$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/318FB51A383611E6B2282B5DC4F9AE02.roa File: 318FB51A383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: TSVCxvcc+Sayf1kDVk4KAdOPfT663XPtMJq+qgnVb4Y= Subject key identifier: 0E:B0:B3:FB:AA:1C:DC:12:B6:F4:51:72:FF:4F:D6:27:14:E4:8B:E1 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3623 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/318FB51A383611E6B2282B5DC4F9AE02.roa Signing time: Mon 30 Jun 2025 14:20:12 +0000 ROA not before: Mon 30 Jun 2025 14:20:12 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 135534 IP address blocks: 61.45.249.0/24 maxlen: 24 2401:4601:249::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13859 (0x3623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jun 30 14:20:12 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68629d1c-5508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f2:38:c1:c4:ec:92:e5:01:6a:cf:3d:d1:2c: 24:2b:7f:7c:31:55:dd:23:bb:15:c1:bf:58:8b:19: 66:ee:77:3c:b7:ba:7a:79:74:da:ca:ac:20:a6:d0: 02:71:ae:f2:e1:6c:d0:b3:fc:88:09:ff:18:24:aa: 0c:f3:19:4c:cc:0d:5d:c6:c0:98:1e:74:bc:1e:bb: 23:44:29:d5:bd:78:27:e7:6d:ce:8b:57:eb:cc:f9: 81:2d:7d:c0:f7:e0:b6:76:7d:0c:19:98:f1:bf:4b: 53:2d:d7:e1:76:f3:63:f8:58:c6:2b:94:7a:16:93: 30:5f:ca:d4:63:ba:f7:63:07:e2:3c:ce:14:3e:ae: ef:61:62:c5:00:1b:91:57:14:58:11:53:77:be:7a: 4d:22:b0:9b:d9:bc:47:06:a8:dc:05:62:23:e3:3e: 91:48:d0:71:ad:a1:b6:20:6a:ef:d4:af:23:e4:49: 2d:ad:b8:39:62:54:5d:79:51:cf:9b:10:0c:47:88: 54:44:39:76:2d:07:cb:3f:5d:64:42:ef:09:77:5c: f8:cb:4e:de:25:2e:4e:78:57:94:49:e6:55:7b:01: b8:61:85:e2:ad:fc:c5:78:67:6f:ab:d6:b4:3b:98: 4a:2a:70:46:49:d4:40:b4:e2:6b:d3:7d:76:b4:b8: 4e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B0:B3:FB:AA:1C:DC:12:B6:F4:51:72:FF:4F:D6:27:14:E4:8B:E1 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/318FB51A383611E6B2282B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.249.0/24 IPv6: 2401:4601:249::/48 Signature Algorithm: sha256WithRSAEncryption 78:b7:14:65:71:49:1d:75:32:6a:e5:9b:a5:75:1b:9f:fd:1d: df:cf:61:7f:b7:57:4e:32:de:4c:c0:1a:21:b1:e2:70:8a:a9: 34:4f:8f:b3:37:a8:0d:85:f7:40:9b:0b:a8:25:54:17:48:c9: 71:c1:d3:fb:49:78:cd:76:74:7f:0a:a5:32:a9:ba:c9:6a:a5: dd:b6:90:e1:02:2b:0b:ba:d5:1a:75:d0:88:89:e8:7a:c2:4b: 55:47:ff:9c:1a:51:00:16:75:46:19:69:1d:19:3a:99:e9:dc: fe:93:94:36:18:eb:70:53:33:46:f6:5e:ce:d7:eb:11:2c:0c: 4f:44:1c:f2:9f:6c:ad:f2:52:39:e3:fc:8d:ef:13:2f:c7:7d: 2e:8f:e9:39:a7:28:a8:ff:c9:ce:11:37:7d:43:7c:34:53:e3: 54:bf:af:66:65:c9:af:70:6a:7d:7c:42:46:18:75:88:22:8c: b7:b7:4a:e3:18:ea:c8:a1:b6:bc:57:6d:17:5c:27:05:de:c2: 54:36:ec:da:b0:8d:ba:7d:17:01:25:cb:86:b2:5b:57:22:0b: 1d:2c:96:d1:34:99:b2:bb:60:96:ef:f9:73:c6:18:c4:f1:c3: fd:b4:94:ce:fd:8f:f4:fc:a7:9e:ad:51:cb:a4:d9:bc:f8:45: 19:ff:a7:8d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNjMwMTQyMDEyWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyOWQxYy01NTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/I4wcTskuUBas890SwkK398MVXdI7sVwb9Yixlm7nc8t7p6eXTayqwgptAC ca7y4WzQs/yICf8YJKoM8xlMzA1dxsCYHnS8HrsjRCnVvXgn523Oi1frzPmBLX3A 9+C2dn0MGZjxv0tTLdfhdvNj+FjGK5R6FpMwX8rUY7r3YwfiPM4UPq7vYWLFABuR VxRYEVN3vnpNIrCb2bxHBqjcBWIj4z6RSNBxraG2IGrv1K8j5Ektrbg5YlRdeVHP mxAMR4hURDl2LQfLP11kQu8Jd1z4y07eJS5OeFeUSeZVewG4YYXirfzFeGdvq9a0 O5hKKnBGSdRAtOJr0312tLhOkwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFA6ws/uq HNwStvRRcv9P1icU5IvhMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzE4RkI1MUEz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfkwDwQCAAIwCQMHACQBRgECSTANBgkqhkiG9w0BAQsF AAOCAQEAeLcUZXFJHXUyauWbpXUbn/0d389hf7dXTjLeTMAaIbHicIqpNE+Pszeo DYX3QJsLqCVUF0jJccHT+0l4zXZ0fwqlMqm6yWql3baQ4QIrC7rVGnXQiInoesJL VUf/nBpRABZ1RhlpHRk6menc/pOUNhjrcFMzRvZeztfrESwMT0Qc8p9srfJSOeP8 je8TL8d9Lo/pOacoqP/JzhE3fUN8NFPjVL+vZmXJr3BqfXxCRhh1iCKMt7dK4xjq yKG2vFdtF1wnBd7CVDbs2rCNun0XASXLhrJbVyILHSyW0TSZsrtglu/5c8YYxPHD /bSUzv2P9Pynnq1Ry6TZvPhFGf+njQ== -----END CERTIFICATE-----Generated at Thu Jul 3 13:23:27 2025 by rpki-client