$ rpki-client -vvf rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/7FDB55F4ED1211EFAD21985DC4F9AE02.roa File: 7FDB55F4ED1211EFAD21985DC4F9AE02.roa (raw, json) Hash identifier: SxbvQb0AhwJxdqmMLleQ5Oebk4aeq+L/Y76ffLrCJ+w= Subject key identifier: E2:75:1A:8C:26:AF:A7:BB:C3:B8:5A:5B:2F:9D:29:CA:4A:79:CC:07 Certificate issuer: /CN=A914CFBF/serialNumber=78EC0F0E494F228EAA4383D6C60DEB1C362A5051 Certificate serial: 04 Authority key identifier: 78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/7FDB55F4ED1211EFAD21985DC4F9AE02.roa Signing time: Mon 17 Feb 2025 09:35:36 +0000 ROA not before: Mon 17 Feb 2025 09:35:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153596 IP address blocks: 163.61.128.0/24 maxlen: 24 163.61.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CFBF Validity Not Before: Feb 17 09:35:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67b302e8-ebea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:b9:fd:a5:8c:9a:36:91:62:e7:63:82:f0: 4d:0b:7c:70:6f:8e:44:ee:72:c1:bf:c3:7c:8e:34: b0:9b:04:b0:30:7f:df:7c:d8:75:d7:31:de:4e:df: d4:1d:a4:58:a6:66:f1:e2:5d:96:de:73:da:0b:1b: 66:7b:8d:f3:12:ce:c2:0c:dd:2c:fa:74:0e:5d:dd: 73:b3:b6:45:ae:db:d8:de:5a:72:dc:55:5c:96:f7: c0:1e:3a:c9:cf:b2:40:d7:d7:88:b9:fc:27:81:ce: ec:23:10:3b:63:f1:be:29:b8:c7:0e:66:bc:c5:be: 8f:be:39:b5:80:25:f4:f5:36:5c:d1:80:cc:9a:b8: 0b:02:9b:30:16:09:2c:48:c2:90:1d:9f:09:05:f0: 85:24:b3:36:41:59:fd:52:ad:a7:3e:ae:08:f7:e9: 35:2f:ad:b3:a7:cb:b3:fd:9e:76:ba:a8:fb:0e:d7: 81:2e:64:e1:95:15:4d:ce:cb:a3:3d:eb:43:2a:a1: bd:f1:cc:3d:9c:5b:74:b5:ec:22:37:00:05:24:0a: cc:b7:3b:21:0e:80:0b:b1:97:a5:22:f7:7b:62:e4: 3f:81:94:b6:ea:a9:84:7e:22:cf:27:b2:1c:91:69: b8:88:2a:05:c1:3c:91:c2:af:ba:5e:42:08:d2:44: 4d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:75:1A:8C:26:AF:A7:BB:C3:B8:5A:5B:2F:9D:29:CA:4A:79:CC:07 X509v3 Authority Key Identifier: keyid:78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/7FDB55F4ED1211EFAD21985DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.128.0/23 Signature Algorithm: sha256WithRSAEncryption aa:b8:35:fc:68:68:3e:ad:3f:fb:48:c8:da:55:f3:14:42:1a: a1:46:a3:c7:d9:6d:29:ea:bf:2c:70:d8:80:c6:eb:41:3e:81: 12:58:67:89:b4:da:10:46:77:af:38:7e:7a:1f:f3:cf:54:09: 7d:40:2d:9f:30:f1:33:14:a2:60:9e:36:6c:2b:e7:93:0a:5f: 5a:ba:59:d0:65:71:54:bd:06:34:3f:0b:91:21:6f:1d:2b:1d: 39:89:c5:2e:77:74:b1:a4:b0:60:a3:e7:79:9f:14:4f:a3:41: 93:5f:5a:db:99:1c:de:08:25:a8:bc:53:5a:78:14:79:7e:73: 34:18:49:2e:b6:c3:66:52:5a:f5:1f:81:92:b2:42:37:e7:f3: af:8a:16:c0:e9:32:2f:a9:6e:f4:71:65:3f:b3:ae:e7:4b:51: 5c:e5:bf:f1:38:f8:25:51:1b:37:bd:ba:42:e6:d3:48:4c:38: 3b:63:20:6c:34:66:98:42:0c:18:8c:89:1f:8b:8d:03:01:2a: 09:ba:db:a1:6c:e5:66:ef:99:f4:ce:08:aa:b8:83:b0:ad:b7: 35:5b:3c:0a:20:c3:9d:b3:b7:03:15:95:ae:ee:d6:3f:b3:69: d9:bf:78:4d:79:fc:93:97:03:bd:b7:62:4e:f5:d4:27:d5:ae: c7:91:ea:d9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Q0ZCRjExMC8GA1UEBRMoNzhFQzBGMEU0OTRGMjI4RUFBNDM4M0Q2QzYwREVCMUMz NjJBNTA1MTAeFw0yNTAyMTcwOTM1MzZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjMwMmU4LWViZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJhLn9pYyaNpFi52OC8E0LfHBvjkTucsG/w3yONLCbBLAwf9982HXXMd5O39Qd pFimZvHiXZbec9oLG2Z7jfMSzsIM3Sz6dA5d3XOztkWu29jeWnLcVVyW98AeOsnP skDX14i5/CeBzuwjEDtj8b4puMcOZrzFvo++ObWAJfT1NlzRgMyauAsCmzAWCSxI wpAdnwkF8IUkszZBWf1Srac+rgj36TUvrbOny7P9nna6qPsO14EuZOGVFU3Oy6M9 60Mqob3xzD2cW3S17CI3AAUkCsy3OyEOgAuxl6Ui93ti5D+BlLbqqYR+Is8nshyR abiIKgXBPJHCr7peQgjSRE2dAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4nUajCav p7vDuFpbL50pykp5zAcwHwYDVR0jBBgwFoAUeOwPDklPIo6qQ4PWxg3rHDYqUFEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDRkJGLzMyNzYxMDM4RUQx MjExRUY5QjJENDk1Q0M0RjlBRTAyL2VPd1BEa2xQSW82cVE0UFd4ZzNySERZcVVG RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZU93UERrbFBJbzZxUTRQV3hnM3JIRFlxVUZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0ZCRi8zMjc2MTAzOEVEMTIxMUVGOUIyRDQ5NUNDNEY5QUUwMi83RkRCNTVGNEVE MTIxMUVGQUQyMTk4NURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaM9gDANBgkqhkiG9w0BAQsFAAOCAQEAqrg1/GhoPq0/+0jI 2lXzFEIaoUajx9ltKeq/LHDYgMbrQT6BElhnibTaEEZ3rzh+eh/zz1QJfUAtnzDx MxSiYJ42bCvnkwpfWrpZ0GVxVL0GND8LkSFvHSsdOYnFLnd0saSwYKPneZ8UT6NB k19a25kc3gglqLxTWngUeX5zNBhJLrbDZlJa9R+BkrJCN+fzr4oWwOkyL6lu9HFl P7Ou50tRXOW/8Tj4JVEbN726QubTSEw4O2MgbDRmmEIMGIyJH4uNAwEqCbrboWzl Zu+Z9M4IqriDsK23NVs8CiDDnbO3AxWVru7WP7Np2b94TXn8k5cDvbdiTvXUJ9Wu x5Hq2Q== -----END CERTIFICATE-----Generated at Sat Apr 5 07:12:22 2025 by rpki-client