$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/13B569D89B7C11EFA635C368C4F9AE02.roa File: 13B569D89B7C11EFA635C368C4F9AE02.roa (raw, json) Hash identifier: a8+qvf+yN95TY6Xo0h55tMYutuMwsjFxm2vm4IxqU1U= Subject key identifier: F9:DE:AB:91:4F:01:A7:46:9A:B7:E9:67:49:CC:08:A6:8D:A7:0F:6A Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EFF Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/13B569D89B7C11EFA635C368C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:20 +0000 ROA not before: Thu 22 May 2025 20:08:20 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 215750 IP address blocks: 2406:840:9600::/44 maxlen: 48 2406:840:9610::/44 maxlen: 48 2406:840:9620::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3839 (0xeff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:20 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8434-b88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:53:56:fd:02:f8:e9:a4:4d:50:d7:09:d9:9d: 78:2b:4e:0d:75:45:1d:05:ea:4a:c9:82:fa:af:45: 9f:ab:6f:d2:e9:b0:7e:a4:6c:2c:89:5e:04:46:1a: 21:b6:7b:bd:33:b1:00:c2:9d:c5:43:f9:31:98:9c: 04:33:4a:c8:74:57:ef:7c:db:91:ae:7b:eb:9c:f5: 26:38:a0:83:9a:f9:f3:8b:a4:83:65:d1:5a:11:bd: 06:12:29:7f:03:a4:a3:a2:ab:3f:45:6f:ec:2c:2a: fe:88:a6:84:48:17:20:88:31:72:46:e6:73:07:09: 06:18:4a:62:cb:6f:b2:86:3e:c4:e3:ca:fc:6a:a2: 61:08:b0:16:ab:9c:62:a4:66:b9:d0:7f:dc:7d:5e: 75:ce:c0:d0:05:79:a3:05:8d:e7:51:b3:bb:dc:7c: d1:21:ad:d8:26:4b:21:6e:90:16:48:84:84:9b:44: a7:32:7d:6a:0b:2c:1c:33:7d:e7:27:11:f2:b6:ef: d7:8a:13:ed:c9:c9:9e:ff:fe:ca:59:78:1d:ef:52: 3a:ad:d8:7a:8d:a0:10:39:9e:50:6a:19:96:97:ad: dc:33:17:24:54:c4:31:41:e9:2a:23:bb:53:dc:9a: e5:26:70:b7:ea:fc:f6:ad:dd:2d:ba:ef:94:18:83: 77:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:DE:AB:91:4F:01:A7:46:9A:B7:E9:67:49:CC:08:A6:8D:A7:0F:6A X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/13B569D89B7C11EFA635C368C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9600::-2406:840:962f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 5e:c5:63:76:d9:92:4e:c9:cb:8b:c8:17:f9:52:e0:e9:23:f3: d4:a9:5f:68:5d:54:ff:52:1f:98:0f:2d:88:f7:2a:7e:68:5a: 77:d7:3d:cc:76:0c:8e:e1:52:bc:1e:8d:94:92:47:85:ee:6e: 40:a0:56:4a:3d:5d:6f:09:92:0b:2a:73:ce:d0:14:88:e6:25: de:a0:87:02:6c:f9:bb:58:af:37:76:35:72:d0:bd:8e:0a:0c: 32:ec:a6:d3:6e:cc:f3:58:49:e8:10:4f:2c:f2:ae:cc:3c:25: bc:56:35:b0:84:a8:a2:16:7b:27:cb:10:04:43:7d:1d:bc:dc: ef:16:c8:78:7a:e8:2e:43:a9:53:cc:29:dc:62:48:26:99:12: 19:f4:4a:48:f3:17:ca:dd:60:67:79:a4:6b:ce:12:97:b4:f4: 59:7e:0c:cf:c5:63:6b:d8:27:f2:93:84:0e:80:44:9e:81:73: d7:d6:b7:a2:da:c9:45:d7:91:4a:04:06:5c:d8:61:ed:7f:7f: 9b:d1:db:fc:09:61:23:b7:fc:67:83:f9:06:ef:ad:39:23:a1: 63:70:e2:49:28:7b:45:b4:d1:8c:65:db:aa:6c:f9:3b:29:12: ab:f9:c5:11:e9:79:f4:93:fe:0c:b2:88:e7:8c:a3:57:8a:87: 0e:5a:ad:6d -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICDv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODIwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzNC1iODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9lNW/QL46aRNUNcJ2Z14K04NdUUdBepKyYL6r0Wfq2/S6bB+pGwsiV4ERhoh tnu9M7EAwp3FQ/kxmJwEM0rIdFfvfNuRrnvrnPUmOKCDmvnzi6SDZdFaEb0GEil/ A6Sjoqs/RW/sLCr+iKaESBcgiDFyRuZzBwkGGEpiy2+yhj7E48r8aqJhCLAWq5xi pGa50H/cfV51zsDQBXmjBY3nUbO73HzRIa3YJkshbpAWSISEm0SnMn1qCywcM33n JxHytu/XihPtycme//7KWXgd71I6rdh6jaAQOZ5QahmWl63cMxckVMQxQekqI7tT 3JrlJnC36vz2rd0tuu+UGIN3xwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFPneq5FP AadGmrfpZ0nMCKaNpw9qMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTNCNTY5RDg5 QjdDMTFFRkE2MzVDMzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgACMBMwEQMGASQGCECWAwcEJAYIQJYgMA0GCSqGSIb3DQEBCwUAA4IB AQBexWN22ZJOycuLyBf5UuDpI/PUqV9oXVT/Uh+YDy2I9yp+aFp31z3MdgyO4VK8 Ho2UkkeF7m5AoFZKPV1vCZILKnPO0BSI5iXeoIcCbPm7WK83djVy0L2OCgwy7KbT bszzWEnoEE8s8q7MPCW8VjWwhKiiFnsnyxAEQ30dvNzvFsh4euguQ6lTzCncYkgm mRIZ9EpI8xfK3WBneaRrzhKXtPRZfgzPxWNr2Cfyk4QOgESegXPX1rei2slF15FK BAZc2GHtf3+b0dv8CWEjt/xng/kG7605I6FjcOJJKHtFtNGMZduqbPk7KRKr+cUR 6Xn0k/4MsojnjKNXiocOWq1t -----END CERTIFICATE-----Generated at Wed Jun 4 00:06:12 2025 by rpki-client