$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/966C7BEC71DC11EFAC022E35C4F9AE02.roa File: 966C7BEC71DC11EFAC022E35C4F9AE02.roa (raw, json) Hash identifier: XhDIZK271jrYA8+8ER9RopbWZWPr6regqoJhkX+t5AY= Subject key identifier: 79:4B:73:FB:44:07:E6:4F:C0:02:62:F1:63:33:B2:83:5E:CD:44:7E Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0E90 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/966C7BEC71DC11EFAC022E35C4F9AE02.roa Signing time: Thu 22 May 2025 20:06:35 +0000 ROA not before: Thu 22 May 2025 20:06:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136725 IP address blocks: 2406:840:fc10::/44 maxlen: 48 2406:840:fea4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3728 (0xe90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83ca-da25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c3:9b:bd:53:d7:18:b0:2e:f8:50:0c:ae:d5: 3c:48:3d:0c:e2:bb:e5:4e:9f:db:cb:dd:07:f8:bf: 80:5f:2e:1d:ce:ff:ad:d4:0e:59:d5:62:83:89:4a: 14:64:bf:75:ba:e4:7c:9f:5a:8f:85:30:1b:96:1b: a2:df:51:b8:02:30:b8:d1:05:64:c3:32:15:44:de: 89:39:f7:9f:df:5d:d2:18:bf:8e:89:a9:5e:fc:e7: 2b:2e:59:8c:4f:c0:f7:85:13:9e:f4:18:82:8e:cf: 32:25:9a:aa:46:cc:2c:85:18:f0:7b:48:0f:0c:6f: 69:b0:7d:1b:3d:3d:f5:fe:7e:28:0f:79:03:47:13: 01:92:65:a8:9e:4c:31:6b:93:d7:14:a0:e2:08:c3: 37:01:23:eb:74:12:f2:ef:54:4f:08:d9:f9:cc:cb: 90:ff:41:33:e3:35:4a:8b:b4:fc:c7:ab:87:d9:75: 0d:d8:85:1e:0f:eb:86:f0:e2:b4:ac:86:0c:d3:32: 6c:56:0a:e7:ec:70:53:c6:8d:ca:7f:76:7d:df:63: 90:fb:54:29:0c:b3:e6:62:31:90:c8:f6:0c:36:bd: 20:ef:1d:1b:a5:7d:a3:d7:d4:ea:1f:6f:2e:c1:6d: 08:f5:14:e6:99:ee:7c:c3:e6:56:1d:80:a5:30:6e: 56:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4B:73:FB:44:07:E6:4F:C0:02:62:F1:63:33:B2:83:5E:CD:44:7E X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/966C7BEC71DC11EFAC022E35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fc10::/44 2406:840:fea4::/48 Signature Algorithm: sha256WithRSAEncryption 0f:8f:ca:14:04:7d:a0:54:ee:55:71:8b:7f:a2:98:fa:24:b7: 27:06:1b:e2:2a:16:8e:62:53:5d:11:41:a0:ee:7d:32:b9:0d: d6:2c:a6:5f:f8:35:db:18:a4:59:8a:6e:bb:e3:d8:8c:d2:31: a4:ab:32:96:28:a6:6a:e1:5e:fa:fe:bf:9c:e0:8a:13:b8:95: f4:89:a0:5e:a4:d2:e2:ec:6c:ec:9e:f6:b6:dd:d9:06:43:fd: 1f:5c:6b:c1:59:bd:be:2b:0b:9d:11:6a:0c:2b:88:fb:c9:f5: 82:5d:76:84:f4:b7:3c:d1:eb:75:56:08:8e:70:77:00:11:d6: 89:83:26:62:76:6b:eb:53:3c:74:1b:43:17:95:69:e2:3d:9a: 02:5b:f4:fd:4e:40:d0:a8:08:30:23:35:4c:ad:24:bd:63:05: 60:9c:2c:5c:e5:45:36:d0:fb:0f:f9:20:5a:ed:c6:56:4f:86: bc:bf:d9:6d:ad:fa:56:92:6f:0c:d7:70:30:67:3a:9e:d3:aa: 58:d6:a6:dd:02:41:a5:06:3e:11:b4:60:91:fa:bf:2d:4d:2d: 2e:14:58:69:86:59:fd:0f:61:8b:70:c4:84:83:db:e3:b3:c6: 83:46:21:09:47:93:d8:cc:8b:d9:e8:44:60:74:41:e2:ac:d6: 17:f9:b7:67 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNjYS1kYTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8ObvVPXGLAu+FAMrtU8SD0M4rvlTp/by90H+L+AXy4dzv+t1A5Z1WKDiUoU ZL91uuR8n1qPhTAblhui31G4AjC40QVkwzIVRN6JOfef313SGL+Oiale/OcrLlmM T8D3hROe9BiCjs8yJZqqRswshRjwe0gPDG9psH0bPT31/n4oD3kDRxMBkmWonkwx a5PXFKDiCMM3ASPrdBLy71RPCNn5zMuQ/0Ez4zVKi7T8x6uH2XUN2IUeD+uG8OK0 rIYM0zJsVgrn7HBTxo3Kf3Z932OQ+1QpDLPmYjGQyPYMNr0g7x0bpX2j19TqH28u wW0I9RTmme58w+ZWHYClMG5WHQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHlLc/tE B+ZPwAJi8WMzsoNezUR+MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTY2QzdCRUM3 MURDMTFFRkFDMDIyRTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/BADBwAkBghA/qQwDQYJKoZIhvcNAQELBQADggEB AA+PyhQEfaBU7lVxi3+imPoktycGG+IqFo5iU10RQaDufTK5DdYspl/4NdsYpFmK brvj2IzSMaSrMpYopmrhXvr+v5zgihO4lfSJoF6k0uLsbOye9rbd2QZD/R9ca8FZ vb4rC50RagwriPvJ9YJddoT0tzzR63VWCI5wdwAR1omDJmJ2a+tTPHQbQxeVaeI9 mgJb9P1OQNCoCDAjNUytJL1jBWCcLFzlRTbQ+w/5IFrtxlZPhry/2W2t+laSbwzX cDBnOp7TqljWpt0CQaUGPhG0YJH6vy1NLS4UWGmGWf0PYYtwxISD2+OzxoNGIQlH k9jMi9noRGB0QeKs1hf5t2c= -----END CERTIFICATE-----Generated at Sat Jun 14 23:23:36 2025 by rpki-client