$ rpki-client -vvf rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/A7B64E90EA7311EF83DF9312C4F9AE02.roa File: A7B64E90EA7311EF83DF9312C4F9AE02.roa (raw, json) Hash identifier: x02iW5sBV6XQ3si6w5qxABkxIfONNKf7NHA5P8huw4s= Subject key identifier: 1D:7D:00:BC:62:B6:60:02:C3:3F:B8:66:41:50:AA:70:BA:E9:25:AC Certificate issuer: /CN=A9147BCF/serialNumber=0C8559D233DBFBAFBD1032229985DF3DF91348FC Certificate serial: 02 Authority key identifier: 0C:85:59:D2:33:DB:FB:AF:BD:10:32:22:99:85:DF:3D:F9:13:48:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DIVZ0jPb-6-9EDIimYXfPfkTSPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/A7B64E90EA7311EF83DF9312C4F9AE02.roa Signing time: Fri 14 Feb 2025 01:33:13 +0000 ROA not before: Fri 14 Feb 2025 01:33:13 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 131476 IP address blocks: 163.61.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.crl rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DIVZ0jPb-6-9EDIimYXfPfkTSPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147BCF Validity Not Before: Feb 14 01:33:13 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ae9d59-ae80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d5:45:33:84:75:e7:48:1b:86:30:9f:2b:03: fe:19:e0:65:85:1c:07:1a:96:99:df:2c:3a:f8:b7: bf:fe:04:21:33:05:0e:5c:b9:84:1f:58:a2:0c:08: 5b:d9:18:17:a0:80:21:32:c8:25:76:a5:41:d7:ca: 81:33:1c:27:da:aa:6b:25:3a:86:1a:06:08:68:89: f0:c9:be:0c:6b:af:cb:fb:b4:55:e3:5f:0b:51:d2: 2a:2f:f3:66:b1:8e:1a:03:13:b0:c5:fc:60:1b:06: b7:77:63:1f:92:89:c6:47:0b:b3:10:b6:87:ff:27: df:8c:3c:3c:df:b5:64:c4:b1:e3:41:94:1b:fa:41: a2:b5:a7:41:52:9a:32:5b:4d:6e:60:ce:26:c1:63: cf:84:86:4b:ee:a2:4c:69:ab:67:3e:e0:3d:72:11: 3e:7e:65:2d:5a:1a:6d:f7:21:f5:60:16:ca:ce:8d: a0:2e:e5:a0:62:66:84:a8:88:b0:49:3c:7a:d7:11: 41:5f:4b:2b:44:40:d3:a1:53:99:33:b1:02:7a:ab: 2c:ec:78:ba:ab:c1:c1:1c:08:8f:90:16:35:f2:c1: ab:3a:c9:73:35:e5:9f:44:f8:34:4e:98:ef:ca:b2: 0e:ee:8f:8a:52:35:d1:3b:61:05:19:60:d1:bb:1a: 6c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7D:00:BC:62:B6:60:02:C3:3F:B8:66:41:50:AA:70:BA:E9:25:AC X509v3 Authority Key Identifier: keyid:0C:85:59:D2:33:DB:FB:AF:BD:10:32:22:99:85:DF:3D:F9:13:48:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DIVZ0jPb-6-9EDIimYXfPfkTSPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/A7B64E90EA7311EF83DF9312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.84.0/24 Signature Algorithm: sha256WithRSAEncryption cd:52:8b:c3:8e:45:d8:16:fe:9e:7f:26:5d:94:0a:51:ac:7f: 23:4e:7a:04:5a:a1:e4:d2:e0:99:59:22:7a:bd:a9:f0:94:4d: a1:7c:d6:65:52:b5:59:46:c4:2a:f6:f9:21:05:e9:df:d6:47: d9:58:28:72:43:4c:36:e6:b3:e5:59:e9:df:31:6e:81:00:41: 16:d3:ca:d8:47:9f:50:32:52:ca:f3:88:76:95:94:33:8e:66: 95:e1:59:c1:60:6c:e5:a2:8c:db:f6:63:26:76:9a:85:fe:38: 38:9f:1b:73:64:6b:28:b3:e8:a9:dc:c6:11:34:27:75:eb:81: d5:f9:cc:15:3c:64:1b:9b:bc:ab:89:73:f1:38:82:8d:1c:2c: f1:82:f0:9a:72:35:1d:44:12:df:0f:05:27:ce:70:a8:bd:5a: fd:b3:33:24:09:53:cc:fa:22:29:cd:82:c3:37:ba:03:97:6a: 02:07:96:04:25:61:a1:f5:ea:e6:e4:93:70:b3:54:dd:b6:10: 8c:79:be:7f:fd:b2:b0:8d:42:57:62:95:6e:13:e2:7c:04:e5: 08:9b:e1:d1:a6:12:a6:b2:5e:c2:81:59:26:0f:63:6b:02:3b: fe:e8:01:0b:a9:44:42:b1:e4:c5:7d:ce:75:0b:4d:90:f4:07: 50:f5:15:32 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0JDRjExMC8GA1UEBRMoMEM4NTU5RDIzM0RCRkJBRkJEMTAzMjIyOTk4NURGM0RG OTEzNDhGQzAeFw0yNTAyMTQwMTMzMTNaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWU5ZDU5LWFlODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC01UUzhHXnSBuGMJ8rA/4Z4GWFHAcalpnfLDr4t7/+BCEzBQ5cuYQfWKIMCFvZ GBeggCEyyCV2pUHXyoEzHCfaqmslOoYaBghoifDJvgxrr8v7tFXjXwtR0iov82ax jhoDE7DF/GAbBrd3Yx+SicZHC7MQtof/J9+MPDzftWTEseNBlBv6QaK1p0FSmjJb TW5gzibBY8+Ehkvuokxpq2c+4D1yET5+ZS1aGm33IfVgFsrOjaAu5aBiZoSoiLBJ PHrXEUFfSytEQNOhU5kzsQJ6qyzseLqrwcEcCI+QFjXywas6yXM15Z9E+DROmO/K sg7uj4pSNdE7YQUZYNG7GmxxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHX0AvGK2 YALDP7hmQVCqcLrpJawwHwYDVR0jBBgwFoAUDIVZ0jPb+6+9EDIimYXfPfkTSPww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3QkNGLzVFNzhCNjE0RUE3 MzExRUZBQzhCQzkxMUM0RjlBRTAyL0RJVlowalBiLTYtOUVESWltWVhmUGZrVFNQ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRElWWjBqUGItNi05RURJaW1ZWGZQZmtUU1B3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0JDRi81RTc4QjYxNEVBNzMxMUVGQUM4QkM5MTFDNEY5QUUwMi9BN0I2NEU5MEVB NzMxMUVGODNERjkzMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9VDANBgkqhkiG9w0BAQsFAAOCAQEAzVKLw45F2Bb+nn8m XZQKUax/I056BFqh5NLgmVkier2p8JRNoXzWZVK1WUbEKvb5IQXp39ZH2VgockNM Nuaz5Vnp3zFugQBBFtPK2EefUDJSyvOIdpWUM45mleFZwWBs5aKM2/ZjJnaahf44 OJ8bc2RrKLPoqdzGETQndeuB1fnMFTxkG5u8q4lz8TiCjRws8YLwmnI1HUQS3w8F J85wqL1a/bMzJAlTzPoiKc2Cwze6A5dqAgeWBCVhofXq5uSTcLNU3bYQjHm+f/2y sI1CV2KVbhPifATlCJvh0aYSprJewoFZJg9jawI7/ugBC6lEQrHkxX3OdQtNkPQH UPUVMg== -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:14 2025 by rpki-client