$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa File: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (raw, json) Hash identifier: mzE4Rj9TzgxYoPFC7hLQmMNdU4o1ATX8k/0uu+bhb9g= Subject key identifier: 30:E2:77:8E:2A:6B:85:89:75:9F:12:5E:2C:18:9A:86:0F:64:35:8C Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: 64 Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa Signing time: Thu 03 Jul 2025 05:33:19 +0000 ROA not before: Thu 03 Jul 2025 05:33:19 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152565 IP address blocks: 163.61.38.0/23 maxlen: 23 163.61.38.0/24 maxlen: 24 163.61.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Jul 3 05:33:19 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6866161f-622f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:47:72:1e:40:79:32:bb:76:7d:99:22:61:ad: 77:aa:ff:6b:4e:d5:36:87:5e:42:17:8e:e3:67:b1: 8a:dd:8b:b2:ad:4f:52:53:06:01:f8:48:0c:a7:4d: 19:0c:a2:59:a5:65:1c:34:7f:c7:fe:11:03:8b:5a: fc:51:04:4a:6a:d0:4f:06:e9:59:a6:cd:90:96:51: 43:e4:a1:a3:94:b3:5e:1b:a9:1f:d5:7f:92:17:ed: 27:49:55:72:51:17:46:64:34:7e:b9:3a:48:a5:56: 67:49:93:db:3a:1c:04:15:fb:c5:b4:89:29:83:8e: 50:c5:9c:0d:7b:7e:43:02:de:17:80:a6:fd:2f:e5: 0a:f3:f0:03:29:6b:df:29:68:b4:76:71:27:45:dc: a4:1b:d4:e5:e6:fa:81:b0:0b:f6:24:10:ff:61:72: 71:29:64:1e:70:d8:5c:5f:08:fa:fb:38:46:ab:80: 44:96:04:de:8f:12:47:4c:6e:28:36:36:0e:2e:82: 16:eb:db:a7:54:c7:7a:58:39:12:4c:e0:5b:18:48: 18:db:9d:f1:0d:a4:73:b9:ce:f7:d5:33:6f:4d:f5: 20:8f:2a:d2:fc:00:88:95:c3:45:47:9d:5b:91:f3: 94:fd:ac:0b:ee:cb:04:20:21:73:cb:fa:26:9b:32: dd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E2:77:8E:2A:6B:85:89:75:9F:12:5E:2C:18:9A:86:0F:64:35:8C X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.38.0/23 Signature Algorithm: sha256WithRSAEncryption ab:34:12:a3:aa:4e:63:d3:02:74:5a:bb:84:48:6e:4d:3e:3b: 5d:a8:48:3f:03:72:1c:33:75:f3:14:f3:55:a5:39:b6:02:50: 01:f5:6f:9c:2c:66:fd:97:8d:78:4a:18:e3:55:73:14:ad:ce: 4b:dc:cb:b5:fe:3b:6d:9d:ce:cd:5e:33:21:1a:2b:9f:e2:c7: e4:65:fb:a6:fe:44:17:fc:e4:e8:c8:63:85:a3:33:0a:0b:4f: 06:05:3e:93:2d:d5:30:5b:98:b6:5a:db:44:47:21:6e:92:6c: 14:1f:f7:3e:6e:91:b8:96:d4:d0:3b:ed:91:88:08:64:2e:e6: e1:ad:c0:76:5f:e6:ea:d4:94:ba:a0:e8:29:aa:fe:ca:dc:75: fc:95:95:04:c6:76:46:d9:19:c1:59:f9:25:1a:4f:18:f3:47: 5f:c1:08:21:78:e4:32:0f:8b:5b:4c:e5:99:30:56:76:1a:1c: bf:3c:9c:42:7c:11:e5:6e:e9:62:86:65:35:38:1c:74:e2:b2: 29:cb:da:3b:8e:f9:44:db:3d:5a:19:40:cd:a9:b2:6e:d3:28: 4d:5b:56:bc:d7:2f:0c:95:31:b4:9f:5d:57:f5:f7:70:4f:83: 40:0f:78:08:88:24:01:5c:7d:57:77:d2:7d:eb:8a:71:44:b7: de:03:36:25 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODQ5MTExMC8GA1UEBRMoNjFGOEM3RUJBN0I1NUU3MUIyRTZCMTc3NDA5MTQyNTFE ODhDRjBBNjAeFw0yNTA3MDMwNTMzMTlaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjYxNjFmLTYyMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoR3IeQHkyu3Z9mSJhrXeq/2tO1TaHXkIXjuNnsYrdi7KtT1JTBgH4SAynTRkM olmlZRw0f8f+EQOLWvxRBEpq0E8G6VmmzZCWUUPkoaOUs14bqR/Vf5IX7SdJVXJR F0ZkNH65OkilVmdJk9s6HAQV+8W0iSmDjlDFnA17fkMC3heApv0v5Qrz8AMpa98p aLR2cSdF3KQb1OXm+oGwC/YkEP9hcnEpZB5w2FxfCPr7OEargESWBN6PEkdMbig2 Ng4ughbr26dUx3pYORJM4FsYSBjbnfENpHO5zvfVM29N9SCPKtL8AIiVw0VHnVuR 85T9rAvuywQgIXPL+iabMt0ZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMOJ3jipr hYl1nxJeLBiahg9kNYwwHwYDVR0jBBgwFoAUYfjH66e1XnGy5rF3QJFCUdiM8KYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NDkxLzYwREE1M0ZBREZB NTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThL WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWZqSDY2ZTFYbkd5NXJGM1FKRkNVZGlNOEtZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODQ5MS82MERBNTNGQURGQTUxMUVGOEJENDlGODdDNEY5QUUwMi81RkRERUUxQ0Uz NDIxMUVGOEVBMENBNzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaM9JjANBgkqhkiG9w0BAQsFAAOCAQEAqzQSo6pOY9MCdFq7 hEhuTT47XahIPwNyHDN18xTzVaU5tgJQAfVvnCxm/ZeNeEoY41VzFK3OS9zLtf47 bZ3OzV4zIRorn+LH5GX7pv5EF/zk6MhjhaMzCgtPBgU+ky3VMFuYtlrbREchbpJs FB/3Pm6RuJbU0DvtkYgIZC7m4a3Adl/m6tSUuqDoKar+ytx1/JWVBMZ2RtkZwVn5 JRpPGPNHX8EIIXjkMg+LW0zlmTBWdhocvzycQnwR5W7pYoZlNTgcdOKyKcvaO475 RNs9WhlAzamybtMoTVtWvNcvDJUxtJ9dV/X3cE+DQA94CIgkAVx9V3fSfeuKcUS3 3gM2JQ== -----END CERTIFICATE-----Generated at Thu Jul 3 17:41:45 2025 by rpki-client