$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/3CA27876F73F11EF95C5F011C4F9AE02.roa File: 3CA27876F73F11EF95C5F011C4F9AE02.roa (raw, json) Hash identifier: N43S8PomeMoOc73XP6mqN9NeUSUDTrEwlo9H3GKtmMY= Subject key identifier: 05:BE:57:96:A0:6B:6D:14:E8:7B:EF:A6:67:9E:43:55:58:31:1B:EA Certificate issuer: /CN=A91F83B6/serialNumber=E46B9318585AC1E06CF384E2EECC21F4743389BB Certificate serial: 02 Authority key identifier: E4:6B:93:18:58:5A:C1:E0:6C:F3:84:E2:EE:CC:21:F4:74:33:89:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GuTGFhaweBs84Ti7swh9HQzibs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/3CA27876F73F11EF95C5F011C4F9AE02.roa Signing time: Sun 02 Mar 2025 08:20:45 +0000 ROA not before: Sun 02 Mar 2025 08:20:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141414 IP address blocks: 163.61.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/5GuTGFhaweBs84Ti7swh9HQzibs.crl rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/5GuTGFhaweBs84Ti7swh9HQzibs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GuTGFhaweBs84Ti7swh9HQzibs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83B6 Validity Not Before: Mar 2 08:20:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c414dc-7635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:41:b5:b7:e0:11:46:ad:30:74:00:51:20:be: b8:a6:81:b2:1d:40:76:16:15:28:b7:cc:db:50:6f: 09:07:91:22:2f:6b:b8:e4:98:09:b4:0d:b1:9f:cc: 9f:45:f9:1a:c7:97:c9:77:22:fe:0f:d8:58:9d:4c: ac:c7:d5:b4:a7:17:ab:f0:80:a0:a2:8c:1e:a6:59: 4f:7c:f1:72:42:ff:13:28:50:47:06:75:96:a1:41: 09:cc:55:f6:91:7e:d0:0a:b6:c1:f3:c3:e1:a8:d3: ed:46:66:b9:c7:64:23:d9:70:8a:ab:b2:f7:b9:ff: bf:d8:5d:8e:00:00:8a:bc:2f:69:d1:f5:fb:05:63: 5e:f0:b2:3f:aa:98:97:3d:67:1a:40:a0:81:6a:f7: 6b:aa:ff:5f:42:ed:e3:4b:b2:b6:59:cf:07:ef:2e: f2:1d:65:1e:c4:ba:d5:0d:65:de:3b:08:6c:6c:c8: f6:2d:55:0e:b4:56:a6:99:fe:36:e2:c0:a2:f0:f9: de:ea:bd:88:41:42:28:67:b3:5c:49:e1:78:7f:24: bf:8e:c2:a3:6e:1d:a4:6a:35:3e:22:28:f0:dc:9a: e4:c9:1c:9f:34:d9:c8:29:3a:9a:d6:44:76:79:2c: a5:3b:18:06:26:ab:65:b5:c2:85:53:02:78:ba:c1: 6c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:BE:57:96:A0:6B:6D:14:E8:7B:EF:A6:67:9E:43:55:58:31:1B:EA X509v3 Authority Key Identifier: keyid:E4:6B:93:18:58:5A:C1:E0:6C:F3:84:E2:EE:CC:21:F4:74:33:89:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/5GuTGFhaweBs84Ti7swh9HQzibs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GuTGFhaweBs84Ti7swh9HQzibs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/3CA27876F73F11EF95C5F011C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.217.0/24 Signature Algorithm: sha256WithRSAEncryption 53:35:53:cb:7b:86:50:2d:ff:9c:8f:c0:4f:d6:8d:2d:a7:35: c2:72:db:f0:26:22:ec:c8:72:b4:71:b8:24:1e:cf:05:a1:57: 36:cc:0d:de:49:fe:48:f5:b6:03:b2:6d:15:dc:21:da:03:e2: d4:c0:2c:d3:8e:19:9a:81:74:5d:5c:14:9c:0f:e6:c1:81:16: 58:e0:c7:42:84:6c:e5:f5:f1:22:1a:93:66:c3:9f:7e:52:c3: 9b:29:c7:e6:fa:f7:6b:23:67:ac:9d:a2:64:ac:d9:23:da:78: 81:94:46:44:55:af:a6:42:46:dd:a9:f1:50:e6:79:0e:87:15: 36:03:16:d9:0e:1c:01:33:17:cd:69:52:76:18:63:9b:4b:35: 44:55:71:30:55:63:75:0b:f3:bd:24:00:85:84:24:bc:a3:e2: 23:01:2f:26:f8:1c:d2:6f:2d:d2:33:82:ad:ec:c9:86:9d:30: bc:db:74:04:3a:7e:5f:45:5c:8c:fa:2b:ba:96:13:1e:ca:21: 9c:5c:7a:9e:66:69:07:05:8d:fe:36:62:82:31:92:cf:12:89: 89:1e:3a:63:75:68:77:a6:84:fc:cc:44:10:9e:23:1b:3d:05: 5e:66:e6:9f:d5:99:09:a9:bd:d1:a9:2b:0f:50:be:61:01:33: d7:21:12:ce -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODNCNjExMC8GA1UEBRMoRTQ2QjkzMTg1ODVBQzFFMDZDRjM4NEUyRUVDQzIxRjQ3 NDMzODlCQjAeFw0yNTAzMDIwODIwNDVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzQxNGRjLTc2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuQbW34BFGrTB0AFEgvrimgbIdQHYWFSi3zNtQbwkHkSIva7jkmAm0DbGfzJ9F +RrHl8l3Iv4P2FidTKzH1bSnF6vwgKCijB6mWU988XJC/xMoUEcGdZahQQnMVfaR ftAKtsHzw+Go0+1GZrnHZCPZcIqrsve5/7/YXY4AAIq8L2nR9fsFY17wsj+qmJc9 ZxpAoIFq92uq/19C7eNLsrZZzwfvLvIdZR7EutUNZd47CGxsyPYtVQ60VqaZ/jbi wKLw+d7qvYhBQihns1xJ4Xh/JL+OwqNuHaRqNT4iKPDcmuTJHJ802cgpOprWRHZ5 LKU7GAYmq2W1woVTAni6wWwbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBb5XlqBr bRToe++mZ55DVVgxG+owHwYDVR0jBBgwFoAU5GuTGFhaweBs84Ti7swh9HQzibsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4M0I2L0U4RjE4QjIyRjcz RTExRUY5Njg3MzcwREM0RjlBRTAyLzVHdVRHRmhhd2VCczg0VGk3c3doOUhRemli cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUd1VEdGaGF3ZUJzODRUaTdzd2g5SFF6aWJzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNCNi9FOEYxOEIyMkY3M0UxMUVGOTY4NzM3MERDNEY5QUUwMi8zQ0EyNzg3NkY3 M0YxMUVGOTVDNUYwMTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM92TANBgkqhkiG9w0BAQsFAAOCAQEAUzVTy3uGUC3/nI/A T9aNLac1wnLb8CYi7MhytHG4JB7PBaFXNswN3kn+SPW2A7JtFdwh2gPi1MAs044Z moF0XVwUnA/mwYEWWODHQoRs5fXxIhqTZsOfflLDmynH5vr3ayNnrJ2iZKzZI9p4 gZRGRFWvpkJG3anxUOZ5DocVNgMW2Q4cATMXzWlSdhhjm0s1RFVxMFVjdQvzvSQA hYQkvKPiIwEvJvgc0m8t0jOCrezJhp0wvNt0BDp+X0VcjPorupYTHsohnFx6nmZp BwWN/jZigjGSzxKJiR46Y3Vod6aE/MxEEJ4jGz0FXmbmn9WZCam90akrD1C+YQEz 1yESzg== -----END CERTIFICATE-----Generated at Sun Apr 6 02:57:25 2025 by rpki-client