$ rpki-client -vvf rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/563F3D581F3C11F09F3C7F40C4F9AE02.roa File: 563F3D581F3C11F09F3C7F40C4F9AE02.roa (raw, json) Hash identifier: YKwfhn84elYu/Y8KsthWeHLfxYMDii6IqoqFACcb2JY= Subject key identifier: 86:6F:90:11:05:03:54:BA:4C:A0:1B:48:0F:3C:A9:7F:F9:AB:19:2D Certificate issuer: /CN=A919F026/serialNumber=BD79AC7640C955C435C8CF55C291F122B70E2F99 Certificate serial: 20 Authority key identifier: BD:79:AC:76:40:C9:55:C4:35:C8:CF:55:C2:91:F1:22:B7:0E:2F:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/563F3D581F3C11F09F3C7F40C4F9AE02.roa Signing time: Tue 22 Apr 2025 05:40:46 +0000 ROA not before: Tue 22 Apr 2025 05:40:46 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 202736 IP address blocks: 163.61.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.crl rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F026, serialNumber=BD79AC7640C955C435C8CF55C291F122B70E2F99 Validity Not Before: Apr 22 05:40:46 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68072bdd-c538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f3:96:c7:30:51:00:c4:21:68:bb:77:01:a7: df:05:5e:79:0b:54:b2:90:1e:09:ef:fa:9c:fa:90: 8f:af:fb:c0:a5:2a:6b:0a:c7:7a:11:34:af:f4:5e: de:67:a7:12:32:a5:1e:47:1f:b2:90:26:2b:bd:88: b7:71:f2:fd:ff:66:4f:89:0e:50:ac:27:89:3e:c5: eb:7b:56:d6:2c:d2:b0:e1:bf:6d:15:ab:f1:3e:39: 3c:e5:c5:16:d1:ac:4e:8e:b5:43:61:ae:b7:d4:3b: 53:4f:e6:b4:aa:87:b4:c0:89:9d:d6:72:47:76:d5: 57:84:5f:e8:bb:43:b3:33:2c:ba:85:63:ff:90:7f: 8f:c9:68:e4:62:0d:b0:58:5c:f5:4c:cc:7f:72:e2: 25:96:59:78:0e:4c:5a:71:bf:0b:c0:a0:49:89:c9: e0:e0:3e:ee:a8:2b:ca:2b:58:02:c6:b0:15:13:98: 4b:27:5d:1b:e7:13:a6:ff:05:64:02:8f:6c:be:00: e1:d8:07:a7:31:cf:75:76:ad:82:cc:65:6b:d0:d5: 8f:7d:0d:eb:52:ce:2c:83:2e:b4:f5:1a:57:fb:f2: da:44:3c:12:9a:e8:28:78:ba:05:24:e8:69:4f:9d: 96:3a:f5:fe:ec:de:21:26:1d:3f:ea:cd:e0:6a:ba: 25:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6F:90:11:05:03:54:BA:4C:A0:1B:48:0F:3C:A9:7F:F9:AB:19:2D X509v3 Authority Key Identifier: keyid:BD:79:AC:76:40:C9:55:C4:35:C8:CF:55:C2:91:F1:22:B7:0E:2F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/563F3D581F3C11F09F3C7F40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.208.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:25:14:94:60:04:ce:77:78:b8:45:35:49:60:2f:c9:90:c2: c1:81:40:e6:bb:5b:16:cd:81:6a:fe:dc:2c:4b:9c:50:73:5b: 85:5a:aa:7c:7d:b8:88:06:ba:b0:9b:d8:8b:69:fc:c7:40:00: 94:32:6b:25:c1:25:fc:a5:ff:38:dd:e3:62:40:5e:00:99:0d: 42:6e:0d:02:d0:9d:65:c2:54:ae:9c:05:86:66:17:91:d5:59: 8b:d6:df:a3:97:e4:a5:c4:5f:63:ee:69:6d:0c:45:25:e3:fc: df:f0:35:79:13:fc:91:37:09:eb:a4:64:5c:49:14:f4:ed:0c: 50:c3:21:01:b2:bb:11:af:67:f3:b7:44:a2:be:ae:9c:ec:95: 69:e9:7e:15:43:db:79:6e:4a:fc:34:c4:ea:3c:cf:32:1f:8d: 4c:0c:79:58:2c:b4:59:13:93:aa:ef:a3:40:7d:9f:bb:ec:db: a9:1e:21:2e:66:46:97:a5:f6:27:b0:23:37:81:da:62:ae:12: e4:bd:90:06:53:d7:f9:e9:ea:e4:3c:ee:7d:c4:90:4e:3f:7b: 9c:63:37:78:1a:6b:61:db:59:23:fb:8e:27:01:d1:0f:9e:b4: 2e:93:67:03:3e:62:d6:92:66:cf:5f:fb:5e:6a:31:33:7f:3e: 9e:6d:2c:57 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjAyNjExMC8GA1UEBRMoQkQ3OUFDNzY0MEM5NTVDNDM1QzhDRjU1QzI5MUYxMjJC NzBFMkY5OTAeFw0yNTA0MjIwNTQwNDZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDcyYmRkLWM1MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCc85bHMFEAxCFou3cBp98FXnkLVLKQHgnv+pz6kI+v+8ClKmsKx3oRNK/0Xt5n pxIypR5HH7KQJiu9iLdx8v3/Zk+JDlCsJ4k+xet7VtYs0rDhv20Vq/E+OTzlxRbR rE6OtUNhrrfUO1NP5rSqh7TAiZ3Wckd21VeEX+i7Q7MzLLqFY/+Qf4/JaORiDbBY XPVMzH9y4iWWWXgOTFpxvwvAoEmJyeDgPu6oK8orWALGsBUTmEsnXRvnE6b/BWQC j2y+AOHYB6cxz3V2rYLMZWvQ1Y99DetSziyDLrT1Glf78tpEPBKa6Ch4ugUk6GlP nZY69f7s3iEmHT/qzeBquiXrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhm+QEQUD VLpMoBtIDzypf/mrGS0wHwYDVR0jBBgwFoAUvXmsdkDJVcQ1yM9VwpHxIrcOL5kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGMDI2LzNCQUFBQzQ0RkIy ODExRUY5NTlGQzc3NEM0RjlBRTAyL3ZYbXNka0RKVmNRMXlNOVZ3cEh4SXJjT0w1 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdlhtc2RrREpWY1ExeU05VndwSHhJcmNPTDVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjAyNi8zQkFBQUM0NEZCMjgxMUVGOTU5RkM3NzRDNEY5QUUwMi81NjNGM0Q1ODFG M0MxMUYwOUYzQzdGNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaM90DANBgkqhkiG9w0BAQsFAAOCAQEAayUUlGAEznd4uEU1 SWAvyZDCwYFA5rtbFs2Bav7cLEucUHNbhVqqfH24iAa6sJvYi2n8x0AAlDJrJcEl /KX/ON3jYkBeAJkNQm4NAtCdZcJUrpwFhmYXkdVZi9bfo5fkpcRfY+5pbQxFJeP8 3/A1eRP8kTcJ66RkXEkU9O0MUMMhAbK7Ea9n87dEor6unOyVael+FUPbeW5K/DTE 6jzPMh+NTAx5WCy0WROTqu+jQH2fu+zbqR4hLmZGl6X2J7AjN4HaYq4S5L2QBlPX +enq5DzufcSQTj97nGM3eBprYdtZI/uOJwHRD560LpNnAz5i1pJmz1/7XmoxM38+ nm0sVw== -----END CERTIFICATE-----Generated at Sat Apr 26 13:57:15 2025 by rpki-client