$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/609BCC763D9311EE9B7BB945C4F9AE02.roa File: 609BCC763D9311EE9B7BB945C4F9AE02.roa (raw, json) Hash identifier: 4nZdHogouXv845c2l3vfkGTuWxNMa8pAfMwGWm9kiHw= Subject key identifier: 17:53:87:B4:5D:C3:97:99:C4:D7:BC:72:4C:75:A0:2D:CB:97:60:62 Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 03F6 Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/609BCC763D9311EE9B7BB945C4F9AE02.roa Signing time: Sat 05 Apr 2025 01:05:47 +0000 ROA not before: Sat 05 Apr 2025 01:05:47 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 151669 IP address blocks: 2400:58a0:1c00::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF Validity Not Before: Apr 5 01:05:47 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f081eb-005a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9d:16:db:de:7b:73:53:91:75:af:cf:5e:15: 80:72:63:d5:8c:fc:f8:45:b7:b3:19:6b:8e:8d:37: ab:9b:b8:d6:32:df:e5:57:fa:29:13:d8:97:49:b7: 3d:a2:e4:3b:0a:92:bc:ca:ef:d9:48:0f:b9:16:d1: 2b:0b:96:52:f4:1e:c0:42:87:b1:65:6d:89:0d:03: 62:06:17:ad:7c:31:07:d0:5c:aa:b8:71:1e:c7:e9: 0b:fa:c4:47:24:74:9c:5c:c4:54:50:4e:ab:5a:f4: 0e:d5:fa:4d:fc:2f:da:10:16:a5:64:d0:2c:a1:3d: 1c:23:b9:ad:08:10:54:c2:fb:af:3a:4d:a4:89:ed: 45:93:1e:50:39:64:58:ec:16:43:47:46:cc:b6:1a: 2a:6e:75:28:02:81:f4:f9:2c:27:92:70:37:c5:13: 19:7d:bc:71:68:4c:c8:12:71:ce:8f:86:1a:52:10: 14:b9:bb:db:ba:e8:5c:70:5e:8b:42:76:c5:1d:3a: 99:e5:80:38:31:3b:54:62:12:a9:d4:ff:5a:ed:e5: 30:df:36:27:2e:f3:49:98:1f:e5:82:3d:13:f1:c5: 30:98:e5:d2:65:6f:ff:67:ec:b0:6c:76:92:be:ed: 58:6b:b3:67:f6:1e:82:96:33:70:33:64:89:64:ad: 97:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:53:87:B4:5D:C3:97:99:C4:D7:BC:72:4C:75:A0:2D:CB:97:60:62 X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/609BCC763D9311EE9B7BB945C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:58a0:1c00::/44 Signature Algorithm: sha256WithRSAEncryption bd:0b:b8:a8:9f:73:ba:04:84:6f:56:a4:8d:2a:f2:fa:a9:dd: 70:d5:7f:c5:a3:39:5a:79:6e:ea:7d:6a:ed:99:e1:0f:c4:73: 2e:d9:ce:83:17:3f:fb:94:56:09:67:44:93:4f:de:8e:65:8a: da:4c:ba:1f:a1:38:7d:3c:a4:af:77:e7:c1:2e:bf:a3:c1:a9: 88:43:8b:9e:9f:20:f1:51:c9:47:18:e4:86:6d:31:ce:a3:51: 6e:3f:c3:fc:b1:5b:9d:55:af:fa:af:7a:00:3a:f6:92:d0:52: 1c:13:28:f7:d3:53:dc:fd:df:87:f2:81:52:b0:2a:77:89:4b: 4e:20:c4:2c:30:cf:94:24:bc:03:50:c3:af:13:62:77:4e:8f: 28:38:59:c9:63:72:05:f1:f8:e2:20:62:09:df:5a:0f:98:11: 4e:2e:a8:c2:ff:85:94:eb:fc:db:07:9c:f5:13:d5:68:59:e5: be:50:df:6c:0d:a6:a2:bd:3a:d0:c7:bb:70:93:3b:b1:76:25: f1:2d:33:31:d1:1f:b5:49:e5:68:31:b6:1a:cc:ee:07:76:43: fc:43:50:bf:20:96:03:59:e2:6e:c1:c3:82:c6:7d:e5:c9:a3: 2b:23:38:44:73:4e:d5:1e:5a:0b:ec:0b:a4:12:1a:fe:6d:80: df:fa:ab:f8 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjUwNDA1MDEwNTQ3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODFlYi0wMDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Z0W2957c1ORda/PXhWAcmPVjPz4RbezGWuOjTerm7jWMt/lV/opE9iXSbc9 ouQ7CpK8yu/ZSA+5FtErC5ZS9B7AQoexZW2JDQNiBhetfDEH0FyquHEex+kL+sRH JHScXMRUUE6rWvQO1fpN/C/aEBalZNAsoT0cI7mtCBBUwvuvOk2kie1Fkx5QOWRY 7BZDR0bMthoqbnUoAoH0+SwnknA3xRMZfbxxaEzIEnHOj4YaUhAUubvbuuhccF6L QnbFHTqZ5YA4MTtUYhKp1P9a7eUw3zYnLvNJmB/lgj0T8cUwmOXSZW//Z+ywbHaS vu1Ya7Nn9h6CljNwM2SJZK2XEQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBdTh7Rd w5eZxNe8ckx1oC3Ll2BiMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvNjA5QkNDNzYz RDkzMTFFRTlCN0JCOTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAFigHAAwDQYJKoZIhvcNAQELBQADggEBAL0LuKifc7oE hG9WpI0q8vqp3XDVf8WjOVp5bup9au2Z4Q/Ecy7ZzoMXP/uUVglnRJNP3o5litpM uh+hOH08pK9358Euv6PBqYhDi56fIPFRyUcY5IZtMc6jUW4/w/yxW51Vr/qvegA6 9pLQUhwTKPfTU9z934fygVKwKneJS04gxCwwz5QkvANQw68TYndOjyg4WcljcgXx +OIgYgnfWg+YEU4uqML/hZTr/NsHnPUT1WhZ5b5Q32wNpqK9OtDHu3CTO7F2JfEt MzHRH7VJ5WgxthrM7gd2Q/xDUL8glgNZ4m7Bw4LGfeXJoysjOERzTtUeWgvsC6QS Gv5tgN/6q/g= -----END CERTIFICATE-----Generated at Sat Apr 12 00:31:09 2025 by rpki-client