$ rpki-client -vvf rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/17D98518FD6911EFA889E84DC4F9AE02.roa File: 17D98518FD6911EFA889E84DC4F9AE02.roa (raw, json) Hash identifier: TAYiLVNUfBDudM++NA0KlcXDtTA+39+D4En0/M5r2I8= Subject key identifier: 52:7D:4D:62:C5:39:78:9E:2F:B9:74:32:51:F7:13:F7:95:5A:CD:DF Certificate issuer: /CN=A91A030C/serialNumber=103922EB77D940717C819E28C9664629480BBCE5 Certificate serial: 0C Authority key identifier: 10:39:22:EB:77:D9:40:71:7C:81:9E:28:C9:66:46:29:48:0B:BC:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/17D98518FD6911EFA889E84DC4F9AE02.roa Signing time: Mon 10 Mar 2025 04:37:28 +0000 ROA not before: Mon 10 Mar 2025 04:37:28 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 151133 IP address blocks: 163.61.238.0/23 maxlen: 23 163.61.238.0/24 maxlen: 24 163.61.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.crl rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A030C Validity Not Before: Mar 10 04:37:28 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ce6c88-175c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:3b:fd:57:2d:ab:57:3f:c0:86:46:5b:e0:e1: 81:4b:ca:3a:60:f3:81:bb:cb:d4:b9:89:08:73:de: 79:23:af:9c:18:f7:f7:41:e7:3f:6a:a6:dd:a8:e3: 29:67:7b:1a:14:9f:81:42:e7:15:bc:40:8a:80:f6: 96:91:db:0e:cc:12:1e:8c:26:32:f1:8e:ed:54:18: ce:4d:37:cf:a1:33:70:ba:b8:91:b5:cd:94:74:59: 5b:6c:e2:d5:87:11:71:11:86:07:00:c2:08:96:b0: e6:14:44:7f:84:06:69:81:23:17:5b:30:07:69:30: e7:f3:e0:3b:78:87:d7:0f:08:79:ab:89:0d:aa:e3: 91:26:af:40:05:bc:48:0d:01:c0:e0:50:b6:5c:26: ae:77:3b:74:91:c0:65:7a:7f:9f:e6:02:6c:4a:4a: ba:dc:59:07:3f:b2:aa:17:c2:c6:ab:1b:eb:f1:bf: a4:94:fa:2f:4c:c8:1b:5d:33:30:55:c5:13:ab:6d: 4f:63:ef:c2:68:24:52:de:68:0e:24:29:f9:9b:08: bf:40:f9:04:ba:88:f7:ae:9a:29:80:e8:29:5c:c9: 56:83:1a:c7:60:df:34:a4:99:94:1b:a3:75:55:79: 22:a8:8d:e0:8e:3b:36:1f:56:29:25:71:70:16:3b: 3f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7D:4D:62:C5:39:78:9E:2F:B9:74:32:51:F7:13:F7:95:5A:CD:DF X509v3 Authority Key Identifier: keyid:10:39:22:EB:77:D9:40:71:7C:81:9E:28:C9:66:46:29:48:0B:BC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/17D98518FD6911EFA889E84DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.238.0/23 Signature Algorithm: sha256WithRSAEncryption 91:ee:9d:cf:a7:50:fc:3a:42:8d:86:d2:a2:1b:52:1d:4b:b7: 21:44:3e:1f:15:a9:ae:d2:2e:6b:08:0d:96:a1:96:6f:c8:9f: 2f:31:12:2e:3c:6b:af:c4:7a:4c:14:b3:45:46:5e:2a:36:32: 29:df:46:3c:a6:78:25:0a:0d:90:04:b5:76:06:8d:78:32:ef: da:b5:12:ee:9a:42:9e:28:52:10:20:a6:91:9d:cc:db:d9:9d: 74:f4:5d:e0:16:55:18:78:92:9b:a2:22:c0:aa:2c:be:77:8e: a0:57:a8:ea:7c:79:f3:bf:0f:83:17:5c:b5:3d:34:4c:65:6e: 99:2b:6b:bf:dc:b2:10:94:7a:06:10:be:8a:8a:15:b6:09:7d: cf:fa:37:07:70:ad:60:0d:b1:10:ba:cc:a6:68:fd:e9:58:1d: 66:f7:fc:20:85:f5:7c:a4:74:f7:51:04:07:9b:4c:a8:eb:d4: 4c:86:9d:82:be:ee:23:0d:8f:e5:57:7b:44:cb:8a:d7:91:1e: 78:9c:60:d9:41:ce:e7:a9:44:b7:74:71:1c:30:c1:0d:32:57: 6b:f3:52:fa:88:65:05:c4:81:72:29:e3:7f:c0:a0:43:f8:f4: 17:68:db:bf:6f:90:e6:0d:e2:52:1a:d6:61:c3:de:22:50:f8: 64:7e:07:6a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MDMwQzExMC8GA1UEBRMoMTAzOTIyRUI3N0Q5NDA3MTdDODE5RTI4Qzk2NjQ2Mjk0 ODBCQkNFNTAeFw0yNTAzMTAwNDM3MjhaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Y2U2Yzg4LTE3NWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnO/1XLatXP8CGRlvg4YFLyjpg84G7y9S5iQhz3nkjr5wY9/dB5z9qpt2o4yln exoUn4FC5xW8QIqA9paR2w7MEh6MJjLxju1UGM5NN8+hM3C6uJG1zZR0WVts4tWH EXERhgcAwgiWsOYURH+EBmmBIxdbMAdpMOfz4Dt4h9cPCHmriQ2q45Emr0AFvEgN AcDgULZcJq53O3SRwGV6f5/mAmxKSrrcWQc/sqoXwsarG+vxv6SU+i9MyBtdMzBV xROrbU9j78JoJFLeaA4kKfmbCL9A+QS6iPeumimA6ClcyVaDGsdg3zSkmZQbo3VV eSKojeCOOzYfViklcXAWOz8vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUn1NYsU5 eJ4vuXQyUfcT95Vazd8wHwYDVR0jBBgwFoAUEDki63fZQHF8gZ4oyWZGKUgLvOUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwMzBDL0E3MDM2NzAwRjQ3 NjExRUZCRTQ2NkQ3RkM0RjlBRTAyL0VEa2k2M2ZaUUhGOGdaNG95V1pHS1VnTHZP VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRURraTYzZlpRSEY4Z1o0b3lXWkdLVWdMdk9VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDMwQy9BNzAzNjcwMEY0NzYxMUVGQkU0NjZEN0ZDNEY5QUUwMi8xN0Q5ODUxOEZE NjkxMUVGQTg4OUU4NERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaM97jANBgkqhkiG9w0BAQsFAAOCAQEAke6dz6dQ/DpCjYbS ohtSHUu3IUQ+HxWprtIuawgNlqGWb8ifLzESLjxrr8R6TBSzRUZeKjYyKd9GPKZ4 JQoNkAS1dgaNeDLv2rUS7ppCnihSECCmkZ3M29mddPRd4BZVGHiSm6IiwKosvneO oFeo6nx5878PgxdctT00TGVumStrv9yyEJR6BhC+iooVtgl9z/o3B3CtYA2xELrM pmj96VgdZvf8IIX1fKR091EEB5tMqOvUTIadgr7uIw2P5Vd7RMuK15EeeJxg2UHO 56lEt3RxHDDBDTJXa/NS+ohlBcSBcinjf8CgQ/j0F2jbv2+Q5g3iUhrWYcPeIlD4 ZH4Hag== -----END CERTIFICATE-----Generated at Sat Apr 5 08:40:04 2025 by rpki-client