$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/F70CBA98E9B911EFB5B54650C4F9AE02.roa File: F70CBA98E9B911EFB5B54650C4F9AE02.roa (raw, json) Hash identifier: FSLv08dRTBFk7OJGwtktmBOjNRJNtTBGwj1NskH7kyw= Subject key identifier: 46:E8:9C:23:6E:1F:17:2B:94:B3:34:3F:67:C5:C1:13:0F:61:68:78 Certificate issuer: /CN=A919E1FC/serialNumber=CA5F7A3121C1F5F989520C7A519713FB3A68CA7E Certificate serial: 02 Authority key identifier: CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/F70CBA98E9B911EFB5B54650C4F9AE02.roa Signing time: Thu 13 Feb 2025 03:24:00 +0000 ROA not before: Thu 13 Feb 2025 03:24:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153594 IP address blocks: 163.61.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1FC Validity Not Before: Feb 13 03:24:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ad65cf-250c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0e:08:e0:ac:bd:11:27:ed:ef:89:4f:57:db: be:c5:76:9f:97:db:0e:59:cd:1e:bb:b2:79:90:d4: 13:73:0a:b3:9f:d3:1b:d1:38:9d:19:04:c9:fc:5f: 32:c6:ec:bd:88:8f:46:eb:51:b0:8f:8a:75:cf:86: e4:d2:68:5e:f9:0a:d0:15:68:14:45:19:08:59:5a: cf:e4:41:ee:2b:20:52:49:ef:6a:61:5e:1a:e7:79: 8c:88:7c:88:18:21:f1:3a:58:72:c3:f8:7c:b7:ee: db:ce:bb:37:84:b3:49:b0:c7:1a:78:25:66:8d:c1: 01:a2:83:77:44:2f:09:a2:ef:b8:3a:af:73:60:81: be:f1:90:1a:0e:1b:71:3c:cf:1f:2d:db:f7:73:aa: 30:92:3d:4b:a3:49:a3:50:fc:fe:fc:b0:f7:1e:b3: 37:d6:fe:13:a1:90:86:44:59:40:54:b9:b2:c8:3d: b8:5a:9c:de:15:6d:70:ac:5f:e8:36:95:e4:73:32: 44:f0:de:c2:d2:9a:6b:3a:bb:1c:f8:52:fd:2f:d2: ac:eb:0f:99:1f:3f:3d:8e:75:01:98:44:7d:95:fd: 94:a7:25:24:b1:07:55:3c:74:c4:ca:ed:91:b9:d0: 92:c3:b2:c2:e3:69:38:a4:61:f9:b6:0d:cf:53:80: 6d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E8:9C:23:6E:1F:17:2B:94:B3:34:3F:67:C5:C1:13:0F:61:68:78 X509v3 Authority Key Identifier: keyid:CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/F70CBA98E9B911EFB5B54650C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.116.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:54:b8:34:d1:b9:c2:1b:56:29:d1:dc:5e:44:b0:78:86:61: b1:ee:e1:64:3c:fa:93:c4:15:48:1b:42:ef:6a:e7:13:6e:e7: 6e:17:b2:d7:a7:74:cd:e8:66:0d:4e:37:b8:c2:41:d0:c7:76: 63:e6:b3:12:6c:c9:21:b1:84:e7:fe:ce:74:bf:de:69:b0:5e: 5a:c0:fe:b2:c0:03:df:c3:18:4a:d1:09:63:23:0a:38:7d:eb: c6:e3:e3:0a:45:01:c5:97:9b:7c:da:c3:fd:5c:c6:01:7a:cb: da:34:e5:0c:8a:76:95:d4:f5:f5:98:98:ee:fb:1a:dc:39:15: 07:97:dd:b3:00:e3:fe:0f:a9:04:04:dc:1d:ec:83:47:03:81: 2c:5f:7a:46:4c:83:c5:b3:27:12:1e:ff:f8:08:80:0c:32:37: 6c:8f:ee:9b:5f:59:36:cb:70:7a:55:e4:90:c1:4b:95:52:54: 28:e0:25:69:11:5c:7b:ec:54:b5:c2:09:f9:62:50:78:30:2d: cb:a2:96:e2:91:1a:57:86:41:5c:0d:42:32:2a:9c:a4:c6:28: 48:34:c5:51:8e:b9:e0:1e:e5:15:b4:ae:8b:b4:4c:44:60:4d: d6:7a:a3:ad:c2:c6:57:69:76:9e:65:ed:82:19:1f:42:c4:75: 38:83:b1:61 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RTFGQzExMC8GA1UEBRMoQ0E1RjdBMzEyMUMxRjVGOTg5NTIwQzdBNTE5NzEzRkIz QTY4Q0E3RTAeFw0yNTAyMTMwMzI0MDBaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWQ2NWNmLTI1MGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+DgjgrL0RJ+3viU9X277Fdp+X2w5ZzR67snmQ1BNzCrOf0xvROJ0ZBMn8XzLG 7L2Ij0brUbCPinXPhuTSaF75CtAVaBRFGQhZWs/kQe4rIFJJ72phXhrneYyIfIgY IfE6WHLD+Hy37tvOuzeEs0mwxxp4JWaNwQGig3dELwmi77g6r3Nggb7xkBoOG3E8 zx8t2/dzqjCSPUujSaNQ/P78sPceszfW/hOhkIZEWUBUubLIPbhanN4VbXCsX+g2 leRzMkTw3sLSmms6uxz4Uv0v0qzrD5kfPz2OdQGYRH2V/ZSnJSSxB1U8dMTK7ZG5 0JLDssLjaTikYfm2Dc9TgG0bAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURuicI24f FyuUszQ/Z8XBEw9haHgwHwYDVR0jBBgwFoAUyl96MSHB9fmJUgx6UZcT+zpoyn4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFMUZDLzVCMzI1RkE2RTlC OTExRUZCNkRBNDE0Q0M0RjlBRTAyL3lsOTZNU0hCOWZtSlVneDZVWmNULXpwb3lu NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWw5Nk1TSEI5Zm1KVWd4NlVaY1QtenBveW40LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFGQy81QjMyNUZBNkU5QjkxMUVGQjZEQTQxNENDNEY5QUUwMi9GNzBDQkE5OEU5 QjkxMUVGQjVCNTQ2NTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9dDANBgkqhkiG9w0BAQsFAAOCAQEAbVS4NNG5whtWKdHc XkSweIZhse7hZDz6k8QVSBtC72rnE27nbhey16d0zehmDU43uMJB0Md2Y+azEmzJ IbGE5/7OdL/eabBeWsD+ssAD38MYStEJYyMKOH3rxuPjCkUBxZebfNrD/VzGAXrL 2jTlDIp2ldT19ZiY7vsa3DkVB5fdswDj/g+pBATcHeyDRwOBLF96RkyDxbMnEh7/ +AiADDI3bI/um19ZNstwelXkkMFLlVJUKOAlaRFce+xUtcIJ+WJQeDAty6KW4pEa V4ZBXA1CMiqcpMYoSDTFUY654B7lFbSui7RMRGBN1nqjrcLGV2l2nmXtghkfQsR1 OIOxYQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:15:29 2025 by rpki-client