$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/FCA046066C8611EFBF35D221C4F9AE02.roa File: FCA046066C8611EFBF35D221C4F9AE02.roa (raw, json) Hash identifier: LLGlR1swQUGpHRHzrbzk96I6Zx3kb8thD/xfxQf3uHA= Subject key identifier: 3E:4D:E7:94:69:B4:76:B3:29:FD:82:BB:C7:AA:E3:FC:8D:40:3B:FA Certificate issuer: /CN=A912F387/serialNumber=28188C16EEC90742717278C289CF82F504F25AA9 Certificate serial: B5 Authority key identifier: 28:18:8C:16:EE:C9:07:42:71:72:78:C2:89:CF:82:F5:04:F2:5A:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/FCA046066C8611EFBF35D221C4F9AE02.roa Signing time: Wed 11 Dec 2024 04:18:48 +0000 ROA not before: Wed 11 Dec 2024 04:18:48 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45691 IP address blocks: 157.10.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.crl rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F387 Validity Not Before: Dec 11 04:18:48 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675912a8-f6a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4f:6e:d1:f0:4e:d2:cd:7a:01:8a:7e:f6:ff: 29:13:04:d1:3a:b2:25:9d:d3:b2:0d:81:c0:d8:c6: 6e:eb:d0:53:bc:7a:ff:fc:19:95:0a:c6:b2:fe:5b: 49:96:26:a6:7f:72:c8:69:6d:4a:4b:b7:7e:af:4f: a1:30:76:7f:7f:e4:6a:e6:7e:ef:ec:96:a7:a9:57: bc:c1:2e:4a:b4:00:32:d6:f2:cd:c3:50:4c:25:72: 4f:a3:ba:84:87:d9:55:b8:72:40:03:5b:9a:cb:8b: 09:77:f2:92:59:8b:11:56:c8:e5:10:62:fd:3a:e8: 08:25:27:b3:5a:cf:c6:4d:3f:60:de:6f:56:b0:8a: 7a:88:46:91:d8:02:86:01:c1:23:8a:55:db:5b:fd: 4f:dd:87:44:df:4e:ac:31:ce:ba:56:20:86:ff:b1: 8a:1a:38:b4:61:85:fd:15:0f:a0:0e:0f:42:f8:9b: 94:d0:d4:2b:a1:bc:d2:f9:91:ab:71:0e:e9:68:5e: 05:92:63:62:59:c6:19:93:b5:b6:85:d1:66:d2:65: 88:2a:11:f0:d2:12:c3:4c:ec:5c:77:23:81:97:40: 66:49:2c:b8:b6:8e:03:37:12:1d:ba:03:e8:bc:2e: 1d:a7:93:79:e5:dc:bc:e5:72:f1:b8:8f:45:13:0d: dd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:4D:E7:94:69:B4:76:B3:29:FD:82:BB:C7:AA:E3:FC:8D:40:3B:FA X509v3 Authority Key Identifier: keyid:28:18:8C:16:EE:C9:07:42:71:72:78:C2:89:CF:82:F5:04:F2:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/FCA046066C8611EFBF35D221C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.209.0/24 Signature Algorithm: sha256WithRSAEncryption 03:58:e3:3c:b8:a7:68:40:36:e7:1c:7e:8f:30:b3:a7:e4:e1: fc:96:cd:6b:32:2f:f7:ed:9a:3e:f1:6b:7f:e8:79:19:01:13: 27:de:c0:9a:c5:aa:11:3b:b7:b0:43:84:37:88:27:1e:1b:bf: 46:6a:1f:3f:df:dc:10:ef:5c:8a:fa:13:89:11:f0:8b:8f:da: b2:5e:c7:08:46:0a:e5:1d:5d:62:29:be:f9:de:b8:e3:68:b9: 0a:77:e7:21:96:75:f8:81:b7:f2:e5:69:df:59:08:fa:ab:5d: 5d:e7:9e:83:36:47:35:c8:dd:e4:b3:68:bd:5c:13:87:e7:a8: 6a:36:f9:3e:d5:58:bc:f9:38:14:ac:63:67:de:51:16:21:62: 29:97:22:35:db:01:d1:91:f3:2e:ca:c5:ce:5f:33:fa:92:83: 68:fa:c1:55:4e:a3:81:92:c4:97:6e:0c:47:d1:98:06:19:9a: 76:d1:1c:b4:02:7d:47:9e:eb:38:04:31:8c:53:d5:a5:ad:c4: 8f:98:99:f0:db:60:b7:d5:9e:e0:50:c4:95:00:fe:f2:98:a6: 24:f3:a1:2f:41:52:ad:6b:ee:c3:6a:f5:2a:15:7c:91:05:b0: a9:99:05:dc:03:19:00:b5:5c:40:3c:9c:c3:20:b0:ea:dc:3f: 79:a6:54:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzODcxMTAvBgNVBAUTKDI4MTg4QzE2RUVDOTA3NDI3MTcyNzhDMjg5Q0Y4MkY1 MDRGMjVBQTkwHhcNMjQxMjExMDQxODQ4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU5MTJhOC1mNmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl09u0fBO0s16AYp+9v8pEwTROrIlndOyDYHA2MZu69BTvHr//BmVCsay/ltJ liamf3LIaW1KS7d+r0+hMHZ/f+Rq5n7v7JanqVe8wS5KtAAy1vLNw1BMJXJPo7qE h9lVuHJAA1uay4sJd/KSWYsRVsjlEGL9OugIJSezWs/GTT9g3m9WsIp6iEaR2AKG AcEjilXbW/1P3YdE306sMc66ViCG/7GKGji0YYX9FQ+gDg9C+JuU0NQrobzS+ZGr cQ7paF4FkmNiWcYZk7W2hdFm0mWIKhHw0hLDTOxcdyOBl0BmSSy4to4DNxIdugPo vC4dp5N55dy85XLxuI9FEw3dSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD5N55Rp tHazKf2Cu8eq4/yNQDv6MB8GA1UdIwQYMBaAFCgYjBbuyQdCcXJ4wonPgvUE8lqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjM4Ny9GRTRENzhFMkI1 QzExMUVFOTVCNTgzNDFDNEY5QUUwMi9LQmlNRnU3SkIwSnhjbmpDaWMtQzlRVHlX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tCaU1GdTdKQjBKeGNuakNpYy1DOVFUeVdxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYzODcvRkU0RDc4RTJCNUMxMTFFRTk1QjU4MzQxQzRGOUFFMDIvRkNBMDQ2MDY2 Qzg2MTFFRkJGMzVEMjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCtEwDQYJKoZIhvcNAQELBQADggEBAANY4zy4p2hANucc fo8ws6fk4fyWzWsyL/ftmj7xa3/oeRkBEyfewJrFqhE7t7BDhDeIJx4bv0ZqHz/f 3BDvXIr6E4kR8IuP2rJexwhGCuUdXWIpvvneuONouQp35yGWdfiBt/Llad9ZCPqr XV3nnoM2RzXI3eSzaL1cE4fnqGo2+T7VWLz5OBSsY2feURYhYimXIjXbAdGR8y7K xc5fM/qSg2j6wVVOo4GSxJduDEfRmAYZmnbRHLQCfUee6zgEMYxT1aWtxI+YmfDb YLfVnuBQxJUA/vKYpiTzoS9BUq1r7sNq9SoVfJEFsKmZBdwDGQC1XEA8nMMgsOrc P3mmVJk= -----END CERTIFICATE-----Generated at Sat Apr 5 08:11:31 2025 by rpki-client