$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4C7803900ED011EFABFC2A57C4F9AE02.roa File: 4C7803900ED011EFABFC2A57C4F9AE02.roa (raw, json) Hash identifier: LtrLo4RfY1XaMuNDC8/mti26uEKW2VS2qtZdSrMRXv4= Subject key identifier: 53:2B:87:C6:2A:85:C9:9B:12:D6:C3:5C:60:CA:13:CA:12:77:99:F7 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0F0E Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4C7803900ED011EFABFC2A57C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:32 +0000 ROA not before: Thu 22 May 2025 20:08:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 7721 IP address blocks: 2406:840:9970::/44 maxlen: 48 2406:840:eed0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3854 (0xf0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8440-64fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e8:26:bd:d0:c1:37:56:6a:f7:bd:90:71:fe: d2:bb:fd:a1:a4:7b:ae:84:e1:d0:33:f8:88:b0:f3: 97:d6:d4:1a:8a:ab:36:48:78:e4:8a:11:a4:81:31: bd:87:82:b0:ae:1d:b0:a7:86:12:5a:48:19:49:aa: a2:66:91:ee:b0:c7:35:39:99:47:28:b4:ff:9c:09: 2d:4a:54:50:41:1a:19:a7:db:45:65:35:3b:ee:d0: b1:e9:42:d2:f8:f5:99:5f:58:14:69:89:c8:5d:2d: c9:ac:b8:b4:b5:fd:29:ef:15:00:1c:6a:36:ee:e3: a0:ac:1d:32:e7:cd:f0:54:0d:cb:63:3e:7a:46:27: 9b:39:85:c9:07:28:aa:84:fd:ac:5f:6f:10:d2:85: 4c:d1:d6:59:80:f9:e3:f2:8e:64:51:a0:92:f3:9e: 83:f1:b4:47:10:ab:4e:92:eb:81:29:65:ab:d1:95: 31:1e:b9:de:de:aa:2d:c3:3f:64:dd:a4:2a:72:86: 74:50:93:2b:82:52:b1:f7:f7:f8:da:5b:98:43:5e: f6:7c:43:3b:94:16:3d:4e:02:1c:53:00:f2:1b:bf: 73:f4:15:f2:b3:80:ff:2c:3c:69:c9:20:9d:c1:78: da:39:25:ff:5e:57:2e:be:5c:c0:23:1f:0a:b5:13: b0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:2B:87:C6:2A:85:C9:9B:12:D6:C3:5C:60:CA:13:CA:12:77:99:F7 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4C7803900ED011EFABFC2A57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9970::/44 2406:840:eed0::/44 Signature Algorithm: sha256WithRSAEncryption 18:38:8d:42:73:cb:76:b7:35:fe:d0:2b:78:2d:4b:4f:71:e1: 0f:db:7d:5e:1e:0a:ee:6d:3a:c4:7a:a5:62:43:e3:fb:ff:35: 66:be:4a:28:0d:e6:fc:70:5c:6e:39:7c:71:ba:8c:04:9b:ea: 19:3e:a4:be:7a:9d:8b:57:ef:f5:bb:00:d4:31:f0:99:2f:42: de:18:58:87:ce:e7:c1:96:2f:0d:70:da:01:61:b1:20:d7:4f: e9:f4:d9:b8:e1:22:e5:78:0e:3b:01:87:2d:00:09:79:c7:a9: b3:fd:c4:40:21:eb:9a:8b:69:f1:1b:28:2c:1b:39:39:31:8e: 12:e8:fa:9b:70:50:68:b0:8a:cc:b9:1a:21:8e:58:89:15:14: 6e:09:35:32:7e:09:7d:21:fa:f7:d6:2e:f8:eb:75:4d:b8:48: 0e:c8:6b:1f:9f:7c:88:46:ca:16:58:03:07:f7:af:9c:aa:fa: 8e:2d:31:a7:ae:fb:2a:f0:8f:b3:0e:00:9d:87:77:9e:50:16: 08:a4:54:f9:62:a3:e5:e2:01:9b:d4:ae:5d:39:d3:e5:5b:e7: 3d:f4:ac:eb:ce:f7:d7:2c:cf:8e:6d:da:33:8f:b5:23:5b:e3: b4:03:4b:bc:dc:ef:a2:d5:1b:4a:90:6a:39:89:7a:e2:b1:5f: 92:9a:c5:09 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQ0MC02NGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxugmvdDBN1Zq972Qcf7Su/2hpHuuhOHQM/iIsPOX1tQaiqs2SHjkihGkgTG9 h4Kwrh2wp4YSWkgZSaqiZpHusMc1OZlHKLT/nAktSlRQQRoZp9tFZTU77tCx6ULS +PWZX1gUaYnIXS3JrLi0tf0p7xUAHGo27uOgrB0y583wVA3LYz56RiebOYXJByiq hP2sX28Q0oVM0dZZgPnj8o5kUaCS856D8bRHEKtOkuuBKWWr0ZUxHrne3qotwz9k 3aQqcoZ0UJMrglKx9/f42luYQ172fEM7lBY9TgIcUwDyG79z9BXys4D/LDxpySCd wXjaOSX/XlcuvlzAIx8KtROwfwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFMrh8Yq hcmbEtbDXGDKE8oSd5n3MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNEM3ODAzOTAw RUQwMTFFRkFCRkMyQTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghAmXADBwQkBghA7tAwDQYJKoZIhvcNAQELBQADggEB ABg4jUJzy3a3Nf7QK3gtS09x4Q/bfV4eCu5tOsR6pWJD4/v/NWa+SigN5vxwXG45 fHG6jASb6hk+pL56nYtX7/W7ANQx8JkvQt4YWIfO58GWLw1w2gFhsSDXT+n02bjh IuV4DjsBhy0ACXnHqbP9xEAh65qLafEbKCwbOTkxjhLo+ptwUGiwisy5GiGOWIkV FG4JNTJ+CX0h+vfWLvjrdU24SA7Iax+ffIhGyhZYAwf3r5yq+o4tMaeu+yrwj7MO AJ2Hd55QFgikVPlio+XiAZvUrl050+Vb5z30rOvO99csz45t2jOPtSNb47QDS7zc 76LVG0qQajmJeuKxX5KaxQk= -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:15 2025 by rpki-client