$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa File: CDD3B6808E2511EF966A7D1CC4F9AE02.roa (raw, json) Hash identifier: z2KorehCD01WZqAFWewUc3HEqW0DmbknnKdYJkxvOWo= Subject key identifier: 35:AD:32:6E:C8:FB:3E:48:68:F9:48:5E:C6:93:45:E8:E5:B0:6B:BD Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0EFC Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa Signing time: Thu 22 May 2025 20:08:18 +0000 ROA not before: Thu 22 May 2025 20:08:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 215304 IP address blocks: 2406:840:eab0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3836 (0xefc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8431-a350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:94:f4:1e:d2:e6:07:49:cf:fd:03:0d:97:4b: c8:3a:d9:23:61:db:d6:0a:25:5a:d7:c1:4f:89:2a: 3f:a5:8a:c0:67:44:a6:33:fb:7e:7b:da:68:bb:ff: 5e:58:83:91:1d:24:c0:96:2d:55:59:64:b2:e9:ff: 61:30:46:dd:76:a9:1b:2f:ec:86:ed:43:39:05:22: 13:59:9b:74:dc:94:dd:f1:e6:7d:50:90:fb:37:f8: 24:7d:74:62:b2:bf:7f:f1:ce:cf:10:03:38:2e:4b: 4e:b3:52:ff:ac:23:f1:ee:2b:05:12:d7:60:5c:a7: 2c:6b:2c:5e:31:76:05:f8:7e:c5:2c:89:ff:99:af: 8d:a8:f0:78:37:92:ef:16:ef:99:23:16:99:96:b5: 10:56:a0:2f:e5:3d:ab:34:b8:0e:4c:8f:35:79:f9: f4:f8:1c:e1:bf:06:8d:ea:6b:aa:12:20:b8:87:01: c2:17:c6:ef:54:20:db:4a:1e:e3:ea:c7:e7:dd:6e: 1d:31:07:84:d4:b8:ce:8e:73:ad:50:aa:e1:eb:1f: 75:32:f3:73:e4:f8:fd:8b:67:45:d9:55:b3:c2:d2: 18:c7:78:44:46:18:0a:9b:e1:2e:8a:ff:4a:2f:03: 4f:b0:53:14:b6:5f:65:8a:a3:73:2f:88:3c:09:36: b6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AD:32:6E:C8:FB:3E:48:68:F9:48:5E:C6:93:45:E8:E5:B0:6B:BD X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:eab0::/44 Signature Algorithm: sha256WithRSAEncryption 74:8f:2d:3b:a5:89:c5:40:05:54:c3:20:50:84:4a:b0:dd:7d: ff:9e:73:76:39:28:cf:08:7f:51:54:22:5f:9e:5e:73:65:c4: 12:3c:3c:82:a8:e0:c0:e2:b2:de:81:da:63:2a:e1:6a:aa:c6: 17:fc:19:09:47:de:9f:e6:f0:ad:84:e7:c6:d6:29:23:f8:16: eb:32:f1:f0:dd:a1:da:a9:c7:2a:5c:d2:cc:20:41:56:20:89: 62:84:ae:ed:b5:9a:d6:49:ee:52:bd:f7:9b:e2:8b:a5:bb:d3: f6:fd:2f:12:00:38:16:93:57:da:8d:89:2f:79:79:00:5e:0e: 1c:3c:f0:db:7e:63:af:7e:84:2a:c6:ac:96:fc:34:c4:b5:57: fb:95:ff:08:0b:09:d6:52:a3:64:08:07:71:25:fa:94:54:fe: dc:60:8c:7d:4d:ed:2c:89:8b:1a:12:2d:9f:59:b8:f9:7d:3b: 57:35:cb:5e:0e:47:ae:7d:76:b9:10:6d:28:2d:2f:27:8b:50: f1:13:3f:41:f5:f3:79:57:f6:f8:67:f8:59:67:ef:84:d5:ec: c4:07:83:a5:21:1a:49:89:80:f2:bd:1c:51:83:a2:a0:00:9d: b1:4f:52:53:4c:46:a0:de:84:05:c4:71:12:8f:6f:50:a0:ec: 4e:1d:a7:c1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzMS1hMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJT0HtLmB0nP/QMNl0vIOtkjYdvWCiVa18FPiSo/pYrAZ0SmM/t+e9pou/9e WIORHSTAli1VWWSy6f9hMEbddqkbL+yG7UM5BSITWZt03JTd8eZ9UJD7N/gkfXRi sr9/8c7PEAM4LktOs1L/rCPx7isFEtdgXKcsayxeMXYF+H7FLIn/ma+NqPB4N5Lv Fu+ZIxaZlrUQVqAv5T2rNLgOTI81efn0+BzhvwaN6muqEiC4hwHCF8bvVCDbSh7j 6sfn3W4dMQeE1LjOjnOtUKrh6x91MvNz5Pj9i2dF2VWzwtIYx3hERhgKm+Euiv9K LwNPsFMUtl9liqNzL4g8CTa2hQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDWtMm7I +z5IaPlIXsaTRejlsGu9MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0REM0I2ODA4 RTI1MTFFRjk2NkE3RDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA6rAwDQYJKoZIhvcNAQELBQADggEBAHSPLTulicVA BVTDIFCESrDdff+ec3Y5KM8If1FUIl+eXnNlxBI8PIKo4MDist6B2mMq4Wqqxhf8 GQlH3p/m8K2E58bWKSP4Fusy8fDdodqpxypc0swgQVYgiWKEru21mtZJ7lK995vi i6W70/b9LxIAOBaTV9qNiS95eQBeDhw88Nt+Y69+hCrGrJb8NMS1V/uV/wgLCdZS o2QIB3El+pRU/txgjH1N7SyJixoSLZ9ZuPl9O1c1y14OR659drkQbSgtLyeLUPET P0H183lX9vhn+Fln74TV7MQHg6UhGkmJgPK9HFGDoqAAnbFPUlNMRqDehAXEcRKP b1Cg7E4dp8E= -----END CERTIFICATE-----Generated at Wed Jun 4 00:06:05 2025 by rpki-client