$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/088C9298981611EFBE510B59C4F9AE02.roa File: 088C9298981611EFBE510B59C4F9AE02.roa (raw, json) Hash identifier: MvPd2YQI9MOUSpjmUY5DT+pZT/6vsajAX/zCT/ZVYiM= Subject key identifier: 5B:15:DA:D1:DC:24:57:02:86:00:CD:77:E1:88:77:19:2A:51:F5:4F Certificate issuer: /CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Certificate serial: 3A Authority key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/088C9298981611EFBE510B59C4F9AE02.roa Signing time: Wed 05 Feb 2025 12:18:20 +0000 ROA not before: Wed 05 Feb 2025 12:18:20 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152690 IP address blocks: 163.61.48.0/24 maxlen: 24 202.37.166.0/24 maxlen: 24 2401:dfa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C62, serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Validity Not Before: Feb 5 12:18:20 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67a3570c-59f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:07:3c:28:83:66:10:6b:4d:f1:15:77:bb:00: bc:e4:4e:35:00:f5:19:2b:a7:af:c8:a1:8c:40:d4: 65:f0:b8:95:99:f7:b2:30:94:fe:b9:cd:71:2e:f6: f6:b6:87:93:f3:15:3e:f8:d8:9b:7b:ef:b4:51:eb: 82:26:6d:9c:39:89:c4:4b:93:54:cd:ce:5e:2c:e8: b1:62:6a:9e:9f:de:27:c9:a9:a8:05:f1:23:a1:a0: 31:ab:aa:e6:ac:c5:b7:35:63:d6:55:58:8b:e7:66: c9:42:87:76:2c:07:a4:dc:43:d3:d6:e4:f2:0d:2f: 45:66:93:16:98:7d:34:29:5d:e8:61:40:93:31:2c: 47:39:57:46:bc:8f:ff:8b:a9:56:74:2a:a5:8b:11: 6b:db:da:0c:03:94:2b:01:c8:06:11:da:f1:16:13: 5a:9b:a5:36:0e:fd:63:95:fe:3f:d5:aa:4e:7b:52: 50:04:40:68:c5:96:d1:79:df:c1:32:9a:cc:bb:40: de:47:81:2a:91:4e:88:81:87:bb:fb:1d:c6:f6:8d: f7:b3:1b:0f:05:ab:c6:12:29:12:e4:c8:12:32:7e: 90:67:1d:3d:1e:11:02:88:c8:92:3a:b1:db:52:d6: 32:26:63:67:8d:df:7e:02:49:eb:0f:0c:38:a4:78: 79:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:15:DA:D1:DC:24:57:02:86:00:CD:77:E1:88:77:19:2A:51:F5:4F X509v3 Authority Key Identifier: keyid:CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/088C9298981611EFBE510B59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.48.0/24 202.37.166.0/24 IPv6: 2401:dfa0::/32 Signature Algorithm: sha256WithRSAEncryption 45:f2:a9:c7:92:50:c4:df:94:a5:45:19:ea:0b:dc:ad:d7:19: ca:3a:45:dc:bb:f3:b9:7a:f4:ec:e2:fa:bb:21:b1:59:62:ef: 6d:ff:16:f6:be:48:62:98:cd:2d:7c:26:ef:67:c8:85:f1:f3: 14:d1:bb:7b:db:d3:e4:e3:ec:b2:35:cd:34:05:9a:0c:8f:53: 76:6b:01:7f:54:d3:2c:0b:6b:c0:27:2a:36:48:52:0e:de:58: 1c:0b:92:19:e6:21:e9:91:9e:b1:71:b9:20:b3:f2:f3:46:ac: 8a:0c:e1:f2:f2:bd:41:c8:96:95:7e:77:9d:3a:61:7d:c2:a2: eb:ae:cb:6b:b0:a2:97:e9:b3:5b:a7:8c:ec:6a:7e:17:fd:43: d4:83:94:82:cc:92:3a:ee:ff:52:57:c4:bb:a6:29:0d:86:33: 2f:bf:7a:05:03:6b:7b:cd:6c:43:0e:c7:6e:2c:3c:30:57:02: b4:63:d5:0c:14:1a:19:e2:e8:8d:4f:02:e8:27:25:91:18:74: fe:d2:60:0b:7d:84:44:bc:72:39:9e:1d:c6:05:cf:67:1b:4f: f5:f0:2f:39:55:02:2a:c7:1b:75:be:6a:f5:7f:60:96:da:62: 71:98:16:44:8a:75:42:db:e5:f3:0c:8e:a7:0d:ae:66:14:ea: f0:6f:e8:a5 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OUM2MjExMC8GA1UEBRMoQ0Y4MDRBNkYzRDg2QTE5NzEzQTRFODg2RDU5N0I0REM2 NDQ1Njg2QTAeFw0yNTAyMDUxMjE4MjBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTM1NzBjLTU5ZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeBzwog2YQa03xFXe7ALzkTjUA9Rkrp6/IoYxA1GXwuJWZ97IwlP65zXEu9va2 h5PzFT742Jt777RR64ImbZw5icRLk1TNzl4s6LFiap6f3ifJqagF8SOhoDGrquas xbc1Y9ZVWIvnZslCh3YsB6TcQ9PW5PINL0VmkxaYfTQpXehhQJMxLEc5V0a8j/+L qVZ0KqWLEWvb2gwDlCsByAYR2vEWE1qbpTYO/WOV/j/Vqk57UlAEQGjFltF538Ey msy7QN5HgSqRToiBh7v7Hcb2jfezGw8Fq8YSKRLkyBIyfpBnHT0eEQKIyJI6sdtS 1jImY2eN334CSesPDDikeHkDAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUWxXa0dwk VwKGAM134Yh3GSpR9U8wHwYDVR0jBBgwFoAUz4BKbz2GoZcTpOiG1Ze03GRFaGow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5QzYyLzg0RjQ2QjY4OTgx NTExRUZBNEJEM0Q1N0M0RjlBRTAyL3o0QktiejJHb1pjVHBPaUcxWmUwM0dSRmFH by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejRCS2J6MkdvWmNUcE9pRzFaZTAzR1JGYUdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUM2Mi84NEY0NkI2ODk4MTUxMUVGQTRCRDNENTdDNEY5QUUwMi8wODhDOTI5ODk4 MTYxMUVGQkU1MTBCNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAKM9MAMEAMolpjANBAIAAjAHAwUAJAHfoDANBgkqhkiG9w0B AQsFAAOCAQEARfKpx5JQxN+UpUUZ6gvcrdcZyjpF3LvzuXr07OL6uyGxWWLvbf8W 9r5IYpjNLXwm72fIhfHzFNG7e9vT5OPssjXNNAWaDI9TdmsBf1TTLAtrwCcqNkhS Dt5YHAuSGeYh6ZGesXG5ILPy80asigzh8vK9QciWlX53nTphfcKi667La7Cil+mz W6eM7Gp+F/1D1IOUgsySOu7/UlfEu6YpDYYzL796BQNre81sQw7Hbiw8MFcCtGPV DBQaGeLojU8C6CclkRh0/tJgC32ERLxyOZ4dxgXPZxtP9fAvOVUCKscbdb5q9X9g ltpicZgWRIp1Qtvl8wyOpw2uZhTq8G/opQ== -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:56 2025 by rpki-client