$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/A5D75708E07111ED9601E941C4F9AE02.roa File: A5D75708E07111ED9601E941C4F9AE02.roa (raw, json) Hash identifier: T8SCzZDhPByBJIpznoraQVY/oHtUVPl/FFL0kEBzTiU= Subject key identifier: 3E:95:90:FA:92:EF:17:B0:31:E3:76:D5:AB:56:C0:92:1C:20:15:14 Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 03F5 Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/A5D75708E07111ED9601E941C4F9AE02.roa Signing time: Sat 05 Apr 2025 01:05:46 +0000 ROA not before: Sat 05 Apr 2025 01:05:46 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 151192 IP address blocks: 2400:58a0:1400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF, serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Apr 5 01:05:46 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f081ea-fbb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:91:36:fe:42:98:e5:54:45:b7:f5:28:2b:0e: 3e:c2:ae:71:2e:0d:22:e8:c0:46:2c:55:6e:08:6b: 1a:2d:a3:aa:63:6c:19:9d:97:12:28:55:cb:ef:c4: 2d:72:e8:b4:76:f1:06:56:b4:6e:ce:de:3b:78:bb: 90:e5:34:79:09:1c:b3:47:5a:53:e1:2d:ed:1c:d8: a5:13:3e:77:c2:4f:7f:1f:9a:76:57:f7:ee:29:b2: c3:9a:dd:7c:f6:04:ad:a9:c9:0a:d9:10:f0:11:2f: b7:ff:f9:bc:6f:e5:50:e8:48:be:2c:ca:47:03:f0: da:fa:8d:cb:9a:8b:05:60:33:64:bf:c9:22:da:a0: 2b:b5:c5:88:a1:cd:4c:1f:3a:d7:a9:63:58:1e:39: d7:ff:6a:fa:f7:88:37:69:f8:a5:b3:f0:7b:61:5a: a4:87:ca:61:8f:46:df:f1:55:22:e5:30:8d:45:9d: 33:40:a5:f9:40:4e:f2:ae:39:39:1c:ac:f0:cf:24: e3:87:aa:3a:cb:d6:7e:73:8a:3b:ed:ac:35:2d:07: cd:45:c0:55:c7:25:1b:fa:f6:3d:ba:33:f2:6b:c7: 25:1e:1d:53:dc:54:47:e7:ed:e2:b3:5a:3c:64:6e: d7:15:0f:da:d0:fd:09:0e:7c:4b:e5:6e:95:79:88: 78:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:95:90:FA:92:EF:17:B0:31:E3:76:D5:AB:56:C0:92:1C:20:15:14 X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/A5D75708E07111ED9601E941C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:58a0:1400::/44 Signature Algorithm: sha256WithRSAEncryption 08:cf:92:73:9b:4d:c5:49:74:f6:67:be:b7:7a:a0:ae:b8:6d: 5a:19:2a:f7:97:1d:5f:f4:ed:f9:d5:81:5f:d1:db:04:2d:43: 3b:93:af:2c:a2:df:66:a6:95:d3:3e:15:5e:82:9f:9c:87:e4: 2d:aa:89:45:84:3e:77:93:d4:52:01:26:34:2f:5f:62:70:65: 40:f9:92:83:fc:6f:8b:f7:c0:13:0c:44:5d:33:12:6c:96:bb: 3e:43:da:fd:30:3c:e1:71:e1:9b:92:ee:b9:c0:91:3d:ef:fd: 15:0b:43:35:7b:21:84:71:a8:7f:94:e7:6f:c4:79:c3:58:e7: 74:35:ca:35:f3:ec:04:86:89:04:bd:11:24:5f:cb:ad:f2:80: 8d:3a:72:92:f0:75:7e:1a:2a:12:83:56:07:6a:21:fc:df:bc: 81:53:74:cc:a2:29:05:82:27:7b:16:3a:9d:9d:8f:1b:e4:76: 65:f8:0e:df:48:d0:97:87:80:84:e9:19:57:9c:71:20:ed:31: 8f:15:d6:2b:8e:43:ca:4c:b2:69:e9:e7:8c:a1:bc:49:b5:25: 03:32:b3:5c:38:08:bf:da:d0:4a:e6:cd:78:92:3a:b7:9c:69: aa:8c:17:63:3b:ee:9d:ef:ca:11:4d:cd:43:fb:df:0c:a4:37: 2e:ad:ab:aa -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjUwNDA1MDEwNTQ2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODFlYS1mYmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JE2/kKY5VRFt/UoKw4+wq5xLg0i6MBGLFVuCGsaLaOqY2wZnZcSKFXL78Qt cui0dvEGVrRuzt47eLuQ5TR5CRyzR1pT4S3tHNilEz53wk9/H5p2V/fuKbLDmt18 9gStqckK2RDwES+3//m8b+VQ6Ei+LMpHA/Da+o3LmosFYDNkv8ki2qArtcWIoc1M HzrXqWNYHjnX/2r694g3afils/B7YVqkh8phj0bf8VUi5TCNRZ0zQKX5QE7yrjk5 HKzwzyTjh6o6y9Z+c4o77aw1LQfNRcBVxyUb+vY9ujPya8clHh1T3FRH5+3is1o8 ZG7XFQ/a0P0JDnxL5W6VeYh4bQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD6VkPqS 7xewMeN21atWwJIcIBUUMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvQTVENzU3MDhF MDcxMTFFRDk2MDFFOTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAFigFAAwDQYJKoZIhvcNAQELBQADggEBAAjPknObTcVJ dPZnvrd6oK64bVoZKveXHV/07fnVgV/R2wQtQzuTryyi32amldM+FV6Cn5yH5C2q iUWEPneT1FIBJjQvX2JwZUD5koP8b4v3wBMMRF0zEmyWuz5D2v0wPOFx4ZuS7rnA kT3v/RULQzV7IYRxqH+U52/EecNY53Q1yjXz7ASGiQS9ESRfy63ygI06cpLwdX4a KhKDVgdqIfzfvIFTdMyiKQWCJ3sWOp2djxvkdmX4Dt9I0JeHgITpGVeccSDtMY8V 1iuOQ8pMsmnp54yhvEm1JQMys1w4CL/a0ErmzXiSOrecaaqMF2M77p3vyhFNzUP7 3wykNy6tq6o= -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:46 2025 by rpki-client