$ rpki-client -vvf rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/6C22134AE21D11EFA8E87E7DC4F9AE02.roa File: 6C22134AE21D11EFA8E87E7DC4F9AE02.roa (raw, json) Hash identifier: L3zDn/PUeHX+V2qmelbUl0Crjpgwx3ngnDdVfBLcBmE= Subject key identifier: D8:D9:E4:0C:14:79:5D:B3:4D:32:A0:7F:7F:17:19:4D:14:6B:4E:75 Certificate issuer: /CN=A9116C90/serialNumber=8F22D1F562A0507B11358F053DA42C8052D4B955 Certificate serial: 04 Authority key identifier: 8F:22:D1:F5:62:A0:50:7B:11:35:8F:05:3D:A4:2C:80:52:D4:B9:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyLR9WKgUHsRNY8FPaQsgFLUuVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/6C22134AE21D11EFA8E87E7DC4F9AE02.roa Signing time: Mon 03 Feb 2025 11:08:30 +0000 ROA not before: Mon 03 Feb 2025 11:08:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153547 IP address blocks: 163.61.22.0/24 maxlen: 24 163.61.23.0/24 maxlen: 24 2001:df5:240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/jyLR9WKgUHsRNY8FPaQsgFLUuVU.crl rsync://rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/jyLR9WKgUHsRNY8FPaQsgFLUuVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyLR9WKgUHsRNY8FPaQsgFLUuVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116C90 Validity Not Before: Feb 3 11:08:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a0a3ae-9be7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:da:bf:05:61:53:ef:88:6c:0b:ff:58:9b: 7e:ca:38:cb:ab:59:cd:b5:fb:7d:64:34:4b:2f:47: 83:44:6c:ba:bc:cf:ea:99:43:ac:f0:e5:62:1a:ed: b4:16:51:19:ce:62:b9:25:ae:b6:e7:a4:22:ea:fb: 57:b7:c4:62:da:a5:50:81:96:ea:e3:fe:99:5a:c0: b2:1b:a7:ff:04:0c:f2:c6:f8:86:80:2c:f7:0d:ce: 65:b3:a6:6c:05:03:7e:03:e8:06:be:8d:62:77:91: 76:85:76:29:76:e2:4f:38:70:94:64:37:16:8e:2c: f5:bb:5c:ea:ac:93:a9:5f:a1:70:de:01:8c:be:07: cd:72:52:23:57:41:4d:9d:fa:76:5f:34:db:76:13: bf:a4:d6:34:f1:0a:1b:01:1b:9b:f1:a0:d7:6c:00: 06:16:be:34:eb:68:58:f2:37:9d:a8:b0:92:15:84: 60:bf:62:86:c6:e5:14:46:af:72:35:dd:a2:fa:5f: a7:5c:36:80:52:02:6f:79:a3:c2:0d:ac:3d:9e:11: e0:6d:8b:3b:46:40:13:3c:66:c9:05:77:d7:c7:b5: ae:52:cd:a0:39:af:d2:4f:39:c6:f1:3e:fe:3e:c9: b1:69:01:cd:3d:8f:ed:37:d7:12:6a:22:84:da:83: fd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D9:E4:0C:14:79:5D:B3:4D:32:A0:7F:7F:17:19:4D:14:6B:4E:75 X509v3 Authority Key Identifier: keyid:8F:22:D1:F5:62:A0:50:7B:11:35:8F:05:3D:A4:2C:80:52:D4:B9:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/jyLR9WKgUHsRNY8FPaQsgFLUuVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyLR9WKgUHsRNY8FPaQsgFLUuVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/6C22134AE21D11EFA8E87E7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.22.0/23 IPv6: 2001:df5:240::/48 Signature Algorithm: sha256WithRSAEncryption 98:61:3c:30:64:76:bc:84:af:04:7f:ea:27:44:69:5e:4a:ca: 44:f0:d4:06:19:6f:63:30:06:48:13:6c:75:54:cf:52:16:16: 8d:7e:6e:38:54:f9:15:b5:97:3c:a6:70:85:d2:27:fb:93:34: 94:86:48:56:29:18:7e:e1:af:43:9d:b9:ed:ec:9a:12:29:2c: 89:fe:65:52:2b:8b:f4:b3:eb:33:b9:b7:b9:fa:af:b1:3d:ee: e7:f2:a8:9f:95:ba:ff:0b:f1:fe:1e:36:2d:45:1d:66:00:fa: e7:78:b7:89:d1:03:08:9b:f4:85:49:2a:6b:63:71:66:70:26: d5:7e:02:10:ae:38:0d:80:0a:ce:8a:a5:c7:49:49:d8:20:8b: f7:46:4d:d2:93:9d:f5:52:5f:1e:6a:10:40:eb:62:f5:9d:0a: 13:1e:b1:c0:e9:9b:e4:fb:0f:a0:5b:70:18:b7:fb:cc:5d:8f: 17:8e:5a:65:3c:4c:d3:d0:04:74:41:35:09:18:1d:ca:41:4d: f5:47:f5:ab:31:fc:b7:33:a8:6d:67:42:16:15:33:42:a0:eb: e8:bf:90:58:4b:5f:a9:48:7b:16:ed:de:be:9d:a9:7c:30:65: 6a:af:b9:15:47:89:07:ac:43:85:a3:d8:8c:f7:7f:a8:29:9c: 17:39:03:bf -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NkM5MDExMC8GA1UEBRMoOEYyMkQxRjU2MkEwNTA3QjExMzU4RjA1M0RBNDJDODA1 MkQ0Qjk1NTAeFw0yNTAyMDMxMTA4MzBaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTBhM2FlLTliZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+HNq/BWFT74hsC/9Ym37KOMurWc21+31kNEsvR4NEbLq8z+qZQ6zw5WIa7bQW URnOYrklrrbnpCLq+1e3xGLapVCBlurj/plawLIbp/8EDPLG+IaALPcNzmWzpmwF A34D6Aa+jWJ3kXaFdil24k84cJRkNxaOLPW7XOqsk6lfoXDeAYy+B81yUiNXQU2d +nZfNNt2E7+k1jTxChsBG5vxoNdsAAYWvjTraFjyN52osJIVhGC/YobG5RRGr3I1 3aL6X6dcNoBSAm95o8INrD2eEeBtiztGQBM8ZskFd9fHta5SzaA5r9JPOcbxPv4+ ybFpAc09j+031xJqIoTag/33AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU2NnkDBR5 XbNNMqB/fxcZTRRrTnUwHwYDVR0jBBgwFoAUjyLR9WKgUHsRNY8FPaQsgFLUuVUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2QzkwLzMxQjQ1RkVDRTIx RDExRUY4QTY1MUI3REM0RjlBRTAyL2p5TFI5V0tnVUhzUk5ZOEZQYVFzZ0ZMVXVW VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvanlMUjlXS2dVSHNSTlk4RlBhUXNnRkxVdVZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkM5MC8zMUI0NUZFQ0UyMUQxMUVGOEE2NTFCN0RDNEY5QUUwMi82QzIyMTM0QUUy MUQxMUVGQThFODdFN0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAaM9FjAPBAIAAjAJAwcAIAEN9QJAMA0GCSqGSIb3DQEBCwUA A4IBAQCYYTwwZHa8hK8Ef+onRGleSspE8NQGGW9jMAZIE2x1VM9SFhaNfm44VPkV tZc8pnCF0if7kzSUhkhWKRh+4a9Dnbnt7JoSKSyJ/mVSK4v0s+szube5+q+xPe7n 8qiflbr/C/H+HjYtRR1mAPrneLeJ0QMIm/SFSSprY3FmcCbVfgIQrjgNgArOiqXH SUnYIIv3Rk3Sk531Ul8eahBA62L1nQoTHrHA6Zvk+w+gW3AYt/vMXY8XjlplPEzT 0AR0QTUJGB3KQU31R/WrMfy3M6htZ0IWFTNCoOvov5BYS1+pSHsW7d6+nal8MGVq r7kVR4kHrEOFo9iM93+oKZwXOQO/ -----END CERTIFICATE-----Generated at Sat Apr 5 00:00:42 2025 by rpki-client