$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/F5FC39B600F811F0BD702A69C4F9AE02.roa File: F5FC39B600F811F0BD702A69C4F9AE02.roa (raw, json) Hash identifier: 8uwpV2NMP0utQgRKFvrYO1IhjVauGOu4rc/6wACuwjU= Subject key identifier: 42:0B:99:34:0B:64:97:65:EE:D0:6D:C8:42:36:64:A3:0B:53:41:5B Certificate issuer: /CN=A91EA80C/serialNumber=312440201B2EF74B7CAC6C31FB85F41E9C4686A0 Certificate serial: 0D Authority key identifier: 31:24:40:20:1B:2E:F7:4B:7C:AC:6C:31:FB:85:F4:1E:9C:46:86:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/F5FC39B600F811F0BD702A69C4F9AE02.roa Signing time: Fri 14 Mar 2025 17:22:53 +0000 ROA not before: Fri 14 Mar 2025 17:22:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 32135 IP address blocks: 163.223.40.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.crl rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 06:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA80C, serialNumber=312440201B2EF74B7CAC6C31FB85F41E9C4686A0 Validity Not Before: Mar 14 17:22:53 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67d465ec-a3b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3e:6e:1d:28:c5:9f:0a:32:e6:83:05:3f:93: e2:2e:77:10:65:8e:6b:e2:90:e4:bc:d6:f9:46:11: 20:c4:de:1b:47:74:87:8a:5b:98:dc:14:e3:91:3c: ef:68:ef:85:d8:dd:39:a7:2f:66:ea:04:73:94:df: bf:b0:6c:e3:b0:f7:b3:ca:14:f2:45:eb:29:67:f0: f8:c4:53:00:7a:7b:5d:50:c7:15:9e:17:a4:19:0e: 29:08:a1:b5:d3:44:72:40:8d:4a:28:64:b0:19:09: 42:5f:9f:93:f8:30:2f:be:fc:d7:09:2c:42:d9:cb: b8:5a:90:12:f5:6b:1a:75:ee:0b:f4:d6:10:f8:f0: 1d:9b:ca:da:23:c5:b2:93:e1:70:8a:00:8b:a3:a3: c2:72:57:24:0c:d0:72:3d:36:3c:8f:76:39:ca:0e: 12:0b:2f:61:4a:ae:f1:e5:84:11:62:fb:63:1a:ad: 76:5d:5c:b4:3e:5b:07:bd:38:3c:f5:59:0f:31:88: 64:73:13:a3:9c:cd:3b:29:41:5d:80:cf:01:8c:60: 7a:ee:43:30:b0:60:18:c3:78:e1:b2:55:82:6f:49: 46:87:c8:95:24:37:d3:cd:b8:dd:11:ec:59:07:fc: d8:5b:18:88:b6:ec:3a:d2:68:d3:72:8c:ab:f3:a7: 4c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0B:99:34:0B:64:97:65:EE:D0:6D:C8:42:36:64:A3:0B:53:41:5B X509v3 Authority Key Identifier: keyid:31:24:40:20:1B:2E:F7:4B:7C:AC:6C:31:FB:85:F4:1E:9C:46:86:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/F5FC39B600F811F0BD702A69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.40.0/24 Signature Algorithm: sha256WithRSAEncryption 94:ca:61:11:5b:cb:ee:99:6a:1c:62:bb:6c:3c:68:44:8f:49: c4:83:b9:d5:5f:b2:37:7b:61:de:4c:bd:67:c5:2a:22:88:da: 0b:08:53:4d:ad:a3:b7:ee:4d:49:96:28:b4:d5:9f:c1:cf:24: 34:14:c3:3e:e7:59:52:2b:71:a1:29:7c:f3:3b:ba:cf:33:7e: ae:2e:84:dc:d0:4a:36:7a:0b:1b:98:6b:cc:cd:a4:39:45:90: aa:f8:5b:2f:4d:dd:9f:54:a2:6d:7d:7d:c1:d4:a9:2d:5b:d2: 38:d9:95:06:82:4e:f2:38:4f:8b:dc:00:09:5e:01:ca:0e:60: 02:11:8d:bb:c4:f4:fc:d9:98:f1:36:b9:ea:bf:2c:3f:35:1b: d5:95:50:55:d9:17:67:a2:aa:e4:b2:7d:50:1c:b4:16:30:aa: 78:41:f7:30:03:12:38:05:17:fa:44:52:5f:65:53:80:9f:05: eb:0b:2f:8b:c9:4b:2b:3e:15:75:6b:37:90:3f:58:92:6e:ba: 14:66:a7:1a:80:7b:f3:31:37:ba:ae:5c:8c:06:78:01:8e:b1: 53:9e:23:90:04:f1:a7:c7:69:c9:37:85:38:f1:35:16:5e:4e: ca:34:e0:a9:3c:b1:0a:af:dc:d1:79:ac:6a:92:e0:b4:d5:95: 1d:f9:84:24 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTgwQzExMC8GA1UEBRMoMzEyNDQwMjAxQjJFRjc0QjdDQUM2QzMxRkI4NUY0MUU5 QzQ2ODZBMDAeFw0yNTAzMTQxNzIyNTNaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDQ2NWVjLWEzYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6Pm4dKMWfCjLmgwU/k+IudxBljmvikOS81vlGESDE3htHdIeKW5jcFOORPO9o 74XY3TmnL2bqBHOU37+wbOOw97PKFPJF6yln8PjEUwB6e11QxxWeF6QZDikIobXT RHJAjUooZLAZCUJfn5P4MC++/NcJLELZy7hakBL1axp17gv01hD48B2bytojxbKT 4XCKAIujo8JyVyQM0HI9NjyPdjnKDhILL2FKrvHlhBFi+2MarXZdXLQ+Wwe9ODz1 WQ8xiGRzE6OczTspQV2AzwGMYHruQzCwYBjDeOGyVYJvSUaHyJUkN9PNuN0R7FkH /NhbGIi27DrSaNNyjKvzp0y1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQguZNAtk l2Xu0G3IQjZkowtTQVswHwYDVR0jBBgwFoAUMSRAIBsu90t8rGwx+4X0HpxGhqAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBODBDL0RFOThFQUYwRkI2 NTExRUZBMzc2RTQ0OUM0RjlBRTAyL01TUkFJQnN1OTB0OHJHd3gtNFgwSHB4R2hx QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVNSQUlCc3U5MHQ4ckd3eC00WDBIcHhHaHFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTgwQy9ERTk4RUFGMEZCNjUxMUVGQTM3NkU0NDlDNEY5QUUwMi9GNUZDMzlCNjAw RjgxMUYwQkQ3MDJBNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKPfKDANBgkqhkiG9w0BAQsFAAOCAQEAlMphEVvL7plqHGK7 bDxoRI9JxIO51V+yN3th3ky9Z8UqIojaCwhTTa2jt+5NSZYotNWfwc8kNBTDPudZ UitxoSl88zu6zzN+ri6E3NBKNnoLG5hrzM2kOUWQqvhbL03dn1SibX19wdSpLVvS ONmVBoJO8jhPi9wACV4Byg5gAhGNu8T0/NmY8Ta56r8sPzUb1ZVQVdkXZ6Kq5LJ9 UBy0FjCqeEH3MAMSOAUX+kRSX2VTgJ8F6wsvi8lLKz4VdWs3kD9Ykm66FGanGoB7 8zE3uq5cjAZ4AY6xU54jkATxp8dpyTeFOPE1Fl5OyjTgqTyxCq/c0XmsapLgtNWV HfmEJA== -----END CERTIFICATE-----Generated at Fri Apr 18 01:45:08 2025 by rpki-client