$ rpki-client -vvf rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/976C4E84F72711EFB800B84BC4F9AE02.roa File: 976C4E84F72711EFB800B84BC4F9AE02.roa (raw, json) Hash identifier: yyqYiyN6Yt2drA5esyg23pSPV3UCCGrSIBo6P8TjMZ4= Subject key identifier: B6:41:65:EA:5D:DC:9B:8B:EA:9D:C3:DF:D2:7F:04:77:52:7A:B9:54 Certificate issuer: /CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Certificate serial: 044A Authority key identifier: F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/976C4E84F72711EFB800B84BC4F9AE02.roa Signing time: Thu 27 Mar 2025 01:06:28 +0000 ROA not before: Thu 27 Mar 2025 01:06:28 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136272 IP address blocks: 2400:c7c0::/32 maxlen: 32 2400:c7c0::/34 maxlen: 34 2400:c7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1098 (0x44a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C61B, serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Validity Not Before: Mar 27 01:06:28 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e4a494-b294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:09:8c:51:03:d7:be:2f:5e:78:19:dc:3c:e0: 98:6a:73:50:cf:aa:16:92:9f:df:03:6a:26:61:71: 52:db:05:ee:1c:0c:5c:ca:cf:9e:40:63:b1:ba:36: 52:e6:0e:e5:5d:70:df:59:b8:67:c4:3d:bc:29:a7: 1b:6c:7d:d1:93:a2:44:6a:22:46:7b:1d:2d:d8:ce: 11:ba:c0:af:49:6f:fb:e9:a1:28:20:38:29:46:67: 81:72:12:b7:5a:3d:a2:43:3c:ba:57:08:94:fc:9c: ea:6d:3d:84:aa:02:43:04:27:1a:a3:5c:3b:23:81: 5e:39:c3:aa:92:ae:60:e3:0b:12:14:e4:a4:94:35: 10:25:c8:fb:ab:07:d3:72:8f:85:75:72:f9:cf:c7: ab:f3:46:e8:e1:ea:3c:3c:b2:ce:da:76:a1:97:76: 54:27:5a:78:15:e9:10:e6:8d:06:bf:97:05:da:e5: a0:76:ef:17:78:53:9b:bf:80:b4:1e:c8:4a:92:a3: ee:8f:d2:87:e0:f0:8a:e0:c7:08:8d:47:0f:94:6b: 52:3e:54:12:4b:2d:7f:65:f7:04:46:83:c1:e9:08: 15:06:82:0e:a5:38:e6:e6:ba:c0:10:a4:a5:aa:81: 5a:4d:86:09:49:7f:6d:04:ef:91:e6:bd:67:32:f3: 1b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:41:65:EA:5D:DC:9B:8B:EA:9D:C3:DF:D2:7F:04:77:52:7A:B9:54 X509v3 Authority Key Identifier: keyid:F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/976C4E84F72711EFB800B84BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:c7c0::/32 Signature Algorithm: sha256WithRSAEncryption 84:fc:3a:c4:04:4b:ce:52:95:9f:88:47:45:95:58:63:e2:ed: 89:33:6a:8d:7d:c2:43:fd:ca:d8:e2:e3:45:60:ed:17:74:84: ed:2d:63:ab:b5:28:86:db:88:84:0e:d6:aa:4d:77:de:a4:f7: 59:66:dd:93:69:b2:53:6e:26:0c:9c:09:e5:02:71:22:00:8d: 5b:7a:ba:39:25:62:41:4a:97:33:b3:28:71:e7:98:48:6b:26: af:d0:18:fb:17:56:96:6f:2b:13:da:0f:7f:1d:10:29:0f:91: 61:d5:46:d8:00:60:ed:ca:df:15:11:db:0e:cd:d4:fc:04:cf: d0:2a:ed:bd:07:9c:09:ab:99:e8:19:3a:83:18:22:7f:fd:56: a6:13:ac:45:5e:df:cc:8d:44:6d:99:ef:60:f2:ab:0d:12:7b: 71:61:a9:e9:42:a9:92:04:cc:9d:f5:20:be:56:23:a2:91:58: 42:f5:93:cc:3a:93:79:a1:1f:63:f7:3b:a0:da:fa:b9:93:cd: 3f:25:8f:ee:b8:41:42:df:98:7c:04:2b:51:94:b3:f7:11:0b: 16:78:d6:eb:11:e6:31:d5:3b:53:f5:6e:75:70:70:ad:ac:d2: 97:65:72:61:d1:70:9e:ac:36:71:52:77:9e:38:60:65:33:be: 85:06:a5:bd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2MUIxMTAvBgNVBAUTKEY1MzkyOTE5MTlDREUxNDRCMDM0RUYyODhCMEE2MzQ3 ODNFODJDN0YwHhcNMjUwMzI3MDEwNjI4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0YTQ5NC1iMjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQmMUQPXvi9eeBncPOCYanNQz6oWkp/fA2omYXFS2wXuHAxcys+eQGOxujZS 5g7lXXDfWbhnxD28KacbbH3Rk6JEaiJGex0t2M4RusCvSW/76aEoIDgpRmeBchK3 Wj2iQzy6VwiU/JzqbT2EqgJDBCcao1w7I4FeOcOqkq5g4wsSFOSklDUQJcj7qwfT co+FdXL5z8er80bo4eo8PLLO2nahl3ZUJ1p4FekQ5o0Gv5cF2uWgdu8XeFObv4C0 HshKkqPuj9KH4PCK4McIjUcPlGtSPlQSSy1/ZfcERoPB6QgVBoIOpTjm5rrAEKSl qoFaTYYJSX9tBO+R5r1nMvMb/QIDAQABo4ICljCCApIwHQYDVR0OBBYEFLZBZepd 3JuL6p3D39J/BHdSerlUMB8GA1UdIwQYMBaAFPU5KRkZzeFEsDTvKIsKY0eD6Cx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzYxQi81MUVGRkEzMDgy NjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRVU3dOTzhvaXdwalI0UG9M SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUa3BHUm5ONFVTd05POG9pd3BqUjRQb0xIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM2MUIvNTFFRkZBMzA4MjY5MTFFQ0FEMkU5NTI0QzRGOUFFMDIvOTc2QzRFODRG NzI3MTFFRkI4MDBCODRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAMfAMA0GCSqGSIb3DQEBCwUAA4IBAQCE/DrEBEvOUpWf iEdFlVhj4u2JM2qNfcJD/crY4uNFYO0XdITtLWOrtSiG24iEDtaqTXfepPdZZt2T abJTbiYMnAnlAnEiAI1bero5JWJBSpczsyhx55hIayav0Bj7F1aWbysT2g9/HRAp D5Fh1UbYAGDtyt8VEdsOzdT8BM/QKu29B5wJq5noGTqDGCJ//VamE6xFXt/MjURt me9g8qsNEntxYanpQqmSBMyd9SC+ViOikVhC9ZPMOpN5oR9j9zug2vq5k80/JY/u uEFC35h8BCtRlLP3EQsWeNbrEeYx1TtT9W51cHCtrNKXZXJh0XCerDZxUneeOGBl M76FBqW9 -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:51 2025 by rpki-client