$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/4C2B8F143BAD11F08B837C50C4F9AE02.roa File: 4C2B8F143BAD11F08B837C50C4F9AE02.roa (raw, json) Hash identifier: bLk6e/8BG0U0y63z7FNoru0rpVQQjPyy298/glBy1OA= Subject key identifier: 8C:08:EF:5E:B0:AC:32:92:BB:1B:E8:29:1D:A0:9D:31:18:78:EB:50 Certificate issuer: /CN=A918EF87/serialNumber=0B6CD127D04EEC3E8EE4183919414FD7EF39D924 Certificate serial: 04 Authority key identifier: 0B:6C:D1:27:D0:4E:EC:3E:8E:E4:18:39:19:41:4F:D7:EF:39:D9:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zRJ9BO7D6O5Bg5GUFP1-852SQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/4C2B8F143BAD11F08B837C50C4F9AE02.roa Signing time: Wed 28 May 2025 10:19:54 +0000 ROA not before: Wed 28 May 2025 10:19:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132475 IP address blocks: 2001:df5:9440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/C2zRJ9BO7D6O5Bg5GUFP1-852SQ.crl rsync://rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/C2zRJ9BO7D6O5Bg5GUFP1-852SQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zRJ9BO7D6O5Bg5GUFP1-852SQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 08:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF87, serialNumber=0B6CD127D04EEC3E8EE4183919414FD7EF39D924 Validity Not Before: May 28 10:19:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6836e34a-435b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:59:03:98:80:ca:59:9f:a7:30:e0:59:a6:22: 7b:9a:cb:f5:16:91:7a:96:f1:3a:87:e6:11:ca:03: 31:6b:68:db:a2:73:45:9a:94:e5:5e:cd:3f:a7:1e: b4:1d:c9:73:3c:5a:ce:08:61:3c:0a:15:bb:14:ce: 16:54:86:59:b3:b2:4a:53:60:8d:b8:e7:97:cd:4d: 45:15:a4:cb:64:d8:4d:b6:5c:2e:4c:5b:fd:bc:ed: 7b:ef:fa:85:04:bb:7d:43:43:30:e5:f5:83:93:88: 9b:9e:bf:70:46:27:e5:87:cf:0b:9a:d3:6e:0a:93: 41:72:61:02:d8:fd:e4:62:db:4f:8a:2a:90:b3:a7: 7a:12:f8:2e:d8:c7:9e:9c:8c:d2:d8:d1:2d:cf:8e: 47:fd:aa:80:b5:08:92:64:96:22:6a:cc:76:3d:63: 1d:f5:c6:c8:1c:7e:da:cd:03:a5:74:ff:86:b2:d0: 50:19:50:b6:40:ac:b1:c3:48:10:7f:d7:20:dc:0f: 13:cf:04:98:f4:2b:91:37:ee:bd:ed:3e:1b:aa:8e: 6a:71:cd:a6:6b:31:db:f1:ed:8d:ae:14:1b:0e:45: 18:ae:fd:59:df:18:8b:fb:e8:5f:f9:d9:32:11:bd: 25:f3:3c:be:bc:fa:dc:fb:a2:7f:67:b1:e3:d4:db: 7d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:08:EF:5E:B0:AC:32:92:BB:1B:E8:29:1D:A0:9D:31:18:78:EB:50 X509v3 Authority Key Identifier: keyid:0B:6C:D1:27:D0:4E:EC:3E:8E:E4:18:39:19:41:4F:D7:EF:39:D9:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/C2zRJ9BO7D6O5Bg5GUFP1-852SQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zRJ9BO7D6O5Bg5GUFP1-852SQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/4C2B8F143BAD11F08B837C50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:9440::/48 Signature Algorithm: sha256WithRSAEncryption 24:4a:42:aa:f1:f5:5c:8b:73:b6:55:83:f8:ae:1e:e1:0d:42: aa:bd:45:60:2f:8d:52:67:19:aa:a1:e4:31:f5:37:1d:31:35: ee:81:72:d2:39:f0:51:28:ad:75:84:41:93:27:95:43:f4:3e: 70:31:6d:46:a7:5f:ad:78:05:0f:7e:3c:95:24:5e:28:c4:20: 29:07:4c:e1:29:65:54:00:39:61:76:3d:fe:7b:69:99:81:d1: 82:bc:aa:f1:4a:af:89:0e:2e:f3:0f:b0:4f:e1:6a:93:83:91: f0:6d:6f:b9:ea:85:98:ef:55:fb:0d:48:f2:a5:ba:6a:42:2b: 9d:7a:9d:e1:34:f4:e4:fa:f6:d3:97:f2:c3:a8:3d:cc:13:6a: be:10:7e:0a:eb:58:40:ab:67:f9:73:95:c5:f7:6f:60:d3:6e: 0b:04:a9:23:73:9f:1a:cb:1f:66:19:fd:86:cf:7f:73:d0:38: e6:35:3e:0a:aa:67:2b:e1:49:3b:5b:a0:ad:cd:87:2f:d1:7a: 49:47:25:79:d2:5b:83:39:3e:c7:f4:6b:39:e6:a4:8c:f8:f7: 93:f7:4e:4a:a8:3e:ec:7b:5b:45:3f:5d:1e:65:f4:2d:fc:5a: a1:92:83:d2:12:75:89:17:d5:e9:db:5e:15:26:c1:aa:fb:26: 01:11:38:cb -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RUY4NzExMC8GA1UEBRMoMEI2Q0QxMjdEMDRFRUMzRThFRTQxODM5MTk0MTRGRDdF RjM5RDkyNDAeFw0yNTA1MjgxMDE5NTRaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzZlMzRhLTQzNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgWQOYgMpZn6cw4FmmInuay/UWkXqW8TqH5hHKAzFraNuic0WalOVezT+nHrQd yXM8Ws4IYTwKFbsUzhZUhlmzskpTYI2455fNTUUVpMtk2E22XC5MW/287Xvv+oUE u31DQzDl9YOTiJuev3BGJ+WHzwua024Kk0FyYQLY/eRi20+KKpCzp3oS+C7Yx56c jNLY0S3Pjkf9qoC1CJJkliJqzHY9Yx31xsgcftrNA6V0/4ay0FAZULZArLHDSBB/ 1yDcDxPPBJj0K5E37r3tPhuqjmpxzaZrMdvx7Y2uFBsORRiu/VnfGIv76F/52TIR vSXzPL68+tz7on9nsePU2309AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUjAjvXrCs MpK7G+gpHaCdMRh461AwHwYDVR0jBBgwFoAUC2zRJ9BO7D6O5Bg5GUFP1+852SQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFRjg3LzNDQkUzOUEyMzhC MzExRjA5MTQxODA4NkM0RjlBRTAyL0MyelJKOUJPN0Q2TzVCZzVHVUZQMS04NTJT US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQzJ6Uko5Qk83RDZPNUJnNUdVRlAxLTg1MlNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY4Ny8zQ0JFMzlBMjM4QjMxMUYwOTE0MTgwODZDNEY5QUUwMi80QzJCOEYxNDNC QUQxMUYwOEI4MzdDNTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfWUQDANBgkqhkiG9w0BAQsFAAOCAQEAJEpCqvH1XItz tlWD+K4e4Q1Cqr1FYC+NUmcZqqHkMfU3HTE17oFy0jnwUSitdYRBkyeVQ/Q+cDFt RqdfrXgFD348lSReKMQgKQdM4SllVAA5YXY9/ntpmYHRgryq8UqviQ4u8w+wT+Fq k4OR8G1vueqFmO9V+w1I8qW6akIrnXqd4TT05Pr205fyw6g9zBNqvhB+CutYQKtn +XOVxfdvYNNuCwSpI3OfGssfZhn9hs9/c9A45jU+CqpnK+FJO1ugrc2HL9F6SUcl edJbgzk+x/RrOeakjPj3k/dOSqg+7HtbRT9dHmX0LfxaoZKD0hJ1iRfV6dteFSbB qvsmARE4yw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:44:56 2025 by rpki-client