$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/64782D1E607E11ED9CD7EF0FC4F9AE02.roa File: 64782D1E607E11ED9CD7EF0FC4F9AE02.roa (raw, json) Hash identifier: OgDcSpfZCaRldmBrtsqxGYkV57RYdOEs5Zd3oOYd/XU= Subject key identifier: 0F:1B:2F:C3:7A:18:6A:3D:CC:55:6C:70:73:15:1F:56:47:B1:D6:92 Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 03F4 Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/64782D1E607E11ED9CD7EF0FC4F9AE02.roa Signing time: Sat 05 Apr 2025 01:05:45 +0000 ROA not before: Sat 05 Apr 2025 01:05:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 150404 IP address blocks: 2400:58a0:1800::/44 maxlen: 44 2400:58a0:1800::/48 maxlen: 48 2400:58a0:1801::/48 maxlen: 48 2400:58a0:1802::/48 maxlen: 48 2400:58a0:1803::/48 maxlen: 48 2400:58a0:1804::/48 maxlen: 48 2400:58a0:1805::/48 maxlen: 48 2400:58a0:1806::/48 maxlen: 48 2400:58a0:1807::/48 maxlen: 48 2400:58a0:1808::/48 maxlen: 48 2400:58a0:1809::/48 maxlen: 48 2400:58a0:180a::/48 maxlen: 48 2400:58a0:180b::/48 maxlen: 48 2400:58a0:180c::/48 maxlen: 48 2400:58a0:180d::/48 maxlen: 48 2400:58a0:180e::/48 maxlen: 48 2400:58a0:180f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF Validity Not Before: Apr 5 01:05:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f081e9-691f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0c:12:d7:dc:7d:ee:39:e7:97:b4:4c:c9:b8: ed:1e:3d:89:1b:93:d1:95:37:14:5e:8e:fe:c1:b7: 06:62:43:56:89:a7:6f:71:60:a2:ec:1b:aa:46:c6: 52:e8:4f:a9:9f:55:b4:f7:82:db:ec:d8:f6:69:cc: 2e:d0:7f:3b:6e:ce:8c:33:c8:3c:ca:12:f8:db:de: 51:e4:d1:e5:07:2b:3e:3a:ea:f7:b7:19:4c:1f:ab: ae:c7:c9:5f:c4:b9:53:86:73:5f:b3:3b:3f:22:98: eb:de:88:f7:f7:7f:77:7e:be:6b:8c:64:57:d5:87: ac:5d:f0:84:e5:58:d9:72:69:8f:be:4b:12:a8:52: 0d:24:57:d1:8a:de:d0:31:31:6f:56:13:fa:e6:3e: 5e:14:8d:f6:49:03:ab:69:2f:fd:a5:3b:a0:c6:da: 69:db:52:fb:61:77:69:fa:2e:c7:f7:a9:24:1d:d7: 6e:7c:dd:02:ae:bb:b3:bf:36:7c:57:f6:5e:bf:e1: 82:d9:56:77:9b:4d:4b:1a:82:45:9c:d4:d4:e1:2f: d5:03:ac:cf:13:2c:b6:e4:13:55:50:62:4a:df:74: c4:ae:ee:ed:14:68:05:7c:8e:47:bf:69:12:6d:8a: ea:a1:70:e0:ba:14:19:2d:47:2a:56:97:df:c4:c3: 4b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1B:2F:C3:7A:18:6A:3D:CC:55:6C:70:73:15:1F:56:47:B1:D6:92 X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/64782D1E607E11ED9CD7EF0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:58a0:1800::/44 Signature Algorithm: sha256WithRSAEncryption 0c:aa:8b:d0:8b:d1:19:5a:d3:50:80:99:88:bc:d1:fb:6b:10: c1:d1:70:24:5c:3c:8d:82:14:3d:a8:4f:85:68:c5:f8:65:5c: e1:f4:f0:02:1e:c9:6b:04:d1:c7:51:93:02:24:ea:d9:21:55: c7:90:f4:2e:45:6f:27:5d:4b:03:94:44:c7:a1:49:a5:ed:48: 85:cf:ab:62:b6:d5:0a:bd:bc:5c:52:da:76:64:a6:f3:47:3b: 6f:82:6c:e6:63:38:a9:95:65:b3:18:f9:b9:c5:b8:ee:ee:a2: 3e:9b:10:a9:20:0c:ef:7f:78:29:47:8a:17:6e:05:2b:b1:7f: 79:cc:92:7e:8f:3f:19:4e:73:93:04:ff:32:d5:e1:94:6a:f5: 95:21:ce:14:e2:f9:fe:6a:32:5d:b2:96:27:1a:57:e7:23:cb: f7:4b:44:cd:ff:f0:59:c7:b6:bd:10:8a:ee:c1:f1:d2:01:4d: 28:72:a1:b0:b7:a0:8f:ed:fc:04:e0:76:bb:17:39:b0:75:ff: 9f:f4:3a:24:7d:f6:fa:89:89:63:36:46:32:5c:a7:27:40:41: c4:44:cb:91:1c:75:b1:4d:c1:31:3e:60:ce:58:d8:48:b3:ef: 8e:1e:29:76:22:05:ce:63:07:27:9c:a1:cf:76:7c:14:a3:01: 83:0a:44:37 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjUwNDA1MDEwNTQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODFlOS02OTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwwS19x97jnnl7RMybjtHj2JG5PRlTcUXo7+wbcGYkNWiadvcWCi7BuqRsZS 6E+pn1W094Lb7Nj2acwu0H87bs6MM8g8yhL4295R5NHlBys+Our3txlMH6uux8lf xLlThnNfszs/Ipjr3oj39393fr5rjGRX1YesXfCE5VjZcmmPvksSqFINJFfRit7Q MTFvVhP65j5eFI32SQOraS/9pTugxtpp21L7YXdp+i7H96kkHddufN0CrruzvzZ8 V/Zev+GC2VZ3m01LGoJFnNTU4S/VA6zPEyy25BNVUGJK33TEru7tFGgFfI5Hv2kS bYrqoXDguhQZLUcqVpffxMNLuQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFA8bL8N6 GGo9zFVscHMVH1ZHsdaSMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvNjQ3ODJEMUU2 MDdFMTFFRDlDRDdFRjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAFigGAAwDQYJKoZIhvcNAQELBQADggEBAAyqi9CL0Rla 01CAmYi80ftrEMHRcCRcPI2CFD2oT4VoxfhlXOH08AIeyWsE0cdRkwIk6tkhVceQ 9C5FbyddSwOURMehSaXtSIXPq2K21Qq9vFxS2nZkpvNHO2+CbOZjOKmVZbMY+bnF uO7uoj6bEKkgDO9/eClHihduBSuxf3nMkn6PPxlOc5ME/zLV4ZRq9ZUhzhTi+f5q Ml2ylicaV+cjy/dLRM3/8FnHtr0Qiu7B8dIBTShyobC3oI/t/ATgdrsXObB1/5/0 OiR99vqJiWM2RjJcpydAQcREy5EcdbFNwTE+YM5Y2Eiz744eKXYiBc5jByecoc92 fBSjAYMKRDc= -----END CERTIFICATE-----Generated at Fri Apr 11 16:02:07 2025 by rpki-client