$ rpki-client -vvf rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/E98F15362B3811EF926F1555C4F9AE02.roa File: E98F15362B3811EF926F1555C4F9AE02.roa (raw, json) Hash identifier: huhcBlB6kInuEcW0eyepHJy04Qrnm/zwE5F/lbsIg4U= Subject key identifier: 71:B3:0E:EF:5C:26:AA:5B:40:3D:5E:35:36:31:44:C7:A4:65:61:82 Certificate issuer: /CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Certificate serial: 01D6 Authority key identifier: A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/E98F15362B3811EF926F1555C4F9AE02.roa Signing time: Sun 11 May 2025 02:31:49 +0000 ROA not before: Sun 11 May 2025 02:31:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 61112 IP address blocks: 2400:e3e0:6900::/40 maxlen: 48 2400:e3e0:f5a9::/48 maxlen: 48 2400:e3e0:f5aa::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BE9A, serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Validity Not Before: May 11 02:31:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68200c15-cae9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e7:f7:34:5b:4a:e1:85:c7:95:fd:1d:74:7e: c7:58:9d:f9:dd:10:73:aa:32:43:29:66:be:14:49: 9e:8d:fb:a9:e3:44:ad:29:b7:76:e9:16:68:fa:08: 6d:4d:6c:46:0a:00:98:6c:a3:cd:03:0f:b3:4d:59: 55:43:02:0f:15:31:af:1e:81:aa:c5:33:0e:df:44: 20:c4:47:00:09:69:e9:b6:98:1b:cf:05:e3:f0:d2: 9b:fd:5b:3f:02:89:a0:3a:9d:65:9d:0a:16:b2:6b: 10:3e:e6:f0:c8:9d:5d:4e:c5:dd:33:b0:88:00:ed: ec:57:9a:74:70:9d:56:fa:29:89:62:ee:e5:9c:84: d4:b0:fc:99:3b:e5:36:d8:3c:ee:4a:5f:cc:9e:b7: 77:ac:ab:d6:b1:b7:a9:57:be:74:8f:be:10:16:da: 51:af:e9:57:1d:72:1f:38:8e:2d:45:85:a6:d6:a9: bb:62:ae:b5:74:63:5b:6d:1e:c7:8b:c0:18:0e:16: ee:0c:25:38:e5:84:b0:cf:d1:61:49:ce:b1:ea:8e: 36:09:c4:02:24:55:b4:7b:34:d5:8d:18:e6:b4:28: 01:a4:af:04:82:c4:63:39:98:2b:f8:62:bb:88:93: 95:a1:de:c0:36:72:db:98:bd:33:3a:e7:64:5d:c6: d4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B3:0E:EF:5C:26:AA:5B:40:3D:5E:35:36:31:44:C7:A4:65:61:82 X509v3 Authority Key Identifier: keyid:A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/E98F15362B3811EF926F1555C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:e3e0:6900::/40 2400:e3e0:f5a9::-2400:e3e0:f5aa:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c0:39:a6:a8:bb:9d:39:e0:73:02:f5:01:89:d7:43:c6:17:77: dd:e3:0a:0c:d0:f3:2c:8b:9b:19:ac:b2:5d:0d:d2:c1:34:59: 2d:30:ca:78:79:6a:46:32:57:06:27:9b:23:8b:82:c1:50:1c: 54:4a:0a:ce:0b:ed:c8:0d:86:0b:e9:bc:3f:7f:1b:c6:d9:39: 59:54:38:78:95:e4:b4:e0:1b:0b:e6:ef:dd:84:12:1d:64:bc: e9:20:8e:a4:bf:ff:88:e8:48:da:d2:4e:86:e4:69:4a:68:e1: ff:40:18:4f:3c:01:ef:71:37:aa:50:73:53:e4:bf:53:c9:6f: 7c:2d:86:cc:9b:54:b2:da:49:93:bf:f6:2a:7d:88:57:2b:d0: 3b:1a:e7:ac:ba:a8:89:98:02:ce:27:82:60:a4:c4:0e:65:c5: 34:f0:4c:80:53:ad:8d:46:07:53:ae:8f:5a:7f:db:b0:05:c5: 30:4b:8a:25:bf:d9:56:3c:84:ac:a7:cb:a1:1b:d3:fa:29:ad: 5e:63:72:b0:64:93:58:7a:90:0d:5d:a6:ba:89:a6:f7:e3:70: 3d:5b:8a:b7:e7:24:0c:3e:a2:9e:d7:48:f5:32:86:19:5f:f8: c0:7c:81:4c:8b:fa:8f:35:46:b2:a1:6d:c0:9f:af:f0:d8:b5: d5:20:a7:c1 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFOUExMTAvBgNVBAUTKEE3OUI4Mjg4NzAzMTQ0MTk5MEIxOEQxQTA1RjlFMjcx RTdFN0I4RTYwHhcNMjUwNTExMDIzMTQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODIwMGMxNS1jYWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruf3NFtK4YXHlf0ddH7HWJ353RBzqjJDKWa+FEmejfup40StKbd26RZo+ght TWxGCgCYbKPNAw+zTVlVQwIPFTGvHoGqxTMO30QgxEcACWnptpgbzwXj8NKb/Vs/ AomgOp1lnQoWsmsQPubwyJ1dTsXdM7CIAO3sV5p0cJ1W+imJYu7lnITUsPyZO+U2 2DzuSl/Mnrd3rKvWsbepV750j74QFtpRr+lXHXIfOI4tRYWm1qm7Yq61dGNbbR7H i8AYDhbuDCU45YSwz9FhSc6x6o42CcQCJFW0ezTVjRjmtCgBpK8EgsRjOZgr+GK7 iJOVod7ANnLbmL0zOudkXcbUZQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFHGzDu9c JqpbQD1eNTYxRMekZWGCMB8GA1UdIwQYMBaAFKebgohwMUQZkLGNGgX54nHn57jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkU5QS84RkExRjU2RUI4 NUUxMUVEOEU2RjQyMTNDNEY5QUUwMi9wNXVDaUhBeFJCbVFzWTBhQmZuaWNlZm51 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A1dUNpSEF4UkJtUXNZMGFCZm5pY2VmbnVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFOUEvOEZBMUY1NkVCODVFMTFFRDhFNkY0MjEzQzRGOUFFMDIvRTk4RjE1MzYy QjM4MTFFRjkyNkYxNTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgACMBwDBgAkAOPgaTASAwcAJADj4PWpAwcAJADj4PWqMA0GCSqGSIb3 DQEBCwUAA4IBAQDAOaaou5054HMC9QGJ10PGF3fd4woM0PMsi5sZrLJdDdLBNFkt MMp4eWpGMlcGJ5sji4LBUBxUSgrOC+3IDYYL6bw/fxvG2TlZVDh4leS04BsL5u/d hBIdZLzpII6kv/+I6Eja0k6G5GlKaOH/QBhPPAHvcTeqUHNT5L9TyW98LYbMm1Sy 2kmTv/YqfYhXK9A7GuesuqiJmALOJ4JgpMQOZcU08EyAU62NRgdTro9af9uwBcUw S4olv9lWPISsp8uhG9P6Ka1eY3KwZJNYepANXaa6iab343A9W4q35yQMPqKe10j1 MoYZX/jAfIFMi/qPNUayoW3An6/w2LXVIKfB -----END CERTIFICATE-----Generated at Fri May 16 19:23:21 2025 by rpki-client