$ rpki-client -vvf rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/9CA607DA3C8411F0BDA85229C4F9AE02.roa File: 9CA607DA3C8411F0BDA85229C4F9AE02.roa (raw, json) Hash identifier: feDA48MiXXJctKT3eZvp/d1nnsUlAcYOaj9wGQ7J2ec= Subject key identifier: 2C:1B:AD:FE:D2:B6:CD:5A:59:0A:FF:47:D3:64:8E:1E:8E:CF:2A:02 Certificate issuer: /CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Certificate serial: 01E0 Authority key identifier: A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/9CA607DA3C8411F0BDA85229C4F9AE02.roa Signing time: Thu 29 May 2025 12:01:11 +0000 ROA not before: Thu 29 May 2025 12:01:11 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 150785 IP address blocks: 2400:e3e0:e000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 02:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BE9A, serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Validity Not Before: May 29 12:01:11 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68384c87-27c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e3:c2:e4:58:a1:4b:59:7d:ff:86:f0:dd:a2: 32:28:03:ac:58:fc:20:0a:65:2c:50:81:38:1a:2a: 48:11:25:8f:10:2b:45:3e:9d:6f:b6:db:1c:32:9a: 9f:bf:7d:2d:09:82:eb:6b:4c:e8:81:dc:15:85:10: d0:39:c9:5e:4e:e8:d8:b1:27:38:c7:71:fe:57:bb: 96:4b:e1:10:58:92:97:29:cb:5b:b4:76:ef:84:bd: aa:8e:ee:ca:c6:eb:79:35:c4:d5:8c:c4:97:dd:99: da:66:59:67:f6:0e:6c:1f:ca:3c:55:ab:8b:96:86: 65:85:ac:66:c3:ab:87:b4:82:22:74:dd:31:26:fc: 37:37:f8:9e:55:55:c7:87:8f:02:83:f3:6c:4a:0d: 41:41:4e:10:32:5d:75:92:70:d2:84:e4:f0:a2:e1: ab:16:7a:d1:9f:9a:6d:fb:11:ac:79:f6:cd:2c:55: b2:26:8e:3a:c7:ce:fe:20:f1:ca:87:ba:de:5f:fd: cc:52:cd:08:66:23:09:ca:bf:e4:8a:bb:b6:a4:f1: c8:3a:48:d4:41:17:3c:18:92:9b:c7:a9:0f:37:61: 06:94:19:30:c0:95:59:8c:c7:a1:55:a0:9f:bb:be: 7f:41:21:74:ab:02:8b:30:30:fe:b1:d8:c2:75:6f: 8d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1B:AD:FE:D2:B6:CD:5A:59:0A:FF:47:D3:64:8E:1E:8E:CF:2A:02 X509v3 Authority Key Identifier: keyid:A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/9CA607DA3C8411F0BDA85229C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:e3e0:e000::/36 Signature Algorithm: sha256WithRSAEncryption 31:fc:42:2f:53:d6:ab:0b:d0:8d:ba:0f:69:6b:0e:16:58:60: 1f:8b:ae:ed:9d:17:6b:7f:bb:55:df:ee:b0:73:b3:72:47:b5: da:63:51:de:c0:c1:5f:ac:68:53:37:bb:4e:6e:cb:ab:c7:ff: 7f:8e:98:da:0d:75:e0:34:76:48:ba:eb:f5:c8:a7:de:8f:4c: c9:06:02:0d:2e:c9:f8:a6:35:be:22:03:74:78:a0:a0:bd:71: 5f:8c:34:7e:78:32:a4:74:4a:33:9d:7a:35:21:64:68:fd:bb: 91:4f:56:45:21:92:df:2c:86:8d:6d:fe:8d:69:51:87:c3:00: af:4c:c9:90:5b:9f:2e:68:03:2a:70:76:59:bb:97:49:91:6f: 1d:1a:f7:16:e2:f9:41:9a:59:d4:aa:45:ca:3d:ab:12:c3:0a: f7:90:1c:7c:72:6f:49:46:d8:d7:f8:42:66:e0:db:90:f1:4d: 29:df:ff:a0:76:71:76:b2:83:c1:81:23:4d:16:5e:c9:b5:23: 5c:db:fc:9b:7d:59:66:f5:44:f4:96:cc:e9:02:4b:ff:0b:2e: df:0f:92:f7:a0:d5:03:0b:37:ff:b0:1d:49:8a:d5:21:ff:4a: 45:9a:1d:14:9c:46:74:df:da:3b:47:39:14:f9:2e:2b:91:d3: 7c:82:7f:79 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFOUExMTAvBgNVBAUTKEE3OUI4Mjg4NzAzMTQ0MTk5MEIxOEQxQTA1RjlFMjcx RTdFN0I4RTYwHhcNMjUwNTI5MTIwMTExWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODM4NGM4Ny0yN2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOPC5FihS1l9/4bw3aIyKAOsWPwgCmUsUIE4GipIESWPECtFPp1vttscMpqf v30tCYLra0zogdwVhRDQOcleTujYsSc4x3H+V7uWS+EQWJKXKctbtHbvhL2qju7K xut5NcTVjMSX3ZnaZlln9g5sH8o8VauLloZlhaxmw6uHtIIidN0xJvw3N/ieVVXH h48Cg/NsSg1BQU4QMl11knDShOTwouGrFnrRn5pt+xGsefbNLFWyJo46x87+IPHK h7reX/3MUs0IZiMJyr/kiru2pPHIOkjUQRc8GJKbx6kPN2EGlBkwwJVZjMehVaCf u75/QSF0qwKLMDD+sdjCdW+NXwIDAQABo4IClzCCApMwHQYDVR0OBBYEFCwbrf7S ts1aWQr/R9Nkjh6OzyoCMB8GA1UdIwQYMBaAFKebgohwMUQZkLGNGgX54nHn57jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkU5QS84RkExRjU2RUI4 NUUxMUVEOEU2RjQyMTNDNEY5QUUwMi9wNXVDaUhBeFJCbVFzWTBhQmZuaWNlZm51 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A1dUNpSEF4UkJtUXNZMGFCZm5pY2VmbnVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFOUEvOEZBMUY1NkVCODVFMTFFRDhFNkY0MjEzQzRGOUFFMDIvOUNBNjA3REEz Qzg0MTFGMEJEQTg1MjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAOPg4DANBgkqhkiG9w0BAQsFAAOCAQEAMfxCL1PWqwvQ jboPaWsOFlhgH4uu7Z0Xa3+7Vd/usHOzcke12mNR3sDBX6xoUze7Tm7Lq8f/f46Y 2g114DR2SLrr9cin3o9MyQYCDS7J+KY1viIDdHigoL1xX4w0fngypHRKM516NSFk aP27kU9WRSGS3yyGjW3+jWlRh8MAr0zJkFufLmgDKnB2WbuXSZFvHRr3FuL5QZpZ 1KpFyj2rEsMK95AcfHJvSUbY1/hCZuDbkPFNKd//oHZxdrKDwYEjTRZeybUjXNv8 m31ZZvVE9JbM6QJL/wsu3w+S96DVAws3/7AdSYrVIf9KRZodFJxGdN/aO0c5FPku K5HTfIJ/eQ== -----END CERTIFICATE-----Generated at Mon Jun 2 06:57:40 2025 by rpki-client