$ rpki-client -vvf rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/89040F5A341011F0808A991DC4F9AE02.roa File: 89040F5A341011F0808A991DC4F9AE02.roa (raw, json) Hash identifier: aQCWDBoOh5osM5C7MBD0kh6o6WsN7hx2kjcWDkx53es= Subject key identifier: 63:CE:26:EB:19:AA:A0:B9:9C:F8:73:8C:35:74:C2:05:F0:B0:BF:D5 Certificate issuer: /CN=A9134A42/serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Certificate serial: 36 Authority key identifier: 80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/89040F5A341011F0808A991DC4F9AE02.roa Signing time: Sun 18 May 2025 17:50:07 +0000 ROA not before: Sun 18 May 2025 17:50:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137910 IP address blocks: 163.61.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134A42, serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Validity Not Before: May 18 17:50:07 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=682a1dcf-6dea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b6:ff:d7:20:33:0e:ce:67:d9:c8:86:7b:0d: 0b:97:03:b9:c6:9c:9c:56:ee:13:9e:f8:87:b6:25: 0e:a7:ce:a2:94:48:f4:ae:9a:a8:13:30:eb:c0:24: 9f:44:6c:fd:b0:9d:89:b3:69:96:eb:d9:d9:be:cb: 9e:74:04:d7:c5:2f:9a:00:b1:ac:8f:95:1d:9a:8d: b9:75:01:ea:cd:d6:13:e3:a9:15:60:18:9e:1b:44: fe:c6:86:df:15:0c:2c:73:72:fc:ef:45:3a:3b:11: 2b:af:5b:d7:dc:88:7f:03:be:d6:c8:4b:52:73:bf: 61:8e:84:eb:f0:83:ae:55:fc:a4:24:53:4a:f0:36: fc:9d:ff:5b:4f:7d:61:77:c4:0a:f4:6b:72:f0:ec: 39:4e:76:42:09:da:91:71:be:37:07:ff:ca:bb:28: 26:a1:48:ac:00:0b:e1:9b:49:e3:20:5a:9e:80:85: 78:67:ca:4a:d9:af:e3:a1:f2:7c:9c:32:a5:2c:91: 03:23:14:77:fa:23:b2:5c:95:fb:7d:b2:c1:14:2e: b6:b8:91:b4:b7:14:d4:63:1c:2a:0b:82:b8:7c:92: 96:25:88:e4:43:88:cb:47:13:af:2f:e3:e9:7c:17: cd:37:71:dd:d1:bf:e0:a5:ca:8c:e6:b2:1a:e6:48: 4f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:CE:26:EB:19:AA:A0:B9:9C:F8:73:8C:35:74:C2:05:F0:B0:BF:D5 X509v3 Authority Key Identifier: keyid:80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/89040F5A341011F0808A991DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.136.0/23 Signature Algorithm: sha256WithRSAEncryption 07:21:85:a5:98:32:2e:34:1e:41:6c:88:15:d8:87:fe:05:0b: 2c:68:72:5d:66:8f:22:5d:7e:80:6a:8c:9b:50:7d:67:41:39: 8c:45:9f:bc:f1:39:a5:95:78:10:f5:71:c7:3d:20:fd:6b:13: c7:bc:ff:d3:ef:95:cd:18:22:42:92:f1:70:6b:a5:af:40:69: b7:9b:4c:e2:c1:e9:41:55:3a:77:00:8a:85:c7:90:9b:3d:92: ae:c8:a4:4f:e2:d0:7e:1d:1b:99:77:6c:e3:23:30:68:6c:e2: 81:ae:8b:07:69:27:94:6f:81:63:2f:ee:62:51:69:65:db:4f: 78:0a:a6:b9:b4:a7:e7:e5:33:a4:45:b4:23:70:80:a1:c0:46: 6f:69:69:ad:04:11:a6:cf:eb:f9:a0:73:ac:c2:b8:b2:71:6b: 60:e7:1d:a7:7d:47:2b:75:05:19:93:5c:94:b0:37:23:d5:01: c6:b2:8a:64:70:92:6f:5b:1e:c3:f8:8f:bd:a4:d8:ad:b7:f8: da:59:7b:52:6f:98:48:7b:e2:13:d1:8e:fb:dc:80:2e:90:c6: 7e:28:d7:3f:03:ab:a9:8b:15:4f:cd:05:17:94:e7:8b:b3:3f: 80:21:b6:39:cc:1a:d8:c4:78:fb:fb:11:1f:59:71:4c:82:64: 1e:86:62:94 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NEE0MjExMC8GA1UEBRMoODBCMThCODFENDdCNjE3NzEzMDRFMEY3NjEwRDExQTdD MzQwNjEyMzAeFw0yNTA1MTgxNzUwMDdaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmExZGNmLTZkZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCftv/XIDMOzmfZyIZ7DQuXA7nGnJxW7hOe+Ie2JQ6nzqKUSPSumqgTMOvAJJ9E bP2wnYmzaZbr2dm+y550BNfFL5oAsayPlR2ajbl1AerN1hPjqRVgGJ4bRP7Ght8V DCxzcvzvRTo7ESuvW9fciH8DvtbIS1Jzv2GOhOvwg65V/KQkU0rwNvyd/1tPfWF3 xAr0a3Lw7DlOdkIJ2pFxvjcH/8q7KCahSKwAC+GbSeMgWp6AhXhnykrZr+Oh8nyc MqUskQMjFHf6I7Jclft9ssEULra4kbS3FNRjHCoLgrh8kpYliORDiMtHE68v4+l8 F803cd3Rv+ClyozmshrmSE81AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUY84m6xmq oLmc+HOMNXTCBfCwv9UwHwYDVR0jBBgwFoAUgLGLgdR7YXcTBOD3YQ0Rp8NAYSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0QTQyLzFGQjBGNjc2RUE4 QzExRUY4OEM5MDg1QUM0RjlBRTAyL2dMR0xnZFI3WVhjVEJPRDNZUTBScDhOQVlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0xHTGdkUjdZWGNUQk9EM1lRMFJwOE5BWVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEE0Mi8xRkIwRjY3NkVBOEMxMUVGODhDOTA4NUFDNEY5QUUwMi84OTA0MEY1QTM0 MTAxMUYwODA4QTk5MURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaM9iDANBgkqhkiG9w0BAQsFAAOCAQEAByGFpZgyLjQeQWyI FdiH/gULLGhyXWaPIl1+gGqMm1B9Z0E5jEWfvPE5pZV4EPVxxz0g/WsTx7z/0++V zRgiQpLxcGulr0Bpt5tM4sHpQVU6dwCKhceQmz2SrsikT+LQfh0bmXds4yMwaGzi ga6LB2knlG+BYy/uYlFpZdtPeAqmubSn5+UzpEW0I3CAocBGb2lprQQRps/r+aBz rMK4snFrYOcdp31HK3UFGZNclLA3I9UBxrKKZHCSb1sew/iPvaTYrbf42ll7Um+Y SHviE9GO+9yALpDGfijXPwOrqYsVT80FF5Tni7M/gCG2Ocwa2MR4+/sRH1lxTIJk HoZilA== -----END CERTIFICATE-----Generated at Wed Jun 4 00:08:00 2025 by rpki-client