$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa File: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (raw, json) Hash identifier: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0= Subject key identifier: 9B:89:DF:CE:D7:0E:47:A8:0A:FF:27:A0:19:B7:5E:AF:31:8D:CC:60 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 6B Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa Signing time: Thu 27 Mar 2025 06:41:11 +0000 ROA not before: Thu 27 Mar 2025 06:41:11 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 7545 IP address blocks: 61.68.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506 Validity Not Before: Mar 27 06:41:11 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e4f306-699e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7a:2e:44:5d:c9:2a:1b:a9:1c:28:c5:f6:c9: b5:8e:92:5a:39:4c:51:78:1d:f7:68:4d:29:b2:ec: 59:cb:72:76:0c:83:83:b1:d5:fb:9a:5f:69:0e:59: 1a:24:16:60:a1:85:03:77:6e:23:14:c0:5e:f5:92: 99:a5:04:df:ff:18:12:11:19:6b:79:10:27:f3:8c: 56:50:f0:c0:39:32:b9:a9:1c:62:fb:a0:0d:54:0e: 14:d1:4e:34:35:49:80:c7:d8:55:2e:65:00:91:ed: fb:91:29:c9:41:d9:6c:04:81:ad:ea:25:ad:a8:62: 39:ee:93:04:e4:ac:ff:11:38:80:99:4c:12:ca:ed: 59:01:ae:0f:51:93:cc:cc:a1:0d:18:e5:a7:e6:21: c0:96:32:34:2b:3f:94:0d:2c:bb:68:73:f4:e5:cb: b0:b8:c6:59:1b:57:d4:26:c5:83:17:94:a6:a4:7b: 01:18:30:98:f2:bf:6d:f9:44:5d:0d:0d:14:d5:d7: 13:4a:4e:d2:fb:44:5c:d6:b8:6c:64:9e:ce:e4:03: ea:f6:4e:6c:5a:b4:8d:a6:18:4d:19:14:3b:a7:7e: 79:63:2e:6f:08:87:39:64:da:e6:5f:6c:f2:e6:27: e3:7b:4b:f0:f3:f6:a6:c3:33:86:2f:a0:94:54:67: db:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:89:DF:CE:D7:0E:47:A8:0A:FF:27:A0:19:B7:5E:AF:31:8D:CC:60 X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.68.16.0/21 Signature Algorithm: sha256WithRSAEncryption 06:76:ff:f3:1c:f1:d3:90:9c:b1:19:30:f7:5b:5d:d9:47:4b: 94:83:9e:e4:cb:29:1f:98:f0:ed:bc:0f:7a:20:9e:c6:4e:21: 5d:68:4d:fa:76:f1:89:6b:6f:18:17:61:94:be:f3:11:18:f0: 96:1b:5e:39:f4:a0:88:4b:e0:85:bc:9f:1f:08:08:bc:28:ff: 77:21:e1:1e:0f:1b:52:f8:96:f5:03:d5:0a:d4:99:b7:1c:f2: 6f:32:0b:95:7d:b7:b3:c5:fa:1b:ef:6e:a6:a7:8a:33:6d:3a: 75:73:c2:52:19:a3:45:12:e8:43:24:03:e5:7c:b6:e6:af:26: 2d:2c:ee:a5:45:78:41:b5:05:1b:6e:a2:40:e7:9d:1f:60:37: 41:ee:6d:f3:97:62:a9:0a:24:dd:9b:6b:11:2d:ab:49:52:9b: 7a:d4:1f:fd:7c:77:ec:4b:92:f2:84:a8:57:cc:64:da:98:66: 0d:ec:f4:7a:c3:01:e6:b6:1b:ac:4d:a1:8f:38:e0:28:82:14: b3:45:ca:6a:d1:96:07:1a:7f:18:23:61:85:e4:c8:1b:b4:7a: f1:db:f2:d7:1a:95:16:2d:05:60:71:c4:f8:1c:6c:0c:2f:c1: 78:4d:ca:3d:55:84:d8:30:69:07:4e:b1:d6:a7:e0:86:ee:b6: 5c:f4:b3:2a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MjUwNjExMC8GA1UEBRMoNDJCQjBGM0MxODQ3RTY1OEJCRTQxNDE4NDk0Q0U4OUNF OEUzNDQ4ODAeFw0yNTAzMjcwNjQxMTFaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTRmMzA2LTY5OWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFei5EXckqG6kcKMX2ybWOklo5TFF4HfdoTSmy7FnLcnYMg4Ox1fuaX2kOWRok FmChhQN3biMUwF71kpmlBN//GBIRGWt5ECfzjFZQ8MA5MrmpHGL7oA1UDhTRTjQ1 SYDH2FUuZQCR7fuRKclB2WwEga3qJa2oYjnukwTkrP8ROICZTBLK7VkBrg9Rk8zM oQ0Y5afmIcCWMjQrP5QNLLtoc/Tly7C4xlkbV9QmxYMXlKakewEYMJjyv235RF0N DRTV1xNKTtL7RFzWuGxkns7kA+r2TmxatI2mGE0ZFDunfnljLm8Ihzlk2uZfbPLm J+N7S/Dz9qbDM4YvoJRUZ9vXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUm4nfztcO R6gK/yegGbderzGNzGAwHwYDVR0jBBgwFoAUQrsPPBhH5li75BQYSUzonOjjRIgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyNTA2L0IwNDkwOENFNkVE RTExRUZBQUMyQ0I1REM0RjlBRTAyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXJzUFBCaEg1bGk3NUJRWVNVem9uT2pqUklnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9ERDc1QzlCQzZF REYxMUVGOTBDNDlBNUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAz1EEDANBgkqhkiG9w0BAQsFAAOCAQEABnb/8xzx05CcsRkw 91td2UdLlIOe5MspH5jw7bwPeiCexk4hXWhN+nbxiWtvGBdhlL7zERjwlhteOfSg iEvghbyfHwgIvCj/dyHhHg8bUviW9QPVCtSZtxzybzILlX23s8X6G+9upqeKM206 dXPCUhmjRRLoQyQD5Xy25q8mLSzupUV4QbUFG26iQOedH2A3Qe5t85diqQok3Ztr ES2rSVKbetQf/Xx37EuS8oSoV8xk2phmDez0esMB5rYbrE2hjzjgKIIUs0XKatGW Bxp/GCNhheTIG7R68dvy1xqVFi0FYHHE+BxsDC/BeE3KPVWE2DBpB06x1qfghu62 XPSzKg== -----END CERTIFICATE-----Generated at Sat Apr 5 03:57:02 2025 by rpki-client