$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/64F859DA812611EDA597255EC4F9AE02.roa File: 64F859DA812611EDA597255EC4F9AE02.roa (raw, json) Hash identifier: rBeoIA3irlO1Deytx/F8atxZ8cpZ0/tW3IVa0ZmI0Ng= Subject key identifier: 64:BE:D7:21:C0:B0:9C:C7:BB:4E:88:22:99:FF:9D:33:61:43:09:2D Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1962 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/64F859DA812611EDA597255EC4F9AE02.roa Signing time: Tue 14 Jan 2025 16:34:25 +0000 ROA not before: Tue 14 Jan 2025 16:34:25 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 48337 IP address blocks: 2400:8905::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6498 (0x1962) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A Validity Not Before: Jan 14 16:34:25 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67869211-43c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:54:48:3a:8c:b8:60:3a:b7:00:09:ca:d2: dd:a9:a8:d6:6a:c7:a8:90:a4:d1:ee:30:19:fc:38: c7:44:81:e3:c3:77:0f:0a:45:0e:91:2f:24:da:1e: e1:44:cb:f1:9f:30:8e:2c:89:f3:e5:87:9c:dc:61: 5d:97:c6:68:7a:55:4f:94:38:7d:34:90:1d:15:3d: 52:4f:ec:b6:6e:45:a7:4d:a9:a8:df:7d:ed:6a:c9: 47:e0:5c:79:31:a0:06:85:50:a0:fb:da:a1:63:2d: 0f:eb:e9:73:cf:70:64:6f:f1:f3:e5:fd:be:f5:37: 87:bf:76:cc:5e:c7:fd:ac:44:df:a5:38:30:38:0b: 24:f5:f6:0c:ef:0c:3c:11:8a:75:d2:66:31:d8:f6: bb:5f:dd:9f:25:89:c6:a0:21:05:93:90:f9:3a:0d: 88:ba:d8:fb:75:f8:e2:12:4d:18:f1:ee:fe:35:10: 4b:d3:a2:89:f0:c3:cb:2a:76:dc:e9:7f:c0:ca:84: 95:a5:d3:fc:bf:a0:09:ae:fc:05:e0:59:e0:a2:83: c8:6f:74:b3:98:cd:57:65:b3:20:41:87:16:f3:fe: 32:4e:b0:97:0a:4d:93:ba:00:9e:38:1c:cb:f0:55: de:cd:d8:df:40:f2:a8:d1:2f:e0:4e:92:ee:ca:92: 1f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:BE:D7:21:C0:B0:9C:C7:BB:4E:88:22:99:FF:9D:33:61:43:09:2D X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/64F859DA812611EDA597255EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:8905::/32 Signature Algorithm: sha256WithRSAEncryption 43:94:74:c4:f9:56:ff:8c:61:57:bc:89:51:6e:dc:e4:35:d2: 38:a0:50:6d:fa:e3:8b:cc:52:bf:16:75:37:d9:6c:33:bb:b9: 60:fc:50:02:3e:6e:b0:c8:a0:80:d0:06:47:ae:7c:36:73:fd: 00:5b:df:0e:a5:8f:96:12:76:3f:a7:96:17:ba:6e:ea:ec:e0: 32:1f:a4:27:80:76:28:bf:c6:5f:f7:06:03:12:b2:6e:3e:8d: 89:59:b5:e7:f8:ac:2d:d1:06:9c:64:7f:3b:4d:6b:91:b0:0f: f1:90:ff:6f:12:ca:0d:4c:ee:67:cb:b8:1b:e2:c4:c5:82:0f: 05:fa:ae:3e:32:39:75:d1:09:86:aa:06:53:06:1a:08:fb:ea: 34:2b:09:39:31:0c:af:ee:93:7d:db:b2:51:77:88:8c:dc:c3: fd:bc:9f:33:2b:93:ad:d8:aa:cb:0f:17:78:4f:dd:cd:cf:7e: e1:b7:04:26:37:71:7b:81:e4:ba:e8:89:04:2a:65:ef:6f:33: 19:f0:48:c6:99:13:16:94:d3:85:93:76:43:cd:fe:a5:73:13: b5:bc:20:2f:72:8e:9e:e3:9a:bf:31:18:15:b0:47:9b:ef:3e: ab:ab:b8:ce:b6:dc:ec:b9:85:4d:ea:f2:2b:71:73:dd:06:3f: 0f:4f:b9:cb -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICGWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjUwMTE0MTYzNDI1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2OTIxMS00M2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4NUSDqMuGA6twAJytLdqajWaseokKTR7jAZ/DjHRIHjw3cPCkUOkS8k2h7h RMvxnzCOLInz5Yec3GFdl8ZoelVPlDh9NJAdFT1ST+y2bkWnTamo333taslH4Fx5 MaAGhVCg+9qhYy0P6+lzz3Bkb/Hz5f2+9TeHv3bMXsf9rETfpTgwOAsk9fYM7ww8 EYp10mYx2Pa7X92fJYnGoCEFk5D5Og2Iutj7dfjiEk0Y8e7+NRBL06KJ8MPLKnbc 6X/AyoSVpdP8v6AJrvwF4FngooPIb3SzmM1XZbMgQYcW8/4yTrCXCk2TugCeOBzL 8FXezdjfQPKo0S/gTpLuypIfKQIDAQABo4ICljCCApIwHQYDVR0OBBYEFGS+1yHA sJzHu06IIpn/nTNhQwktMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvNjRGODU5REE4 MTI2MTFFREE1OTcyNTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAIkFMA0GCSqGSIb3DQEBCwUAA4IBAQBDlHTE+Vb/jGFX vIlRbtzkNdI4oFBt+uOLzFK/FnU32Wwzu7lg/FACPm6wyKCA0AZHrnw2c/0AW98O pY+WEnY/p5YXum7q7OAyH6QngHYov8Zf9wYDErJuPo2JWbXn+Kwt0QacZH87TWuR sA/xkP9vEsoNTO5ny7gb4sTFgg8F+q4+Mjl10QmGqgZTBhoI++o0Kwk5MQyv7pN9 27JRd4iM3MP9vJ8zK5Ot2KrLDxd4T93Nz37htwQmN3F7geS66IkEKmXvbzMZ8EjG mRMWlNOFk3ZDzf6lcxO1vCAvco6e45q/MRgVsEeb7z6rq7jOttzsuYVN6vIrcXPd Bj8PT7nL -----END CERTIFICATE-----Generated at Sun Apr 6 18:04:32 2025 by rpki-client