$ rpki-client -vvf rpki.apnic.net/member_repository/A9199696/2B811656F1A411EF8448EB22C4F9AE02/1A44E27AF1A711EFA441E72CC4F9AE02.roa File: 1A44E27AF1A711EFA441E72CC4F9AE02.roa (raw, json) Hash identifier: +T8xPEy3qOwqRDiq3fa/SHDl3cgx+ER91jGPjiK2GbE= Subject key identifier: 2B:51:31:A6:A7:2E:85:50:CB:63:62:36:9F:31:22:51:CE:1D:E2:D1 Certificate issuer: /CN=A9199696/serialNumber=E8429291232B9E0FB9485A0AAD493D7E07C7E4D1 Certificate serial: 02 Authority key identifier: E8:42:92:91:23:2B:9E:0F:B9:48:5A:0A:AD:49:3D:7E:07:C7:E4:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EKSkSMrng-5SFoKrUk9fgfH5NE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199696/2B811656F1A411EF8448EB22C4F9AE02/1A44E27AF1A711EFA441E72CC4F9AE02.roa Signing time: Sun 23 Feb 2025 05:29:08 +0000 ROA not before: Sun 23 Feb 2025 05:29:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153569 IP address blocks: 163.61.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199696/2B811656F1A411EF8448EB22C4F9AE02/6EKSkSMrng-5SFoKrUk9fgfH5NE.crl rsync://rpki.apnic.net/member_repository/A9199696/2B811656F1A411EF8448EB22C4F9AE02/6EKSkSMrng-5SFoKrUk9fgfH5NE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EKSkSMrng-5SFoKrUk9fgfH5NE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199696 Validity Not Before: Feb 23 05:29:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bab223-ea36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:54:cb:c4:73:de:67:82:5f:a7:79:09:99:6d: 48:9e:79:74:78:fe:1c:dd:0a:c7:4e:a8:d0:99:9a: 5b:e2:e7:ce:1c:1f:e7:94:57:8a:4c:b4:63:54:b7: 3a:55:49:73:d0:57:fe:4c:f7:a9:15:fb:1f:24:79: 9e:a8:93:05:07:66:43:5e:50:33:6b:f7:46:85:ec: 1c:37:a1:f1:9e:ea:af:d5:e9:fa:b7:38:f1:00:08: 84:4c:30:89:56:f4:82:9f:b1:ef:9b:67:cd:c9:6d: 53:fb:bc:23:04:f6:c1:13:50:f9:fe:06:60:86:f0: b3:7a:a1:51:0e:a3:81:c4:1d:10:78:6b:da:01:4a: be:e2:d8:5f:26:09:05:04:b4:75:06:f6:d8:66:b2: ac:52:c7:69:28:71:28:f2:9a:02:f5:c0:b6:66:a2: f6:97:41:85:6e:21:33:12:ab:ae:a7:f9:5f:cc:a7: 63:10:e2:f6:1b:5d:c9:0e:d5:10:fa:ea:56:ee:0e: a8:1b:8e:1f:4d:7e:76:c9:2e:ac:45:dd:98:a1:d8: 88:37:e2:1d:eb:12:41:b8:7f:cf:15:41:b6:a7:4f: d4:d6:6e:99:9c:bf:8f:6e:b2:18:bd:f5:ae:d5:64: b9:5c:18:53:e5:8e:49:c8:8d:8d:8b:f6:69:3e:3d: f2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:51:31:A6:A7:2E:85:50:CB:63:62:36:9F:31:22:51:CE:1D:E2:D1 X509v3 Authority Key Identifier: keyid:E8:42:92:91:23:2B:9E:0F:B9:48:5A:0A:AD:49:3D:7E:07:C7:E4:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199696/2B811656F1A411EF8448EB22C4F9AE02/6EKSkSMrng-5SFoKrUk9fgfH5NE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EKSkSMrng-5SFoKrUk9fgfH5NE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199696/2B811656F1A411EF8448EB22C4F9AE02/1A44E27AF1A711EFA441E72CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.36.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:2d:6d:92:8a:16:9f:ad:06:21:83:b3:d4:e5:23:23:d2:a4: 8d:64:10:21:ff:69:af:b3:36:11:48:a8:4d:b7:62:c8:e3:ff: 29:b2:4c:d8:68:1a:5c:f6:3a:ca:29:7d:6d:aa:a4:f6:13:2a: 1e:13:c9:bb:19:b7:89:76:38:cc:e3:e8:d9:60:4f:7f:da:79: f0:26:7a:b8:de:0b:2f:74:16:4c:00:2a:86:39:98:aa:ba:54: 6c:db:9c:20:14:16:af:97:67:ad:f2:18:d9:b6:15:b6:fa:72: 88:00:da:03:9e:24:c6:75:4e:b1:19:e0:51:a5:1f:b2:c1:88: 0a:68:f4:e8:87:dd:3c:5c:6e:2f:8d:ff:22:21:90:e3:e0:6e: c7:3a:f5:e9:ef:06:db:54:27:40:08:49:4a:a6:93:3c:50:eb: 44:92:f7:83:83:da:60:2d:42:c4:77:c6:6a:96:2e:61:a0:06: 8c:a3:6e:3f:77:f9:76:94:cd:38:bf:c6:0c:99:b7:b4:d4:6b: e2:2d:0c:fc:da:b1:95:ca:3f:83:d7:6b:27:ac:76:d1:75:c5: 33:6b:f5:54:f8:02:77:88:72:2e:15:16:a4:e4:9c:64:38:d0: 2a:2b:f3:92:ac:83:a0:b1:90:61:ec:93:39:55:b6:5d:d5:33: 67:bb:97:52 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTY5NjExMC8GA1UEBRMoRTg0MjkyOTEyMzJCOUUwRkI5NDg1QTBBQUQ0OTNEN0Uw N0M3RTREMTAeFw0yNTAyMjMwNTI5MDhaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YmFiMjIzLWVhMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1VMvEc95ngl+neQmZbUieeXR4/hzdCsdOqNCZmlvi584cH+eUV4pMtGNUtzpV SXPQV/5M96kV+x8keZ6okwUHZkNeUDNr90aF7Bw3ofGe6q/V6fq3OPEACIRMMIlW 9IKfse+bZ83JbVP7vCME9sETUPn+BmCG8LN6oVEOo4HEHRB4a9oBSr7i2F8mCQUE tHUG9thmsqxSx2kocSjymgL1wLZmovaXQYVuITMSq66n+V/Mp2MQ4vYbXckO1RD6 6lbuDqgbjh9NfnbJLqxF3Zih2Ig34h3rEkG4f88VQbanT9TWbpmcv49ushi99a7V ZLlcGFPljknIjY2L9mk+PfK1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUK1Expqcu hVDLY2I2nzEiUc4d4tEwHwYDVR0jBBgwFoAU6EKSkSMrng+5SFoKrUk9fgfH5NEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5Njk2LzJCODExNjU2RjFB NDExRUY4NDQ4RUIyMkM0RjlBRTAyLzZFS1NrU01ybmctNVNGb0tyVWs5ZmdmSDVO RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNkVLU2tTTXJuZy01U0ZvS3JVazlmZ2ZINU5FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTY5Ni8yQjgxMTY1NkYxQTQxMUVGODQ0OEVCMjJDNEY5QUUwMi8xQTQ0RTI3QUYx QTcxMUVGQTQ0MUU3MkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9JDANBgkqhkiG9w0BAQsFAAOCAQEACi1tkooWn60GIYOz 1OUjI9KkjWQQIf9pr7M2EUioTbdiyOP/KbJM2GgaXPY6yil9baqk9hMqHhPJuxm3 iXY4zOPo2WBPf9p58CZ6uN4LL3QWTAAqhjmYqrpUbNucIBQWr5dnrfIY2bYVtvpy iADaA54kxnVOsRngUaUfssGICmj06IfdPFxuL43/IiGQ4+Buxzr16e8G21QnQAhJ SqaTPFDrRJL3g4PaYC1CxHfGapYuYaAGjKNuP3f5dpTNOL/GDJm3tNRr4i0M/Nqx lco/g9drJ6x20XXFM2v1VPgCd4hyLhUWpOScZDjQKivzkqyDoLGQYeyTOVW2XdUz Z7uXUg== -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:20 2025 by rpki-client