$ rpki-client -vvf rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/3EB001C264DD11F09B46CE5AC4F9AE02.roa File: 3EB001C264DD11F09B46CE5AC4F9AE02.roa (raw, json) Hash identifier: gvgIviGEKbPmhWHI8v1cLypIzaujSsuBZ5ELwWNk/3c= Subject key identifier: 24:73:3F:B8:9E:39:24:C4:B6:2A:C3:3E:45:2E:50:7D:2C:67:25:3D Certificate issuer: /CN=A914CFBF/serialNumber=78EC0F0E494F228EAA4383D6C60DEB1C362A5051 Certificate serial: 55 Authority key identifier: 78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/3EB001C264DD11F09B46CE5AC4F9AE02.roa Signing time: Sat 19 Jul 2025 20:16:25 +0000 ROA not before: Sat 19 Jul 2025 20:16:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 150371 IP address blocks: 163.61.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CFBF, serialNumber=78EC0F0E494F228EAA4383D6C60DEB1C362A5051 Validity Not Before: Jul 19 20:16:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=687bfd19-5a8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a9:9f:c3:06:87:f4:e9:fe:9f:dd:cf:16:87: cc:49:4b:93:86:74:0b:9e:f1:c2:82:f1:20:74:8b: b9:39:8d:8d:46:26:42:28:48:01:5c:6e:ca:c6:d0: bc:39:28:f0:dc:46:dd:a8:d1:f6:5b:1d:af:36:4d: 46:2f:91:10:af:13:05:16:87:a3:fb:74:cd:4e:07: d4:ae:a2:72:3e:a8:57:75:57:fa:92:eb:cd:bc:8a: 6e:ef:9c:09:45:b2:cb:09:cd:9c:ee:5d:87:48:55: ff:20:3b:95:2f:8a:6e:55:8a:76:67:f4:06:ae:a4: 1f:71:55:84:22:33:b4:38:a0:65:83:a4:91:c1:6d: de:9c:42:e6:21:64:3d:ee:55:c6:aa:63:b3:08:27: cc:56:0e:f0:59:31:ba:92:f2:78:0d:ac:1a:cc:ae: 79:9d:48:6b:ed:90:c5:3a:c2:ad:c5:98:bd:7a:86: fb:bd:69:a6:fd:07:1b:33:bd:de:60:aa:e4:d7:49: 01:94:02:75:03:ff:2e:c1:82:a0:cf:a2:b3:66:b3: 00:51:58:6a:0f:a2:f7:27:45:4e:42:f4:00:d4:9e: 32:f8:07:ea:5c:2b:22:da:91:88:7c:75:97:67:a6: 62:6b:a7:1b:92:f9:2b:0b:a3:e0:6d:24:9f:1e:e0: 37:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:73:3F:B8:9E:39:24:C4:B6:2A:C3:3E:45:2E:50:7D:2C:67:25:3D X509v3 Authority Key Identifier: keyid:78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/3EB001C264DD11F09B46CE5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.129.0/24 Signature Algorithm: sha256WithRSAEncryption 89:83:6e:4c:ec:79:1e:02:01:d8:74:33:70:e6:b2:db:34:79: 72:0b:57:52:18:de:ca:ce:5d:8e:3d:85:48:52:d3:03:6f:c7: 94:00:51:76:6a:09:a8:64:e8:38:45:b9:83:90:d4:b3:d9:aa: 84:32:3f:0e:4c:eb:23:dc:12:5c:77:86:71:0a:29:20:7b:f7: 1c:b0:a4:a0:1f:8c:cd:cf:63:2a:c5:01:9e:ab:07:87:87:d3: f6:6c:a5:01:4d:64:35:5a:a5:c2:d2:16:34:99:2c:33:54:df: 1b:c8:f2:50:65:54:cb:ac:41:36:d5:06:69:91:6d:78:51:f3: f1:da:d5:ca:58:1b:7b:ad:b7:00:fb:20:53:aa:24:72:39:4e: 97:e4:ff:dc:2a:48:2c:94:f4:0e:fe:21:12:36:fd:4c:8f:c0: 9b:1e:8c:c3:6e:07:71:f3:f0:a7:59:3a:97:88:54:cf:d6:82: 7e:93:6b:85:a5:5a:19:5a:6a:a0:0c:72:ec:d9:4f:7c:91:9c: 6f:fc:52:94:70:96:56:e2:83:5d:b2:77:a3:78:2e:87:1b:53: 12:3a:27:fb:21:6f:a2:4f:2f:93:4b:75:81:4b:c4:60:96:a7: ce:ed:9c:b4:ef:dc:82:c9:36:d1:bb:c4:9a:6a:42:ad:0d:f5: e7:a0:ed:60 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Q0ZCRjExMC8GA1UEBRMoNzhFQzBGMEU0OTRGMjI4RUFBNDM4M0Q2QzYwREVCMUMz NjJBNTA1MTAeFw0yNTA3MTkyMDE2MjVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2JmZDE5LTVhOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9qZ/DBof06f6f3c8Wh8xJS5OGdAue8cKC8SB0i7k5jY1GJkIoSAFcbsrG0Lw5 KPDcRt2o0fZbHa82TUYvkRCvEwUWh6P7dM1OB9SuonI+qFd1V/qS6828im7vnAlF sssJzZzuXYdIVf8gO5Uvim5VinZn9AaupB9xVYQiM7Q4oGWDpJHBbd6cQuYhZD3u VcaqY7MIJ8xWDvBZMbqS8ngNrBrMrnmdSGvtkMU6wq3FmL16hvu9aab9Bxszvd5g quTXSQGUAnUD/y7BgqDPorNmswBRWGoPovcnRU5C9ADUnjL4B+pcKyLakYh8dZdn pmJrpxuS+SsLo+BtJJ8e4DfJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJHM/uJ45 JMS2KsM+RS5QfSxnJT0wHwYDVR0jBBgwFoAUeOwPDklPIo6qQ4PWxg3rHDYqUFEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDRkJGLzMyNzYxMDM4RUQx MjExRUY5QjJENDk1Q0M0RjlBRTAyL2VPd1BEa2xQSW82cVE0UFd4ZzNySERZcVVG RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZU93UERrbFBJbzZxUTRQV3hnM3JIRFlxVUZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0ZCRi8zMjc2MTAzOEVEMTIxMUVGOUIyRDQ5NUNDNEY5QUUwMi8zRUIwMDFDMjY0 REQxMUYwOUI0NkNFNUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9gTANBgkqhkiG9w0BAQsFAAOCAQEAiYNuTOx5HgIB2HQz cOay2zR5cgtXUhjeys5djj2FSFLTA2/HlABRdmoJqGToOEW5g5DUs9mqhDI/Dkzr I9wSXHeGcQopIHv3HLCkoB+Mzc9jKsUBnqsHh4fT9mylAU1kNVqlwtIWNJksM1Tf G8jyUGVUy6xBNtUGaZFteFHz8drVylgbe623APsgU6okcjlOl+T/3CpILJT0Dv4h Ejb9TI/Amx6Mw24HcfPwp1k6l4hUz9aCfpNrhaVaGVpqoAxy7NlPfJGcb/xSlHCW VuKDXbJ3o3guhxtTEjon+yFvok8vk0t1gUvEYJanzu2ctO/cgsk20bvEmmpCrQ31 56DtYA== -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:12 2025 by rpki-client