$ rpki-client -vvf rpki.apnic.net/member_repository/A911049F/C074C51CF8E511EFBEA52271C4F9AE02/0431DDEEF8E611EFB9269C71C4F9AE02.roa File: 0431DDEEF8E611EFB9269C71C4F9AE02.roa (raw, json) Hash identifier: onFwvD3ByPLzXVJ67F8/gNczv45XsvNKrHEcWpbgNvk= Subject key identifier: C3:15:E7:65:5B:E2:38:05:D7:F0:D5:A2:E5:02:1B:A0:B8:3F:BD:19 Certificate issuer: /CN=A911049F/serialNumber=8AB94582B02EAA83A285F1C91FC859A0E2C11353 Certificate serial: 02 Authority key identifier: 8A:B9:45:82:B0:2E:AA:83:A2:85:F1:C9:1F:C8:59:A0:E2:C1:13:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/irlFgrAuqoOihfHJH8hZoOLBE1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911049F/C074C51CF8E511EFBEA52271C4F9AE02/0431DDEEF8E611EFB9269C71C4F9AE02.roa Signing time: Tue 04 Mar 2025 10:47:07 +0000 ROA not before: Tue 04 Mar 2025 10:47:07 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 56178 IP address blocks: 163.61.26.0/24 maxlen: 24 2001:df5:440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911049F/C074C51CF8E511EFBEA52271C4F9AE02/irlFgrAuqoOihfHJH8hZoOLBE1M.crl rsync://rpki.apnic.net/member_repository/A911049F/C074C51CF8E511EFBEA52271C4F9AE02/irlFgrAuqoOihfHJH8hZoOLBE1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/irlFgrAuqoOihfHJH8hZoOLBE1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 06:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911049F Validity Not Before: Mar 4 10:47:07 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c6da2b-61a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:06:88:6d:25:35:27:ff:1a:23:43:b5:3f:13: b6:7a:aa:0d:c8:c2:38:d3:06:86:07:da:ab:46:6c: 46:cd:e6:f3:cf:22:bd:eb:02:2e:0c:76:22:b1:10: 7b:6a:25:d0:85:78:a4:00:d6:a5:13:e0:ee:48:c0: 25:17:c8:67:59:21:c5:67:e2:ee:5e:3a:a0:fa:fa: 8f:60:df:93:d4:77:92:ba:96:a6:4e:86:33:c1:f0: 71:be:5b:de:86:ff:d1:6f:eb:d5:59:72:54:06:57: c8:09:fb:f4:2b:5c:be:9f:6c:98:1f:65:78:b5:06: 1d:f6:ba:3e:90:bd:b5:b9:7a:7e:98:a9:f7:de:ce: 11:fb:c4:74:60:66:5d:cc:74:58:27:58:59:9d:71: dd:79:63:6a:7e:34:df:97:6a:2c:e5:e5:d4:da:19: c3:ec:12:07:75:61:77:22:73:68:37:37:e7:79:04: 07:e7:05:69:95:83:c6:6d:2a:e9:96:68:48:2f:3c: ab:41:96:93:1f:8d:d2:0d:85:5d:bb:26:80:02:1e: df:87:b5:af:85:13:4e:99:2b:31:79:da:cd:51:b1: 62:2a:5f:24:7b:32:e1:86:a3:f7:9f:71:5e:67:ca: 5d:dc:63:1c:32:c6:0d:51:d0:1e:b9:6c:1b:06:16: 9f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:15:E7:65:5B:E2:38:05:D7:F0:D5:A2:E5:02:1B:A0:B8:3F:BD:19 X509v3 Authority Key Identifier: keyid:8A:B9:45:82:B0:2E:AA:83:A2:85:F1:C9:1F:C8:59:A0:E2:C1:13:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911049F/C074C51CF8E511EFBEA52271C4F9AE02/irlFgrAuqoOihfHJH8hZoOLBE1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/irlFgrAuqoOihfHJH8hZoOLBE1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911049F/C074C51CF8E511EFBEA52271C4F9AE02/0431DDEEF8E611EFB9269C71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.26.0/24 IPv6: 2001:df5:440::/48 Signature Algorithm: sha256WithRSAEncryption 2c:4f:18:8b:dd:8d:67:4c:2a:d2:56:b1:bc:91:c4:6d:96:c9: d4:a5:f1:01:7f:bb:16:14:57:d6:e2:00:f4:1f:94:ce:3c:9d: 09:14:ab:3e:b9:9f:f5:cd:18:80:5f:d1:9e:0a:58:78:59:b1: 2c:60:90:db:b1:e5:f7:b4:6b:7a:df:f4:7f:10:59:b1:2a:1a: 89:c0:23:b8:76:79:74:79:92:e7:e5:86:b1:45:ce:d2:ef:37: 04:f0:b0:bd:27:19:00:79:4c:21:a9:14:8e:41:fd:9c:ab:c5: b8:7a:06:58:19:90:46:d7:70:68:84:53:50:e7:79:7a:1a:74: c6:0a:19:27:89:67:52:7a:0e:ab:1f:fb:35:1c:da:d3:0e:35: 45:a4:50:26:aa:9d:05:6c:2e:87:80:6c:d0:47:21:b1:26:00: 74:32:4d:16:a7:31:40:33:f6:69:4c:d7:fe:fd:73:ac:4e:9d: 79:b3:8c:56:0e:ef:ce:9d:7a:35:5c:54:6d:16:2f:43:6e:d6: b8:bc:52:24:80:88:fe:9f:fb:1b:94:4d:f6:d6:35:30:65:86: ed:5c:4b:3c:e4:8b:0e:f0:db:28:47:21:6e:7f:12:f0:07:c0: 64:70:87:da:ac:b0:08:ab:7f:12:f0:5f:ff:f3:a6:57:f4:52: 1c:6d:06:ea -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDQ5RjExMC8GA1UEBRMoOEFCOTQ1ODJCMDJFQUE4M0EyODVGMUM5MUZDODU5QTBF MkMxMTM1MzAeFw0yNTAzMDQxMDQ3MDdaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzZkYTJiLTYxYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8BohtJTUn/xojQ7U/E7Z6qg3IwjjTBoYH2qtGbEbN5vPPIr3rAi4MdiKxEHtq JdCFeKQA1qUT4O5IwCUXyGdZIcVn4u5eOqD6+o9g35PUd5K6lqZOhjPB8HG+W96G /9Fv69VZclQGV8gJ+/QrXL6fbJgfZXi1Bh32uj6QvbW5en6YqffezhH7xHRgZl3M dFgnWFmdcd15Y2p+NN+Xaizl5dTaGcPsEgd1YXcic2g3N+d5BAfnBWmVg8ZtKumW aEgvPKtBlpMfjdINhV27JoACHt+Hta+FE06ZKzF52s1RsWIqXyR7MuGGo/efcV5n yl3cYxwyxg1R0B65bBsGFp9/AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUwxXnZVvi OAXX8NWi5QIboLg/vRkwHwYDVR0jBBgwFoAUirlFgrAuqoOihfHJH8hZoOLBE1Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwNDlGL0MwNzRDNTFDRjhF NTExRUZCRUE1MjI3MUM0RjlBRTAyL2lybEZnckF1cW9PaWhmSEpIOGhab09MQkUx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXJsRmdyQXVxb09paGZISkg4aFpvT0xCRTFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDQ5Ri9DMDc0QzUxQ0Y4RTUxMUVGQkVBNTIyNzFDNEY5QUUwMi8wNDMxRERFRUY4 RTYxMUVGQjkyNjlDNzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAKM9GjAPBAIAAjAJAwcAIAEN9QRAMA0GCSqGSIb3DQEBCwUA A4IBAQAsTxiL3Y1nTCrSVrG8kcRtlsnUpfEBf7sWFFfW4gD0H5TOPJ0JFKs+uZ/1 zRiAX9GeClh4WbEsYJDbseX3tGt63/R/EFmxKhqJwCO4dnl0eZLn5YaxRc7S7zcE 8LC9JxkAeUwhqRSOQf2cq8W4egZYGZBG13BohFNQ53l6GnTGChkniWdSeg6rH/s1 HNrTDjVFpFAmqp0FbC6HgGzQRyGxJgB0Mk0WpzFAM/ZpTNf+/XOsTp15s4xWDu/O nXo1XFRtFi9Dbta4vFIkgIj+n/sblE321jUwZYbtXEs85IsO8NsoRyFufxLwB8Bk cIfarLAIq38S8F//86ZX9FIcbQbq -----END CERTIFICATE-----Generated at Fri Apr 11 23:34:34 2025 by rpki-client