$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/A04B3184595A11EA8C79B30FC4F9AE02.roa File: A04B3184595A11EA8C79B30FC4F9AE02.roa (raw, json) Hash identifier: dSI3Emdz4l81LDdf6Ly+xEHJKZsAFGwWrqPYXFTwQHk= Subject key identifier: 97:69:7C:BB:16:D3:4B:43:E1:DF:AC:4F:1C:ED:65:08:7C:48:18:8A Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0B2B Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/A04B3184595A11EA8C79B30FC4F9AE02.roa Signing time: Fri 02 May 2025 20:00:14 +0000 ROA not before: Fri 02 May 2025 20:00:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9268 IP address blocks: 2403:5f40::/44 maxlen: 44 2403:5f40:4::/48 maxlen: 48 2403:5f40:5::/48 maxlen: 48 2403:5f40:6::/48 maxlen: 48 2403:5f40:7::/48 maxlen: 48 2403:5f40:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2859 (0xb2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78, serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: May 2 20:00:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6815244e-82c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:e3:c4:f8:93:bb:9d:b2:92:39:1d:aa:20: a6:9a:3d:c3:2d:30:2a:e9:73:96:67:33:4f:8e:29: 3a:79:be:f2:d5:fc:93:79:b4:82:62:71:af:8c:fd: 59:ac:7b:29:30:19:43:33:ab:50:6a:b9:4e:56:67: 65:2c:96:5a:e6:9a:76:23:56:eb:d3:ae:9e:4e:94: 51:99:9b:93:fa:e3:23:e8:24:84:18:b3:b0:08:e6: 39:3b:6e:05:da:b5:64:00:4a:08:27:42:77:cd:b1: 57:db:02:e8:52:8d:43:32:2b:3d:49:43:8c:15:c4: ec:de:fb:ac:52:69:ae:00:51:c5:02:8e:80:2a:df: 3e:03:df:bc:a6:9d:6e:61:2c:09:02:98:18:ff:9e: da:53:8f:e8:31:b6:80:8d:81:94:8a:1f:9b:74:08: bf:bb:0f:fd:c9:11:74:82:87:58:d3:2d:b5:cf:cf: 6a:e1:6a:ff:6b:87:ac:ac:9a:63:2b:fd:f2:57:38: 35:ed:ab:c8:32:5a:69:26:56:4a:29:16:04:2e:e1: 68:c3:80:f4:3c:7b:d6:1d:14:a9:b8:1c:fb:ec:fc: f8:89:1c:fb:70:c6:b1:05:4d:cd:8d:c0:db:ae:8a: be:13:d7:0a:c8:da:db:46:f9:67:59:4c:5b:90:0f: 19:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:69:7C:BB:16:D3:4B:43:E1:DF:AC:4F:1C:ED:65:08:7C:48:18:8A X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/A04B3184595A11EA8C79B30FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:5f40::/44 Signature Algorithm: sha256WithRSAEncryption 40:6c:0d:cb:55:93:ea:33:15:41:e3:8a:9e:0c:44:c3:a5:50: 72:ac:81:6c:a1:ab:e1:1c:47:42:87:6c:bb:54:69:dd:54:29: 75:e9:9b:ef:ae:c7:27:e5:b2:c6:3f:0d:af:49:9d:0e:1c:4f: 1e:c1:07:0b:4a:ce:5d:e5:c6:fd:1a:88:10:d7:77:8f:3c:1c: dd:08:70:63:0b:fb:db:34:c4:aa:8b:55:70:01:8d:96:45:4c: 69:7e:2f:39:21:fb:73:30:ad:eb:9f:7c:cd:f3:58:49:b6:51: 8d:1f:63:b6:a7:a7:ef:ba:d8:6a:8d:5d:df:6b:df:8e:3d:bc: 41:59:c4:d7:d6:8d:07:0a:1b:89:ef:ca:cb:8d:3b:6d:18:fb: 38:b7:b2:99:77:d4:bd:db:0c:1b:98:b6:3b:ec:b6:0b:ce:4b: 5c:6f:11:76:50:cc:63:97:53:95:c8:db:d2:1a:1a:bd:82:31: 79:02:b3:01:73:a1:ee:96:ba:e8:5b:bc:6a:bb:d0:4c:0e:ef: c5:e0:ee:c3:b3:4f:a4:37:ff:d7:1f:02:37:50:8a:80:2a:d1: 79:16:3c:75:5a:39:ad:05:b6:83:e4:65:43:6e:35:7c:dd:e8: c0:37:07:0c:98:23:a8:d3:c7:b2:6c:04:4e:52:d6:c1:85:1e: 60:1c:3b:fa -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjUwNTAyMjAwMDE0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MjQ0ZS04MmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxHjxPiTu52ykjkdqiCmmj3DLTAq6XOWZzNPjik6eb7y1fyTebSCYnGvjP1Z rHspMBlDM6tQarlOVmdlLJZa5pp2I1br066eTpRRmZuT+uMj6CSEGLOwCOY5O24F 2rVkAEoIJ0J3zbFX2wLoUo1DMis9SUOMFcTs3vusUmmuAFHFAo6AKt8+A9+8pp1u YSwJApgY/57aU4/oMbaAjYGUih+bdAi/uw/9yRF0godY0y21z89q4Wr/a4esrJpj K/3yVzg17avIMlppJlZKKRYELuFow4D0PHvWHRSpuBz77Pz4iRz7cMaxBU3NjcDb roq+E9cKyNrbRvlnWUxbkA8ZewIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJdpfLsW 00tD4d+sTxztZQh8SBiKMB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvQTA0QjMxODQ1 OTVBMTFFQThDNzlCMzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkA19AAAAwDQYJKoZIhvcNAQELBQADggEBAEBsDctVk+oz FUHjip4MRMOlUHKsgWyhq+EcR0KHbLtUad1UKXXpm++uxyflssY/Da9JnQ4cTx7B BwtKzl3lxv0aiBDXd488HN0IcGML+9s0xKqLVXABjZZFTGl+Lzkh+3MwreuffM3z WEm2UY0fY7anp++62GqNXd9r3449vEFZxNfWjQcKG4nvysuNO20Y+zi3spl31L3b DBuYtjvstgvOS1xvEXZQzGOXU5XI29IaGr2CMXkCswFzoe6WuuhbvGq70EwO78Xg 7sOzT6Q3/9cfAjdQioAq0XkWPHVaOa0FtoPkZUNuNXzd6MA3BwyYI6jTx7JsBE5S 1sGFHmAcO/o= -----END CERTIFICATE-----Generated at Thu May 15 00:28:02 2025 by rpki-client