$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/C1530A161F4B11F09001E120C4F9AE02.roa File: C1530A161F4B11F09001E120C4F9AE02.roa (raw, json) Hash identifier: cSk4cXTnBJuFtAnBfK89VOjX9+KoqSl+ebdlMH2Co98= Subject key identifier: 8D:D8:45:85:FC:68:D3:DD:14:DC:4D:84:97:34:28:36:FC:0B:2E:DC Certificate issuer: /CN=A91F83B6/serialNumber=E46B9318585AC1E06CF384E2EECC21F4743389BB Certificate serial: 21 Authority key identifier: E4:6B:93:18:58:5A:C1:E0:6C:F3:84:E2:EE:CC:21:F4:74:33:89:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GuTGFhaweBs84Ti7swh9HQzibs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/C1530A161F4B11F09001E120C4F9AE02.roa Signing time: Tue 22 Apr 2025 07:31:08 +0000 ROA not before: Tue 22 Apr 2025 07:31:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139325 IP address blocks: 163.61.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/5GuTGFhaweBs84Ti7swh9HQzibs.crl rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/5GuTGFhaweBs84Ti7swh9HQzibs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GuTGFhaweBs84Ti7swh9HQzibs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83B6, serialNumber=E46B9318585AC1E06CF384E2EECC21F4743389BB Validity Not Before: Apr 22 07:31:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=680745bb-8450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ae:77:1a:7f:3c:81:1f:11:fd:c7:c8:1d:51: 40:db:19:a0:82:d9:ab:60:48:08:5f:01:c8:23:c5: 40:91:dd:1a:09:89:69:98:26:35:1b:2d:00:01:e1: 22:c9:f0:3f:cf:aa:ad:fc:21:14:f0:f9:39:8b:ca: 11:12:de:1c:75:ee:89:8e:a9:05:22:9a:75:2a:2a: 0b:5f:d5:92:3f:d8:0f:83:28:bd:83:ef:29:42:d3: e1:8f:18:39:fd:c2:9e:ea:95:3c:9f:f6:f5:8b:2d: 62:2d:e1:27:71:e7:e0:81:cd:df:ce:06:ec:92:3c: 4d:ba:38:09:ec:c7:a6:db:10:6d:e5:c1:02:76:c2: 47:1b:b5:8b:ad:82:2d:0b:34:32:ed:be:71:18:26: 59:bf:5e:96:a7:e0:65:4e:b2:da:b9:ca:40:5c:bf: 8c:c4:92:76:1e:4d:a7:f8:ab:06:fb:6a:70:dc:2e: 0d:86:87:32:b3:bf:c1:dd:c8:20:d1:ef:35:a7:a6: 82:d1:80:be:ae:b3:1f:5c:59:01:e4:95:3e:fc:ce: 2b:d6:d0:09:e7:75:ee:3c:7a:a2:9e:2e:80:9f:e2: b8:07:4f:34:2e:3c:1a:08:0e:d3:d3:43:09:2f:36: b9:0b:a5:48:f6:85:05:10:5c:95:b5:89:de:58:75: 30:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D8:45:85:FC:68:D3:DD:14:DC:4D:84:97:34:28:36:FC:0B:2E:DC X509v3 Authority Key Identifier: keyid:E4:6B:93:18:58:5A:C1:E0:6C:F3:84:E2:EE:CC:21:F4:74:33:89:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/5GuTGFhaweBs84Ti7swh9HQzibs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GuTGFhaweBs84Ti7swh9HQzibs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83B6/E8F18B22F73E11EF9687370DC4F9AE02/C1530A161F4B11F09001E120C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.216.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:af:e8:37:9f:1d:ef:66:8d:5a:10:85:a1:4a:03:d5:b3:44: 0c:03:89:f1:dc:4e:31:5f:37:f9:22:7c:b9:50:67:f7:6d:e4: 03:39:0a:0a:f2:e3:da:ea:e9:33:60:f7:3c:c5:1e:6f:5d:12: a7:4a:5d:1a:11:86:ed:45:8f:45:94:67:ea:db:72:1d:eb:0a: 48:56:ce:17:a6:1b:8c:8f:da:8b:be:4a:18:2d:bb:46:c2:8d: 1b:db:40:9e:b8:d2:90:82:ff:aa:ee:b9:79:32:21:94:d1:4d: 29:2e:1e:fe:b6:bd:80:b1:6e:a3:78:d2:c0:98:74:62:9d:fb: 67:c3:a9:52:26:e5:1e:b8:f6:8a:12:83:34:8c:07:c6:e8:04: 62:2d:ea:f4:95:d6:a0:f0:8d:c1:4f:9c:26:11:15:40:e0:19: 8c:4e:01:af:2c:b0:bf:68:0c:2f:6f:b1:ea:5c:43:d3:4d:7b: a9:9c:e0:8a:2e:88:97:e0:bd:73:24:74:e9:e5:2b:d9:92:70: 77:5d:2d:c6:49:6b:03:80:23:53:7e:f5:bf:fc:bd:2d:b2:bc: 0f:75:b6:ee:a2:3e:a9:31:e7:53:36:6e:b7:83:d0:bd:37:b1: 7a:d4:72:78:76:11:5d:fc:01:5c:95:1d:8c:fb:f7:25:96:5a: ea:94:29:76 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODNCNjExMC8GA1UEBRMoRTQ2QjkzMTg1ODVBQzFFMDZDRjM4NEUyRUVDQzIxRjQ3 NDMzODlCQjAeFw0yNTA0MjIwNzMxMDhaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDc0NWJiLTg0NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/rncafzyBHxH9x8gdUUDbGaCC2atgSAhfAcgjxUCR3RoJiWmYJjUbLQAB4SLJ 8D/Pqq38IRTw+TmLyhES3hx17omOqQUimnUqKgtf1ZI/2A+DKL2D7ylC0+GPGDn9 wp7qlTyf9vWLLWIt4Sdx5+CBzd/OBuySPE26OAnsx6bbEG3lwQJ2wkcbtYutgi0L NDLtvnEYJlm/Xpan4GVOstq5ykBcv4zEknYeTaf4qwb7anDcLg2GhzKzv8HdyCDR 7zWnpoLRgL6usx9cWQHklT78zivW0Annde48eqKeLoCf4rgHTzQuPBoIDtPTQwkv NrkLpUj2hQUQXJW1id5YdTCjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjdhFhfxo 090U3E2ElzQoNvwLLtwwHwYDVR0jBBgwFoAU5GuTGFhaweBs84Ti7swh9HQzibsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4M0I2L0U4RjE4QjIyRjcz RTExRUY5Njg3MzcwREM0RjlBRTAyLzVHdVRHRmhhd2VCczg0VGk3c3doOUhRemli cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUd1VEdGaGF3ZUJzODRUaTdzd2g5SFF6aWJzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNCNi9FOEYxOEIyMkY3M0UxMUVGOTY4NzM3MERDNEY5QUUwMi9DMTUzMEExNjFG NEIxMUYwOTAwMUUxMjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM92DANBgkqhkiG9w0BAQsFAAOCAQEAHq/oN58d72aNWhCF oUoD1bNEDAOJ8dxOMV83+SJ8uVBn923kAzkKCvLj2urpM2D3PMUeb10Sp0pdGhGG 7UWPRZRn6ttyHesKSFbOF6YbjI/ai75KGC27RsKNG9tAnrjSkIL/qu65eTIhlNFN KS4e/ra9gLFuo3jSwJh0Yp37Z8OpUiblHrj2ihKDNIwHxugEYi3q9JXWoPCNwU+c JhEVQOAZjE4Bryywv2gML2+x6lxD0017qZzgii6Il+C9cyR06eUr2ZJwd10txklr A4AjU371v/y9LbK8D3W27qI+qTHnUzZut4PQvTexetRyeHYRXfwBXJUdjPv3JZZa 6pQpdg== -----END CERTIFICATE-----Generated at Sat Apr 26 08:12:32 2025 by rpki-client