$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa File: 876FDB56D90211EFB7CAB32BC4F9AE02.roa (raw, json) Hash identifier: +tASM1DYkwX/+xUea6kyerySpW2PmjdXvmrb5qzV+gQ= Subject key identifier: 78:57:29:6D:3B:FB:C6:16:AF:06:9B:35:27:B9:25:51:B0:2F:A9:B9 Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 1717 Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa Signing time: Fri 30 May 2025 21:12:33 +0000 ROA not before: Fri 30 May 2025 21:12:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 14789 IP address blocks: 2400:cb00:477::/48 maxlen: 48 2400:cb00:616::/48 maxlen: 48 2400:cb00:621::/48 maxlen: 48 2400:cb00:661::/48 maxlen: 48 2400:cb00:c950::/48 maxlen: 48 2400:cb00:c951::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5911 (0x1717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4, serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 30 21:12:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a1f41-8874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:42:8c:5c:48:fe:ca:0e:14:ca:11:47:0f:db: ba:29:ed:5a:55:59:78:4c:1b:c7:73:85:ea:2f:07: 38:9f:6c:58:76:ec:8d:30:cd:e1:41:3e:16:d5:7f: 8c:49:0d:3c:21:f4:6f:e1:bb:13:53:43:c3:1c:79: ce:67:b3:39:8f:84:e9:fe:1c:7a:05:69:f7:59:28: 8e:b6:29:2b:cd:88:ce:ba:87:da:ee:93:4d:24:de: 90:7b:53:92:ab:b0:a9:ca:d0:02:38:9a:6a:3a:28: ad:d8:a2:27:23:6a:9f:a8:29:51:02:87:27:36:7c: 35:a9:3b:c0:1b:7c:64:fa:12:3d:01:94:ef:1b:ce: 2a:6f:b4:09:3f:0e:d7:d0:f3:e5:7e:ba:c3:f9:a1: 4d:0e:7c:27:88:18:9c:94:27:c9:45:a0:af:7a:9c: 46:2b:07:58:67:17:22:7c:5f:15:87:02:b2:7c:d5: ec:69:d2:bb:a2:e1:c5:22:9f:2a:8f:d3:bb:bc:fa: 35:9c:a0:68:ff:63:90:a7:f7:16:07:62:77:6e:03: c7:1b:b5:63:5c:03:78:34:5b:1a:56:65:9c:a3:84: b4:f2:8d:64:3a:8f:0e:30:d4:61:18:d0:90:90:18: f0:ad:68:28:0c:1a:ad:57:fa:6c:11:09:06:9b:c7: bd:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:57:29:6D:3B:FB:C6:16:AF:06:9B:35:27:B9:25:51:B0:2F:A9:B9 X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:477::/48 2400:cb00:616::/48 2400:cb00:621::/48 2400:cb00:661::/48 2400:cb00:c950::/47 Signature Algorithm: sha256WithRSAEncryption 3d:0f:d1:f9:d4:e0:3d:4c:38:4c:44:cb:2c:69:60:98:3c:28: a7:da:55:46:16:bb:a7:b0:eb:63:83:a5:7d:72:a7:f7:89:f7: fb:a6:ec:a2:a1:28:26:03:97:11:3b:5a:0a:1c:f9:b0:fd:70: 52:2f:c4:ba:14:c3:d5:48:01:12:51:8f:f6:f1:5a:be:18:04: d9:62:74:48:ec:9c:56:5d:3f:b7:36:6e:de:66:8a:84:3f:8f: db:a1:a9:de:ab:7e:3f:09:30:10:84:b5:c4:e7:f8:74:bc:f1: d5:f1:20:4c:f1:07:ec:0a:5d:3d:d8:f0:16:77:05:2e:b2:de: 03:12:c1:06:11:5c:70:29:c2:5a:e5:d7:c9:79:0d:2b:0e:ef: 81:46:08:2c:29:e9:8e:28:82:a2:ac:1a:9e:51:e3:5e:13:5a: 99:76:0b:1b:ac:54:3f:a1:96:ad:6e:5c:15:62:d6:3c:01:fb: 6d:9a:07:ce:31:5f:d4:a3:48:ae:cc:6e:ac:94:dc:6e:7e:93: 80:34:7f:15:9c:df:4a:64:21:d2:27:29:ee:2b:54:30:59:aa: 27:86:ce:35:3a:fd:46:9b:05:ec:9e:fb:30:11:f1:e2:26:c3: fa:e4:e7:b1:02:7c:f5:a0:17:0d:00:30:40:86:64:b4:9c:c9: 5c:9f:66:fc -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICFxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjUwNTMwMjExMjMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMWY0MS04ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnEKMXEj+yg4UyhFHD9u6Ke1aVVl4TBvHc4XqLwc4n2xYduyNMM3hQT4W1X+M SQ08IfRv4bsTU0PDHHnOZ7M5j4Tp/hx6BWn3WSiOtikrzYjOuofa7pNNJN6Qe1OS q7CpytACOJpqOiit2KInI2qfqClRAocnNnw1qTvAG3xk+hI9AZTvG84qb7QJPw7X 0PPlfrrD+aFNDnwniBiclCfJRaCvepxGKwdYZxcifF8VhwKyfNXsadK7ouHFIp8q j9O7vPo1nKBo/2OQp/cWB2J3bgPHG7VjXAN4NFsaVmWco4S08o1kOo8OMNRhGNCQ kBjwrWgoDBqtV/psEQkGm8e9swIDAQABo4ICvDCCArgwHQYDVR0OBBYEFHhXKW07 +8YWrwabNSe5JVGwL6m5MB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvODc2RkRCNTZE OTAyMTFFRkI3Q0FCMzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MDMEAgACMC0DBwAkAMsABHcDBwAkAMsABhYDBwAkAMsABiEDBwAkAMsABmED BwEkAMsAyVAwDQYJKoZIhvcNAQELBQADggEBAD0P0fnU4D1MOExEyyxpYJg8KKfa VUYWu6ew62ODpX1yp/eJ9/um7KKhKCYDlxE7Wgoc+bD9cFIvxLoUw9VIARJRj/bx Wr4YBNlidEjsnFZdP7c2bt5mioQ/j9uhqd6rfj8JMBCEtcTn+HS88dXxIEzxB+wK XT3Y8BZ3BS6y3gMSwQYRXHApwlrl18l5DSsO74FGCCwp6Y4ogqKsGp5R414TWpl2 CxusVD+hlq1uXBVi1jwB+22aB84xX9SjSK7MbqyU3G5+k4A0fxWc30pkIdInKe4r VDBZqieGzjU6/UabBeye+zAR8eImw/rk57ECfPWgFw0AMECGZLScyVyfZvw= -----END CERTIFICATE-----Generated at Mon Jun 2 06:44:32 2025 by rpki-client