$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/15E884EAF73311ED8E92F45DC4F9AE02.roa File: 15E884EAF73311ED8E92F45DC4F9AE02.roa (raw, json) Hash identifier: dDUwPb8yT4c7h8uvXZN4RSXgwF3JJh0qprW0Nf2AMic= Subject key identifier: C2:14:83:7E:91:48:5D:52:18:09:4F:DD:42:B3:25:74:95:D7:AA:6C Certificate issuer: /CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Certificate serial: 0420 Authority key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/15E884EAF73311ED8E92F45DC4F9AE02.roa Signing time: Sat 15 Mar 2025 00:45:54 +0000 ROA not before: Sat 15 Mar 2025 00:45:54 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 151338 IP address blocks: 2400:8a20:123::/48 maxlen: 48 2400:8a20:124::/48 maxlen: 48 2400:8a20:125::/48 maxlen: 48 2400:8a20:1a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:24:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1056 (0x420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112DB1, serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Validity Not Before: Mar 15 00:45:54 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d4cdc1-95cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:76:01:3b:61:b6:8c:46:76:76:92:a9:c2:15: 52:7b:cd:6c:cb:21:1a:2f:8b:ee:8f:af:92:25:a7: c5:78:57:5c:42:ea:0f:c1:82:2a:53:45:62:17:c4: 2c:d1:af:e0:34:85:d2:20:6e:53:84:fb:34:ff:12: a2:ac:3f:2b:ad:5b:ab:28:19:14:e9:b8:05:82:59: c6:d3:0d:97:84:46:73:66:40:86:9b:5d:4f:77:08: f5:0a:b0:2b:92:c0:44:1d:0d:83:9e:1f:ce:1a:23: 18:12:4c:fa:d6:f5:6a:48:57:11:7c:31:c7:72:ec: de:39:2f:43:35:fb:97:c3:23:f3:9f:fb:14:87:0f: 69:68:fc:32:2a:2c:57:60:57:44:43:31:c2:60:05: ac:82:ab:ef:02:0a:30:40:a9:b7:9e:f3:55:eb:8d: 17:84:9c:29:f6:c1:9b:af:26:4b:14:93:ee:73:46: 45:3f:22:63:c9:55:5a:61:22:bc:3e:59:21:eb:c2: 94:b3:bd:b1:39:e2:14:c5:ee:36:c1:09:a7:70:8a: f5:39:0c:40:e3:e7:4b:f9:e8:9a:b1:46:7a:60:c3: 24:51:6e:3c:f5:8e:9d:c9:95:f0:c8:fd:63:20:46: 5c:25:c2:c9:ed:29:0a:cd:79:1a:c3:d8:bc:80:4b: f4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:14:83:7E:91:48:5D:52:18:09:4F:DD:42:B3:25:74:95:D7:AA:6C X509v3 Authority Key Identifier: keyid:22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/15E884EAF73311ED8E92F45DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:8a20:123::-2400:8a20:125:ffff:ffff:ffff:ffff:ffff 2400:8a20:1a0::/44 Signature Algorithm: sha256WithRSAEncryption 36:9e:24:2c:fb:6c:02:6f:fc:a9:a1:9b:ca:7d:71:2d:1d:e5: 42:d5:1b:8e:fd:76:ff:84:6d:3c:20:08:67:8a:ae:72:6a:9b: 50:2e:71:a6:a8:fe:7d:b2:80:2b:4e:cd:0c:07:e9:62:58:b3: 93:f6:0b:0c:31:92:b9:1e:ba:59:b5:ef:f0:4c:fb:c8:93:4a: c6:69:c4:8c:f8:3e:7f:11:b6:18:4c:dd:d6:10:32:8f:cf:ae: f1:6e:14:7b:23:20:3e:68:d1:63:d4:64:41:77:da:74:a5:2c: b0:b4:5d:d4:56:8f:b0:e6:aa:57:0c:f6:e4:11:31:7d:ff:31: dc:eb:09:14:89:77:8e:92:6a:8e:04:3d:21:64:6f:8d:43:b1: 2f:82:44:2d:d6:04:44:c3:7e:8a:44:07:02:51:25:52:2a:d5: 48:8e:90:6a:cf:82:36:c6:13:c3:3d:d1:2c:f2:5e:02:e5:26: 2c:63:16:92:8e:91:0c:57:be:8d:49:b0:2d:ad:c2:d9:bf:21: 26:0f:7d:42:2c:e7:24:77:10:5d:e8:1b:39:7e:9e:c4:1a:21: 2c:96:04:8e:47:c5:e6:7b:c8:d6:84:2c:80:16:8c:6e:1e:f5: 12:a5:d2:b5:37:c6:67:a5:9d:11:76:e1:7c:60:01:fe:49:34: 8d:c9:c9:a5 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJEQjExMTAvBgNVBAUTKDIyRURGOUVCNjYwODdGRDBFOTgxN0FFNzM2QzAwMzlE MTg4MDg4RDUwHhcNMjUwMzE1MDA0NTU0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q0Y2RjMS05NWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHYBO2G2jEZ2dpKpwhVSe81syyEaL4vuj6+SJafFeFdcQuoPwYIqU0ViF8Qs 0a/gNIXSIG5ThPs0/xKirD8rrVurKBkU6bgFglnG0w2XhEZzZkCGm11Pdwj1CrAr ksBEHQ2Dnh/OGiMYEkz61vVqSFcRfDHHcuzeOS9DNfuXwyPzn/sUhw9paPwyKixX YFdEQzHCYAWsgqvvAgowQKm3nvNV640XhJwp9sGbryZLFJPuc0ZFPyJjyVVaYSK8 Plkh68KUs72xOeIUxe42wQmncIr1OQxA4+dL+eiasUZ6YMMkUW489Y6dyZXwyP1j IEZcJcLJ7SkKzXkaw9i8gEv0CwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMIUg36R SF1SGAlP3UKzJXSV16psMB8GA1UdIwQYMBaAFCLt+etmCH/Q6YF65zbAA50YgIjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkRCMS8zRkE2OTIwMDgz QzAxMUVDQjU0QjM5N0ZDNEY5QUUwMi9JdTM1NjJZSWY5RHBnWHJuTnNBRG5SaUFp TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l1MzU2MllJZjlEcGdYcm5Oc0FEblJpQWlOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJEQjEvM0ZBNjkyMDA4M0MwMTFFQ0I1NEIzOTdGQzRGOUFFMDIvMTVFODg0RUFG NzMzMTFFRDhFOTJGNDVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMCMEAgACMB0wEgMHACQAiiABIwMHASQAiiABJAMHBCQAiiABoDANBgkqhkiG 9w0BAQsFAAOCAQEANp4kLPtsAm/8qaGbyn1xLR3lQtUbjv12/4RtPCAIZ4qucmqb UC5xpqj+fbKAK07NDAfpYlizk/YLDDGSuR66WbXv8Ez7yJNKxmnEjPg+fxG2GEzd 1hAyj8+u8W4UeyMgPmjRY9RkQXfadKUssLRd1FaPsOaqVwz25BExff8x3OsJFIl3 jpJqjgQ9IWRvjUOxL4JELdYERMN+ikQHAlElUirVSI6Qas+CNsYTwz3RLPJeAuUm LGMWko6RDFe+jUmwLa3C2b8hJg99QiznJHcQXegbOX6exBohLJYEjkfF5nvI1oQs gBaMbh71EqXStTfGZ6WdEXbhfGAB/kk0jcnJpQ== -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:42 2025 by rpki-client