$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/447A88023DDC11F0ACD9F475C4F9AE02.roa File: 447A88023DDC11F0ACD9F475C4F9AE02.roa (raw, json) Hash identifier: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8= Subject key identifier: 23:F1:78:5F:87:96:19:68:87:17:BD:72:30:BE:B2:67:BC:11:C7:AA Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 04 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/447A88023DDC11F0ACD9F475C4F9AE02.roa Signing time: Sat 31 May 2025 05:02:12 +0000 ROA not before: Sat 31 May 2025 05:02:12 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135345 IP address blocks: 163.61.94.0/24 maxlen: 24 163.61.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: May 31 05:02:12 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=683a8d53-f747 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9d:5e:e0:a9:05:78:7c:73:4f:84:62:33:90: d2:21:ad:03:ff:3c:5d:01:63:9e:44:46:37:80:ea: 33:1c:97:24:49:df:16:80:32:fb:6d:4b:11:1b:2a: aa:dd:b1:76:cb:81:e1:c3:56:ba:5e:bc:c2:5c:31: bf:8d:dc:53:42:1a:93:53:8f:b9:7b:e6:09:7d:cc: 8a:23:46:44:ef:02:bc:32:3f:b6:b9:46:4f:55:e4: 5f:b5:51:93:25:5e:87:25:7b:14:33:b6:ee:1f:c5: 96:d3:51:4c:47:99:b5:7e:df:d1:96:9a:f4:a6:63: f8:ae:a4:ed:18:45:25:81:63:0d:15:b3:f6:25:aa: 5e:d5:05:92:45:3e:2d:73:99:ca:18:02:a1:6c:b3: b7:41:ba:a1:06:ef:46:05:07:7d:bb:7c:dd:56:2b: 74:6e:3b:8c:8c:7e:20:ba:ef:aa:ec:28:f4:81:e4: 06:57:78:6e:0f:59:b5:c5:ed:cf:c7:47:fd:36:25: 34:8e:b2:24:85:11:47:88:43:8a:b6:90:25:84:bf: 36:3d:7e:9d:6e:46:08:89:28:a1:b0:43:02:9b:ef: b3:b8:69:b5:04:72:ee:44:3f:10:87:5d:bf:1d:03: 11:66:9e:fa:1e:97:60:45:92:50:42:ee:39:9e:4c: 03:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F1:78:5F:87:96:19:68:87:17:BD:72:30:BE:B2:67:BC:11:C7:AA X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/447A88023DDC11F0ACD9F475C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.94.0/23 Signature Algorithm: sha256WithRSAEncryption 59:9f:87:d8:1c:0a:c9:8f:84:86:db:eb:61:c7:4c:72:7b:0e: f4:e4:9a:a1:ba:6b:b4:35:74:92:d7:47:a3:d4:8a:82:c3:ca: dc:4d:cf:8f:cc:a0:c8:83:4b:32:a9:77:80:be:0d:d2:86:39: 43:03:a8:41:4d:de:41:db:f9:3c:6e:52:21:23:e2:90:03:b5: a4:b3:70:b8:45:ae:de:0e:3e:c3:3d:00:c5:c3:9f:12:c8:47: 0a:ab:d4:e6:52:7f:8a:36:77:c9:4c:a1:4d:68:7c:26:58:3a: ef:48:01:4c:83:6b:92:87:41:a1:b9:ee:21:7e:22:4a:58:dd: cc:9a:99:fc:bf:85:28:7b:83:b5:ab:b5:cb:81:fa:68:53:b0: c3:90:cb:30:a3:6e:89:3d:d9:e7:8b:02:52:07:5a:8c:a9:c4: e0:38:75:1d:0b:6f:7d:01:a2:2b:c2:e3:84:5b:60:b5:ec:11: 5b:8f:f7:06:78:95:e7:3f:68:4b:6d:b7:46:e4:a7:2b:a7:7c: c6:b9:9b:d8:51:c0:e1:d1:13:ad:d3:8e:83:08:48:85:97:5e: d4:8b:e0:af:1e:70:da:68:66:f8:cd:ec:72:31:05:79:5b:b3: 1c:c9:19:2f:c4:bf:a0:4c:6d:2f:19:1d:9d:4f:1f:51:3b:12: 48:07:9c:2b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTA1MzEwNTAyMTJaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2E4ZDUzLWY3NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDenV7gqQV4fHNPhGIzkNIhrQP/PF0BY55ERjeA6jMclyRJ3xaAMvttSxEbKqrd sXbLgeHDVrpevMJcMb+N3FNCGpNTj7l75gl9zIojRkTvArwyP7a5Rk9V5F+1UZMl XoclexQztu4fxZbTUUxHmbV+39GWmvSmY/iupO0YRSWBYw0Vs/Ylql7VBZJFPi1z mcoYAqFss7dBuqEG70YFB327fN1WK3RuO4yMfiC676rsKPSB5AZXeG4PWbXF7c/H R/02JTSOsiSFEUeIQ4q2kCWEvzY9fp1uRgiJKKGwQwKb77O4abUEcu5EPxCHXb8d AxFmnvoel2BFklBC7jmeTAOfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUI/F4X4eW GWiHF71yML6yZ7wRx6owHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODE3Ny84QkEzRDhDNDNEREIxMUYwQUM5M0Q0MzJDNEY5QUUwMi80NDdBODgwMjNE REMxMUYwQUNEOUY0NzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaM9XjANBgkqhkiG9w0BAQsFAAOCAQEAWZ+H2BwKyY+Ehtvr YcdMcnsO9OSaobprtDV0ktdHo9SKgsPK3E3Pj8ygyINLMql3gL4N0oY5QwOoQU3e Qdv5PG5SISPikAO1pLNwuEWu3g4+wz0AxcOfEshHCqvU5lJ/ijZ3yUyhTWh8Jlg6 70gBTINrkodBobnuIX4iSljdzJqZ/L+FKHuDtau1y4H6aFOww5DLMKNuiT3Z54sC UgdajKnE4Dh1HQtvfQGiK8LjhFtgtewRW4/3BniV5z9oS223RuSnK6d8xrmb2FHA 4dETrdOOgwhIhZde1Ivgrx5w2mhm+M3scjEFeVuzHMkZL8S/oExtLxkdnU8fUTsS SAecKw== -----END CERTIFICATE-----Generated at Fri Jun 6 16:46:33 2025 by rpki-client