$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/8CC07FC0047211F0A6541526C4F9AE02.roa File: 8CC07FC0047211F0A6541526C4F9AE02.roa (raw, json) Hash identifier: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo= Subject key identifier: 42:42:1B:96:91:F8:A4:39:4C:5C:7D:03:E1:40:3E:3C:DD:EF:B2:7B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 02 Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/8CC07FC0047211F0A6541526C4F9AE02.roa Signing time: Wed 19 Mar 2025 03:30:48 +0000 ROA not before: Wed 19 Mar 2025 03:30:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153644 IP address blocks: 163.61.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 07:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287 Validity Not Before: Mar 19 03:30:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67da3a68-a723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:79:68:06:1f:d6:43:4c:46:53:f0:19:a7:2c: 11:93:9e:ef:f5:bf:5e:c6:e4:5c:fc:49:0b:bf:e2: 3b:bf:d2:35:c2:06:11:e1:4e:8f:02:bf:80:aa:1b: 4a:80:5c:c4:a0:1f:d8:91:64:c7:14:ac:0e:18:bc: a8:4c:e2:2b:6b:9e:48:6d:9f:6e:35:1d:74:b5:87: b1:30:48:dc:db:84:91:96:ea:17:51:d5:84:71:21: b7:07:bb:56:0d:e9:fb:9b:13:d4:b7:d2:d5:24:66: 63:dd:d0:f4:f4:d2:2d:19:fd:e1:ac:36:3d:84:a1: 53:6c:27:99:b6:bf:4e:ff:52:2a:f3:8b:c5:36:b7: b0:e2:c7:79:2a:de:2b:c9:e2:65:d6:84:40:45:5e: 9b:40:86:c3:c8:56:68:f0:e5:7f:eb:a3:ad:f3:5a: da:9e:dc:55:e5:13:ac:24:33:48:8a:3e:5e:87:1c: e9:ff:1f:23:29:f0:b5:6d:09:5d:98:76:e0:4d:88: ab:0c:dc:1e:c2:ac:1b:5f:c4:3a:01:33:36:cc:0c: d3:e3:e1:a0:59:40:8f:2c:42:57:83:13:09:35:d4: da:bf:77:59:ec:ae:8d:33:d3:e6:c5:5c:53:99:df: c5:6a:a4:e6:6b:40:53:71:76:1f:e8:7b:0a:7b:d1: 2d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:42:1B:96:91:F8:A4:39:4C:5C:7D:03:E1:40:3E:3C:DD:EF:B2:7B X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/8CC07FC0047211F0A6541526C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.255.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:84:5e:ce:a6:68:04:95:88:26:fd:db:75:40:76:b0:3b:25: 29:d1:60:48:49:c8:64:82:da:0e:81:e4:11:92:cf:8c:ac:6f: 2b:f7:94:cd:eb:9e:f2:7b:76:c5:5a:45:cb:f8:29:53:ad:a9: 65:fd:5d:de:7f:b8:43:c3:d0:60:91:9a:bf:b4:e0:30:05:56: 62:a5:0f:0e:2f:73:95:c4:0f:4e:88:4b:a3:ac:cb:70:79:ed: ee:aa:ed:81:17:a2:01:aa:de:e5:5c:4c:5e:24:b7:83:96:9a: 11:63:f7:8d:a6:ba:1c:13:07:b2:a4:e6:14:81:cb:bb:7d:6e: 1c:fd:5e:fe:79:9c:2c:e3:f6:a3:0e:4e:fb:db:34:8e:6e:07: 62:b6:99:cf:0c:0c:ae:19:e6:b7:56:2d:00:4d:18:fa:fe:7f: 7c:3c:de:6b:0a:67:d1:ca:eb:70:e5:11:c5:67:88:05:03:8a: f6:c8:5e:b6:28:e5:8a:0d:d3:cb:76:b3:cc:e2:ef:ee:6a:f9: a0:d4:f2:dc:3a:26:f8:9b:88:5b:0f:bc:96:fa:a9:b5:87:42: f8:bb:c7:d0:16:09:65:f3:19:31:82:ae:15:6c:d4:12:97:54: 1a:94:97:9b:17:db:6e:21:39:39:a2:94:c9:09:99:8e:26:3f: b4:4f:b8:30 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDI4NzExMC8GA1UEBRMoMkE0NUE0MUQ2MEUyRjEwNEQzREQzOUM4NkYxNEJDNTkw MDg4M0Y0QjAeFw0yNTAzMTkwMzMwNDhaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZGEzYTY4LWE3MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeeWgGH9ZDTEZT8BmnLBGTnu/1v17G5Fz8SQu/4ju/0jXCBhHhTo8Cv4CqG0qA XMSgH9iRZMcUrA4YvKhM4itrnkhtn241HXS1h7EwSNzbhJGW6hdR1YRxIbcHu1YN 6fubE9S30tUkZmPd0PT00i0Z/eGsNj2EoVNsJ5m2v07/Uirzi8U2t7Dix3kq3ivJ 4mXWhEBFXptAhsPIVmjw5X/ro63zWtqe3FXlE6wkM0iKPl6HHOn/HyMp8LVtCV2Y duBNiKsM3B7CrBtfxDoBMzbMDNPj4aBZQI8sQleDEwk11Nq/d1nsro0z0+bFXFOZ 38VqpOZrQFNxdh/oewp70S3DAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQkIblpH4 pDlMXH0D4UA+PN3vsnswHwYDVR0jBBgwFoAUKkWkHWDi8QTT3TnIbxS8WQCIP0sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0Mjg3LzM3Mjc4QzE2MDQ2 RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2tXa0hXRGk4UVRUM1RuSWJ4UzhXUUNJUDBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI4Ny8zNzI3OEMxNjA0NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi84Q0MwN0ZDMDA0 NzIxMUYwQTY1NDE1MjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9/zANBgkqhkiG9w0BAQsFAAOCAQEAfIRezqZoBJWIJv3b dUB2sDslKdFgSEnIZILaDoHkEZLPjKxvK/eUzeue8nt2xVpFy/gpU62pZf1d3n+4 Q8PQYJGav7TgMAVWYqUPDi9zlcQPTohLo6zLcHnt7qrtgReiAare5VxMXiS3g5aa EWP3jaa6HBMHsqTmFIHLu31uHP1e/nmcLOP2ow5O+9s0jm4HYraZzwwMrhnmt1Yt AE0Y+v5/fDzeawpn0crrcOURxWeIBQOK9shetijlig3Ty3azzOLv7mr5oNTy3Dom +JuIWw+8lvqptYdC+LvH0BYJZfMZMYKuFWzUEpdUGpSXmxfbbiE5OaKUyQmZjiY/ tE+4MA== -----END CERTIFICATE-----Generated at Sat Apr 12 10:34:30 2025 by rpki-client