$ rpki-client -vvf rpki.apnic.net/member_repository/A917C512/A18ABF28E3A311EFB8EB8C51C4F9AE02/6031B83AE89211EFA8EA2645C4F9AE02.roa File: 6031B83AE89211EFA8EA2645C4F9AE02.roa (raw, json) Hash identifier: AC+SXi1UsfNodH/t6eT8f4fZVqnQxWUGCxU261CtJPY= Subject key identifier: 4E:52:30:DA:46:3A:77:03:C1:76:26:27:E6:6F:24:C0:7E:BA:F0:84 Certificate issuer: /CN=A917C512/serialNumber=8E5EAE4C03BC3B345BE78F8C8E9A43B7F98E33A6 Certificate serial: 06 Authority key identifier: 8E:5E:AE:4C:03:BC:3B:34:5B:E7:8F:8C:8E:9A:43:B7:F9:8E:33:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jl6uTAO8OzRb54-MjppDt_mOM6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C512/A18ABF28E3A311EFB8EB8C51C4F9AE02/6031B83AE89211EFA8EA2645C4F9AE02.roa Signing time: Tue 11 Feb 2025 16:08:05 +0000 ROA not before: Tue 11 Feb 2025 16:08:05 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137655 IP address blocks: 163.61.24.0/24 maxlen: 24 2001:df5:2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C512/A18ABF28E3A311EFB8EB8C51C4F9AE02/jl6uTAO8OzRb54-MjppDt_mOM6Y.crl rsync://rpki.apnic.net/member_repository/A917C512/A18ABF28E3A311EFB8EB8C51C4F9AE02/jl6uTAO8OzRb54-MjppDt_mOM6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jl6uTAO8OzRb54-MjppDt_mOM6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C512 Validity Not Before: Feb 11 16:08:05 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ab75e5-969d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0e:72:61:d6:19:7f:61:fd:b0:2c:54:3f:a4: 5e:d3:97:26:c9:06:32:98:93:0b:e0:ec:76:18:57: e9:d2:43:6f:6e:62:3c:40:51:ad:2a:14:93:42:d8: 9e:ef:4b:fe:9e:74:a2:75:26:db:df:39:76:0d:23: 42:aa:f3:18:c4:bd:6f:e2:71:82:7a:58:f5:e9:3c: 42:73:d9:7d:b9:df:49:9d:f0:1f:aa:09:a8:79:41: 18:10:40:5c:31:e9:41:18:98:5e:ba:0b:6f:db:92: 2a:1c:9f:c1:c0:be:70:56:00:77:b2:cc:42:f1:f7: 77:6d:1c:6e:e0:6e:29:6e:bf:c7:1e:20:95:7e:b5: fb:3c:cb:26:b7:26:04:f3:fa:d7:dd:76:76:e8:68: 82:7b:b6:8e:ef:38:36:a3:94:8f:cc:d7:bc:44:71: cf:83:28:e6:59:33:52:1c:24:27:16:6c:06:29:85: b1:57:e5:6c:da:f2:3a:58:eb:19:29:52:e6:5c:92: 0b:95:fb:22:8d:fd:d5:13:d3:d2:d4:bb:04:50:ef: c1:e0:50:63:c2:1d:72:59:2a:d4:ac:6f:01:09:fb: 3a:75:34:92:c9:5d:c1:53:25:05:6f:03:ac:84:f4: 79:6b:26:3a:75:77:d8:c8:7e:f8:58:d4:b9:9f:25: 43:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:52:30:DA:46:3A:77:03:C1:76:26:27:E6:6F:24:C0:7E:BA:F0:84 X509v3 Authority Key Identifier: keyid:8E:5E:AE:4C:03:BC:3B:34:5B:E7:8F:8C:8E:9A:43:B7:F9:8E:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C512/A18ABF28E3A311EFB8EB8C51C4F9AE02/jl6uTAO8OzRb54-MjppDt_mOM6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jl6uTAO8OzRb54-MjppDt_mOM6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C512/A18ABF28E3A311EFB8EB8C51C4F9AE02/6031B83AE89211EFA8EA2645C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.24.0/24 IPv6: 2001:df5:2c0::/48 Signature Algorithm: sha256WithRSAEncryption 3c:6e:11:42:94:ae:70:b4:c8:fc:67:a4:86:51:f8:90:3c:9a: 7f:7f:af:0c:df:65:6b:ab:30:81:ce:29:c0:33:b6:ef:1f:5e: bb:f7:7b:c7:7a:c5:5e:ee:11:63:54:4e:94:21:70:8a:1a:0e: 10:d7:ef:17:0e:04:9e:48:ae:c8:23:6e:25:6c:54:85:3e:c5: 3a:5a:56:f3:31:85:80:00:38:ac:63:81:9e:3c:7e:08:8b:71: 5d:6a:52:a7:d8:1c:5c:c7:a8:ac:31:3e:fb:d4:6a:5b:3b:ad: 36:35:37:c4:46:d3:c6:87:28:69:03:e3:38:76:fc:4d:d3:be: f7:5c:ab:ac:2b:6e:06:3e:78:49:f9:6b:ea:b7:f4:de:89:81: fc:5c:06:8e:0c:fd:35:51:f7:75:68:ed:8c:99:77:65:d6:6d: 9c:44:2a:5b:1d:12:f1:fe:0f:50:5c:7b:03:e3:78:e4:2b:b8: be:37:83:0c:13:3c:b5:ea:3e:33:e4:90:88:e2:f3:02:d2:87: cd:72:63:41:d0:69:4a:3c:32:52:e8:57:c2:5f:56:af:64:4d: dc:78:97:58:a5:2a:4b:bd:b2:85:03:e6:ae:f7:3b:4c:fc:28: 01:33:60:44:b2:13:e1:be:88:bb:56:4f:88:e9:61:3f:6e:21: 43:72:8d:d2 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzUxMjExMC8GA1UEBRMoOEU1RUFFNEMwM0JDM0IzNDVCRTc4RjhDOEU5QTQzQjdG OThFMzNBNjAeFw0yNTAyMTExNjA4MDVaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWI3NWU1LTk2OWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDDnJh1hl/Yf2wLFQ/pF7TlybJBjKYkwvg7HYYV+nSQ29uYjxAUa0qFJNC2J7v S/6edKJ1JtvfOXYNI0Kq8xjEvW/icYJ6WPXpPEJz2X2530md8B+qCah5QRgQQFwx 6UEYmF66C2/bkiocn8HAvnBWAHeyzELx93dtHG7gbiluv8ceIJV+tfs8yya3JgTz +tfddnboaIJ7to7vODajlI/M17xEcc+DKOZZM1IcJCcWbAYphbFX5Wza8jpY6xkp UuZckguV+yKN/dUT09LUuwRQ78HgUGPCHXJZKtSsbwEJ+zp1NJLJXcFTJQVvA6yE 9HlrJjp1d9jIfvhY1LmfJUNVAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUTlIw2kY6 dwPBdiYn5m8kwH668IQwHwYDVR0jBBgwFoAUjl6uTAO8OzRb54+MjppDt/mOM6Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNTEyL0ExOEFCRjI4RTNB MzExRUZCOEVCOEM1MUM0RjlBRTAyL2psNnVUQU84T3pSYjU0LU1qcHBEdF9tT002 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamw2dVRBTzhPelJiNTQtTWpwcER0X21PTTZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzUxMi9BMThBQkYyOEUzQTMxMUVGQjhFQjhDNTFDNEY5QUUwMi82MDMxQjgzQUU4 OTIxMUVGQThFQTI2NDVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAKM9GDAPBAIAAjAJAwcAIAEN9QLAMA0GCSqGSIb3DQEBCwUA A4IBAQA8bhFClK5wtMj8Z6SGUfiQPJp/f68M32VrqzCBzinAM7bvH16793vHesVe 7hFjVE6UIXCKGg4Q1+8XDgSeSK7II24lbFSFPsU6WlbzMYWAADisY4GePH4Ii3Fd alKn2Bxcx6isMT771GpbO602NTfERtPGhyhpA+M4dvxN0773XKusK24GPnhJ+Wvq t/TeiYH8XAaODP01Ufd1aO2MmXdl1m2cRCpbHRLx/g9QXHsD43jkK7i+N4MMEzy1 6j4z5JCI4vMC0ofNcmNB0GlKPDJS6FfCX1avZE3ceJdYpSpLvbKFA+au9ztM/CgB M2BEshPhvoi7Vk+I6WE/biFDco3S -----END CERTIFICATE-----Generated at Sat Apr 5 07:12:46 2025 by rpki-client