$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa File: 32BF2AD8F36E11E883FFB865C4F9AE02.roa (raw, json) Hash identifier: Pc10a6GPcU3p3R3kb/3/eOvdX0ZEnj42VYzm9PFnls8= Subject key identifier: E4:4E:AB:18:8B:72:95:86:5D:FC:4E:39:24:D4:D0:DF:80:48:CC:56 Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 1710 Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa Signing time: Fri 30 May 2025 17:39:51 +0000 ROA not before: Fri 30 May 2025 17:39:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132892 IP address blocks: 2400:cb00:36::/48 maxlen: 48 2400:cb00:348::/48 maxlen: 48 2400:cb00:349::/48 maxlen: 48 2400:cb00:958::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5904 (0x1710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4, serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 30 17:39:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6839ed67-5680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:00:73:19:a3:69:37:24:d2:21:2c:7b:bf:08: ac:b0:43:8c:ea:c0:ff:9c:0d:d8:8a:1f:04:0b:e4: 70:f0:16:e6:16:5b:f5:a1:f2:54:a4:bc:a3:20:b6: 43:c3:d8:25:a7:65:4c:45:02:b1:1c:d2:2e:91:b7: dd:f7:c6:27:fd:27:7c:d5:14:60:4b:61:64:ef:13: 6b:9b:e1:10:84:7b:ec:2f:d3:84:33:59:d6:55:40: 37:46:fd:d4:ef:4b:29:99:28:24:5b:75:1e:84:5c: 84:09:f6:ca:55:a9:3c:51:19:e2:69:74:4e:f0:10: e7:1f:19:a4:d5:1e:99:4e:92:76:0e:ae:fd:b2:91: ec:9c:30:c3:a9:8e:59:fd:d9:e3:e4:2c:72:96:fb: 6e:29:93:83:f2:90:72:ec:90:ba:2d:47:50:c7:e9: 1b:6c:5d:0f:bc:d0:98:55:86:6a:22:56:cf:4a:f3: c5:83:e7:f5:6c:e1:be:25:6f:3b:31:60:a3:c9:94: fb:76:cf:65:95:a9:97:54:53:52:31:89:75:7e:6d: 4f:ea:ea:6a:6e:31:dd:e5:08:b3:ee:ce:64:16:95: 95:9d:dd:a7:ac:36:77:c5:7d:8e:92:5a:b5:c3:43: 49:6c:41:38:27:c3:1f:68:e7:5b:11:59:f9:66:09: 78:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:4E:AB:18:8B:72:95:86:5D:FC:4E:39:24:D4:D0:DF:80:48:CC:56 X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:36::/48 2400:cb00:348::/47 2400:cb00:958::/48 Signature Algorithm: sha256WithRSAEncryption 1a:38:3e:e9:b9:f3:87:5d:00:35:0c:47:d9:41:86:5d:09:13: b1:3b:d7:12:a0:e8:e0:58:1b:c2:89:9c:e9:d9:85:64:f0:ba: 09:ee:6e:54:2d:23:6a:c5:11:05:b9:12:96:ed:31:1e:12:f9: b8:e6:6f:cf:64:33:44:1e:09:ca:14:3e:18:ba:29:7c:71:0c: 00:7e:4a:fa:87:de:89:9b:d2:91:79:ca:23:8a:a1:41:dd:40: 61:33:3a:26:8c:0a:22:32:3a:9b:5b:ab:ac:f8:af:99:4e:10: 76:7c:73:e4:ae:84:7f:b2:3e:c8:f7:5f:62:5f:1a:ce:6e:75: f4:45:d0:b6:de:fa:28:77:a1:40:08:06:24:0a:dc:e2:f5:98: 92:4e:b8:ce:c0:c7:85:3d:34:72:ee:fb:da:28:97:5c:ea:ab: 63:f6:57:64:f9:c2:98:16:f8:1b:3e:4c:51:2d:33:b4:bb:3f: 67:03:ba:39:fc:e8:1f:5e:16:80:9e:87:34:b1:8d:0a:48:ed: 4d:de:cc:ef:e8:a7:da:4a:8d:4a:f1:19:9c:88:63:3b:e9:76: c1:f2:ee:ab:f2:11:c6:dd:ac:b9:82:dc:62:4a:02:3e:96:14: 6f:98:5a:2f:7a:83:8c:e0:56:2f:cb:9d:1b:e1:fd:8b:c2:42: a5:ed:63:c7 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjUwNTMwMTczOTUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM5ZWQ2Ny01NjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQBzGaNpNyTSISx7vwissEOM6sD/nA3Yih8EC+Rw8BbmFlv1ofJUpLyjILZD w9glp2VMRQKxHNIukbfd98Yn/Sd81RRgS2Fk7xNrm+EQhHvsL9OEM1nWVUA3Rv3U 70spmSgkW3UehFyECfbKVak8URniaXRO8BDnHxmk1R6ZTpJ2Dq79spHsnDDDqY5Z /dnj5CxylvtuKZOD8pBy7JC6LUdQx+kbbF0PvNCYVYZqIlbPSvPFg+f1bOG+JW87 MWCjyZT7ds9llamXVFNSMYl1fm1P6upqbjHd5Qiz7s5kFpWVnd2nrDZ3xX2Oklq1 w0NJbEE4J8MfaOdbEVn5Zgl4iQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOROqxiL cpWGXfxOOSTU0N+ASMxWMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvMzJCRjJBRDhG MzZFMTFFODgzRkZCODY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgACMBsDBwAkAMsAADYDBwEkAMsAA0gDBwAkAMsACVgwDQYJKoZIhvcN AQELBQADggEBABo4Pum584ddADUMR9lBhl0JE7E71xKg6OBYG8KJnOnZhWTwugnu blQtI2rFEQW5EpbtMR4S+bjmb89kM0QeCcoUPhi6KXxxDAB+SvqH3omb0pF5yiOK oUHdQGEzOiaMCiIyOptbq6z4r5lOEHZ8c+SuhH+yPsj3X2JfGs5udfRF0Lbe+ih3 oUAIBiQK3OL1mJJOuM7Ax4U9NHLu+9ool1zqq2P2V2T5wpgW+Bs+TFEtM7S7P2cD ujn86B9eFoCehzSxjQpI7U3ezO/op9pKjUrxGZyIYzvpdsHy7qvyEcbdrLmC3GJK Aj6WFG+YWi96g4zgVi/LnRvh/YvCQqXtY8c= -----END CERTIFICATE-----Generated at Tue Jun 3 23:45:42 2025 by rpki-client