$ rpki-client -vvf rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/FDB7B000370C11F08D3A0061C4F9AE02.roa File: FDB7B000370C11F08D3A0061C4F9AE02.roa (raw, json) Hash identifier: Oi7qbfIeedADNBuGLbSCRcKYQPpXPMSZUOd7rqg8qXg= Subject key identifier: 45:10:14:DB:FC:56:49:D1:E2:A9:88:CE:99:52:86:07:7D:12:75:22 Certificate issuer: /CN=A914CFBF/serialNumber=78EC0F0E494F228EAA4383D6C60DEB1C362A5051 Certificate serial: 36 Authority key identifier: 78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/FDB7B000370C11F08D3A0061C4F9AE02.roa Signing time: Thu 22 May 2025 13:02:18 +0000 ROA not before: Thu 22 May 2025 13:02:18 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 131471 IP address blocks: 163.61.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CFBF, serialNumber=78EC0F0E494F228EAA4383D6C60DEB1C362A5051 Validity Not Before: May 22 13:02:18 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=682f205a-59f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c1:c4:0a:95:75:a9:1e:9a:9e:10:02:2d:ca: 58:25:2a:67:86:f0:59:4b:30:cf:22:09:ff:8e:c4: 3b:ad:ef:57:06:63:d8:46:0e:d4:45:85:4b:2d:a4: 4a:91:e7:05:8d:5c:14:e3:4d:71:c2:e3:8f:aa:86: 62:55:27:f1:c5:41:3e:56:64:10:53:e2:84:3f:a9: 49:66:73:0b:12:3d:7c:01:48:3a:65:b0:ea:e5:a0: db:ec:60:02:87:b9:cd:e5:1d:8b:8e:c2:8d:76:f9: a4:d4:48:30:1a:4f:22:e5:2f:db:0c:48:5b:57:68: 6d:18:29:3e:ff:91:46:00:ab:8e:d8:6f:5c:11:bb: dd:d3:a8:07:94:6d:46:9c:c2:3c:1d:dc:52:9a:fc: 08:e6:33:ac:4b:09:09:ed:92:1d:00:9e:05:98:b8: c5:fc:b7:1e:6c:0e:84:67:0d:c0:12:1b:8c:d3:dc: f1:d1:82:8b:79:94:7c:20:b1:35:bd:d0:65:0c:17: 16:8d:ec:e1:9a:08:f3:67:d8:60:fb:6e:0b:0e:01: 15:d4:4e:ad:b4:45:70:59:06:ac:85:55:96:7a:d4: 45:c2:84:af:c4:bb:53:da:eb:d6:18:35:74:ab:bd: ef:45:f1:43:14:7f:0c:45:9e:7e:0c:42:e2:c4:92: 2c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:10:14:DB:FC:56:49:D1:E2:A9:88:CE:99:52:86:07:7D:12:75:22 X509v3 Authority Key Identifier: keyid:78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/FDB7B000370C11F08D3A0061C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.129.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:fa:c1:ee:bf:3d:f0:56:8c:61:1c:30:c7:28:f1:5d:99:c6: 9e:37:ae:ef:21:db:d5:27:05:34:52:ff:41:c6:e4:24:5a:a1: a8:74:c9:60:85:e3:37:b6:68:c0:54:d3:70:5d:59:31:95:e4: ef:13:7c:19:70:81:4e:66:14:6c:08:3c:b2:49:d3:a4:86:aa: ec:e7:ba:e5:c6:6b:e5:46:9e:d1:25:a0:84:9c:15:97:a2:01: bb:3f:80:ad:39:4a:32:3e:c2:88:66:48:90:b4:89:03:62:41: 4b:a6:20:df:2f:79:9d:ea:fb:58:05:19:92:d3:69:f9:ca:b0: 33:19:81:aa:97:21:3a:55:86:d7:38:8c:5e:4d:d3:ba:5c:5a: 4d:5f:56:8f:fe:46:2d:f8:fc:cc:39:9f:c9:ca:2e:fd:de:34: fa:0f:5a:f7:c8:45:69:21:81:89:8e:a2:09:48:bd:2d:e6:30: 53:d4:f2:0f:1a:91:12:87:6b:47:ea:f8:5f:b3:d5:00:82:0b: 4a:b1:5b:1e:f2:29:3c:96:b6:7e:58:cc:15:9a:65:da:8e:9b: 60:e1:6a:63:f9:e8:82:c1:75:83:f2:d8:9f:c3:49:5d:ef:c1: 1c:2e:f1:0e:1b:35:a5:bb:6e:19:e3:fb:f3:65:a0:c4:ca:91: ac:16:9a:40 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Q0ZCRjExMC8GA1UEBRMoNzhFQzBGMEU0OTRGMjI4RUFBNDM4M0Q2QzYwREVCMUMz NjJBNTA1MTAeFw0yNTA1MjIxMzAyMThaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmYyMDVhLTU5ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/wcQKlXWpHpqeEAItylglKmeG8FlLMM8iCf+OxDut71cGY9hGDtRFhUstpEqR 5wWNXBTjTXHC44+qhmJVJ/HFQT5WZBBT4oQ/qUlmcwsSPXwBSDplsOrloNvsYAKH uc3lHYuOwo12+aTUSDAaTyLlL9sMSFtXaG0YKT7/kUYAq47Yb1wRu93TqAeUbUac wjwd3FKa/AjmM6xLCQntkh0AngWYuMX8tx5sDoRnDcASG4zT3PHRgot5lHwgsTW9 0GUMFxaN7OGaCPNn2GD7bgsOARXUTq20RXBZBqyFVZZ61EXChK/Eu1Pa69YYNXSr ve9F8UMUfwxFnn4MQuLEkiwNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURRAU2/xW SdHiqYjOmVKGB30SdSIwHwYDVR0jBBgwFoAUeOwPDklPIo6qQ4PWxg3rHDYqUFEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDRkJGLzMyNzYxMDM4RUQx MjExRUY5QjJENDk1Q0M0RjlBRTAyL2VPd1BEa2xQSW82cVE0UFd4ZzNySERZcVVG RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZU93UERrbFBJbzZxUTRQV3hnM3JIRFlxVUZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0ZCRi8zMjc2MTAzOEVEMTIxMUVGOUIyRDQ5NUNDNEY5QUUwMi9GREI3QjAwMDM3 MEMxMUYwOEQzQTAwNjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9gTANBgkqhkiG9w0BAQsFAAOCAQEAWvrB7r898FaMYRww xyjxXZnGnjeu7yHb1ScFNFL/QcbkJFqhqHTJYIXjN7ZowFTTcF1ZMZXk7xN8GXCB TmYUbAg8sknTpIaq7Oe65cZr5Uae0SWghJwVl6IBuz+ArTlKMj7CiGZIkLSJA2JB S6Yg3y95ner7WAUZktNp+cqwMxmBqpchOlWG1ziMXk3TulxaTV9Wj/5GLfj8zDmf ycou/d40+g9a98hFaSGBiY6iCUi9LeYwU9TyDxqREodrR+r4X7PVAIILSrFbHvIp PJa2fljMFZpl2o6bYOFqY/nogsF1g/LYn8NJXe/BHC7xDhs1pbtuGeP782WgxMqR rBaaQA== -----END CERTIFICATE-----Generated at Tue Jun 3 23:46:11 2025 by rpki-client