lQUaac RKpF/ydLPmPEAzWoNucYn+EG+S3mGc0ZQzg7IjClPHxo9jLdNHLZqqJ6OeX9iORm WSBA1QEjgdmGWNuofOGHB6eHhoha9xh4R7BGifVp18c3vjEfxB49n5T7GhKhxfWm +R7MtRgfjwBhaW1aPHB1I7snAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUCTBWzmTp jpPgfmfvVX9yghaUWEYwHwYDVR0jBBgwFoAUgX3TgC8m5X7OgmXOhib8u5xk6dQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOTJDL0UyQzA3N0RFNzc2 NjExRUZCNTVFRDI3OUM0RjlBRTAyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZk US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1gzVGdDOG01WDdPZ21YT2hpYjh1NXhrNmRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDkyQy9FMkMwNzdERTc3NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi83NTI3NzRENjE2 QTExMUYwQjJDREJDNzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAIwEgMHBCQFooD/AAMHBCQFooD/gDANBgkqhkiG9w0BAQsFAAOCAQEA V+aClFE9MINEDsOlVGAHbjmr4bhn0UJ9y2pZto1lUZ6iMi9oDV43uctUsesQZ7Y1 DEgojOMw77Yv7V05mX7gvSE7mqdam4MMD2PKQWx9r5s/Zuwlb24B0KnDMcFXx9KT xStiq9KjTmbXerS6Ak/vOSkzU5V9YH+gMxJ0bHLJoqbiOeBj1fp1KSOz3J2l8rCZ xCaS7//1oWYjwHgfX7jQkU2BATzoM04wxpZfvwLB1VKgeFquO27tTzPmJ9mFkD0G 3ujqQzA3NjVFPlVizK3yWM3Xe8nDnhXPN8jqc43RVxbLlwGzHmmLcuwpJ2lInNzU UdSdL25gyHYG4TzaQG+D7w== -----END CERTIFICATE-----Generated at Tue Apr 15 12:20:37 2025 by rpki-client