$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa File: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (raw, json) Hash identifier: U1IGaFhELlQWY/Ln876qk8JzJ3sNkyrrUJbwE+5NxYc= Subject key identifier: B7:7D:80:1A:AD:64:5D:75:73:AA:5E:EA:C2:00:74:61:6B:6E:DB:E6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: 18 Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa Signing time: Thu 06 Feb 2025 09:10:30 +0000 ROA not before: Thu 06 Feb 2025 09:10:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152565 IP address blocks: 163.61.38.0/24 maxlen: 24 163.61.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491 Validity Not Before: Feb 6 09:10:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a47c86-2e06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a9:ed:ae:80:bb:94:12:a4:63:99:0f:2c:7f: 02:dc:20:e9:4a:86:fa:98:03:c1:5f:b8:da:e3:10: 43:0f:01:bb:cd:b1:a2:ae:66:19:2b:da:a2:dd:7f: 41:87:5e:f0:ee:ec:4c:42:8f:c4:e0:45:bf:75:95: 8c:3c:2a:58:1d:bb:97:11:c5:88:6d:2d:e7:12:39: c5:9c:f6:b7:90:5b:ef:fc:5e:f7:fb:50:c4:89:43: 62:9e:d4:40:51:f1:b1:c2:e0:3d:0c:42:11:cb:cd: af:6e:07:0e:61:c5:eb:51:c6:9f:a8:c8:fc:e6:bb: 09:59:79:af:d3:ee:56:6a:8d:fa:ea:90:c4:4f:95: e6:97:a1:f0:bd:ef:28:0c:01:9b:1c:d7:d9:7e:d4: d2:cb:db:4e:91:c1:31:f4:c2:c7:2f:e3:96:a2:ad: d9:0c:34:ec:be:e5:61:6c:32:b4:81:df:31:63:3f: 98:06:2e:d0:98:cc:92:4e:65:51:e3:ae:3a:b1:ca: 45:0b:93:25:5f:64:64:cf:5a:64:df:9a:cb:9b:62: 52:35:17:a2:25:bb:a0:c6:a1:c7:9f:4a:86:c9:b8: e6:a9:48:4d:a6:41:4b:6a:eb:51:18:0f:a1:c8:e0: 6c:6a:1c:92:ce:9f:bf:7b:b6:ef:8e:39:75:5a:b9: 0c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7D:80:1A:AD:64:5D:75:73:AA:5E:EA:C2:00:74:61:6B:6E:DB:E6 X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.38.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:35:11:af:cf:33:76:2c:dc:f1:46:fe:20:3b:7c:6c:30:a8: 0a:85:d7:db:d5:54:fa:ec:51:d5:d3:ff:7c:01:87:38:ab:87: 34:69:66:68:d1:78:5e:03:c9:d4:fd:59:6a:44:4d:21:78:d1: ee:ef:37:7c:58:1e:f9:ba:76:5c:72:95:54:c8:86:55:72:ac: 4a:38:57:5b:5d:fa:97:e3:5d:a4:16:f2:ba:25:86:75:d1:e8: a9:d2:f3:7f:37:fb:51:54:85:6a:d0:06:3b:dc:65:0d:1e:37: 1d:b0:bf:a3:a8:15:0d:e4:5f:fd:b5:c4:0c:da:1e:ef:c2:18: 3e:43:b7:2d:88:15:ed:6e:63:55:bb:11:0e:46:2e:04:4a:35: 80:33:f2:5e:25:8a:4d:b6:81:84:52:03:78:cc:1c:b3:b6:80: 31:d9:4f:43:48:d6:b5:4d:68:d8:10:f2:a6:54:f7:bc:85:93: 21:e2:1a:c0:a0:52:80:35:3b:c0:d5:25:b7:65:dc:81:fa:a5: 52:be:1b:67:8d:60:52:d2:1f:41:3c:3e:09:f1:a5:b3:bb:d3: b3:e8:4a:c0:a5:b2:22:89:33:6d:65:fa:8a:78:e9:2f:d8:58: 4b:6d:4c:dc:51:5b:ff:de:21:74:c8:df:fd:63:de:15:12:47: 4f:5a:f8:d9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODQ5MTExMC8GA1UEBRMoNjFGOEM3RUJBN0I1NUU3MUIyRTZCMTc3NDA5MTQyNTFE ODhDRjBBNjAeFw0yNTAyMDYwOTEwMzBaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTQ3Yzg2LTJlMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2qe2ugLuUEqRjmQ8sfwLcIOlKhvqYA8FfuNrjEEMPAbvNsaKuZhkr2qLdf0GH XvDu7ExCj8TgRb91lYw8Klgdu5cRxYhtLecSOcWc9reQW+/8Xvf7UMSJQ2Ke1EBR 8bHC4D0MQhHLza9uBw5hxetRxp+oyPzmuwlZea/T7lZqjfrqkMRPleaXofC97ygM AZsc19l+1NLL206RwTH0wscv45airdkMNOy+5WFsMrSB3zFjP5gGLtCYzJJOZVHj rjqxykULkyVfZGTPWmTfmsubYlI1F6Ilu6DGocefSobJuOapSE2mQUtq61EYD6HI 4GxqHJLOn797tu+OOXVauQxlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUt32AGq1k XXVzql7qwgB0YWtu2+YwHwYDVR0jBBgwFoAUYfjH66e1XnGy5rF3QJFCUdiM8KYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NDkxLzYwREE1M0ZBREZB NTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThL WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWZqSDY2ZTFYbkd5NXJGM1FKRkNVZGlNOEtZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODQ5MS82MERBNTNGQURGQTUxMUVGOEJENDlGODdDNEY5QUUwMi81RkRERUUxQ0Uz NDIxMUVGOEVBMENBNzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaM9JjANBgkqhkiG9w0BAQsFAAOCAQEAbTURr88zdizc8Ub+ IDt8bDCoCoXX29VU+uxR1dP/fAGHOKuHNGlmaNF4XgPJ1P1ZakRNIXjR7u83fFge +bp2XHKVVMiGVXKsSjhXW136l+NdpBbyuiWGddHoqdLzfzf7UVSFatAGO9xlDR43 HbC/o6gVDeRf/bXEDNoe78IYPkO3LYgV7W5jVbsRDkYuBEo1gDPyXiWKTbaBhFID eMwcs7aAMdlPQ0jWtU1o2BDyplT3vIWTIeIawKBSgDU7wNUlt2XcgfqlUr4bZ41g UtIfQTw+CfGls7vTs+hKwKWyIokzbWX6injpL9hYS21M3FFb/94hdMjf/WPeFRJH T1r42Q== -----END CERTIFICATE-----Generated at Sat Apr 5 07:21:25 2025 by rpki-client