$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/F68ED40E37FA11F083B5FC7DC4F9AE02.roa File: F68ED40E37FA11F083B5FC7DC4F9AE02.roa (raw, json) Hash identifier: 8dvGtU4/STS35lWSdlUQSQ3IYG+2zjb7Ya5wIRb/kvY= Subject key identifier: E9:9A:8E:FC:24:F5:33:DE:DF:3E:8F:57:A8:EF:99:20:EF:83:A8:DC Certificate issuer: /CN=A91A0916/serialNumber=6FC22D30F319CD65DB5E3F6FFC5D141CD0166882 Certificate serial: 04 Authority key identifier: 6F:C2:2D:30:F3:19:CD:65:DB:5E:3F:6F:FC:5D:14:1C:D0:16:68:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8ItMPMZzWXbXj9v_F0UHNAWaII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/F68ED40E37FA11F083B5FC7DC4F9AE02.roa Signing time: Fri 23 May 2025 17:25:47 +0000 ROA not before: Fri 23 May 2025 17:25:47 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 31898 IP address blocks: 163.61.104.0/24 maxlen: 24 2001:df5:12c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/b8ItMPMZzWXbXj9v_F0UHNAWaII.crl rsync://rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/b8ItMPMZzWXbXj9v_F0UHNAWaII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8ItMPMZzWXbXj9v_F0UHNAWaII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 08:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0916, serialNumber=6FC22D30F319CD65DB5E3F6FFC5D141CD0166882 Validity Not Before: May 23 17:25:47 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6830af9a-2e66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ec:94:67:f0:d3:6f:b7:ca:1b:57:f4:14:fb: 61:55:71:cd:62:b6:f7:c4:1a:99:24:df:d7:57:19: 86:1c:21:b4:14:29:1c:b4:07:4b:c3:f6:34:9f:3d: 6c:01:0f:4d:d7:83:dd:af:fb:ab:69:f2:f8:f6:ef: c5:e6:51:9c:f8:38:0b:62:22:c0:0c:7d:fc:7a:0a: 1f:e7:4d:41:9f:30:cc:b9:45:1c:f9:18:23:1a:b4: a4:98:15:b8:c5:bf:37:f4:7f:79:7d:3d:45:e8:13: 46:51:9a:61:e0:d5:ca:fd:0f:87:b3:05:d9:6b:d8: 03:ce:9c:1f:59:f7:d0:56:41:8b:fc:2b:29:27:62: 0f:66:a5:8d:1f:1e:58:42:07:78:e2:e4:3d:76:b7: b0:7f:a0:d4:0c:2d:3e:72:66:6b:9e:8b:27:08:ae: 29:0c:e1:18:20:0f:a4:5a:55:69:54:b3:da:ca:c8: 02:ed:75:76:b5:73:99:38:42:19:48:44:b9:83:cf: bd:14:cb:f4:28:27:7f:d0:b7:26:9b:37:d3:dd:49: a4:9d:ed:36:c8:e5:81:9b:03:ac:18:dc:c3:eb:98: 0e:24:a1:6d:61:65:06:20:14:13:6e:ba:d1:90:9c: 66:35:2b:1d:d1:15:8c:31:47:24:07:aa:2c:1b:a9: be:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:9A:8E:FC:24:F5:33:DE:DF:3E:8F:57:A8:EF:99:20:EF:83:A8:DC X509v3 Authority Key Identifier: keyid:6F:C2:2D:30:F3:19:CD:65:DB:5E:3F:6F:FC:5D:14:1C:D0:16:68:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/b8ItMPMZzWXbXj9v_F0UHNAWaII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8ItMPMZzWXbXj9v_F0UHNAWaII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/F68ED40E37FA11F083B5FC7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.104.0/24 IPv6: 2001:df5:12c0::/48 Signature Algorithm: sha256WithRSAEncryption 17:53:25:6f:1e:88:34:57:2c:e4:47:63:96:6f:d7:f4:09:f9: 26:84:cc:5d:b4:54:49:d9:44:1c:be:1f:ac:99:1d:5b:4a:0f: 55:4b:e4:3c:4b:1b:11:f7:3f:77:42:4a:7c:6c:2a:3b:da:1a: d3:7c:e3:10:b1:db:42:5c:31:1e:f3:3a:df:c0:b3:e9:00:74: ba:e7:f9:45:a5:75:e7:59:80:dc:b5:d7:3e:91:5b:da:1e:a4: c9:c8:b9:4d:70:ad:39:19:b4:ab:2d:85:b3:cd:82:4d:8e:91: 97:cf:ef:50:56:fc:96:32:4c:fb:34:c8:18:95:c6:96:d2:1e: d7:75:ad:25:45:07:fa:a5:5e:31:ef:95:62:d4:0b:a4:7e:28: 13:fb:1c:9a:15:93:eb:4c:f0:b3:eb:cb:17:65:25:23:5b:a7: 0c:b9:6e:6a:92:b2:5c:9e:5f:f1:72:c6:b5:48:92:0a:96:a5: 58:3e:ba:8b:d2:01:56:a8:e3:3b:53:c9:14:6e:78:31:e9:61: 53:05:a0:9d:92:18:27:a6:6e:ec:80:62:ee:1c:45:d3:7d:22: 56:4f:e9:da:83:3e:6c:36:9f:7a:94:d5:13:af:83:9a:2b:b4: a4:de:7a:4a:6f:da:03:8e:ba:03:73:66:43:a9:ff:7a:8b:74: ba:e1:4b:c1 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MDkxNjExMC8GA1UEBRMoNkZDMjJEMzBGMzE5Q0Q2NURCNUUzRjZGRkM1RDE0MUNE MDE2Njg4MjAeFw0yNTA1MjMxNzI1NDdaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzBhZjlhLTJlNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC37JRn8NNvt8obV/QU+2FVcc1itvfEGpkk39dXGYYcIbQUKRy0B0vD9jSfPWwB D03Xg92v+6tp8vj278XmUZz4OAtiIsAMffx6Ch/nTUGfMMy5RRz5GCMatKSYFbjF vzf0f3l9PUXoE0ZRmmHg1cr9D4ezBdlr2APOnB9Z99BWQYv8KyknYg9mpY0fHlhC B3ji5D12t7B/oNQMLT5yZmueiycIrikM4RggD6RaVWlUs9rKyALtdXa1c5k4QhlI RLmDz70Uy/QoJ3/QtyabN9PdSaSd7TbI5YGbA6wY3MPrmA4koW1hZQYgFBNuutGQ nGY1Kx3RFYwxRyQHqiwbqb7LAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU6ZqO/CT1 M97fPo9XqO+ZIO+DqNwwHwYDVR0jBBgwFoAUb8ItMPMZzWXbXj9v/F0UHNAWaIIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwOTE2LzA0MEI4N0JBMzY0 QTExRjA4MDRBREU1RUM0RjlBRTAyL2I4SXRNUE1aeldYYlhqOXZfRjBVSE5BV2FJ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjhJdE1QTVp6V1hiWGo5dl9GMFVITkFXYUlJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDkxNi8wNDBCODdCQTM2NEExMUYwODA0QURFNUVDNEY5QUUwMi9GNjhFRDQwRTM3 RkExMUYwODNCNUZDN0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAKM9aDAPBAIAAjAJAwcAIAEN9RLAMA0GCSqGSIb3DQEBCwUA A4IBAQAXUyVvHog0VyzkR2OWb9f0CfkmhMxdtFRJ2UQcvh+smR1bSg9VS+Q8SxsR 9z93Qkp8bCo72hrTfOMQsdtCXDEe8zrfwLPpAHS65/lFpXXnWYDctdc+kVvaHqTJ yLlNcK05GbSrLYWzzYJNjpGXz+9QVvyWMkz7NMgYlcaW0h7Xda0lRQf6pV4x75Vi 1AukfigT+xyaFZPrTPCz68sXZSUjW6cMuW5qkrJcnl/xcsa1SJIKlqVYPrqL0gFW qOM7U8kUbngx6WFTBaCdkhgnpm7sgGLuHEXTfSJWT+nagz5sNp96lNUTr4OaK7Sk 3npKb9oDjroDc2ZDqf96i3S64UvB -----END CERTIFICATE-----Generated at Tue Jun 3 23:39:24 2025 by rpki-client