$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/89941464091011EFB4285910C4F9AE02.roa File: 89941464091011EFB4285910C4F9AE02.roa (raw, json) Hash identifier: vlXHU8aAC/5OuJATLdDlaf5I6tmr1LPgMxA6WeghM9o= Subject key identifier: D3:C8:90:9B:D2:BA:45:4E:7A:90:49:CE:7C:D1:8B:ED:0B:CC:AF:B7 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EF8 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/89941464091011EFB4285910C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:13 +0000 ROA not before: Thu 22 May 2025 20:08:13 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 212027 IP address blocks: 2406:840:e520::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3832 (0xef8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:13 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f842d-dee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2f:02:6b:09:88:f1:39:04:9e:f5:a3:52:8e: cb:89:de:6f:7b:02:d1:7f:de:24:c4:33:9b:9d:67: 20:78:27:ee:e2:d3:46:08:2a:6b:65:99:14:64:70: 93:b0:5e:d1:25:d9:ea:07:7a:a5:5a:8d:16:3e:3d: 47:63:53:8c:23:36:92:10:79:d3:2b:2d:70:68:fb: ba:e9:62:57:cb:f6:03:3c:e5:68:8d:28:a2:b4:18: 88:6d:fb:ed:57:db:74:ab:48:27:32:3e:66:7c:fa: 6f:b6:50:7f:e6:01:f7:2d:f1:d3:9b:ec:0c:c0:b5: 9f:50:77:ee:06:2f:d6:d5:f5:d5:07:a0:06:eb:04: 1b:9c:91:1b:41:41:52:1b:b5:0c:e3:67:5e:d1:a7: 34:ec:0f:d3:42:3c:85:47:dc:ae:ce:5b:f9:d5:b3: d3:b8:3a:34:88:cf:0b:ac:5d:52:0e:6f:b4:a8:81: f6:9c:3d:79:a3:f2:53:72:11:f3:3c:cf:48:63:6d: 49:4e:67:a0:7f:3a:45:3c:12:e5:6e:e5:64:6f:2e: fd:e3:86:79:72:6d:e5:68:aa:d6:d7:1e:9d:b3:1a: a5:67:bf:c1:73:9c:3f:14:81:75:ce:e2:4d:cf:af: 41:ee:81:68:16:d8:d5:da:0e:07:43:fc:e8:42:d9: 65:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C8:90:9B:D2:BA:45:4E:7A:90:49:CE:7C:D1:8B:ED:0B:CC:AF:B7 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/89941464091011EFB4285910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e520::/44 Signature Algorithm: sha256WithRSAEncryption 23:e5:e6:d0:e2:f0:70:e6:79:9b:4d:73:49:ff:9d:b7:b5:fd: 8a:9e:71:7a:d4:0e:34:c3:db:24:eb:99:25:40:14:d8:fa:88: f1:7b:11:cf:da:1b:3e:20:21:c4:62:4c:d1:9f:81:64:9f:37: 3b:b5:16:b9:8f:49:bb:7b:91:00:ad:42:25:a0:bb:4a:f2:a2: 2d:cf:af:21:9e:5d:0f:63:35:74:82:fd:41:43:90:56:40:a5: 36:24:de:42:8a:6d:e7:28:6d:6d:e1:1c:1c:fb:3a:51:34:26: 3a:d4:1d:3c:f8:db:68:60:9e:52:e6:6f:8c:b0:de:33:a1:e4: 5e:b0:c3:e3:b1:e6:4e:79:de:41:de:3f:bb:82:54:9f:1f:e7: 55:25:2f:b3:f1:70:e6:e9:31:b5:9f:fd:8a:3c:94:c9:6d:88: fd:af:09:aa:c0:a5:8b:24:72:e9:09:6e:47:aa:c5:09:35:bc: df:b8:79:7b:0a:ff:6a:0c:e2:76:9a:c3:34:a1:a2:ef:2c:d9: 23:b4:cc:1f:73:05:c2:10:71:f5:e7:1c:0d:bc:0b:1b:80:be: 22:6d:a5:d5:ca:e5:5b:39:a4:fb:30:b7:25:ad:f2:a5:9b:59: 0d:9e:10:b1:80:0a:b3:f0:fe:d9:3d:28:02:07:ba:52:4d:42: 2c:d7:d8:3a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODEzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQyZC1kZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3i8CawmI8TkEnvWjUo7Lid5vewLRf94kxDObnWcgeCfu4tNGCCprZZkUZHCT sF7RJdnqB3qlWo0WPj1HY1OMIzaSEHnTKy1waPu66WJXy/YDPOVojSiitBiIbfvt V9t0q0gnMj5mfPpvtlB/5gH3LfHTm+wMwLWfUHfuBi/W1fXVB6AG6wQbnJEbQUFS G7UM42de0ac07A/TQjyFR9yuzlv51bPTuDo0iM8LrF1SDm+0qIH2nD15o/JTchHz PM9IY21JTmegfzpFPBLlbuVkby7944Z5cm3laKrW1x6dsxqlZ7/Bc5w/FIF1zuJN z69B7oFoFtjV2g4HQ/zoQtllBwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNPIkJvS ukVOepBJznzRi+0LzK+3MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODk5NDE0NjQw OTEwMTFFRkI0Mjg1OTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA5SAwDQYJKoZIhvcNAQELBQADggEBACPl5tDi8HDm eZtNc0n/nbe1/YqecXrUDjTD2yTrmSVAFNj6iPF7Ec/aGz4gIcRiTNGfgWSfNzu1 FrmPSbt7kQCtQiWgu0ryoi3PryGeXQ9jNXSC/UFDkFZApTYk3kKKbecobW3hHBz7 OlE0JjrUHTz422hgnlLmb4yw3jOh5F6ww+Ox5k553kHeP7uCVJ8f51UlL7PxcObp MbWf/Yo8lMltiP2vCarApYskcukJbkeqxQk1vN+4eXsK/2oM4naawzShou8s2SO0 zB9zBcIQcfXnHA28CxuAviJtpdXK5Vs5pPswtyWt8qWbWQ2eELGACrPw/tk9KAIH ulJNQizX2Do= -----END CERTIFICATE-----Generated at Mon Jun 2 07:11:13 2025 by rpki-client