$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/1FCC4B16E78911EF99A1A729C4F9AE02.roa File: 1FCC4B16E78911EF99A1A729C4F9AE02.roa (raw, json) Hash identifier: ur0Y19RBZlSTMz351Bt1h0UOu7/4H8KcC7lP/9sLDBM= Subject key identifier: 55:D2:AF:62:94:B5:C2:6A:F7:16:58:A6:A7:2C:38:1B:5C:2C:BC:46 Certificate issuer: /CN=A91AD34B/serialNumber=64CB6EA7D7D0E51F4D42B2D6847274ABB0736598 Certificate serial: 18 Authority key identifier: 64:CB:6E:A7:D7:D0:E5:1F:4D:42:B2:D6:84:72:74:AB:B0:73:65:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/1FCC4B16E78911EF99A1A729C4F9AE02.roa Signing time: Mon 10 Feb 2025 08:29:20 +0000 ROA not before: Mon 10 Feb 2025 08:29:20 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152900 IP address blocks: 163.61.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.crl rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 09:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD34B Validity Not Before: Feb 10 08:29:20 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a9b8e0-6cb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a8:eb:ed:a7:4d:2f:14:8e:21:1a:cc:51:d0: 58:a4:2d:e3:a5:70:f9:be:3f:5f:2e:19:c5:58:c3: c7:a8:56:ac:bc:1c:b4:7b:d9:fb:48:32:15:bb:a4: eb:54:e1:69:82:44:ca:6d:3f:d5:e7:10:c4:e5:2f: 00:f1:4a:74:8e:75:8c:5d:f4:c1:66:b6:89:6b:4b: 0a:c6:8e:82:a7:db:dd:1d:7e:dd:42:3b:c7:f7:1e: ac:27:67:96:b3:67:f4:f2:66:9d:85:89:9c:64:e9: 77:9d:5c:e0:d2:66:86:b5:46:65:66:bd:6e:4c:a7: 2e:2f:3c:23:49:ff:14:4c:a1:ea:bc:47:38:2e:59: 8c:f3:87:f2:0e:4a:05:02:a1:e3:0b:00:64:2a:bb: 34:10:f1:71:18:41:05:74:c8:9b:a2:6b:1d:be:fe: 94:86:e8:44:7f:0f:1d:39:15:3a:d4:8f:64:44:5f: ed:26:4a:52:a3:fe:2e:51:c1:8b:3c:41:f7:62:fe: 9b:05:41:4c:20:67:30:a9:ac:ac:b7:f2:57:2b:61: a1:99:9b:41:95:f1:3a:e5:de:10:91:0a:a5:0f:56: d6:85:1f:2f:b9:d6:f6:cd:5c:46:44:e7:12:1e:df: 8e:ad:a0:ed:3a:3e:83:9a:b5:fb:6f:3f:f9:f0:3d: 9d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:D2:AF:62:94:B5:C2:6A:F7:16:58:A6:A7:2C:38:1B:5C:2C:BC:46 X509v3 Authority Key Identifier: keyid:64:CB:6E:A7:D7:D0:E5:1F:4D:42:B2:D6:84:72:74:AB:B0:73:65:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/1FCC4B16E78911EF99A1A729C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.44.0/24 Signature Algorithm: sha256WithRSAEncryption 70:ac:50:b0:db:be:f8:12:05:e4:68:e6:16:c5:4d:b4:b4:46: 52:b5:ef:1b:5e:42:d1:95:00:58:5c:67:5c:ad:64:be:06:59: eb:cc:ec:4e:51:fe:8d:44:39:e1:4a:89:f9:98:0b:1f:8e:e1: fe:00:fe:8f:47:13:1f:65:fb:e1:30:3f:21:50:2e:49:c1:94: 60:af:ee:f2:59:8d:90:b6:9d:f3:0e:08:3f:35:c4:a9:73:ca: 46:58:06:09:68:d1:7d:81:ec:29:a4:52:d9:b5:df:94:14:0f: 33:9c:a7:30:fb:21:a2:d0:c8:9e:2c:2c:69:42:0c:67:f8:87: 5e:d3:99:e4:1b:3e:4e:5e:3f:02:ae:24:60:15:0a:a5:39:33: cb:2c:30:1c:fd:3e:6f:3a:9a:65:47:49:3b:f2:51:6b:1d:1b: e6:9e:84:1a:00:af:04:d7:68:73:38:e4:dc:e9:85:5e:58:cd: 97:2a:1a:72:19:69:72:40:fe:60:43:af:84:45:8c:dc:61:fe: bc:5c:d1:47:bc:d6:92:7d:02:2b:95:17:d0:2d:53:89:1a:97: b8:ed:54:57:f1:cb:f5:59:7d:52:58:b7:93:dc:27:f9:c2:e5: a7:57:9e:f5:a6:81:9f:a9:21:e4:f4:c6:05:6b:33:48:85:60: 9e:d6:47:2b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RDM0QjExMC8GA1UEBRMoNjRDQjZFQTdEN0QwRTUxRjRENDJCMkQ2ODQ3Mjc0QUJC MDczNjU5ODAeFw0yNTAyMTAwODI5MjBaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTliOGUwLTZjYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqqOvtp00vFI4hGsxR0FikLeOlcPm+P18uGcVYw8eoVqy8HLR72ftIMhW7pOtU 4WmCRMptP9XnEMTlLwDxSnSOdYxd9MFmtolrSwrGjoKn290dft1CO8f3HqwnZ5az Z/TyZp2FiZxk6XedXODSZoa1RmVmvW5Mpy4vPCNJ/xRMoeq8RzguWYzzh/IOSgUC oeMLAGQquzQQ8XEYQQV0yJuiax2+/pSG6ER/Dx05FTrUj2REX+0mSlKj/i5RwYs8 Qfdi/psFQUwgZzCprKy38lcrYaGZm0GV8Trl3hCRCqUPVtaFHy+51vbNXEZE5xIe 346toO06PoOatftvP/nwPZ07AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVdKvYpS1 wmr3Flimpyw4G1wsvEYwHwYDVR0jBBgwFoAUZMtup9fQ5R9NQrLWhHJ0q7BzZZgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFEMzRCL0IzREI1MUQyREYz NTExRUZBNThENjUzQkM0RjlBRTAyL1pNdHVwOWZRNVI5TlFyTFdoSEowcTdCelpa Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWk10dXA5ZlE1UjlOUXJMV2hISjBxN0J6WlpnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RDM0Qi9CM0RCNTFEMkRGMzUxMUVGQTU4RDY1M0JDNEY5QUUwMi8xRkNDNEIxNkU3 ODkxMUVGOTlBMUE3MjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9LDANBgkqhkiG9w0BAQsFAAOCAQEAcKxQsNu++BIF5Gjm FsVNtLRGUrXvG15C0ZUAWFxnXK1kvgZZ68zsTlH+jUQ54UqJ+ZgLH47h/gD+j0cT H2X74TA/IVAuScGUYK/u8lmNkLad8w4IPzXEqXPKRlgGCWjRfYHsKaRS2bXflBQP M5ynMPshotDIniwsaUIMZ/iHXtOZ5Bs+Tl4/Aq4kYBUKpTkzyywwHP0+bzqaZUdJ O/JRax0b5p6EGgCvBNdoczjk3OmFXljNlyoachlpckD+YEOvhEWM3GH+vFzRR7zW kn0CK5UX0C1TiRqXuO1UV/HL9Vl9Uli3k9wn+cLlp1ee9aaBn6kh5PTGBWszSIVg ntZHKw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:37:01 2025 by rpki-client