$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa File: 876FDB56D90211EFB7CAB32BC4F9AE02.roa (raw, json) Hash identifier: Csfz+idg7gWjaTw7OLTkeC8VFPuolmbz/fjHtAT/2PU= Subject key identifier: 0A:2C:08:16:1A:1F:F6:7F:3B:F2:45:E8:1A:C1:53:AD:FC:FB:74:E6 Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 179B Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa Signing time: Thu 21 Aug 2025 13:06:50 +0000 ROA not before: Thu 21 Aug 2025 13:06:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 14789 IP address blocks: 2400:cb00:41::/48 maxlen: 48 2400:cb00:60::/48 maxlen: 48 2400:cb00:161::/48 maxlen: 48 2400:cb00:477::/48 maxlen: 48 2400:cb00:616::/48 maxlen: 48 2400:cb00:621::/48 maxlen: 48 2400:cb00:638::/48 maxlen: 48 2400:cb00:661::/48 maxlen: 48 2400:cb00:685::/48 maxlen: 48 2400:cb00:1059::/48 maxlen: 48 2400:cb00:1060::/48 maxlen: 48 2400:cb00:1062::/48 maxlen: 48 2400:cb00:c950::/48 maxlen: 48 2400:cb00:c951::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6043 (0x179b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4, serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: Aug 21 13:06:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68a719ea-93fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b0:69:95:32:70:11:e1:59:35:0f:26:f7:73: 15:e9:57:cf:2d:7d:db:46:81:f4:6b:76:06:96:2b: 96:c2:a8:70:57:61:c5:94:52:22:3d:13:5b:f9:69: d7:06:55:da:16:f0:89:14:b2:0b:91:dd:3f:2a:18: 49:ef:a5:de:a0:d9:67:09:da:b1:29:30:0e:e7:04: a3:bf:5a:13:81:8e:49:e4:3a:0c:90:ed:69:56:75: 91:b0:bd:38:b0:3d:c1:dc:77:25:4b:86:d2:16:7b: 3e:f9:4e:69:6b:c6:84:d9:7d:16:46:cd:0e:16:67: 71:b1:78:a5:31:de:cb:01:ec:9f:1f:cd:d4:5a:5d: 52:b3:61:5a:98:a4:cb:87:3e:56:0b:75:0f:e0:6c: 55:ab:70:e9:4b:ee:ab:2d:8d:be:78:69:31:a4:db: de:7e:1a:cf:40:fb:b8:aa:c4:81:0a:c9:24:e3:2e: 77:b6:48:e9:86:75:64:6f:96:d8:49:cc:6a:a6:fd: a4:94:37:17:d6:97:5e:a2:38:df:87:65:2f:2b:68: 7d:20:2b:9b:e9:66:12:b3:3c:34:78:92:46:24:cc: f6:60:f8:67:6a:7e:17:37:ea:0b:76:30:fc:22:82: b3:03:19:85:49:60:01:aa:7c:e0:ed:39:bb:67:8b: fb:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:2C:08:16:1A:1F:F6:7F:3B:F2:45:E8:1A:C1:53:AD:FC:FB:74:E6 X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:41::/48 2400:cb00:60::/48 2400:cb00:161::/48 2400:cb00:477::/48 2400:cb00:616::/48 2400:cb00:621::/48 2400:cb00:638::/48 2400:cb00:661::/48 2400:cb00:685::/48 2400:cb00:1059::/48 2400:cb00:1060::/48 2400:cb00:1062::/48 2400:cb00:c950::/47 Signature Algorithm: sha256WithRSAEncryption 06:f4:fa:9b:ed:06:66:59:e3:2c:04:9a:1f:b4:61:95:ef:4d: 83:eb:7d:ef:ed:7a:bc:53:05:f1:b1:83:f1:ee:a1:dc:cb:7a: 19:a9:53:3f:2c:da:83:51:10:10:19:00:76:00:31:52:0b:42: 6f:7e:72:43:21:47:71:85:1b:94:ef:cf:f9:10:d4:f1:12:78: ab:76:f9:de:ca:be:3d:06:f4:fc:b6:dd:75:25:3f:26:91:3e: ff:dc:30:b3:70:2c:d4:0a:a1:2f:87:8f:9e:f6:f4:8f:22:6c: 7a:1b:64:16:fd:65:b1:a6:c2:75:c6:db:43:c7:34:d1:0b:b0: 73:49:af:e6:73:a4:7e:7a:96:8c:db:9c:e6:79:63:79:f8:56: 5c:fb:6f:85:c0:34:66:a0:2b:c2:c8:4e:76:e0:07:6a:42:e2: 8c:49:a2:45:1d:7a:67:6c:e2:ab:98:3d:14:a5:d9:64:9e:41: d2:c0:6c:38:7c:de:ee:b3:88:72:c2:4c:81:11:19:f5:ae:f7: 7f:cd:54:85:c4:09:10:67:66:82:76:7c:48:53:72:ea:11:b0: 0f:e2:1a:f8:ed:c4:d1:b1:47:16:70:05:f0:3f:00:bc:4b:42: 33:34:f2:f9:2f:29:a0:dd:a1:d2:dd:93:b3:8c:b7:8b:a6:22: 16:3a:b3:8d -----BEGIN CERTIFICATE----- MIIF4TCCBMmgAwIBAgICF5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjUwODIxMTMwNjUwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE3MTllYS05M2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLBplTJwEeFZNQ8m93MV6VfPLX3bRoH0a3YGliuWwqhwV2HFlFIiPRNb+WnX BlXaFvCJFLILkd0/KhhJ76XeoNlnCdqxKTAO5wSjv1oTgY5J5DoMkO1pVnWRsL04 sD3B3HclS4bSFns++U5pa8aE2X0WRs0OFmdxsXilMd7LAeyfH83UWl1Ss2FamKTL hz5WC3UP4GxVq3DpS+6rLY2+eGkxpNvefhrPQPu4qsSBCskk4y53tkjphnVkb5bY Scxqpv2klDcX1pdeojjfh2UvK2h9ICub6WYSszw0eJJGJMz2YPhnan4XN+oLdjD8 IoKzAxmFSWABqnzg7Tm7Z4v7XwIDAQABo4IDBTCCAwEwHQYDVR0OBBYEFAosCBYa H/Z/O/JF6BrBU638+3TmMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvODc2RkRCNTZE OTAyMTFFRkI3Q0FCMzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgY4GCCsGAQUFBwEHAQH/ BH8wfTB7BAIAAjB1AwcAJADLAABBAwcAJADLAABgAwcAJADLAAFhAwcAJADLAAR3 AwcAJADLAAYWAwcAJADLAAYhAwcAJADLAAY4AwcAJADLAAZhAwcAJADLAAaFAwcA JADLABBZAwcAJADLABBgAwcAJADLABBiAwcBJADLAMlQMA0GCSqGSIb3DQEBCwUA A4IBAQAG9Pqb7QZmWeMsBJoftGGV702D633v7Xq8UwXxsYPx7qHcy3oZqVM/LNqD URAQGQB2ADFSC0JvfnJDIUdxhRuU78/5ENTxEnirdvneyr49BvT8tt11JT8mkT7/ 3DCzcCzUCqEvh4+e9vSPImx6G2QW/WWxpsJ1xttDxzTRC7BzSa/mc6R+epaM25zm eWN5+FZc+2+FwDRmoCvCyE524AdqQuKMSaJFHXpnbOKrmD0UpdlknkHSwGw4fN7u s4hywkyBERn1rvd/zVSFxAkQZ2aCdnxIU3LqEbAP4hr47cTRsUcWcAXwPwC8S0Iz NPL5Lymg3aHS3ZOzjLeLpiIWOrON -----END CERTIFICATE-----Generated at Sat Aug 23 23:59:57 2025 by rpki-client