$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/7F9864BC278511F08A309E80C4F9AE02.roa File: 7F9864BC278511F08A309E80C4F9AE02.roa (raw, json) Hash identifier: Qmy+i9C5Rc4mKmMkW3mFXP5ni+MgnYfnd/vlrjppwOw= Subject key identifier: 5D:55:18:0A:F6:D8:C9:04:66:CD:D0:CC:AD:41:97:73:A7:B2:47:D0 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: 3C Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/7F9864BC278511F08A309E80C4F9AE02.roa Signing time: Fri 02 May 2025 18:44:37 +0000 ROA not before: Fri 02 May 2025 18:44:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153604 IP address blocks: 163.61.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: May 2 18:44:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68151295-08f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:da:ea:47:85:81:41:80:3b:c7:1e:b2:21:55: 28:4e:c0:0c:0a:06:4f:0c:d9:4e:b9:f8:80:91:32: 01:ee:d4:f3:75:dd:79:2f:9a:9f:c5:38:93:e8:8c: 23:99:f2:da:2c:e4:7b:03:49:e8:7e:70:1c:88:e7: e6:c4:03:26:36:bd:18:2c:5a:b7:ac:b8:bd:ab:7f: 8e:e7:88:cf:94:36:78:5e:6e:1a:67:b8:37:98:cb: c5:88:10:31:ce:48:92:10:b3:71:4a:22:4a:68:1e: 52:fa:ca:d0:ed:7b:cc:66:ab:62:49:47:4f:73:fd: 1a:1b:d9:cc:35:a8:d4:7c:ea:2e:f8:27:ab:a4:36: 00:8a:30:9a:6a:65:f0:3e:29:2b:2a:4d:cf:e8:5d: 77:87:4d:79:b0:7c:30:ee:06:76:85:1b:e8:7b:93: 2a:b2:2f:7e:45:fa:45:b3:3e:88:97:21:9d:dc:b1: b2:ce:20:04:67:b3:cd:7d:0d:a4:dd:13:8c:7b:0f: 9c:3d:e9:42:95:fc:65:6d:4d:c6:7d:57:77:3b:44: 15:97:d5:8b:43:5b:c3:b3:93:08:b5:7a:eb:97:06: 38:f8:91:64:13:ed:82:fd:b9:5f:52:f3:8a:f9:12: 11:a6:3d:67:21:b3:a9:e4:95:0b:b4:8b:8f:75:4b: e8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:55:18:0A:F6:D8:C9:04:66:CD:D0:CC:AD:41:97:73:A7:B2:47:D0 X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/7F9864BC278511F08A309E80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.138.0/24 Signature Algorithm: sha256WithRSAEncryption 39:c9:bd:0f:b4:d1:0f:43:22:55:3d:03:28:9d:f3:ef:cf:d2: 02:06:49:79:12:37:7f:88:f4:4c:86:89:b6:7f:34:2a:0c:27: 3e:fd:02:cd:2f:0e:5a:a0:79:5d:d7:b4:53:ac:b3:1f:70:1f: a7:e6:86:78:67:04:c5:7e:f1:60:f0:af:8b:63:40:76:2f:e4: d4:a7:9f:4b:39:a0:a7:a9:12:e6:8c:92:a8:4a:39:2a:2b:9a: 58:ec:c1:fe:7d:93:b5:23:28:76:4b:3f:6c:6d:6e:48:e5:72: 33:86:b7:0a:a5:80:20:fe:8b:4c:90:db:dd:8d:e5:ef:b8:b5: a6:b2:fb:48:b5:88:c8:28:4a:b7:dc:cc:eb:0b:b2:09:db:d3: 50:6f:e4:af:77:a2:4e:d9:d8:df:46:6d:76:06:a9:cc:1a:22: 2d:82:45:7b:9b:39:a7:40:9a:6c:8f:2d:ee:7e:cb:1f:ab:7d: 63:59:4a:45:ae:d1:c2:60:d0:58:43:78:85:e5:8a:43:92:67: eb:7a:09:6a:98:04:a3:29:fa:ec:97:c8:95:01:51:05:da:da: 1e:b8:02:38:68:19:e2:8e:f5:10:df:29:e2:9b:9d:84:d3:a6: a5:e4:84:4e:ea:d7:9b:0b:e4:f4:87:fc:29:39:c2:7b:4e:ec: c0:87:51:33 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjY4QzExMC8GA1UEBRMoQTIyODhGODk2NEQ2MTY5QTg3OTVGMkY0RUYwNUUwRDVF NkUxM0IwOTAeFw0yNTA1MDIxODQ0MzdaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTUxMjk1LTA4ZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv2upHhYFBgDvHHrIhVShOwAwKBk8M2U65+ICRMgHu1PN13Xkvmp/FOJPojCOZ 8tos5HsDSeh+cByI5+bEAyY2vRgsWresuL2rf47niM+UNnhebhpnuDeYy8WIEDHO SJIQs3FKIkpoHlL6ytDte8xmq2JJR09z/Rob2cw1qNR86i74J6ukNgCKMJpqZfA+ KSsqTc/oXXeHTXmwfDDuBnaFG+h7kyqyL35F+kWzPoiXIZ3csbLOIARns819DaTd E4x7D5w96UKV/GVtTcZ9V3c7RBWX1YtDW8Ozkwi1euuXBjj4kWQT7YL9uV9S84r5 EhGmPWchs6nklQu0i491S+iFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUXVUYCvbY yQRmzdDMrUGXc6eyR9AwHwYDVR0jBBgwFoAUoiiPiWTWFpqHlfL07wXg1ebhOwkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNjhDLzE3RDEwM0E4RUFC MjExRUY4NDZGMTMzN0M0RjlBRTAyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2lpUGlXVFdGcHFIbGZMMDd3WGcxZWJoT3drLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi83Rjk4NjRCQzI3 ODUxMUYwOEEzMDlFODBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9ijANBgkqhkiG9w0BAQsFAAOCAQEAOcm9D7TRD0MiVT0D KJ3z78/SAgZJeRI3f4j0TIaJtn80KgwnPv0CzS8OWqB5Xde0U6yzH3Afp+aGeGcE xX7xYPCvi2NAdi/k1KefSzmgp6kS5oySqEo5KiuaWOzB/n2TtSModks/bG1uSOVy M4a3CqWAIP6LTJDb3Y3l77i1prL7SLWIyChKt9zM6wuyCdvTUG/kr3eiTtnY30Zt dgapzBoiLYJFe5s5p0CabI8t7n7LH6t9Y1lKRa7RwmDQWEN4heWKQ5Jn63oJapgE oyn67JfIlQFRBdraHrgCOGgZ4o71EN8p4pudhNOmpeSETurXmwvk9If8KTnCe07s wIdRMw== -----END CERTIFICATE-----Generated at Mon May 12 07:29:16 2025 by rpki-client