$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa File: 624BB126331A11EFAB575211C4F9AE02.roa (raw, json) Hash identifier: EyP/sBi+bIVrt9KSxDBA22Oxl2pUz3SSvH2H9PJomX0= Subject key identifier: B8:2C:14:C8:86:72:E7:71:99:43:2D:55:E7:A0:67:DD:AA:ED:A7:83 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0ED0 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa Signing time: Thu 22 May 2025 20:07:34 +0000 ROA not before: Thu 22 May 2025 20:07:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153033 IP address blocks: 2406:840:fdb0::/44 maxlen: 48 2406:840:fe93::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3792 (0xed0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8406-86cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:72:f9:b4:07:97:c0:eb:03:26:cb:60:39:68: df:2c:a4:3d:f2:d4:2a:8a:38:37:bd:4b:2c:9e:7b: 65:3a:1a:41:18:49:67:5e:5c:0a:0f:03:96:5e:c5: 74:8d:10:ff:46:80:b5:c9:2f:58:37:d7:a2:15:75: ba:84:ed:2e:01:f4:ac:cb:40:69:3a:f9:66:c2:9a: e0:72:47:17:35:6a:fa:fd:de:a0:01:8a:d3:51:10: 4d:68:15:f9:dd:80:32:12:18:06:39:6a:c7:64:e9: 57:4a:5f:e9:3d:1a:22:77:52:4f:17:7e:18:00:21: e6:f4:0f:5b:b9:bd:20:22:6c:03:ec:1f:64:2c:4d: 0f:c7:ea:f2:d2:7f:63:b8:44:05:77:61:5d:3d:f2: 15:57:0e:7b:bd:d2:55:78:37:9a:06:3a:9f:3c:bd: 87:4b:ec:7a:f9:ec:c8:e4:8d:97:ff:b7:7a:14:c5: 54:a8:b4:cb:a9:4f:db:16:b8:8f:94:48:da:c9:ca: 48:08:45:b1:99:a8:df:51:52:f6:72:f2:7d:0d:8a: 70:60:8e:85:09:f7:f2:bf:30:0e:0b:ec:78:a9:1b: 36:ca:a4:73:cf:44:d3:63:ff:27:4d:15:bb:fb:e7: a9:34:0d:01:7b:19:d1:a9:ec:21:c9:f3:59:60:f2: f1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:2C:14:C8:86:72:E7:71:99:43:2D:55:E7:A0:67:DD:AA:ED:A7:83 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fdb0::/44 2406:840:fe93::/48 Signature Algorithm: sha256WithRSAEncryption 72:4f:48:e5:cf:88:37:46:b7:e1:a0:28:ed:ef:11:cc:30:c0: d1:2d:81:b0:48:e6:db:7d:33:0c:f2:9b:e6:3b:89:5e:4e:3d: af:e3:32:62:cd:52:8a:4b:88:21:a3:b9:a8:05:88:8d:4b:33: 00:05:a9:4b:4c:fe:5b:05:85:98:6d:c8:de:ab:5d:2a:d6:07: d8:12:98:c0:b5:40:14:16:e5:ec:49:88:43:3c:32:39:c6:4c: 3a:6c:c7:5e:39:3f:3c:37:ca:3e:e4:c1:ae:79:85:39:4e:1f: 51:82:39:1d:92:0b:13:0b:d2:3f:4d:fa:fd:a9:94:f6:8d:6b: 86:f1:43:dd:0b:2a:52:7d:4e:dc:5f:7c:7a:ce:5c:ae:8b:48: 62:a3:36:c4:1c:c9:ef:03:b1:cf:0e:7d:ff:6d:7a:17:1f:f7: 94:f9:b9:26:44:75:40:48:a1:9d:8c:b3:c3:fa:f0:44:b1:98: 52:d3:b9:b6:cd:59:64:fd:e7:fa:e8:71:8d:4f:1c:56:24:f0: ed:a5:18:70:47:cd:3e:ca:77:98:a6:c5:54:ca:5b:17:a6:46: 2c:66:f6:14:37:25:0c:24:65:15:8b:c1:1b:38:9d:d4:b8:7d: d2:49:31:18:f2:a0:43:93:46:32:91:0c:90:93:05:c2:05:62: 84:e4:37:67 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQwNi04NmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXL5tAeXwOsDJstgOWjfLKQ98tQqijg3vUssnntlOhpBGElnXlwKDwOWXsV0 jRD/RoC1yS9YN9eiFXW6hO0uAfSsy0BpOvlmwprgckcXNWr6/d6gAYrTURBNaBX5 3YAyEhgGOWrHZOlXSl/pPRoid1JPF34YACHm9A9bub0gImwD7B9kLE0Px+ry0n9j uEQFd2FdPfIVVw57vdJVeDeaBjqfPL2HS+x6+ezI5I2X/7d6FMVUqLTLqU/bFriP lEjaycpICEWxmajfUVL2cvJ9DYpwYI6FCffyvzAOC+x4qRs2yqRzz0TTY/8nTRW7 ++epNA0BexnRqewhyfNZYPLxsQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLgsFMiG cudxmUMtVeegZ92q7aeDMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjI0QkIxMjYz MzFBMTFFRkFCNTc1MjExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/bADBwAkBghA/pMwDQYJKoZIhvcNAQELBQADggEB AHJPSOXPiDdGt+GgKO3vEcwwwNEtgbBI5tt9Mwzym+Y7iV5OPa/jMmLNUopLiCGj uagFiI1LMwAFqUtM/lsFhZhtyN6rXSrWB9gSmMC1QBQW5exJiEM8MjnGTDpsx145 Pzw3yj7kwa55hTlOH1GCOR2SCxML0j9N+v2plPaNa4bxQ90LKlJ9TtxffHrOXK6L SGKjNsQcye8Dsc8Off9tehcf95T5uSZEdUBIoZ2Ms8P68ESxmFLTubbNWWT95/ro cY1PHFYk8O2lGHBHzT7Kd5imxVTKWxemRixm9hQ3JQwkZRWLwRs4ndS4fdJJMRjy oEOTRjKRDJCTBcIFYoTkN2c= -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:46 2025 by rpki-client