$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa File: 876FDB56D90211EFB7CAB32BC4F9AE02.roa (raw, json) Hash identifier: WQwyOF50aZE3pVUG/qjX/hfUt9i8nEXKf0VmxN5dW9c= Subject key identifier: 4E:D8:67:2B:A7:B6:AF:F7:D6:C5:AC:FE:B0:91:79:B2:9F:CD:21:45 Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 177F Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa Signing time: Tue 05 Aug 2025 22:25:34 +0000 ROA not before: Tue 05 Aug 2025 22:25:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 14789 IP address blocks: 2400:cb00:60::/48 maxlen: 48 2400:cb00:477::/48 maxlen: 48 2400:cb00:616::/48 maxlen: 48 2400:cb00:621::/48 maxlen: 48 2400:cb00:661::/48 maxlen: 48 2400:cb00:1059::/48 maxlen: 48 2400:cb00:c950::/48 maxlen: 48 2400:cb00:c951::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6015 (0x177f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4, serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: Aug 5 22:25:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=689284de-20d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1d:02:b8:dd:79:6a:31:e9:60:09:a4:fb:a7: 92:26:66:9e:16:72:38:74:9a:38:93:3e:fc:5d:f3: c3:df:2a:c5:54:65:23:3c:33:ac:b4:77:f4:3b:a1: 33:08:e4:24:ca:40:cc:9b:20:8f:7e:07:de:31:7c: 11:90:a9:be:ba:61:08:c8:4a:cd:d1:f0:c2:0f:79: fa:4e:dd:07:89:d1:c4:b8:40:14:b8:e1:4f:07:9e: a9:90:3f:1b:d3:82:7d:c5:e9:88:af:83:56:1f:5b: 73:dc:be:fa:fa:05:7d:62:f2:9d:23:34:32:b3:d0: 39:36:4d:e9:b7:01:df:8c:8f:50:4d:78:24:b3:68: 05:1a:1e:4d:29:47:ad:53:5e:1e:59:8c:cb:5c:ff: 45:7a:c1:d8:e9:57:d9:8f:b0:51:4f:3c:48:71:84: e7:b3:05:34:32:2c:fc:5a:69:bf:91:c6:14:6b:a6: 05:4b:18:c0:ca:ad:bf:89:78:74:4a:43:28:b3:45: 42:3e:5f:2b:f8:82:1a:44:61:de:f8:9a:54:b7:c7: 11:3c:cc:b0:e5:50:66:a0:c2:95:13:13:1e:cd:5c: 78:fb:ed:35:c6:f2:2c:31:f8:2f:8b:49:7a:d1:c3: 7c:c8:16:9e:88:b6:4f:4f:a5:9e:7c:ff:d4:fb:63: 7e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D8:67:2B:A7:B6:AF:F7:D6:C5:AC:FE:B0:91:79:B2:9F:CD:21:45 X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:60::/48 2400:cb00:477::/48 2400:cb00:616::/48 2400:cb00:621::/48 2400:cb00:661::/48 2400:cb00:1059::/48 2400:cb00:c950::/47 Signature Algorithm: sha256WithRSAEncryption b0:b2:93:9b:00:ef:fd:4a:e3:e0:03:26:84:1b:ed:d5:8a:eb: 95:1b:03:1e:2e:2f:1d:d1:6f:46:86:fe:e6:70:0e:9f:c4:a2: 67:2e:b9:fe:8a:5e:7f:6a:77:2c:5e:c6:62:aa:f1:70:8a:22: cd:16:68:e3:50:3c:5e:ec:50:34:a5:5f:ba:2f:51:65:17:19: 2c:a9:cb:6b:67:7e:81:12:76:25:14:70:1f:33:a5:3d:72:1d: af:37:41:f3:13:d5:a9:a5:dc:e4:e3:5d:5e:86:fa:25:ec:39: 1a:56:06:75:b5:2d:5a:4a:b9:f9:d8:db:c6:30:07:dc:54:2e: f4:9e:d7:38:e1:fd:a9:43:ac:58:62:de:f5:a1:f9:3d:27:7d: 30:c5:7c:b0:93:e3:e0:bd:32:6d:35:1a:c2:08:70:81:67:ce: 12:39:1f:b9:47:56:c8:0b:5e:c0:d8:fd:53:da:1e:3f:f0:33: 7f:52:7a:a0:42:c8:05:fc:c2:11:3c:e1:86:12:0c:cb:2c:bf: 7c:e5:08:88:fa:8c:94:c3:07:68:45:15:91:e7:54:86:ce:25: 4c:b4:7f:c2:05:e9:bf:e6:bb:1a:e6:b8:56:bd:6f:54:7b:4b: 1f:2d:5e:c6:4b:ab:2b:b0:25:fd:e3:58:b3:6a:78:d4:95:31: 6f:b3:4a:10 -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICF38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjUwODA1MjIyNTM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkyODRkZS0yMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB0CuN15ajHpYAmk+6eSJmaeFnI4dJo4kz78XfPD3yrFVGUjPDOstHf0O6Ez COQkykDMmyCPfgfeMXwRkKm+umEIyErN0fDCD3n6Tt0HidHEuEAUuOFPB56pkD8b 04J9xemIr4NWH1tz3L76+gV9YvKdIzQys9A5Nk3ptwHfjI9QTXgks2gFGh5NKUet U14eWYzLXP9FesHY6VfZj7BRTzxIcYTnswU0Miz8Wmm/kcYUa6YFSxjAyq2/iXh0 SkMos0VCPl8r+IIaRGHe+JpUt8cRPMyw5VBmoMKVExMezVx4++01xvIsMfgvi0l6 0cN8yBaeiLZPT6WefP/U+2N+uQIDAQABo4ICzjCCAsowHQYDVR0OBBYEFE7YZyun tq/31sWs/rCRebKfzSFFMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvODc2RkRCNTZE OTAyMTFFRkI3Q0FCMzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMEUEAgACMD8DBwAkAMsAAGADBwAkAMsABHcDBwAkAMsABhYDBwAkAMsABiED BwAkAMsABmEDBwAkAMsAEFkDBwEkAMsAyVAwDQYJKoZIhvcNAQELBQADggEBALCy k5sA7/1K4+ADJoQb7dWK65UbAx4uLx3Rb0aG/uZwDp/Eomcuuf6KXn9qdyxexmKq 8XCKIs0WaONQPF7sUDSlX7ovUWUXGSypy2tnfoESdiUUcB8zpT1yHa83QfMT1aml 3OTjXV6G+iXsORpWBnW1LVpKufnY28YwB9xULvSe1zjh/alDrFhi3vWh+T0nfTDF fLCT4+C9Mm01GsIIcIFnzhI5H7lHVsgLXsDY/VPaHj/wM39SeqBCyAX8whE84YYS DMssv3zlCIj6jJTDB2hFFZHnVIbOJUy0f8IF6b/muxrmuFa9b1R7Sx8tXsZLqyuw Jf3jWLNqeNSVMW+zShA= -----END CERTIFICATE-----Generated at Sat Aug 9 10:52:21 2025 by rpki-client