$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa File: 2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa (raw, json) Hash identifier: B0447DlRtcazpJp6RT+PPyQcJv5n07X36CWvwwkdtQk= Subject key identifier: 3C:25:6E:EF:A4:0A:FD:A0:FA:5B:B5:A8:8E:99:BD:97:E4:8F:53:B7 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E8D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:32 +0000 ROA not before: Thu 22 May 2025 20:06:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134488 IP address blocks: 2406:840:e800::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3725 (0xe8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83c8-e360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1c:27:95:5e:9c:bc:6d:74:c4:54:cd:dd:55: 6f:de:fc:67:c5:d2:9f:86:59:10:1d:65:5b:f0:b3: a7:7d:33:2a:54:b8:77:77:05:9f:16:bf:36:0f:a3: dd:8a:b3:25:47:60:5a:02:ad:f8:79:0d:8b:cb:c8: 74:c4:6c:86:fe:c3:ff:ce:ed:39:e5:ce:8e:91:3f: 60:e3:26:a0:0b:37:4e:df:4e:bc:a9:ec:e9:ae:28: 93:0a:6a:05:e8:40:33:27:f6:41:0a:5e:e7:b6:85: 2f:0f:67:e1:63:fe:e5:bc:14:01:05:f7:e4:fa:fc: 28:f8:9b:95:00:a8:c3:88:42:b7:01:de:a9:ca:b6: 06:d0:a3:e9:2d:01:cd:fd:82:22:68:91:e9:37:4b: 0b:2c:8b:57:85:11:2f:c9:6b:e2:07:cc:21:a4:ff: 67:a8:a8:75:da:a6:a5:82:26:85:bc:e2:25:e5:80: 2c:7c:7c:ac:22:da:7c:b3:23:d1:00:64:58:3e:14: 72:9d:a2:22:58:8b:19:eb:8d:b4:96:4b:7b:b2:3f: ec:5e:53:34:81:97:71:38:f6:e8:d4:00:b6:79:07: 37:69:1b:2f:91:76:16:09:7f:8d:a9:69:32:98:82: 7d:74:15:c3:e6:d4:98:5e:18:05:52:f2:94:2c:a3: 6e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:25:6E:EF:A4:0A:FD:A0:FA:5B:B5:A8:8E:99:BD:97:E4:8F:53:B7 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e800::/44 Signature Algorithm: sha256WithRSAEncryption 77:fa:21:12:7f:dc:85:08:8e:be:b8:0d:5e:e6:e7:27:a3:f6: e0:2b:f6:a9:48:3b:ca:33:5d:14:4c:bc:ef:35:7f:17:0b:ab: 52:66:11:c9:00:83:07:84:eb:5d:28:f3:47:65:e9:4c:47:89: 31:62:0a:95:22:1d:94:c3:83:97:7c:4c:ad:a7:92:0f:fa:0e: fc:72:89:1d:1a:28:e8:a4:cf:6d:ab:ca:73:c1:35:a4:37:de: 16:18:86:10:29:6c:98:6b:81:b5:3f:e4:03:8d:5d:da:b3:e7: ac:b4:b3:bc:35:6a:95:cf:4b:ba:3a:fc:36:5f:65:ec:bf:ee: 96:70:0e:25:b1:de:b4:be:d2:2d:86:07:e2:fb:55:23:6b:fc: 42:b7:68:bd:f2:3e:5f:20:35:94:5b:2b:f5:02:91:00:d7:da: c0:87:36:e0:8d:4f:bd:50:f7:94:eb:10:06:dd:c3:ca:f0:21: 7b:0b:3e:c4:11:44:6a:aa:de:7d:2b:46:e6:69:1d:aa:d8:3e: 76:b9:0b:61:01:a4:4d:cc:bf:85:e3:ad:dd:e5:6f:d8:11:11: 19:13:99:34:e7:73:06:3d:80:01:a1:44:58:96:f2:b0:d6:4e: f6:d9:47:d7:73:06:31:46:58:8b:5f:61:1a:9c:ab:8d:96:29: fd:8a:ca:a7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNjOC1lMzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmxwnlV6cvG10xFTN3VVv3vxnxdKfhlkQHWVb8LOnfTMqVLh3dwWfFr82D6Pd irMlR2BaAq34eQ2Ly8h0xGyG/sP/zu055c6OkT9g4yagCzdO3068qezpriiTCmoF 6EAzJ/ZBCl7ntoUvD2fhY/7lvBQBBffk+vwo+JuVAKjDiEK3Ad6pyrYG0KPpLQHN /YIiaJHpN0sLLItXhREvyWviB8whpP9nqKh12qalgiaFvOIl5YAsfHysItp8syPR AGRYPhRynaIiWIsZ6420lkt7sj/sXlM0gZdxOPbo1AC2eQc3aRsvkXYWCX+NqWky mIJ9dBXD5tSYXhgFUvKULKNuYwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDwlbu+k Cv2g+lu1qI6ZvZfkj1O3MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkFFNDU5REM0 QTVCMTFFQkI3QjRCQTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA6AAwDQYJKoZIhvcNAQELBQADggEBAHf6IRJ/3IUI jr64DV7m5yej9uAr9qlIO8ozXRRMvO81fxcLq1JmEckAgweE610o80dl6UxHiTFi CpUiHZTDg5d8TK2nkg/6DvxyiR0aKOikz22rynPBNaQ33hYYhhApbJhrgbU/5AON Xdqz56y0s7w1apXPS7o6/DZfZey/7pZwDiWx3rS+0i2GB+L7VSNr/EK3aL3yPl8g NZRbK/UCkQDX2sCHNuCNT71Q95TrEAbdw8rwIXsLPsQRRGqq3n0rRuZpHarYPna5 C2EBpE3Mv4Xjrd3lb9gRERkTmTTncwY9gAGhRFiW8rDWTvbZR9dzBjFGWItfYRqc q42WKf2Kyqc= -----END CERTIFICATE-----Generated at Mon Jun 2 07:11:28 2025 by rpki-client