$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/04241E3222F011F0B021396DC4F9AE02.roa File: 04241E3222F011F0B021396DC4F9AE02.roa (raw, json) Hash identifier: IjQPfIj5/AzM9Gvm8PKFUDMbCEL6tis3DH+Pa1Gh85o= Subject key identifier: EA:47:DC:BA:54:90:C0:0A:FE:13:ED:65:B8:60:75:20:C9:9C:25:08 Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: 40 Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/04241E3222F011F0B021396DC4F9AE02.roa Signing time: Sat 26 Apr 2025 22:44:30 +0000 ROA not before: Sat 26 Apr 2025 22:44:30 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134886 IP address blocks: 163.61.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB, serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Validity Not Before: Apr 26 22:44:30 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=680d61ce-d051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a7:2e:4e:d4:7c:9c:3b:44:b3:7b:6a:ab:af: f0:82:80:f8:af:a6:69:34:bb:5f:ee:a3:a9:51:5d: 28:63:68:69:64:14:b4:4b:70:9f:10:14:ca:59:7b: 7a:08:36:52:20:a0:ea:98:b5:d4:d0:98:35:ef:da: fb:71:a8:e0:05:fa:3e:f2:5e:7b:18:d7:a5:6f:ac: 45:ad:08:11:b4:2a:7c:60:76:42:52:cb:90:6d:b7: 73:c2:04:fd:8b:23:cf:d4:a9:e9:57:51:8a:c6:74: da:24:a5:07:ac:22:34:f4:42:b9:70:9e:35:f4:b9: 02:89:b9:15:5c:f8:76:8f:b7:e9:e1:24:2c:a1:2c: b2:06:50:8b:2c:57:b7:f0:dc:85:d8:a5:3c:8f:41: af:20:1c:d0:5c:f7:69:1b:9c:af:ea:6e:46:fd:b1: 91:10:57:7a:d9:68:d1:88:56:3e:6a:90:10:26:eb: ec:cc:7e:c1:2f:28:fc:3e:e9:de:5d:ef:82:78:4e: ad:6a:39:22:d3:af:9d:fa:61:cf:39:a1:56:c5:53: 69:f1:4f:b8:88:aa:02:90:1c:a2:c8:a1:d1:ce:77: d2:94:50:b1:22:e5:93:29:9d:95:ce:35:4b:1a:64: 14:f5:07:a3:a7:52:ca:b4:2e:52:32:7e:4c:f1:cd: 21:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:47:DC:BA:54:90:C0:0A:FE:13:ED:65:B8:60:75:20:C9:9C:25:08 X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/04241E3222F011F0B021396DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.97.0/24 Signature Algorithm: sha256WithRSAEncryption 63:dd:51:4f:11:ce:35:f9:8e:b4:e0:cb:b8:47:b2:a9:e2:d1: 54:2e:6d:33:1f:e3:f1:90:42:bd:b8:a6:1b:fd:74:33:86:ea: b0:f3:c2:1d:83:ff:dd:1f:2e:9f:91:5f:e4:97:65:f9:9c:0a: 5f:43:08:28:ed:ac:2a:d0:dd:f5:4e:93:32:b6:a1:f3:b6:ce: e6:65:88:bd:15:0c:e2:ee:ca:fe:31:e2:17:e9:5e:f3:44:a8: fa:9f:0f:2b:f9:80:f2:ea:71:4d:70:48:8a:37:5e:08:e7:cb: e4:f4:15:9f:cf:4d:43:7f:78:9d:7f:da:6a:c1:cc:d4:7c:53: c5:80:ac:92:3a:b8:52:43:5a:53:1c:e4:a4:c4:52:af:93:a5: 65:c2:73:60:ee:fa:cf:ff:17:54:09:17:8a:76:6e:eb:4e:d2: f8:2c:4c:5d:00:5f:a4:77:e2:76:ee:71:20:13:25:ba:7e:b5: 2b:26:5d:9b:04:28:5d:04:2d:44:da:f0:ca:5a:43:07:8f:08: cb:74:6e:25:dd:46:1a:d3:13:5d:b8:d0:73:d6:4e:7b:67:0e: 7c:bd:4b:28:b9:53:c7:6e:a1:bf:ef:44:e6:0b:01:48:fb:2d: d5:02:5b:4b:78:2c:89:d2:e4:66:df:cc:c1:ab:7c:c5:ef:e0: 46:74:c8:0b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REVFQjExMC8GA1UEBRMoNkI2M0E2MEU3RDdGNTFEMDM4NzI4QzY0MjU5MDYwNDcw MTZDOTkwNDAeFw0yNTA0MjYyMjQ0MzBaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MGQ2MWNlLWQwNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvpy5O1HycO0Sze2qrr/CCgPivpmk0u1/uo6lRXShjaGlkFLRLcJ8QFMpZe3oI NlIgoOqYtdTQmDXv2vtxqOAF+j7yXnsY16VvrEWtCBG0KnxgdkJSy5Btt3PCBP2L I8/UqelXUYrGdNokpQesIjT0QrlwnjX0uQKJuRVc+HaPt+nhJCyhLLIGUIssV7fw 3IXYpTyPQa8gHNBc92kbnK/qbkb9sZEQV3rZaNGIVj5qkBAm6+zMfsEvKPw+6d5d 74J4Tq1qOSLTr536Yc85oVbFU2nxT7iIqgKQHKLIodHOd9KUULEi5ZMpnZXONUsa ZBT1B6OnUsq0LlIyfkzxzSFDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6kfculSQ wAr+E+1luGB1IMmcJQgwHwYDVR0jBBgwFoAUa2OmDn1/UdA4coxkJZBgRwFsmQQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERUVCLzFFRTdGQTYwRTVG NDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21R US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYTJPbURuMV9VZEE0Y294a0paQmdSd0ZzbVFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REVFQi8xRUU3RkE2MEU1RjQxMUVGQUJEMzlEN0VDNEY5QUUwMi8wNDI0MUUzMjIy RjAxMUYwQjAyMTM5NkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9YTANBgkqhkiG9w0BAQsFAAOCAQEAY91RTxHONfmOtODL uEeyqeLRVC5tMx/j8ZBCvbimG/10M4bqsPPCHYP/3R8un5Ff5Jdl+ZwKX0MIKO2s KtDd9U6TMrah87bO5mWIvRUM4u7K/jHiF+le80So+p8PK/mA8upxTXBIijdeCOfL 5PQVn89NQ394nX/aasHM1HxTxYCskjq4UkNaUxzkpMRSr5OlZcJzYO76z/8XVAkX inZu607S+CxMXQBfpHfidu5xIBMlun61KyZdmwQoXQQtRNrwylpDB48Iy3RuJd1G GtMTXbjQc9ZOe2cOfL1LKLlTx26hv+9E5gsBSPst1QJbS3gsidLkZt/Mwat8xe/g RnTICw== -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net