$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/640C18A214AD11EEAA685687C4F9AE02.roa File: 640C18A214AD11EEAA685687C4F9AE02.roa (raw, json) Hash identifier: rUC7HAYZSDdTVk9lHvd/Wl7kYoqQUYqgnEKO2kEnvDw= Subject key identifier: F4:38:72:FF:6B:30:E5:D9:53:21:07:78:7C:90:72:15:3C:5F:57:61 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0EAE Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/640C18A214AD11EEAA685687C4F9AE02.roa Signing time: Tue 14 Jan 2025 18:16:11 +0000 ROA not before: Tue 14 Jan 2025 18:16:11 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 1221 IP address blocks: 61.47.88.0/21 maxlen: 24 116.92.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3758 (0xeae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:16:11 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6786a9eb-a2f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2a:5c:20:9c:db:82:57:d8:49:41:6f:fd:4f: 3c:ab:fd:0f:ac:66:61:31:58:ca:08:67:61:1e:a4: 91:99:8e:e0:e3:ca:bc:72:ad:5e:d5:64:4f:1a:7d: e1:a6:b8:c7:42:74:b9:15:b5:cc:57:60:0c:a7:5b: a3:90:a4:77:44:20:6f:13:ba:b0:a0:03:30:d5:a4: a7:2c:9e:67:d7:72:57:75:5e:72:cc:57:29:f9:6e: fe:6c:d6:1c:a4:78:b0:71:64:d5:d8:e0:ea:b1:0e: f1:b1:ea:72:33:43:de:62:22:1e:df:16:af:c9:bd: 8a:75:cd:74:13:78:9d:7d:49:d0:a4:95:07:bc:67: 52:26:0f:6f:0d:9a:1d:d1:bb:45:ff:3a:1d:d1:dd: 29:4b:67:6d:23:4b:c9:d4:60:b8:ee:ee:3c:26:bd: d8:bb:0c:15:ac:49:a1:8d:ba:9d:ba:f2:07:4c:98: 52:44:db:51:31:29:8b:7a:62:42:eb:00:0c:08:76: a0:34:11:7c:3d:94:a8:8d:ee:75:e1:df:f1:c3:7c: e0:c5:b0:d1:e3:1c:c1:84:68:c2:69:e5:cd:0f:27: ce:7c:eb:ec:53:a5:0d:a6:e6:cd:91:f4:a0:02:96: 29:04:0f:86:37:86:52:c9:8c:28:af:be:c0:9e:64: fc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:38:72:FF:6B:30:E5:D9:53:21:07:78:7C:90:72:15:3C:5F:57:61 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/640C18A214AD11EEAA685687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.47.88.0/21 116.92.64.0/21 Signature Algorithm: sha256WithRSAEncryption 52:25:9d:d7:75:1b:df:36:d5:4b:32:84:5a:9d:17:0f:1f:38: 40:9a:da:2d:56:9a:75:3a:3b:4f:29:d8:87:b5:f8:1d:0f:4e: 2f:f6:6c:9b:84:4e:d6:e7:d6:e7:02:08:7f:78:9d:72:50:d8: a3:2e:59:f1:8f:9d:6f:81:9e:0f:cc:d2:3c:94:1a:9b:d2:31: 00:41:f5:90:ab:6a:9a:61:9f:48:16:ae:a0:6b:9c:f5:bd:d9: ee:7c:5f:de:8c:37:3e:64:73:48:e1:0d:31:0b:bf:c7:84:49: 96:89:ae:35:fd:69:63:a7:94:7d:c3:b2:67:5d:c7:67:54:ed: 15:73:63:64:e2:31:92:d7:bf:e0:ba:88:d8:b9:e6:05:83:a8: 5d:31:57:1a:f0:8d:dd:00:d0:d9:5f:c7:f5:a2:63:8a:7f:0f: 9f:75:64:d2:3f:e1:5a:68:a0:54:d8:ac:c6:e9:94:fc:fa:f1: 97:d0:57:f7:b2:bb:34:b0:26:44:fc:38:4b:8e:b6:84:08:c8: c0:c8:4e:dc:a1:81:b1:3b:a5:32:7e:10:2e:9a:06:82:4a:62: 78:a6:1d:b9:66:82:7a:12:90:6f:71:3e:ed:67:2c:8d:81:8d: 36:d6:74:18:68:30:2e:09:c2:df:68:18:5f:26:a0:0f:f0:eb: 84:68:32:87 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjUwMTE0MTgxNjExWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2YTllYi1hMmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ipcIJzbglfYSUFv/U88q/0PrGZhMVjKCGdhHqSRmY7g48q8cq1e1WRPGn3h prjHQnS5FbXMV2AMp1ujkKR3RCBvE7qwoAMw1aSnLJ5n13JXdV5yzFcp+W7+bNYc pHiwcWTV2ODqsQ7xsepyM0PeYiIe3xavyb2Kdc10E3idfUnQpJUHvGdSJg9vDZod 0btF/zod0d0pS2dtI0vJ1GC47u48Jr3YuwwVrEmhjbqduvIHTJhSRNtRMSmLemJC 6wAMCHagNBF8PZSoje514d/xw3zgxbDR4xzBhGjCaeXNDyfOfOvsU6UNpubNkfSg ApYpBA+GN4ZSyYwor77AnmT8PwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPQ4cv9r MOXZUyEHeHyQchU8X1dhMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNjQwQzE4QTIx NEFEMTFFRUFBNjg1Njg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAM9L1gDBAN0XEAwDQYJKoZIhvcNAQELBQADggEBAFIlndd1 G9821UsyhFqdFw8fOECa2i1WmnU6O08p2Ie1+B0PTi/2bJuETtbn1ucCCH94nXJQ 2KMuWfGPnW+Bng/M0jyUGpvSMQBB9ZCrapphn0gWrqBrnPW92e58X96MNz5kc0jh DTELv8eESZaJrjX9aWOnlH3Dsmddx2dU7RVzY2TiMZLXv+C6iNi55gWDqF0xVxrw jd0A0Nlfx/WiY4p/D591ZNI/4VpooFTYrMbplPz68ZfQV/eyuzSwJkT8OEuOtoQI yMDITtyhgbE7pTJ+EC6aBoJKYnimHblmgnoSkG9xPu1nLI2BjTbWdBhoMC4Jwt9o GF8moA/w64RoMoc= -----END CERTIFICATE-----Generated at Mon Apr 14 00:37:38 2025 by rpki-client