$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/FD63D5BEE90C11EFB9D98326C4F9AE02.roa File: FD63D5BEE90C11EFB9D98326C4F9AE02.roa (raw, json) Hash identifier: XHfUu+5yh0x5y1fbUjOYEtUpMyJC2J2Z1oZf8nnZcak= Subject key identifier: CF:68:AD:CA:F0:EA:F9:68:AA:B6:7B:C5:98:82:EC:22:CC:B2:10:A2 Certificate issuer: /CN=A91A0A2E/serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD Certificate serial: 02 Authority key identifier: 6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/FD63D5BEE90C11EFB9D98326C4F9AE02.roa Signing time: Wed 12 Feb 2025 06:45:47 +0000 ROA not before: Wed 12 Feb 2025 06:45:47 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 163.61.113.0/24 maxlen: 24 2001:df5:1440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A2E Validity Not Before: Feb 12 06:45:47 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ac439b-3280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d0:8a:f3:18:ce:88:d7:4a:ed:a3:ed:bc:ad: ce:40:d5:92:b5:b6:ab:34:e4:ae:32:ba:4d:9f:b4: 8a:25:1a:61:8b:6b:ae:43:b4:5a:fd:46:1e:7a:8d: 82:d0:4a:6e:54:25:b2:01:1a:c8:51:38:68:e0:9a: 6c:85:7e:db:1e:e6:6f:14:96:cf:aa:26:36:a5:f0: ff:43:62:7b:2e:0d:f0:27:7b:aa:c3:66:c3:00:62: 22:72:a9:2c:b8:2d:76:bf:ba:d6:c9:aa:4b:8d:ba: 64:10:40:35:21:51:71:a2:f5:0a:f2:96:5b:83:c7: a2:97:c9:d6:3d:c1:83:59:ea:3e:97:e1:11:43:37: 5e:1e:71:e0:36:e0:45:dc:1b:b5:ad:40:11:45:a7: f0:af:da:cd:b3:4a:45:89:aa:af:84:aa:f3:e8:01: 19:67:32:7e:55:c2:c3:4e:02:8c:44:0a:46:09:21: f7:02:f7:c6:0c:ab:65:3c:9c:03:33:dd:fc:73:9e: 87:81:bc:b8:ef:3d:da:fb:6b:5f:f9:16:2b:7a:73: 3a:2b:a5:b6:89:2d:89:18:c6:9b:22:90:14:8a:24: d7:a0:25:a1:29:7f:2c:2e:a8:9d:32:c7:05:c9:0b: 31:fa:38:2f:69:00:e9:fe:5e:a7:61:a9:64:67:c8: 65:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:68:AD:CA:F0:EA:F9:68:AA:B6:7B:C5:98:82:EC:22:CC:B2:10:A2 X509v3 Authority Key Identifier: keyid:6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/FD63D5BEE90C11EFB9D98326C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.113.0/24 IPv6: 2001:df5:1440::/48 Signature Algorithm: sha256WithRSAEncryption 79:69:7e:c8:72:19:77:04:49:a3:2d:d3:69:a7:6a:47:b8:37: 57:7b:97:65:ef:3b:64:1f:c0:fb:60:38:ec:5f:60:d4:06:f2: 9b:ff:b8:26:3b:4d:25:f7:8f:87:16:a4:94:d7:ed:f9:85:a2: 30:4e:92:f3:03:08:08:06:74:e5:84:59:85:75:38:d8:76:b1: f4:61:f4:67:01:a5:a4:75:93:a1:f1:69:bf:16:4d:7e:ef:ef: d4:82:cc:5b:f5:0f:85:35:43:24:15:56:45:97:96:6f:aa:de: b1:68:af:fb:78:85:4a:70:46:3d:03:c1:3e:bd:c3:30:9a:06: cd:e3:b9:cb:a0:59:be:90:aa:9b:e5:ae:fd:f6:f3:51:ac:5e: d8:de:05:a2:ca:79:5a:b8:f3:31:a8:69:1c:a5:b8:cb:ee:2d: 45:37:cb:46:a2:04:27:5d:30:c0:6a:3f:6e:11:e4:13:83:48: 9f:7e:aa:de:55:78:00:b8:72:c1:88:42:22:91:f1:48:29:59: d2:31:e6:7d:24:8c:47:3e:e6:49:a0:05:72:a4:36:91:70:98: 24:1d:44:2c:ff:2a:20:d8:0b:34:34:e7:89:4a:a0:6a:e5:cc: 8b:7c:b9:4a:f0:1e:6a:04:8c:db:b2:29:70:3f:15:11:35:2b: ea:9e:68:71 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MEEyRTExMC8GA1UEBRMoNkEzRUY2NzE4MkRCQjBGNkNDRjNDQTQxMzc4QzAxMTk4 MDZBRTlCRDAeFw0yNTAyMTIwNjQ1NDdaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWM0MzliLTMyODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDh0IrzGM6I10rto+28rc5A1ZK1tqs05K4yuk2ftIolGmGLa65DtFr9Rh56jYLQ Sm5UJbIBGshROGjgmmyFftse5m8Uls+qJjal8P9DYnsuDfAne6rDZsMAYiJyqSy4 LXa/utbJqkuNumQQQDUhUXGi9QrylluDx6KXydY9wYNZ6j6X4RFDN14eceA24EXc G7WtQBFFp/Cv2s2zSkWJqq+EqvPoARlnMn5VwsNOAoxECkYJIfcC98YMq2U8nAMz 3fxznoeBvLjvPdr7a1/5Fit6czorpbaJLYkYxpsikBSKJNegJaEpfywuqJ0yxwXJ CzH6OC9pAOn+XqdhqWRnyGVdAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUz2ityvDq +WiqtnvFmILsIsyyEKIwHwYDVR0jBBgwFoAUaj72cYLbsPbM88pBN4wBGYBq6b0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwQTJFL0M4MzZDN0IyRTkw QjExRUY4MjE4NTgyNEM0RjlBRTAyL2FqNzJjWUxic1BiTTg4cEJONHdCR1lCcTZi MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWo3MmNZTGJzUGJNODhwQk40d0JHWUJxNmIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEEyRS9DODM2QzdCMkU5MEIxMUVGODIxODU4MjRDNEY5QUUwMi9GRDYzRDVCRUU5 MEMxMUVGQjlEOTgzMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAKM9cTAPBAIAAjAJAwcAIAEN9RRAMA0GCSqGSIb3DQEBCwUA A4IBAQB5aX7Ichl3BEmjLdNpp2pHuDdXe5dl7ztkH8D7YDjsX2DUBvKb/7gmO00l 94+HFqSU1+35haIwTpLzAwgIBnTlhFmFdTjYdrH0YfRnAaWkdZOh8Wm/Fk1+7+/U gsxb9Q+FNUMkFVZFl5Zvqt6xaK/7eIVKcEY9A8E+vcMwmgbN47nLoFm+kKqb5a79 9vNRrF7Y3gWiynlauPMxqGkcpbjL7i1FN8tGogQnXTDAaj9uEeQTg0iffqreVXgA uHLBiEIikfFIKVnSMeZ9JIxHPuZJoAVypDaRcJgkHUQs/yog2As0NOeJSqBq5cyL fLlK8B5qBIzbsilwPxURNSvqnmhx -----END CERTIFICATE-----Generated at Fri Apr 4 23:54:24 2025 by rpki-client