$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/2BF1D5F07E3511EE8CB63458C4F9AE02.roa File: 2BF1D5F07E3511EE8CB63458C4F9AE02.roa (raw, json) Hash identifier: xABbFnxjesSqqxHb5Z3LU/MaNyiAYDrCsWPlJjK46gQ= Subject key identifier: 1D:D8:63:F3:B1:52:36:DD:FC:5C:A3:CB:DA:5B:DF:74:F2:F2:2C:C1 Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 0399 Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/2BF1D5F07E3511EE8CB63458C4F9AE02.roa Signing time: Mon 17 Mar 2025 00:46:16 +0000 ROA not before: Mon 17 Mar 2025 00:46:16 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136251 IP address blocks: 210.79.61.0/24 maxlen: 24 210.79.62.0/24 maxlen: 24 210.79.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 921 (0x399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6 Validity Not Before: Mar 17 00:46:16 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d770d8-444a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:83:67:14:03:5a:c4:84:1a:a2:7c:bd:0d:97: 22:84:44:fe:71:98:7d:46:0b:4b:17:17:9f:48:4b: a5:86:9a:58:49:bf:7e:39:7a:ad:03:30:22:04:3f: 50:77:87:bd:d5:0c:f0:b8:ef:1e:95:8b:71:1d:dc: 8c:3f:ec:78:3d:28:c2:86:df:88:38:45:93:b1:11: e6:88:57:35:32:0b:72:75:d4:f0:76:c7:1d:1a:3e: e6:75:d9:05:60:72:c3:46:19:0c:ee:f4:85:4d:b7: f7:0d:e5:26:f7:9b:28:05:02:0d:cf:b4:25:0d:8c: ad:47:48:98:db:ad:9f:c1:c4:cb:ee:4d:33:00:4e: 1d:49:ce:69:c9:96:a4:20:a7:c2:cf:c2:02:e3:ce: 3e:53:59:4a:cd:bd:74:df:cc:80:8d:30:a3:1e:26: 30:ba:6c:0e:80:a2:0e:f9:cf:fe:1a:54:bf:3b:fd: cd:81:32:cd:39:ab:ce:38:e6:06:b2:af:17:95:11: dd:06:20:25:33:47:c0:f4:04:e7:0f:8c:c8:4a:1c: af:d0:b5:42:1f:f5:3f:0c:7c:8d:d8:08:15:e9:88: 7f:47:65:51:67:75:f9:3b:0e:65:13:bf:8e:dc:41: 26:ba:8a:0e:64:03:4e:95:11:b0:25:f6:22:db:6a: a9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D8:63:F3:B1:52:36:DD:FC:5C:A3:CB:DA:5B:DF:74:F2:F2:2C:C1 X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/2BF1D5F07E3511EE8CB63458C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.79.61.0-210.79.63.255 Signature Algorithm: sha256WithRSAEncryption 04:70:a1:5d:af:25:c4:59:3c:70:9b:95:eb:4d:a1:fa:2e:32: 42:2d:bb:8e:11:b6:2a:97:d4:9b:96:94:cf:7d:a8:2d:5e:90: 15:45:83:0a:fd:b8:6c:56:a4:db:39:14:ef:ce:82:28:0f:5a: 0f:80:71:22:7d:74:c5:4a:78:6d:43:c8:f2:41:71:66:c2:b5: 15:96:7c:47:fd:95:32:c6:cf:ab:da:3f:33:c3:80:62:1f:66: b7:19:79:2a:eb:d7:4a:12:56:95:0f:6c:79:4d:6a:cd:22:bd: 8d:2b:ed:d0:4c:3b:45:bb:1a:80:17:42:ab:d8:50:4d:bf:e4: 5f:5e:9a:33:5f:cf:cf:a2:75:f1:ff:6a:fe:26:3d:45:e8:6f: 37:50:e4:b7:10:38:d4:27:31:62:e5:e5:8a:4b:c7:2d:9f:b3: 02:2b:4d:9f:12:27:ae:95:53:bb:77:f8:fd:b9:a0:11:49:08: 1a:53:69:ff:f1:1a:18:74:7d:6b:76:dc:89:8d:b6:9b:9b:c1: ae:ce:6c:0d:8a:44:00:98:69:db:f9:a9:8a:67:09:51:30:49: 4b:95:a3:99:d9:38:e2:a1:b4:85:2a:a9:85:7c:2f:83:1a:ed: ad:39:88:23:72:4a:d0:d9:65:6e:05:6e:1d:4d:09:8d:65:e2: 84:d2:20:1f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICA5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjUwMzE3MDA0NjE2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q3NzBkOC00NDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YNnFANaxIQaony9DZcihET+cZh9RgtLFxefSEulhppYSb9+OXqtAzAiBD9Q d4e91QzwuO8elYtxHdyMP+x4PSjCht+IOEWTsRHmiFc1MgtyddTwdscdGj7mddkF YHLDRhkM7vSFTbf3DeUm95soBQINz7QlDYytR0iY262fwcTL7k0zAE4dSc5pyZak IKfCz8IC484+U1lKzb1038yAjTCjHiYwumwOgKIO+c/+GlS/O/3NgTLNOavOOOYG sq8XlRHdBiAlM0fA9ATnD4zIShyv0LVCH/U/DHyN2AgV6Yh/R2VRZ3X5Ow5lE7+O 3EEmuooOZANOlRGwJfYi22qpdwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFB3YY/Ox Ujbd/Fyjy9pb33Ty8izBMB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvMkJGMUQ1RjA3 RTM1MTFFRThDQjYzNDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEANJPPQMEBtJPADANBgkqhkiG9w0BAQsFAAOCAQEABHCh Xa8lxFk8cJuV602h+i4yQi27jhG2KpfUm5aUz32oLV6QFUWDCv24bFak2zkU786C KA9aD4BxIn10xUp4bUPI8kFxZsK1FZZ8R/2VMsbPq9o/M8OAYh9mtxl5KuvXShJW lQ9seU1qzSK9jSvt0Ew7RbsagBdCq9hQTb/kX16aM1/Pz6J18f9q/iY9RehvN1Dk txA41CcxYuXlikvHLZ+zAitNnxInrpVTu3f4/bmgEUkIGlNp//EaGHR9a3bciY22 m5vBrs5sDYpEAJhp2/mpimcJUTBJS5Wjmdk44qG0hSqphXwvgxrtrTmII3JK0Nll bgVuHU0JjWXihNIgHw== -----END CERTIFICATE-----Generated at Sun Apr 6 01:36:53 2025 by rpki-client