$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/6667EA1E20F811F0A8A8B152C4F9AE02.roa File: 6667EA1E20F811F0A8A8B152C4F9AE02.roa (raw, json) Hash identifier: OmV8c2WyaE/U5jA5VcIK/FgCq7kVUSULlHMoYeHpWw8= Subject key identifier: EE:C0:09:DF:0D:A3:D3:71:40:6D:4E:D7:0E:51:70:7E:03:38:07:35 Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: 41 Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/6667EA1E20F811F0A8A8B152C4F9AE02.roa Signing time: Sat 26 Apr 2025 22:44:31 +0000 ROA not before: Sat 26 Apr 2025 22:44:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153581 IP address blocks: 163.61.96.0/24 maxlen: 24 2001:df5:11c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB, serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Validity Not Before: Apr 26 22:44:31 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=680d61cf-9d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bb:51:fa:b9:f6:c4:e5:75:e3:4e:8a:38:f4: 03:d7:79:b0:f5:cb:b9:3b:6a:af:43:6d:94:3b:e2: ad:d1:3f:28:f5:9e:ea:3d:be:4c:ae:41:f0:e4:b6: 5a:99:6a:87:63:a6:36:55:2c:b0:0a:e5:ec:e2:3e: 60:a7:98:bf:85:e4:04:ef:b0:15:1a:d3:b2:58:a1: da:a2:06:44:df:d2:67:c7:b2:03:6b:25:7e:9e:d2: de:e5:23:62:f1:08:15:1d:10:13:f6:67:6b:fa:1b: c4:19:2b:02:b7:61:a9:03:bb:a8:12:1e:02:b3:91: 7a:8e:0b:94:70:52:c1:39:8e:de:ce:12:ac:9e:76: 27:79:49:07:26:8c:ed:a8:7a:fa:de:20:99:30:53: a7:9a:bc:68:e3:ea:db:b7:6d:64:a0:be:fe:58:12: 14:72:4f:20:57:37:64:54:a6:6d:97:75:c5:5d:94: 58:89:85:b1:ab:37:ff:fa:ca:7d:00:c4:31:ae:ba: 66:ac:b4:12:6d:cb:56:51:03:db:a0:5d:22:81:25: e3:0f:a6:b8:f5:53:23:92:f3:90:d3:c6:82:03:54: 5d:bf:fe:c6:dc:aa:f8:98:36:36:a0:3d:6c:c0:04: e9:70:f5:7d:73:2a:69:e0:85:ed:41:59:6c:36:b9: 3e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C0:09:DF:0D:A3:D3:71:40:6D:4E:D7:0E:51:70:7E:03:38:07:35 X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/6667EA1E20F811F0A8A8B152C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.96.0/24 IPv6: 2001:df5:11c0::/48 Signature Algorithm: sha256WithRSAEncryption 1e:11:f8:18:3d:d5:4d:2d:b2:97:a4:00:d6:d0:31:d5:fa:bd: 64:51:e5:b5:89:36:a4:3a:44:12:00:4a:c8:8c:ce:80:94:dc: 71:dc:85:a7:d2:bf:ca:da:23:45:ee:0c:34:21:7a:fd:ca:dc: 18:89:ea:91:ef:ce:2c:07:32:e5:cc:69:6e:15:06:70:78:ab: 4a:70:b3:f0:65:08:c5:7a:7b:b2:09:c5:a6:a1:a4:36:23:e2: 77:ce:2b:06:03:c1:bb:fc:41:2b:09:ce:bc:18:c7:c8:2e:f3: 67:4b:55:f2:a1:29:f8:93:f9:8a:1c:0e:60:aa:2a:c8:39:03: 56:c7:d8:0c:6c:ca:8c:37:04:13:ae:cb:3c:af:df:77:ed:94: 03:e5:5c:78:e4:f3:fc:64:78:d4:de:85:5b:22:6e:fd:dd:10: f8:7e:5e:14:be:50:6f:cb:65:21:a5:68:0c:99:a5:c2:fe:b4: f3:fb:0e:e0:4a:ca:fe:66:57:e8:60:71:9f:17:0e:90:77:dc: a5:50:e7:ce:7e:22:83:ef:68:f5:30:f4:65:07:00:aa:c7:58: ae:07:ac:42:4a:93:6e:eb:39:32:56:67:4e:8d:d0:e9:03:c0: 19:6e:64:32:36:c4:01:cf:08:b7:aa:00:8e:87:1f:71:3d:d4: 26:33:02:ec -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REVFQjExMC8GA1UEBRMoNkI2M0E2MEU3RDdGNTFEMDM4NzI4QzY0MjU5MDYwNDcw MTZDOTkwNDAeFw0yNTA0MjYyMjQ0MzFaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MGQ2MWNmLTlkNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBu1H6ufbE5XXjToo49APXebD1y7k7aq9DbZQ74q3RPyj1nuo9vkyuQfDktlqZ aodjpjZVLLAK5eziPmCnmL+F5ATvsBUa07JYodqiBkTf0mfHsgNrJX6e0t7lI2Lx CBUdEBP2Z2v6G8QZKwK3YakDu6gSHgKzkXqOC5RwUsE5jt7OEqyedid5SQcmjO2o evreIJkwU6eavGjj6tu3bWSgvv5YEhRyTyBXN2RUpm2XdcVdlFiJhbGrN//6yn0A xDGuumastBJty1ZRA9ugXSKBJeMPprj1UyOS85DTxoIDVF2//sbcqviYNjagPWzA BOlw9X1zKmnghe1BWWw2uT51AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU7sAJ3w2j 03FAbU7XDlFwfgM4BzUwHwYDVR0jBBgwFoAUa2OmDn1/UdA4coxkJZBgRwFsmQQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERUVCLzFFRTdGQTYwRTVG NDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21R US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYTJPbURuMV9VZEE0Y294a0paQmdSd0ZzbVFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REVFQi8xRUU3RkE2MEU1RjQxMUVGQUJEMzlEN0VDNEY5QUUwMi82NjY3RUExRTIw RjgxMUYwQThBOEIxNTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAKM9YDAPBAIAAjAJAwcAIAEN9RHAMA0GCSqGSIb3DQEBCwUA A4IBAQAeEfgYPdVNLbKXpADW0DHV+r1kUeW1iTakOkQSAErIjM6AlNxx3IWn0r/K 2iNF7gw0IXr9ytwYieqR784sBzLlzGluFQZweKtKcLPwZQjFenuyCcWmoaQ2I+J3 zisGA8G7/EErCc68GMfILvNnS1XyoSn4k/mKHA5gqirIOQNWx9gMbMqMNwQTrss8 r9937ZQD5Vx45PP8ZHjU3oVbIm793RD4fl4UvlBvy2UhpWgMmaXC/rTz+w7gSsr+ ZlfoYHGfFw6Qd9ylUOfOfiKD72j1MPRlBwCqx1iuB6xCSpNu6zkyVmdOjdDpA8AZ bmQyNsQBzwi3qgCOhx9xPdQmMwLs -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net