$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/BCC26F6EF07F11EFB25D2369C4F9AE02.roa File: BCC26F6EF07F11EFB25D2369C4F9AE02.roa (raw, json) Hash identifier: AqnZuSs/50ixsQ8+UDuWtRAVxmvXUcEXRK8qwpmaDLs= Subject key identifier: 94:40:98:47:10:C2:EC:5B:3E:FD:AA:FC:D4:CD:D9:29:6F:99:9C:32 Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: 0D Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/BCC26F6EF07F11EFB25D2369C4F9AE02.roa Signing time: Fri 21 Feb 2025 18:16:22 +0000 ROA not before: Fri 21 Feb 2025 18:16:22 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138512 IP address blocks: 163.61.212.0/23 maxlen: 23 163.61.212.0/24 maxlen: 24 163.61.213.0/24 maxlen: 24 2001:df5:21c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89 Validity Not Before: Feb 21 18:16:22 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67b8c2f6-78c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:bb:d5:9d:57:b1:c2:e9:4b:8a:31:e7:d0:d5: 69:04:aa:32:11:77:cf:71:d0:c1:ed:87:8c:d6:f3: 5d:b9:7e:7f:1a:58:f7:36:7a:86:88:a0:ad:1f:57: bd:85:a5:c6:d7:8a:3d:f6:14:85:15:6e:e9:1a:7b: b9:46:79:3b:f6:93:ed:ac:c1:62:e9:7b:4e:70:57: 40:06:89:71:78:3e:c7:5d:a6:dc:da:68:0e:e7:90: 18:2c:19:bc:aa:56:81:66:10:89:32:55:2d:92:13: 4c:45:80:e2:5e:0d:26:ec:34:3d:5c:3a:92:35:a7: 87:b2:37:a4:5b:2b:9f:07:c8:62:cf:71:73:1a:7c: 5c:84:29:b8:42:cc:fe:03:de:4e:83:31:df:9a:04: 6d:31:c2:0d:24:15:ea:e3:01:78:c5:77:b4:76:1b: c0:4c:a5:66:55:8d:d7:09:6d:c1:19:58:f9:c2:0b: 30:8e:9e:1c:8e:c6:23:e9:5e:1b:1d:6b:7c:5e:8b: 63:4c:22:41:e2:75:59:3e:df:69:fc:e6:56:f7:76: c4:b6:c7:8b:25:f8:c9:3c:4c:c6:c0:0b:db:ad:8c: e2:6a:ee:ce:f1:86:b1:87:54:7b:39:34:0b:4e:f2: bb:ed:ab:d0:2b:d9:5e:fd:64:54:f6:56:cc:dd:38: c7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:40:98:47:10:C2:EC:5B:3E:FD:AA:FC:D4:CD:D9:29:6F:99:9C:32 X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/BCC26F6EF07F11EFB25D2369C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.212.0/23 IPv6: 2001:df5:21c0::/48 Signature Algorithm: sha256WithRSAEncryption 94:1b:fa:64:7f:14:45:16:f7:1d:3d:df:fb:a4:c4:1f:33:eb: 0a:58:77:dd:9f:c0:d3:fc:b3:4d:bd:c1:21:04:85:c7:56:40: eb:ba:63:ce:f1:df:9f:1f:16:dc:e1:af:64:4d:e9:13:7d:59: f3:a2:ff:9b:55:b9:87:b3:f2:28:4f:dd:29:95:c7:de:be:17: c9:53:a5:53:4b:67:18:10:e6:50:f6:bc:6b:dc:48:84:15:f9: e4:c1:cd:c1:a4:a6:6b:07:7b:54:79:d5:84:ef:81:53:1e:58: fc:99:63:64:be:3c:d0:64:9b:26:fc:08:f4:24:ec:8d:75:31: 64:db:87:6d:ee:15:5d:16:05:d6:bb:01:b8:c0:88:94:2a:b6: 71:57:22:b8:b2:9f:9a:53:19:59:1f:30:66:0d:d8:2a:9f:6a: 5d:0f:17:55:ae:52:da:4a:65:3d:b9:1d:1f:11:6c:de:2f:9a: 77:6f:73:c4:a5:6c:f8:10:15:22:72:97:4a:80:34:da:59:67: 6f:6f:2c:b8:a7:29:a6:10:a3:89:3f:a6:7f:47:92:ca:0a:ee: 12:2c:3e:79:e9:55:94:59:eb:bc:e2:73:13:ec:fb:b4:73:56: 12:f9:93:65:79:56:a5:f2:57:ee:42:1c:5a:35:c4:ac:66:19: 28:f7:26:5c -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkM4OTExMC8GA1UEBRMoQjE3NEEzRDRCQTlCNDc2RTJCMzFFNDdDNzJBMjk4RDA0 NEQ5ODc4NTAeFw0yNTAyMjExODE2MjJaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjhjMmY2LTc4YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnu9WdV7HC6UuKMefQ1WkEqjIRd89x0MHth4zW8125fn8aWPc2eoaIoK0fV72F pcbXij32FIUVbukae7lGeTv2k+2swWLpe05wV0AGiXF4PsddptzaaA7nkBgsGbyq VoFmEIkyVS2SE0xFgOJeDSbsND1cOpI1p4eyN6RbK58HyGLPcXMafFyEKbhCzP4D 3k6DMd+aBG0xwg0kFerjAXjFd7R2G8BMpWZVjdcJbcEZWPnCCzCOnhyOxiPpXhsd a3xei2NMIkHidVk+32n85lb3dsS2x4sl+Mk8TMbAC9utjOJq7s7xhrGHVHs5NAtO 8rvtq9Ar2V79ZFT2VszdOMcXAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUlECYRxDC 7Fs+/ar81M3ZKW+ZnDIwHwYDVR0jBBgwFoAUsXSj1LqbR24rMeR8cqKY0ETZh4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCQzg5LzlFNzI2MkJFRUZD RTExRUY4OTNGRjcwRUM0RjlBRTAyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc1hTajFMcWJSMjRyTWVSOGNxS1kwRVRaaDRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkM4OS85RTcyNjJCRUVGQ0UxMUVGODkzRkY3MEVDNEY5QUUwMi9CQ0MyNkY2RUYw N0YxMUVGQjI1RDIzNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAaM91DAPBAIAAjAJAwcAIAEN9SHAMA0GCSqGSIb3DQEBCwUA A4IBAQCUG/pkfxRFFvcdPd/7pMQfM+sKWHfdn8DT/LNNvcEhBIXHVkDrumPO8d+f Hxbc4a9kTekTfVnzov+bVbmHs/IoT90plcfevhfJU6VTS2cYEOZQ9rxr3EiEFfnk wc3BpKZrB3tUedWE74FTHlj8mWNkvjzQZJsm/Aj0JOyNdTFk24dt7hVdFgXWuwG4 wIiUKrZxVyK4sp+aUxlZHzBmDdgqn2pdDxdVrlLaSmU9uR0fEWzeL5p3b3PEpWz4 EBUicpdKgDTaWWdvbyy4pymmEKOJP6Z/R5LKCu4SLD556VWUWeu84nMT7Pu0c1YS +ZNleVal8lfuQhxaNcSsZhko9yZc -----END CERTIFICATE-----Generated at Sat Apr 5 01:55:00 2025 by rpki-client