$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/C735E33E1CB511EAB25B4768C4F9AE02.roa File: C735E33E1CB511EAB25B4768C4F9AE02.roa (raw, json) Hash identifier: gyfd8yfpcrsdUm362X9/UdNM3mZBfttbTMqza0Depgs= Subject key identifier: 3D:7B:7B:69:CB:33:02:32:A3:C4:15:87:54:C6:13:93:CB:82:79:6B Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0EBD Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/C735E33E1CB511EAB25B4768C4F9AE02.roa Signing time: Tue 14 Jan 2025 18:16:24 +0000 ROA not before: Tue 14 Jan 2025 18:16:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 393513 IP address blocks: 61.14.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 17:55:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3773 (0xebd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0 Validity Not Before: Jan 14 18:16:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6786a9f8-c42c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2a:fc:af:82:56:6d:a6:04:b8:2b:5e:d6:8a: 84:41:29:d4:17:74:4e:4a:6b:02:9e:ee:9e:9f:19: 29:26:41:0f:44:cc:53:af:53:87:5a:a7:1b:7d:36: 51:92:d2:e6:6c:26:a3:7a:5a:16:47:24:b4:3a:1c: 88:fb:d8:9f:e4:f4:ed:c9:c1:46:6d:8b:3e:fe:bb: fc:77:69:7b:2f:03:c7:b6:f1:b8:31:5f:c9:3b:0a: c6:f7:eb:7d:9e:23:ee:81:fc:46:29:5a:87:61:b6: c8:84:6e:66:96:eb:e4:b2:c5:2c:2f:0a:e5:7d:ad: ac:8c:00:42:60:ae:07:23:82:71:46:b6:b0:54:1d: 53:32:7d:62:22:5e:6e:d3:94:61:bf:1b:c0:34:4f: e7:c2:2b:d5:70:1c:b4:33:fd:82:c6:bf:84:1a:9d: d6:81:b0:54:35:53:58:3f:10:1b:ec:a8:ba:c5:66: 14:db:75:e9:45:6e:6b:6e:a7:3b:4f:1d:e1:02:b9: 4f:f7:2a:af:d8:21:77:0f:96:00:d7:84:49:fc:0c: c8:ed:e0:fe:bf:4c:2c:44:b4:b4:50:24:fa:d9:96: 84:2d:32:1d:9e:e4:16:4b:23:8a:e7:1a:a5:9a:67: f7:6f:ae:c7:ee:3e:e1:dc:70:20:da:76:04:f1:7b: d3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:7B:7B:69:CB:33:02:32:A3:C4:15:87:54:C6:13:93:CB:82:79:6B X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/C735E33E1CB511EAB25B4768C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.14.164.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:73:9b:ce:f0:d7:06:95:18:96:28:09:14:8b:0f:8a:56:02: 46:13:b6:c4:58:1c:f4:be:60:da:2a:7b:b0:d5:97:df:53:a3: 49:29:24:2e:5b:4a:dc:88:f9:03:9a:ac:40:59:24:05:54:12: d7:32:28:8e:3e:f6:38:6f:83:d2:0b:7e:1d:fb:27:41:dd:fe: 5c:f6:38:ce:6c:59:78:31:e9:10:cd:9c:16:a1:fb:b9:8e:ea: a9:60:6c:70:0b:c2:8c:95:07:bb:63:e9:7b:6e:89:60:3c:06: 4a:81:3f:6d:1e:0a:47:09:87:3f:15:9b:91:be:90:4f:0d:60: 1b:27:6f:2d:a2:18:f0:0b:7f:5a:40:65:c8:df:d5:d0:01:48: 16:ac:14:d6:b4:0f:9b:65:c5:b3:38:6d:73:1c:fa:7b:50:0e: 39:45:3b:00:ae:fa:a7:64:5b:68:8c:df:da:79:8b:70:23:ed: ef:92:f6:69:aa:86:65:4a:dc:31:73:21:02:49:b1:1f:29:61: 07:65:0d:9b:68:20:37:97:e0:97:2c:b7:39:2e:40:25:77:36: ae:55:b4:41:f1:0e:2f:4d:e2:14:af:f9:26:2f:bd:a5:e2:75: 5d:fb:95:54:31:68:a6:f4:5f:46:92:e8:0d:dd:f2:a3:cc:9c: 8a:9e:f3:09 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjUwMTE0MTgxNjI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2YTlmOC1jNDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCr8r4JWbaYEuCte1oqEQSnUF3ROSmsCnu6enxkpJkEPRMxTr1OHWqcbfTZR ktLmbCajeloWRyS0OhyI+9if5PTtycFGbYs+/rv8d2l7LwPHtvG4MV/JOwrG9+t9 niPugfxGKVqHYbbIhG5mluvkssUsLwrlfa2sjABCYK4HI4JxRrawVB1TMn1iIl5u 05RhvxvANE/nwivVcBy0M/2Cxr+EGp3WgbBUNVNYPxAb7Ki6xWYU23XpRW5rbqc7 Tx3hArlP9yqv2CF3D5YA14RJ/AzI7eD+v0wsRLS0UCT62ZaELTIdnuQWSyOK5xql mmf3b67H7j7h3HAg2nYE8XvTdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD17e2nL MwIyo8QVh1TGE5PLgnlrMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvQzczNUUzM0Ux Q0I1MTFFQUIyNUI0NzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9DqQwDQYJKoZIhvcNAQELBQADggEBAFpzm87w1waVGJYo CRSLD4pWAkYTtsRYHPS+YNoqe7DVl99To0kpJC5bStyI+QOarEBZJAVUEtcyKI4+ 9jhvg9ILfh37J0Hd/lz2OM5sWXgx6RDNnBah+7mO6qlgbHALwoyVB7tj6XtuiWA8 BkqBP20eCkcJhz8Vm5G+kE8NYBsnby2iGPALf1pAZcjf1dABSBasFNa0D5tlxbM4 bXMc+ntQDjlFOwCu+qdkW2iM39p5i3Aj7e+S9mmqhmVK3DFzIQJJsR8pYQdlDZto IDeX4JcstzkuQCV3Nq5VtEHxDi9N4hSv+SYvvaXidV37lVQxaKb0X0aS6A3d8qPM nIqe8wk= -----END CERTIFICATE-----Generated at Mon Apr 7 17:21:07 2025 by rpki-client