$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa File: 876FDB56D90211EFB7CAB32BC4F9AE02.roa (raw, json) Hash identifier: RebgKyJksyOZ81MvXdSqU2+YhiYMH5u4/gRDqOR0Mug= Subject key identifier: EF:DF:E2:E9:F0:D6:0D:DB:70:F3:3D:72:13:1F:90:B3:2E:12:A0:14 Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 16F4 Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa Signing time: Thu 08 May 2025 21:18:53 +0000 ROA not before: Thu 08 May 2025 21:18:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 14789 IP address blocks: 2400:cb00:477::/48 maxlen: 48 2400:cb00:616::/48 maxlen: 48 2400:cb00:661::/48 maxlen: 48 2400:cb00:c950::/48 maxlen: 48 2400:cb00:c951::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5876 (0x16f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4, serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 8 21:18:53 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=681d1fbd-b2b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:85:e7:ec:bb:98:97:d8:7a:18:7f:42:8c:75: 93:34:9e:ad:d6:f6:29:d3:3c:83:b5:4c:ce:d9:32: 01:c2:dd:f7:c5:c7:92:8b:13:4a:23:8e:07:8b:24: e6:5c:29:db:d1:0d:04:82:7f:bf:04:f0:1e:da:aa: cc:75:b2:fd:9a:1f:cd:14:d5:d9:83:9d:d1:46:c4: 3b:51:1b:63:39:95:84:8e:1d:b2:18:f2:08:df:d4: 43:e9:7f:18:dc:a5:09:79:ce:25:f8:60:cd:04:72: 80:f8:20:f3:39:f4:36:9f:8b:b9:bd:35:2e:11:8a: 96:39:c2:02:20:9b:8e:78:7e:33:0e:60:da:3f:e4: 12:e8:49:22:ff:68:0f:07:9a:1e:18:c9:70:15:77: 43:d2:07:53:ab:6b:4b:78:1c:3f:08:b4:5c:19:38: 32:dd:01:bd:fc:42:f7:7d:1e:85:c7:7f:65:30:86: 5d:4f:94:b1:3c:41:c6:cd:39:40:60:ea:55:1a:4b: d5:61:28:85:e0:24:57:d3:05:90:ad:bc:1e:8c:a4: 07:71:ce:a9:54:1a:a8:a1:56:b6:7d:27:25:c7:d0: 81:f0:9a:32:32:d1:a9:d7:8d:5d:36:4a:b8:04:77: 24:77:00:f0:67:d3:02:02:61:15:7f:f9:a2:b1:cf: 58:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DF:E2:E9:F0:D6:0D:DB:70:F3:3D:72:13:1F:90:B3:2E:12:A0:14 X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:477::/48 2400:cb00:616::/48 2400:cb00:661::/48 2400:cb00:c950::/47 Signature Algorithm: sha256WithRSAEncryption 0a:d6:e3:bc:9d:a2:71:bc:37:f2:4a:bf:d7:4e:d9:01:65:55: 96:8e:73:93:1f:96:2f:b6:2a:9f:7f:64:67:eb:4a:0c:81:b0: 90:92:cb:f0:76:89:1a:68:c8:79:fe:7a:d4:5a:78:a6:e9:b4: 45:a0:c7:dd:a5:34:8d:40:c2:ec:ee:81:7c:ef:74:d2:c7:62: a8:f8:57:47:28:bc:7d:64:f7:2d:62:dd:c2:e2:87:fd:7d:83: c2:73:df:0b:10:9b:52:11:d0:80:3e:3f:4d:f8:da:78:d5:71: 40:14:f9:9c:af:13:44:fd:29:d2:f8:cb:f9:47:f1:bd:48:e8: 44:6a:1b:a6:3e:81:db:da:18:e0:0c:68:23:30:2a:4a:17:51: fa:60:fa:8b:48:95:fd:68:26:f7:b3:e8:8c:01:a3:3b:92:43: 4a:9e:f2:8d:8b:ef:82:c1:c7:0a:38:e1:2d:12:fd:72:76:2b: dd:24:e6:77:85:3c:48:56:1c:35:a8:07:f4:e3:df:60:6d:af: 26:98:89:6f:8e:69:f2:82:e8:9b:ee:6d:ef:d5:f0:e1:16:6c: 5a:55:98:19:b1:16:a8:92:c2:b3:40:8e:04:f6:99:10:02:76: cd:9b:0c:a6:46:b1:c1:42:f7:4f:94:c6:56:b7:04:49:ea:6d: 7a:83:24:15 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICFvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjUwNTA4MjExODUzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkMWZiZC1iMmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYXn7LuYl9h6GH9CjHWTNJ6t1vYp0zyDtUzO2TIBwt33xceSixNKI44HiyTm XCnb0Q0Egn+/BPAe2qrMdbL9mh/NFNXZg53RRsQ7URtjOZWEjh2yGPII39RD6X8Y 3KUJec4l+GDNBHKA+CDzOfQ2n4u5vTUuEYqWOcICIJuOeH4zDmDaP+QS6Eki/2gP B5oeGMlwFXdD0gdTq2tLeBw/CLRcGTgy3QG9/EL3fR6Fx39lMIZdT5SxPEHGzTlA YOpVGkvVYSiF4CRX0wWQrbwejKQHcc6pVBqooVa2fSclx9CB8JoyMtGp141dNkq4 BHckdwDwZ9MCAmEVf/misc9YZQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFO/f4unw 1g3bcPM9chMfkLMuEqAUMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvODc2RkRCNTZE OTAyMTFFRkI3Q0FCMzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgACMCQDBwAkAMsABHcDBwAkAMsABhYDBwAkAMsABmEDBwEkAMsAyVAw DQYJKoZIhvcNAQELBQADggEBAArW47ydonG8N/JKv9dO2QFlVZaOc5Mfli+2Kp9/ ZGfrSgyBsJCSy/B2iRpoyHn+etRaeKbptEWgx92lNI1AwuzugXzvdNLHYqj4V0co vH1k9y1i3cLih/19g8Jz3wsQm1IR0IA+P0342njVcUAU+ZyvE0T9KdL4y/lH8b1I 6ERqG6Y+gdvaGOAMaCMwKkoXUfpg+otIlf1oJvez6IwBozuSQ0qe8o2L74LBxwo4 4S0S/XJ2K90k5neFPEhWHDWoB/Tj32BtryaYiW+OafKC6Jvube/V8OEWbFpVmBmx FqiSwrNAjgT2mRACds2bDKZGscFC90+Uxla3BEnqbXqDJBU= -----END CERTIFICATE-----Generated at Mon May 12 07:18:13 2025 by rpki-client