$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/61A59876012A11EFB75C350FC4F9AE02.roa File: 61A59876012A11EFB75C350FC4F9AE02.roa (raw, json) Hash identifier: eAATcw+wwIntluEWHwykA3g4lnWZ04SXuQGRkoYM9h4= Subject key identifier: 8A:23:26:9C:70:1A:97:40:DA:54:17:F5:5F:87:31:CE:D1:C6:60:E1 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: A9 Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/61A59876012A11EFB75C350FC4F9AE02.roa Signing time: Thu 27 Feb 2025 05:27:11 +0000 ROA not before: Thu 27 Feb 2025 05:27:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 117.74.104.0/24 maxlen: 24 117.74.105.0/24 maxlen: 24 117.74.106.0/24 maxlen: 24 117.74.107.0/24 maxlen: 24 117.74.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F Validity Not Before: Feb 27 05:27:11 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67bff7af-fa6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ce:ae:d5:2e:bf:1c:a6:a0:ad:f3:65:07:95: 34:c4:c8:b6:29:e0:db:1c:b2:59:8b:8b:fd:70:8f: 30:2b:d1:70:44:55:47:fa:08:fd:45:4f:e8:d9:9b: cc:ee:39:6f:be:dc:55:2f:ca:14:f2:0c:9b:e2:bd: 73:b5:2d:3c:22:be:a0:58:f1:73:6c:3e:88:4a:58: 22:6f:34:f6:30:8d:a0:17:8c:1f:8b:fd:95:71:80: fa:e4:a0:94:a3:b5:65:6d:b0:f3:fd:28:10:41:a5: 88:f6:7d:84:ea:54:5f:79:03:21:82:b6:3e:b4:8a: e2:c1:9a:9b:92:60:03:f1:31:b9:dd:02:18:9d:db: af:9d:cf:3b:36:2f:ed:12:ef:a8:2e:49:a7:ad:43: 44:71:5c:bb:a8:4b:d2:a5:0f:0c:05:88:82:29:94: 9a:98:3d:9b:19:f1:c3:14:64:b4:ee:e7:76:e7:d1: 9c:e1:c0:68:14:13:a7:78:3d:4f:0a:9c:1b:ba:8f: a6:05:35:f5:3c:84:2d:7a:89:31:dd:0f:59:d5:ce: aa:4e:50:02:65:74:95:1c:21:5d:10:a5:37:ac:cc: ca:ac:3f:c0:69:a3:03:b8:36:0f:48:7d:83:5c:c6: f1:e4:5c:be:f0:e1:b6:e9:f6:e9:5a:43:9e:2a:26: d9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:23:26:9C:70:1A:97:40:DA:54:17:F5:5F:87:31:CE:D1:C6:60:E1 X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/61A59876012A11EFB75C350FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.74.104.0-117.74.108.255 Signature Algorithm: sha256WithRSAEncryption 32:d1:11:e7:00:8a:19:ae:de:36:eb:45:39:45:c1:c9:1a:69: 1c:36:77:22:a3:af:80:17:e1:eb:84:ea:ed:74:36:d3:93:45: 90:36:ad:9e:32:86:4c:a2:7c:74:ff:ae:70:80:6d:47:1f:2d: 86:6d:ba:1b:04:a8:28:91:9c:76:0d:aa:8f:94:7c:24:7b:77: ce:81:34:dc:d1:5d:c3:cc:f2:9e:9c:5b:86:58:64:db:21:e0: 5a:73:9b:26:7a:62:d2:fe:c5:b3:a6:80:c0:d5:66:cb:89:60: 08:d0:b8:20:ac:5b:36:ae:ac:4c:4e:18:9f:1f:80:f6:6e:0c: 1c:01:96:9f:69:e6:ca:9f:f2:1e:e9:06:c3:d5:30:49:9f:f3: ec:f5:5a:2a:4b:fe:d7:55:b0:d3:b7:81:23:7b:5f:31:d5:68: a4:6c:07:8a:64:51:27:ea:56:02:b1:52:0f:a4:5d:42:0e:e5: a7:43:1e:2b:dd:a4:8f:98:69:91:7b:77:68:47:07:bb:99:06: d2:88:d5:5e:3f:ed:f4:5c:96:9c:a4:fe:a8:66:1f:67:0f:76: bf:56:3f:f0:4b:61:3d:6f:c4:bd:41:fd:54:df:1d:be:93:5b: a0:20:08:98:dd:23:68:33:a6:88:e2:a6:04:89:ac:95:8c:c7: 71:62:11:cf -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5NEYxMTAvBgNVBAUTKDg1QjE0QTg5MEI5QkQ0OTgwRDk3RTQxQkIzOTFGQ0M5 ODUwRkNCNzgwHhcNMjUwMjI3MDUyNzExWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmZjdhZi1mYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvs6u1S6/HKagrfNlB5U0xMi2KeDbHLJZi4v9cI8wK9FwRFVH+gj9RU/o2ZvM 7jlvvtxVL8oU8gyb4r1ztS08Ir6gWPFzbD6ISlgibzT2MI2gF4wfi/2VcYD65KCU o7VlbbDz/SgQQaWI9n2E6lRfeQMhgrY+tIriwZqbkmAD8TG53QIYnduvnc87Ni/t Eu+oLkmnrUNEcVy7qEvSpQ8MBYiCKZSamD2bGfHDFGS07ud259Gc4cBoFBOneD1P Cpwbuo+mBTX1PIQteokx3Q9Z1c6qTlACZXSVHCFdEKU3rMzKrD/AaaMDuDYPSH2D XMbx5Fy+8OG26fbpWkOeKibZDwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFIojJpxw GpdA2lQX9V+HMc7RxmDhMB8GA1UdIwQYMBaAFIWxSokLm9SYDZfkG7OR/MmFD8t4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODk0Ri8wQUY0NUUzNjAx MkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFKZ05sLVFiczVIOHlZVVB5 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5NEYvMEFGNDVFMzYwMTJBMTFFRkE1RkQ5MTZGQzRGOUFFMDIvNjFBNTk4NzYw MTJBMTFFRkI3NUMzNTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA3VKaAMEAHVKbDANBgkqhkiG9w0BAQsFAAOCAQEAMtER 5wCKGa7eNutFOUXByRppHDZ3IqOvgBfh64Tq7XQ205NFkDatnjKGTKJ8dP+ucIBt Rx8thm26GwSoKJGcdg2qj5R8JHt3zoE03NFdw8zynpxbhlhk2yHgWnObJnpi0v7F s6aAwNVmy4lgCNC4IKxbNq6sTE4Ynx+A9m4MHAGWn2nmyp/yHukGw9UwSZ/z7PVa Kkv+11Ww07eBI3tfMdVopGwHimRRJ+pWArFSD6RdQg7lp0MeK92kj5hpkXt3aEcH u5kG0ojVXj/t9FyWnKT+qGYfZw92v1Y/8EthPW/EvUH9VN8dvpNboCAImN0jaDOm iOKmBImslYzHcWIRzw== -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:06 2025 by rpki-client