$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/164F6E2079BF11EAB3ADD60FC4F9AE02.roa File: 164F6E2079BF11EAB3ADD60FC4F9AE02.roa (raw, json) Hash identifier: PpfeoNLGQRLdh5JBWtYvIsWk1BQGQBviJdo1MDzsyAk= Subject key identifier: E6:83:E0:F3:50:A4:94:00:69:67:4A:E5:DE:DA:A1:49:58:43:40:0B Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 1713 Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/164F6E2079BF11EAB3ADD60FC4F9AE02.roa Signing time: Fri 30 May 2025 17:39:57 +0000 ROA not before: Fri 30 May 2025 17:39:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 18809 IP address blocks: 2400:cb00:90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5907 (0x1713) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4, serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 30 17:39:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6839ed6d-06fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1a:e6:13:45:04:79:15:f1:71:d1:63:e1:44: 41:e8:76:08:ad:d7:97:78:16:3b:e6:53:0a:00:d9: 17:2d:9a:e7:6d:e7:08:e5:7c:1d:5b:b3:08:a1:2c: 46:15:6c:b2:7d:f3:24:5e:5c:95:11:00:1a:c7:50: fc:4e:e5:be:72:63:a4:7a:a6:7d:d0:c8:26:4f:e9: 8d:ea:d3:e9:be:b2:50:54:90:14:02:9b:25:68:87: dc:21:76:df:5c:94:28:a1:cf:07:c7:74:09:cd:2e: 92:fa:2e:a3:d3:2b:e9:a9:f3:fa:cc:b9:66:bf:66: e9:ae:65:27:47:b7:fe:d4:64:13:1b:b4:19:7a:1f: b2:47:9a:e1:7d:92:cd:7c:4c:95:8d:86:91:01:8d: 2c:e0:89:fd:df:1d:e4:28:bc:03:a2:0a:2c:e9:e1: 3f:64:fb:58:d8:9e:c0:32:d2:fe:97:9a:fd:a0:fa: d4:3b:ae:c2:24:c7:76:4a:ea:43:2b:43:0c:97:62: 54:a8:cb:9d:c0:69:e8:8f:ae:12:e6:15:91:dc:ae: 33:45:19:03:c4:3f:02:70:c3:37:ac:19:a8:74:8b: 4a:5b:25:08:8a:c9:7a:a0:99:87:6f:6e:6d:1b:9b: c9:f5:2c:90:79:fe:3b:90:ef:ce:a1:0d:ef:03:b3: b3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:83:E0:F3:50:A4:94:00:69:67:4A:E5:DE:DA:A1:49:58:43:40:0B X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/164F6E2079BF11EAB3ADD60FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:90::/48 Signature Algorithm: sha256WithRSAEncryption 1b:c0:57:fd:65:d7:b8:cf:c0:da:7f:b9:c4:d6:2e:b4:63:5d: 99:7d:c4:50:34:e3:9e:c8:a0:57:db:db:1a:32:07:4d:f9:1f: c7:4f:a4:a7:d8:30:e9:c4:9e:5d:ea:4f:1c:15:5b:60:40:ab: 91:a9:c9:33:79:75:70:3a:3f:ba:f4:f2:93:87:ff:a7:72:b3: cb:a6:45:05:61:22:42:43:ab:cd:98:a7:44:87:53:53:16:73: 1a:2f:40:f8:56:b6:33:1c:b3:43:b4:ec:27:ad:e1:69:a9:b5: a4:c3:1b:52:f6:9d:e0:fd:7e:29:53:db:ad:32:3d:90:de:f2: 1e:e6:cb:8b:3c:b5:22:89:22:c0:f4:dd:b4:ca:e3:79:4e:0c: ca:2c:28:bd:72:ba:4a:57:16:7c:e1:5a:b9:73:72:39:92:d2: 9b:7c:f0:2e:67:e4:d8:78:80:28:6f:b7:e2:28:fd:e7:28:f6: f1:91:da:a5:60:ac:37:b7:34:d3:4f:94:87:1a:9b:da:ac:90: 1a:e7:aa:ed:5d:0b:97:a5:83:1b:d1:c2:72:80:53:84:07:a8: 70:cc:3e:91:a4:a6:06:c3:07:b2:69:f2:1c:4f:ab:78:2e:5a: 5e:0d:c7:e8:71:6f:25:3c:17:90:ef:a0:dd:73:50:1f:28:1c: 08:28:ff:d6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICFxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjUwNTMwMTczOTU3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM5ZWQ2ZC0wNmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxrmE0UEeRXxcdFj4URB6HYIrdeXeBY75lMKANkXLZrnbecI5XwdW7MIoSxG FWyyffMkXlyVEQAax1D8TuW+cmOkeqZ90MgmT+mN6tPpvrJQVJAUApslaIfcIXbf XJQooc8Hx3QJzS6S+i6j0yvpqfP6zLlmv2bprmUnR7f+1GQTG7QZeh+yR5rhfZLN fEyVjYaRAY0s4In93x3kKLwDogos6eE/ZPtY2J7AMtL+l5r9oPrUO67CJMd2SupD K0MMl2JUqMudwGnoj64S5hWR3K4zRRkDxD8CcMM3rBmodItKWyUIisl6oJmHb25t G5vJ9SyQef47kO/OoQ3vA7OzOQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOaD4PNQ pJQAaWdK5d7aoUlYQ0ALMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvMTY0RjZFMjA3 OUJGMTFFQUIzQURENjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAMsAAJAwDQYJKoZIhvcNAQELBQADggEBABvAV/1l17jP wNp/ucTWLrRjXZl9xFA0457IoFfb2xoyB035H8dPpKfYMOnEnl3qTxwVW2BAq5Gp yTN5dXA6P7r08pOH/6dys8umRQVhIkJDq82Yp0SHU1MWcxovQPhWtjMcs0O07Cet 4WmptaTDG1L2neD9filT260yPZDe8h7my4s8tSKJIsD03bTK43lODMosKL1yukpX FnzhWrlzcjmS0pt88C5n5Nh4gChvt+Io/eco9vGR2qVgrDe3NNNPlIcam9qskBrn qu1dC5elgxvRwnKAU4QHqHDMPpGkpgbDB7Jp8hxPq3guWl4Nx+hxbyU8F5DvoN1z UB8oHAgo/9Y= -----END CERTIFICATE-----Generated at Mon Jun 2 06:57:51 2025 by rpki-client