$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/C2E1583EECFA11EFA881E216C4F9AE02.roa File: C2E1583EECFA11EFA881E216C4F9AE02.roa (raw, json) Hash identifier: KZxky345FbSXUrOq6QK1EajrLW8GtjyV/j47aC9IQ2w= Subject key identifier: 4E:EC:57:6B:EB:12:60:0E:19:9B:07:48:6E:66:68:39:B1:EE:35:82 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 3C Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/C2E1583EECFA11EFA881E216C4F9AE02.roa Signing time: Mon 26 May 2025 06:59:08 +0000 ROA not before: Mon 26 May 2025 06:59:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135310 IP address blocks: 163.61.106.0/23 maxlen: 24 2401:ee60::/32 maxlen: 32 2401:ee60::/34 maxlen: 34 2401:ee60:1000::/48 maxlen: 48 2401:ee60:1001::/48 maxlen: 48 2401:ee60:1002::/48 maxlen: 48 2401:ee60:1003::/48 maxlen: 48 2401:ee60:1004::/48 maxlen: 48 2401:ee60:1005::/48 maxlen: 48 2401:ee60:1006::/48 maxlen: 48 2401:ee60:1007::/48 maxlen: 48 2401:ee60:1008::/48 maxlen: 48 2401:ee60:1009::/48 maxlen: 48 2401:ee60:100a::/48 maxlen: 48 2401:ee60:100b::/48 maxlen: 48 2401:ee60:100c::/48 maxlen: 48 2401:ee60:100d::/48 maxlen: 48 2401:ee60:4000::/34 maxlen: 34 2401:ee60:8000::/34 maxlen: 34 2401:ee60:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: May 26 06:59:07 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6834113b-e120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:04:31:65:48:12:d2:4d:50:99:8f:5e:17:ee: bb:29:38:5a:5b:c8:60:44:64:b3:29:19:3f:09:66: 5a:25:51:e7:6b:f3:d2:37:6f:9e:c2:db:31:b8:98: 5a:c8:0f:d5:45:2d:ec:78:85:8b:b1:0c:e3:33:04: 4e:e5:dc:48:f5:30:9b:d1:ad:96:62:02:21:5a:98: dc:91:ff:18:48:21:45:b2:87:c8:84:75:a3:6e:eb: 02:b4:ce:24:64:0d:50:ee:4f:b4:43:b5:a3:96:00: 12:36:d1:9b:59:f2:1a:b4:9d:84:00:4a:40:e0:86: 3f:16:66:f9:f9:3f:fb:6d:eb:c6:72:68:1f:e4:44: b9:d3:65:6c:2b:64:64:93:ef:55:f9:44:62:f5:2c: 98:67:fb:0b:5d:fc:b8:8e:65:69:b9:99:87:1f:05: 25:ff:01:77:7d:4b:ba:d2:09:e4:09:ea:25:ee:47: 16:47:6b:33:49:0c:da:e5:3c:92:eb:62:7c:a8:83: 33:97:51:9f:6b:27:e0:40:19:eb:57:cb:d8:bc:d0: 07:57:50:f5:b4:5b:2c:dc:6f:cd:52:34:34:c8:83: c6:df:29:07:3f:29:93:1a:fa:8a:9d:3e:ab:d7:43: da:a7:ae:1d:58:c3:29:35:f7:10:bc:8f:67:5b:fb: 00:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:EC:57:6B:EB:12:60:0E:19:9B:07:48:6E:66:68:39:B1:EE:35:82 X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/C2E1583EECFA11EFA881E216C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.106.0/23 IPv6: 2401:ee60::/32 Signature Algorithm: sha256WithRSAEncryption 48:61:34:2d:1e:3e:74:55:bb:bb:dc:b4:61:b5:66:30:37:77: 89:3c:89:c1:f0:f1:92:91:67:bf:07:c0:51:66:1c:c5:ba:92: ea:90:c6:53:14:87:93:d8:05:91:23:32:cc:25:66:fa:fb:85: c4:4a:8a:b4:f1:86:9d:08:4d:ea:cf:e6:90:70:0e:cc:53:f8: fa:0e:66:3e:af:f7:6f:5a:a4:2e:eb:d3:1c:96:4c:02:b7:7d: ce:25:71:73:02:8e:f6:8c:82:66:93:a8:54:37:4e:02:f6:6a: 26:9d:15:80:a7:42:98:1e:9c:9e:d1:6e:69:8a:b5:26:03:db: 83:0b:c2:38:63:17:1e:7b:87:a5:4c:f2:d5:11:b8:3e:9c:bc: 9f:19:bd:04:8f:66:cc:ed:88:2b:e3:83:0d:39:aa:4f:99:ec: aa:6e:db:bf:a3:81:1e:29:3e:38:ec:66:7d:46:8a:16:9a:d9: 15:32:9f:b9:8a:02:8f:9e:de:6f:8c:ed:a4:54:ab:7f:40:05: 55:97:31:55:bc:01:6d:83:85:1f:05:07:6b:6e:aa:ce:fe:23: 9f:44:9c:53:b2:f1:4e:72:e6:08:46:27:42:2d:61:71:17:21: 58:56:b7:c6:c6:6a:2b:51:7f:5d:e8:3c:bc:46:fa:ae:73:1f: d7:58:2a:c4 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkM3MjExMC8GA1UEBRMoMzYxNkUwMURBMzMxN0YwOUVFQ0E5OEU3QkM3NTRDQkM5 OTBEN0Q2ODAeFw0yNTA1MjYwNjU5MDdaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzQxMTNiLWUxMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNBDFlSBLSTVCZj14X7rspOFpbyGBEZLMpGT8JZlolUedr89I3b57C2zG4mFrI D9VFLex4hYuxDOMzBE7l3Ej1MJvRrZZiAiFamNyR/xhIIUWyh8iEdaNu6wK0ziRk DVDuT7RDtaOWABI20ZtZ8hq0nYQASkDghj8WZvn5P/tt68ZyaB/kRLnTZWwrZGST 71X5RGL1LJhn+wtd/LiOZWm5mYcfBSX/AXd9S7rSCeQJ6iXuRxZHazNJDNrlPJLr YnyogzOXUZ9rJ+BAGetXy9i80AdXUPW0Wyzcb81SNDTIg8bfKQc/KZMa+oqdPqvX Q9qnrh1Ywyk19xC8j2db+wBzAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUTuxXa+sS YA4ZmwdIbmZoObHuNYIwHwYDVR0jBBgwFoAUNhbgHaMxfwnuypjnvHVMvJkNfWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQzcyLzlENUI1MTU2RUNG OTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmhiZ0hhTXhmd251eXBqbnZIVk12SmtOZldnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkM3Mi85RDVCNTE1NkVDRjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9DMkUxNTgzRUVD RkExMUVGQTg4MUUyMTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAaM9ajANBAIAAjAHAwUAJAHuYDANBgkqhkiG9w0BAQsFAAOC AQEASGE0LR4+dFW7u9y0YbVmMDd3iTyJwfDxkpFnvwfAUWYcxbqS6pDGUxSHk9gF kSMyzCVm+vuFxEqKtPGGnQhN6s/mkHAOzFP4+g5mPq/3b1qkLuvTHJZMArd9ziVx cwKO9oyCZpOoVDdOAvZqJp0VgKdCmB6cntFuaYq1JgPbgwvCOGMXHnuHpUzy1RG4 Ppy8nxm9BI9mzO2IK+ODDTmqT5nsqm7bv6OBHik+OOxmfUaKFprZFTKfuYoCj57e b4ztpFSrf0AFVZcxVbwBbYOFHwUHa26qzv4jn0ScU7LxTnLmCEYnQi1hcRchWFa3 xsZqK1F/Xeg8vEb6rnMf11gqxA== -----END CERTIFICATE-----Generated at Mon Jun 2 07:10:45 2025 by rpki-client