$ rpki-client -vvf rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/06B47656E38A11EFA4DDBC1EC4F9AE02.roa File: 06B47656E38A11EFA4DDBC1EC4F9AE02.roa (raw, json) Hash identifier: jw0OS28NBUixcPBkwOHR1vk2bGtDUl1DjQdu4UsyyXU= Subject key identifier: 67:25:60:2D:FB:4E:60:8B:47:FE:57:C3:6B:92:06:AC:D5:4D:42:EB Certificate issuer: /CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Certificate serial: 044B Authority key identifier: F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/06B47656E38A11EFA4DDBC1EC4F9AE02.roa Signing time: Thu 27 Mar 2025 01:06:29 +0000 ROA not before: Thu 27 Mar 2025 01:06:29 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153038 IP address blocks: 116.204.140.0/22 maxlen: 22 116.204.140.0/23 maxlen: 23 116.204.140.0/24 maxlen: 24 116.204.141.0/24 maxlen: 24 116.204.142.0/23 maxlen: 23 116.204.142.0/24 maxlen: 24 116.204.143.0/24 maxlen: 24 2400:c7c0::/48 maxlen: 48 2400:c7c0:4000::/34 maxlen: 34 2400:c7c0:4000::/40 maxlen: 40 2400:c7c0:4000::/48 maxlen: 48 2400:c7c0:43c0::/43 maxlen: 43 2400:c7c0:43c0::/48 maxlen: 48 2400:c7c0:43e0::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C61B, serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Validity Not Before: Mar 27 01:06:29 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e4a495-ec44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d4:04:06:44:4e:e1:d2:79:97:59:77:1c:77: 23:d4:49:b4:82:45:da:75:95:97:c8:ab:21:8f:f8: ef:96:93:7a:c6:93:d7:a6:46:71:1c:4a:fa:99:6a: c2:ef:ed:7c:86:9f:22:e6:8f:dc:b9:59:06:c8:a6: f1:4a:54:06:ec:94:be:72:69:ac:1b:d6:ed:c6:d6: d2:b2:f6:bb:91:0c:8d:a7:20:fd:9f:92:20:ed:41: 87:b4:97:16:4c:3a:b0:cf:9b:38:2b:7b:28:d9:19: b7:74:d0:fd:c1:ab:1c:53:77:1b:9f:88:45:6c:87: 7e:f2:bf:cf:a0:02:1a:d6:47:2d:a6:2f:5f:08:3c: 08:ca:c2:1e:23:0c:99:8d:f1:b3:55:45:ef:29:28: af:a8:2e:72:29:fa:1f:7e:d5:3a:d9:5a:f6:dc:cf: 21:4c:15:56:04:cc:06:5d:7f:39:23:d4:a9:c0:f1: 57:43:0a:23:db:6d:07:f9:58:0d:ab:62:1a:f4:24: 56:b9:ff:0e:c5:64:36:5e:e7:a1:e3:20:1c:af:ab: d7:9c:64:28:c0:d1:51:89:a7:d2:80:5b:e6:9f:dc: 37:6f:3e:b0:10:22:2b:e6:1e:a2:6d:10:87:99:15: ef:61:d5:c1:da:e2:3e:fa:0e:5d:e8:5a:bc:d8:15: c8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:25:60:2D:FB:4E:60:8B:47:FE:57:C3:6B:92:06:AC:D5:4D:42:EB X509v3 Authority Key Identifier: keyid:F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/06B47656E38A11EFA4DDBC1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.140.0/22 IPv6: 2400:c7c0::/48 2400:c7c0:4000::/34 Signature Algorithm: sha256WithRSAEncryption 17:72:8e:51:fb:7d:2f:c8:66:d8:af:f0:a5:74:b0:dd:fa:fa: e0:09:26:43:cc:01:90:bc:4f:37:55:b5:a0:8e:e4:84:03:ef: df:fc:47:a1:cd:d1:43:28:af:33:49:f2:f8:0e:15:21:23:0d: b1:25:31:3a:71:74:f0:72:33:4a:7f:62:6d:63:d2:ec:1b:bf: e5:77:23:61:3b:25:fa:5c:4c:18:53:db:75:5c:32:32:93:43: f9:99:77:3d:58:64:9d:5e:29:1d:dc:55:fc:36:fa:99:49:3f: 5d:be:5e:d5:45:18:f1:eb:1c:ea:62:db:5a:e9:e5:24:aa:61: 3f:4d:ba:58:2b:55:f3:01:6a:77:9b:9b:47:a1:bf:13:06:cb: 90:df:51:85:9f:a3:0b:6a:ce:86:5e:42:ee:7b:dd:44:7a:78: da:cc:70:14:8e:82:6e:61:a7:3e:1d:d9:98:58:19:a2:8f:4c: 7a:4b:d2:75:28:a5:fa:42:4d:54:44:7a:13:c3:65:e7:73:58: 92:7f:78:43:4f:ec:05:b3:63:97:f1:c5:b3:c3:c1:38:eb:92: 74:b8:e1:2f:85:b3:2c:f1:df:6e:c0:9a:da:f1:19:19:ad:42: ee:f0:65:e6:41:ba:e5:1c:14:f1:da:41:5c:bf:8c:6c:8f:d4: bd:fc:88:56 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICBEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2MUIxMTAvBgNVBAUTKEY1MzkyOTE5MTlDREUxNDRCMDM0RUYyODhCMEE2MzQ3 ODNFODJDN0YwHhcNMjUwMzI3MDEwNjI5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0YTQ5NS1lYzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9QEBkRO4dJ5l1l3HHcj1Em0gkXadZWXyKshj/jvlpN6xpPXpkZxHEr6mWrC 7+18hp8i5o/cuVkGyKbxSlQG7JS+cmmsG9btxtbSsva7kQyNpyD9n5Ig7UGHtJcW TDqwz5s4K3so2Rm3dND9wascU3cbn4hFbId+8r/PoAIa1kctpi9fCDwIysIeIwyZ jfGzVUXvKSivqC5yKfofftU62Vr23M8hTBVWBMwGXX85I9SpwPFXQwoj220H+VgN q2Ia9CRWuf8OxWQ2Xueh4yAcr6vXnGQowNFRiafSgFvmn9w3bz6wECIr5h6ibRCH mRXvYdXB2uI++g5d6Fq82BXI/wIDAQABo4ICrjCCAqowHQYDVR0OBBYEFGclYC37 TmCLR/5Xw2uSBqzVTULrMB8GA1UdIwQYMBaAFPU5KRkZzeFEsDTvKIsKY0eD6Cx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzYxQi81MUVGRkEzMDgy NjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRVU3dOTzhvaXdwalI0UG9M SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUa3BHUm5ONFVTd05POG9pd3BqUjRQb0xIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM2MUIvNTFFRkZBMzA4MjY5MTFFQ0FEMkU5NTI0QzRGOUFFMDIvMDZCNDc2NTZF MzhBMTFFRkE0RERCQzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMAwEAgABMAYDBAJ0zIwwFwQCAAIwEQMHACQAx8AAAAMGBiQAx8BAMA0GCSqG SIb3DQEBCwUAA4IBAQAXco5R+30vyGbYr/CldLDd+vrgCSZDzAGQvE83VbWgjuSE A+/f/EehzdFDKK8zSfL4DhUhIw2xJTE6cXTwcjNKf2JtY9LsG7/ldyNhOyX6XEwY U9t1XDIyk0P5mXc9WGSdXikd3FX8NvqZST9dvl7VRRjx6xzqYtta6eUkqmE/TbpY K1XzAWp3m5tHob8TBsuQ31GFn6MLas6GXkLue91EenjazHAUjoJuYac+HdmYWBmi j0x6S9J1KKX6Qk1URHoTw2Xnc1iSf3hDT+wFs2OX8cWzw8E465J0uOEvhbMs8d9u wJra8RkZrULu8GXmQbrlHBTx2kFcv4xsj9S9/IhW -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:41 2025 by rpki-client