$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/6DB6146E0E2F11EDB4659653C4F9AE02.roa File: 6DB6146E0E2F11EDB4659653C4F9AE02.roa (raw, json) Hash identifier: jVO5wSX7TJcWYZD+VE2YuDs8rKtO7MY++7pypycZONE= Subject key identifier: F9:6F:8F:CB:DB:AB:60:5D:AB:89:6E:C9:21:68:03:17:73:76:4C:C0 Certificate issuer: /CN=A917D4C4/serialNumber=57CF39F39AB61B538EEA7CB2D56A34BE57B89AFB Certificate serial: 063C Authority key identifier: 57:CF:39:F3:9A:B6:1B:53:8E:EA:7C:B2:D5:6A:34:BE:57:B8:9A:FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V88585q2G1OO6nyy1Wo0vle4mvs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/6DB6146E0E2F11EDB4659653C4F9AE02.roa Signing time: Wed 02 Apr 2025 15:10:51 +0000 ROA not before: Wed 02 Apr 2025 15:10:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 7573 IP address blocks: 131.217.0.0/17 maxlen: 17 131.217.128.0/19 maxlen: 19 131.217.160.0/19 maxlen: 19 131.217.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/V88585q2G1OO6nyy1Wo0vle4mvs.crl rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/V88585q2G1OO6nyy1Wo0vle4mvs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V88585q2G1OO6nyy1Wo0vle4mvs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4, serialNumber=57CF39F39AB61B538EEA7CB2D56A34BE57B89AFB Validity Not Before: Apr 2 15:10:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ed537b-e821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7c:53:92:1f:f3:c9:01:3f:5d:f5:d6:54:1b: f4:ce:e0:dd:1d:e9:bc:23:37:cf:08:d2:be:2e:bd: 5b:ff:6d:c9:c2:27:7c:32:90:65:4e:7b:03:c2:a3: 16:0d:eb:d2:1e:71:ae:9b:c2:67:d0:4b:cf:e0:0c: 30:d7:34:ae:d3:d3:1b:42:69:70:5c:ec:e0:2a:2e: ba:e1:c2:aa:95:e6:50:de:cf:5f:38:bb:ec:94:28: fd:0d:47:38:af:79:1d:06:ab:51:9f:ba:d2:2c:d6: 80:6c:f1:4e:b9:4b:9d:24:8b:f5:37:26:f7:a5:cd: 70:4b:01:c0:b3:61:1c:77:6e:e8:91:69:28:51:f6: 0e:b3:e5:82:6b:27:5c:3d:92:57:80:a5:80:d4:5f: 07:1a:fc:d1:62:93:02:8b:0e:93:02:09:8b:c1:3e: 42:31:f6:da:c8:15:db:1d:7c:26:f0:e7:9d:7a:55: 78:97:10:4a:e2:2c:c6:53:be:c0:81:22:a2:c6:24: 88:d9:d0:f6:75:1a:6b:9d:b0:05:8a:aa:1f:ab:3e: c7:92:65:94:ed:30:f4:92:62:f7:1b:73:ba:e6:63: 7a:31:2a:23:46:3e:0f:88:56:64:94:27:64:23:1c: 16:d1:37:3c:10:de:31:1c:e1:30:37:f0:cc:28:49: 81:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:6F:8F:CB:DB:AB:60:5D:AB:89:6E:C9:21:68:03:17:73:76:4C:C0 X509v3 Authority Key Identifier: keyid:57:CF:39:F3:9A:B6:1B:53:8E:EA:7C:B2:D5:6A:34:BE:57:B8:9A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/V88585q2G1OO6nyy1Wo0vle4mvs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V88585q2G1OO6nyy1Wo0vle4mvs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/6DB6146E0E2F11EDB4659653C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:a1:ba:f3:ff:b7:be:4f:51:21:19:35:f5:96:bc:03:56:90: cf:f7:68:dd:e3:2f:e7:f3:d3:23:c6:0e:9c:8c:f0:03:b6:fb: 95:44:61:dd:4a:c7:e9:6e:35:4d:18:cb:d7:ec:1b:d6:17:20: da:c2:8d:c4:09:ae:bb:19:af:60:dd:fa:12:db:07:4e:56:17: ec:7c:e5:49:84:39:8f:e6:8d:32:82:ba:d4:66:67:59:0c:60: bf:d0:7e:13:14:09:b2:e5:12:dd:3b:59:04:c9:0a:ac:66:1b: 67:d1:79:d2:ea:d9:84:be:9d:fd:8f:99:e8:87:53:2a:61:5f: c9:e9:6c:de:cc:b2:0a:60:84:66:37:01:c6:f9:45:65:02:a4: be:ba:99:21:77:03:f3:c2:f3:52:18:37:be:e1:ca:a3:6e:9c: f1:e3:19:7e:1e:75:b6:6a:8f:5e:34:27:c8:a6:73:14:bf:a3: cc:b5:08:4b:df:89:68:7d:b1:db:d0:57:45:ca:f7:89:55:70: c1:bf:c5:4b:05:13:58:ca:35:09:fe:c8:36:f6:c7:2d:01:12: 81:8e:87:a4:da:67:e8:29:21:9d:1d:a1:db:3b:e1:05:d0:f3: 9e:bb:f5:b7:1e:5f:d9:29:a2:7f:79:1e:4f:6f:94:17:f6:76: 68:33:45:f9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKDU3Q0YzOUYzOUFCNjFCNTM4RUVBN0NCMkQ1NkEzNEJF NTdCODlBRkIwHhcNMjUwNDAyMTUxMDUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkNTM3Yi1lODIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnxTkh/zyQE/XfXWVBv0zuDdHem8IzfPCNK+Lr1b/23Jwid8MpBlTnsDwqMW DevSHnGum8Jn0EvP4Aww1zSu09MbQmlwXOzgKi664cKqleZQ3s9fOLvslCj9DUc4 r3kdBqtRn7rSLNaAbPFOuUudJIv1Nyb3pc1wSwHAs2Ecd27okWkoUfYOs+WCaydc PZJXgKWA1F8HGvzRYpMCiw6TAgmLwT5CMfbayBXbHXwm8OedelV4lxBK4izGU77A gSKixiSI2dD2dRprnbAFiqofqz7HkmWU7TD0kmL3G3O65mN6MSojRj4PiFZklCdk IxwW0Tc8EN4xHOEwN/DMKEmBBwIDAQABo4IClDCCApAwHQYDVR0OBBYEFPlvj8vb q2Bdq4luySFoAxdzdkzAMB8GA1UdIwQYMBaAFFfPOfOathtTjup8stVqNL5XuJr7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC8zQTA3RTBCQThE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9WODg1ODVxMkcxT082bnl5MVdvMHZsZTRt dnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Y4ODU4NXEyRzFPTzZueXkxV28wdmxlNG12cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Q0QzQvM0EwN0UwQkE4RDdCMTFFQjhEOEJENjBCQzRGOUFFMDIvNkRCNjE0NkUw RTJGMTFFREI0NjU5NjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCD2TANBgkqhkiG9w0BAQsFAAOCAQEAg6G68/+3vk9RIRk1 9Za8A1aQz/do3eMv5/PTI8YOnIzwA7b7lURh3UrH6W41TRjL1+wb1hcg2sKNxAmu uxmvYN36EtsHTlYX7HzlSYQ5j+aNMoK61GZnWQxgv9B+ExQJsuUS3TtZBMkKrGYb Z9F50urZhL6d/Y+Z6IdTKmFfyels3syyCmCEZjcBxvlFZQKkvrqZIXcD88LzUhg3 vuHKo26c8eMZfh51tmqPXjQnyKZzFL+jzLUIS9+JaH2x29BXRcr3iVVwwb/FSwUT WMo1Cf7INvbHLQESgY6HpNpn6CkhnR2h2zvhBdDznrv1tx5f2Smif3keT2+UF/Z2 aDNF+Q== -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:45 2025 by rpki-client