$ rpki-client -vvf rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/334D635EFDE711EF9BAD1760C4F9AE02.roa File: 334D635EFDE711EF9BAD1760C4F9AE02.roa (raw, json) Hash identifier: TLOUpboDg0SqOlKVR5+MpZV1yEexpqBWpDfdMuuVmMU= Subject key identifier: 07:CC:5A:F8:DA:97:7D:40:3D:2E:4D:AA:F0:FC:DE:8D:90:16:82:21 Certificate issuer: /CN=A915C449/serialNumber=484EBF33750B21CAF028D0CE219B9461D1FBAA66 Certificate serial: 0641 Authority key identifier: 48:4E:BF:33:75:0B:21:CA:F0:28:D0:CE:21:9B:94:61:D1:FB:AA:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SE6_M3ULIcrwKNDOIZuUYdH7qmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/334D635EFDE711EF9BAD1760C4F9AE02.roa Signing time: Mon 28 Apr 2025 23:34:29 +0000 ROA not before: Mon 28 Apr 2025 23:34:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 210542 IP address blocks: 2407:47c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/SE6_M3ULIcrwKNDOIZuUYdH7qmY.crl rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/SE6_M3ULIcrwKNDOIZuUYdH7qmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SE6_M3ULIcrwKNDOIZuUYdH7qmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 23:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1601 (0x641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C449, serialNumber=484EBF33750B21CAF028D0CE219B9461D1FBAA66 Validity Not Before: Apr 28 23:34:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68101085-7b63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:58:93:1a:ae:a4:ea:14:64:a3:0d:5b:b0:4d: 26:c5:49:69:bf:ce:09:84:e7:1e:1a:1a:8c:c4:fa: a9:89:ea:70:fd:99:82:6c:28:a5:fa:77:7e:27:5b: 6d:9e:bb:2c:e0:1b:da:8c:6f:e7:ae:01:14:c0:7c: c3:51:98:f2:0c:d7:a3:72:47:1d:83:e7:ea:9e:59: 40:05:3b:04:3b:de:98:b1:80:4b:7a:82:a4:2e:9d: 26:96:5e:48:7f:78:43:54:4c:67:47:2b:81:b9:f8: e7:35:19:d3:52:68:d2:1e:4a:fb:fb:a1:85:00:30: 3f:d9:fa:b2:2b:9d:53:a6:6c:e0:c4:47:36:0c:f5: 64:63:8f:8b:fc:48:7c:ef:0b:ba:45:a4:1a:4e:c9: a2:6e:35:1b:27:8b:04:f1:48:ad:4d:47:4a:35:77: 2b:d6:41:1c:1b:d5:83:e2:cf:e9:dd:85:c6:23:d0: fe:29:44:16:af:ea:60:53:ee:50:89:d0:38:c9:60: 8f:0a:0c:59:85:6f:ea:6c:dc:b5:c1:66:ea:40:40: fb:86:3a:a2:3e:54:42:a7:de:d8:2a:6b:77:06:61: cb:1a:d1:98:88:89:bd:d4:a1:18:dc:e5:56:8d:0c: 0a:21:b3:51:fe:9f:51:ed:c3:2f:df:fe:0b:ba:96: 91:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:CC:5A:F8:DA:97:7D:40:3D:2E:4D:AA:F0:FC:DE:8D:90:16:82:21 X509v3 Authority Key Identifier: keyid:48:4E:BF:33:75:0B:21:CA:F0:28:D0:CE:21:9B:94:61:D1:FB:AA:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/SE6_M3ULIcrwKNDOIZuUYdH7qmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SE6_M3ULIcrwKNDOIZuUYdH7qmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/334D635EFDE711EF9BAD1760C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:47c0::/32 Signature Algorithm: sha256WithRSAEncryption da:65:74:4c:5e:4f:a8:c4:86:2f:06:25:15:1f:c7:06:0b:c4: 3e:5e:81:fb:b4:9e:f7:37:32:47:9a:7e:f2:87:01:51:f5:54: 4c:ad:f3:aa:ca:5e:a1:b0:1f:52:bd:3a:c7:6d:38:b9:73:c9: 0d:1f:29:c1:79:2e:fd:4e:93:5d:3e:35:54:a3:1b:be:56:6d: 49:a0:dc:83:6b:f1:64:57:41:94:68:11:c3:b4:85:07:30:11: 6f:aa:45:c0:9d:09:5b:01:9f:79:01:d6:23:2a:b8:89:ce:08: 35:72:ff:5a:ac:b8:16:2e:df:06:df:e4:47:09:79:4e:5d:46: 77:95:33:6d:8f:76:53:c6:81:12:ce:16:54:53:d2:31:76:7b: ca:46:60:75:9c:57:c6:eb:17:ef:fe:6e:6a:79:1a:24:b4:37: 1c:9e:2b:87:f5:89:b3:23:a0:38:12:23:2c:0b:5a:2a:95:89: a5:65:21:9c:ec:5a:30:5c:7c:ba:1b:4c:e3:11:a2:b4:00:42: 55:33:ca:ab:61:84:bd:c5:8e:f2:c1:7b:d9:62:54:e4:36:fa: a2:34:f2:1d:2b:ed:52:54:2f:63:25:84:58:1e:5e:68:23:f6: ab:08:eb:4b:f2:73:53:02:8f:dc:a6:85:c3:e3:b5:7c:59:d2: 33:89:e4:31 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM0NDkxMTAvBgNVBAUTKDQ4NEVCRjMzNzUwQjIxQ0FGMDI4RDBDRTIxOUI5NDYx RDFGQkFBNjYwHhcNMjUwNDI4MjMzNDI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMTA4NS03YjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ViTGq6k6hRkow1bsE0mxUlpv84JhOceGhqMxPqpiepw/ZmCbCil+nd+J1tt nrss4BvajG/nrgEUwHzDUZjyDNejckcdg+fqnllABTsEO96YsYBLeoKkLp0mll5I f3hDVExnRyuBufjnNRnTUmjSHkr7+6GFADA/2fqyK51TpmzgxEc2DPVkY4+L/Eh8 7wu6RaQaTsmibjUbJ4sE8UitTUdKNXcr1kEcG9WD4s/p3YXGI9D+KUQWr+pgU+5Q idA4yWCPCgxZhW/qbNy1wWbqQED7hjqiPlRCp97YKmt3BmHLGtGYiIm91KEY3OVW jQwKIbNR/p9R7cMv3/4LupaRaQIDAQABo4ICljCCApIwHQYDVR0OBBYEFAfMWvja l31APS5NqvD83o2QFoIhMB8GA1UdIwQYMBaAFEhOvzN1CyHK8CjQziGblGHR+6pm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ0OS81OEVBNDhFQTlE RDYxMUVCOTJDRjM3MTRDNEY5QUUwMi9TRTZfTTNVTEljcndLTkRPSVp1VVlkSDdx bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NFNl9NM1VMSWNyd0tORE9JWnVVWWRIN3FtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM0NDkvNThFQTQ4RUE5REQ2MTFFQjkyQ0YzNzE0QzRGOUFFMDIvMzM0RDYzNUVG REU3MTFFRjlCQUQxNzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkB0fAMA0GCSqGSIb3DQEBCwUAA4IBAQDaZXRMXk+oxIYv BiUVH8cGC8Q+XoH7tJ73NzJHmn7yhwFR9VRMrfOqyl6hsB9SvTrHbTi5c8kNHynB eS79TpNdPjVUoxu+Vm1JoNyDa/FkV0GUaBHDtIUHMBFvqkXAnQlbAZ95AdYjKriJ zgg1cv9arLgWLt8G3+RHCXlOXUZ3lTNtj3ZTxoESzhZUU9IxdnvKRmB1nFfG6xfv /m5qeRoktDccniuH9YmzI6A4EiMsC1oqlYmlZSGc7FowXHy6G0zjEaK0AEJVM8qr YYS9xY7ywXvZYlTkNvqiNPIdK+1SVC9jJYRYHl5oI/arCOtL8nNTAo/cpoXD47V8 WdIzieQx -----END CERTIFICATE-----Generated at Sat May 17 08:03:09 2025 by rpki-client