$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/64B67878AE7711EA98E12731C4F9AE02.roa File: 64B67878AE7711EA98E12731C4F9AE02.roa (raw, json) Hash identifier: iquZHjCE4/Qw/4vvKK8+uSPsTNr1m+HxauH9ZmtALJ4= Subject key identifier: 60:7D:54:C8:F8:5C:85:F3:A7:30:9E:A7:75:5B:12:F2:B7:2C:42:E9 Certificate issuer: /CN=A91304A9/serialNumber=580553B883DEC3DDB24F688E6C2D1BFA93C263AA Certificate serial: 0B35 Authority key identifier: 58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/64B67878AE7711EA98E12731C4F9AE02.roa Signing time: Thu 17 Apr 2025 11:34:22 +0000 ROA not before: Thu 17 Apr 2025 11:34:22 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 7262 IP address blocks: 116.66.218.0/24 maxlen: 24 116.66.219.0/24 maxlen: 24 2400:8800:1e82::/48 maxlen: 48 2400:8800:1e8f::/48 maxlen: 48 2400:8800:9e11::/48 maxlen: 48 2400:8800:9e12::/48 maxlen: 48 2400:8800:9e13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2869 (0xb35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9, serialNumber=580553B883DEC3DDB24F688E6C2D1BFA93C263AA Validity Not Before: Apr 17 11:34:22 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6800e73e-886e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:58:5f:a7:55:e9:b2:40:ab:d5:a4:86:1b: 2e:38:f5:95:50:f3:e8:48:c0:04:d0:07:db:1b:00: 20:09:c7:ca:f9:c8:89:b1:a8:72:c8:e2:f0:91:cb: 0b:8a:de:a6:01:bd:8c:04:bd:c9:12:b5:e7:0e:bf: 07:8d:de:bd:d4:9d:be:44:0f:15:e0:96:f8:76:a1: bb:90:1a:cd:3f:d8:c4:d8:54:74:73:59:7f:25:6c: e0:74:4b:b2:47:5c:13:40:f0:07:1b:ab:e7:89:ec: 83:fc:11:e4:e1:c5:c4:c6:65:7a:6e:6e:2f:ac:74: 33:7e:cb:10:44:97:22:16:99:87:09:24:5c:f9:85: 09:9d:12:88:c2:db:86:c4:c5:77:81:fb:25:66:47: 7b:49:97:78:46:d1:f9:a5:5e:fa:be:be:64:6a:c5: 5e:72:6f:72:4d:2a:39:51:32:39:0f:57:48:46:a0: 60:cd:ad:73:9a:8a:01:18:1e:4a:91:c2:59:ff:c5: 7f:a9:ae:79:99:54:9f:e8:e6:65:69:49:8c:07:08: 97:05:92:ee:ee:3b:d3:f4:e3:2c:d4:3e:c5:5e:20: 96:64:17:41:a2:fa:ad:8b:8e:0a:6c:3c:ce:c0:82: 77:6a:9f:80:0c:d8:6d:b6:4c:4a:4e:4e:19:77:f5: 78:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:7D:54:C8:F8:5C:85:F3:A7:30:9E:A7:75:5B:12:F2:B7:2C:42:E9 X509v3 Authority Key Identifier: keyid:58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/64B67878AE7711EA98E12731C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.66.218.0/23 IPv6: 2400:8800:1e82::/48 2400:8800:1e8f::/48 2400:8800:9e11::-2400:8800:9e13:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 53:99:f2:18:1e:73:23:d5:ce:c3:cc:97:3d:ac:2f:94:4f:ee: fc:73:55:17:ea:c7:c2:ed:f0:62:67:ea:45:f9:70:e5:5e:16: cf:bd:18:02:7b:7a:76:6d:51:ab:4a:b5:59:1a:8e:e2:2b:76: b7:9c:6c:72:bc:7f:df:16:3a:6c:3d:e7:ae:ff:73:84:1e:a5: 88:0b:89:46:bb:18:93:2f:bb:70:0d:75:21:bc:88:59:1b:d7: f1:80:81:63:f4:30:5b:c5:1b:d6:c2:6a:c1:ff:14:69:db:8f: 48:27:67:bc:f0:d5:85:a6:a7:2b:14:c1:65:e7:50:24:4f:6a: 7f:07:9d:cd:28:f9:4a:eb:39:9e:4c:89:ef:9d:0d:51:43:68: 46:87:aa:cd:49:14:50:a6:a9:69:14:54:64:6c:e3:c3:73:77: b5:5d:e2:bf:75:0e:fb:d4:1e:8c:1b:fb:61:d7:a0:b7:78:65: b7:9c:b9:33:e7:9c:fc:1d:81:4c:9d:e0:8c:21:5c:c6:c5:0c: 7d:52:63:60:f2:35:69:c3:91:b0:b0:3c:2c:89:83:bd:c9:2e: ad:3d:67:02:15:36:43:73:79:67:d1:8e:00:9d:52:69:51:03: 70:e0:6c:67:81:94:b2:01:67:7d:01:2d:f3:f3:b9:1d:0e:7b: 3b:8a:6d:9d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICCzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA0QTkxMTAvBgNVBAUTKDU4MDU1M0I4ODNERUMzRERCMjRGNjg4RTZDMkQxQkZB OTNDMjYzQUEwHhcNMjUwNDE3MTEzNDIyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwZTczZS04ODZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyL1YX6dV6bJAq9WkhhsuOPWVUPPoSMAE0AfbGwAgCcfK+ciJsahyyOLwkcsL it6mAb2MBL3JErXnDr8Hjd691J2+RA8V4Jb4dqG7kBrNP9jE2FR0c1l/JWzgdEuy R1wTQPAHG6vnieyD/BHk4cXExmV6bm4vrHQzfssQRJciFpmHCSRc+YUJnRKIwtuG xMV3gfslZkd7SZd4RtH5pV76vr5kasVecm9yTSo5UTI5D1dIRqBgza1zmooBGB5K kcJZ/8V/qa55mVSf6OZlaUmMBwiXBZLu7jvT9OMs1D7FXiCWZBdBovqti44KbDzO wIJ3ap+ADNhttkxKTk4Zd/V4mQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFGB9VMj4 XIXzpzCep3VbEvK3LELpMB8GA1UdIwQYMBaAFFgFU7iD3sPdsk9ojmwtG/qTwmOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDRBOS9BMzc0QTFCNjQ2 NzExMUVBODFBQkIyNUZDNEY5QUUwMi9XQVZUdUlQZXc5MnlUMmlPYkMwYi1wUENZ Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBVlR1SVBldzkyeVQyaU9iQzBiLXBQQ1k2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzA0QTkvQTM3NEExQjY0NjcxMTFFQTgxQUJCMjVGQzRGOUFFMDIvNjRCNjc4NzhB RTc3MTFFQTk4RTEyNzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MAwEAgABMAYDBAF0QtowLAQCAAIwJgMHACQAiAAeggMHACQAiAAejzASAwcA JACIAJ4RAwcCJACIAJ4QMA0GCSqGSIb3DQEBCwUAA4IBAQBTmfIYHnMj1c7DzJc9 rC+UT+78c1UX6sfC7fBiZ+pF+XDlXhbPvRgCe3p2bVGrSrVZGo7iK3a3nGxyvH/f FjpsPeeu/3OEHqWIC4lGuxiTL7twDXUhvIhZG9fxgIFj9DBbxRvWwmrB/xRp249I J2e88NWFpqcrFMFl51AkT2p/B53NKPlK6zmeTInvnQ1RQ2hGh6rNSRRQpqlpFFRk bOPDc3e1XeK/dQ771B6MG/th16C3eGW3nLkz55z8HYFMneCMIVzGxQx9UmNg8jVp w5GwsDwsiYO9yS6tPWcCFTZDc3ln0Y4AnVJpUQNw4GxngZSyAWd9AS3z87kdDns7 im2d -----END CERTIFICATE-----Generated at Sat Apr 26 15:22:56 2025 by rpki-client