$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/FC159BECF4D911EFB4F5FC16C4F9AE02.roa File: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (raw, json) Hash identifier: EZLa5tftXUFUf01Wk2bJeB4vL11mjoEDS6Q4R3zkR8A= Subject key identifier: 75:6C:61:9C:F1:0F:1C:30:74:48:C6:19:F0:48:C0:4E:F2:A8:E3:12 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 0309 Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/FC159BECF4D911EFB4F5FC16C4F9AE02.roa Signing time: Thu 27 Feb 2025 07:10:55 +0000 ROA not before: Thu 27 Feb 2025 07:10:55 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132742 IP address blocks: 45.115.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:20:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 777 (0x309) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9 Validity Not Before: Feb 27 07:10:55 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67c00ffe-9849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:11:24:ab:e2:e3:89:ca:ba:05:8e:8c:0a:5b: 24:3a:2f:37:a3:7d:ba:16:fd:8d:b9:24:ef:6c:ec: 31:0d:fb:63:09:c4:02:c3:63:1c:5b:ae:ab:98:0b: cb:87:c7:1e:3f:69:e0:2c:81:79:86:70:04:eb:b7: e6:34:0f:20:ef:9d:d5:2c:31:fc:3c:38:76:de:8f: 98:82:ec:19:0d:2e:65:03:7a:0d:b4:04:22:af:4d: 1a:a9:95:38:16:e8:03:0a:8f:0b:6c:a5:b5:56:66: 35:d6:86:67:d4:f3:20:5f:33:18:e7:b7:a6:a0:53: 49:5d:03:cc:45:f6:43:8a:0a:2c:91:47:e9:a6:a5: d4:7c:90:ba:0a:9d:98:81:9c:fd:c4:42:47:32:8e: e3:4c:0e:33:6a:49:64:4b:5c:53:7f:4a:be:0d:ad: 9c:5c:20:95:ba:59:05:12:dd:22:7c:2b:b0:f6:af: b2:97:dc:70:58:26:bd:01:e4:a3:1f:9c:61:b3:eb: 35:23:c2:a8:29:01:16:3c:b1:fc:fc:45:0a:32:fd: b5:62:46:97:8e:10:8a:d7:48:58:09:13:5d:a3:70: da:15:8b:e5:e4:67:ce:e0:a6:16:92:d8:42:15:4b: 9c:52:23:c3:62:17:14:dc:ee:a4:ee:27:b7:fc:81: 1a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6C:61:9C:F1:0F:1C:30:74:48:C6:19:F0:48:C0:4E:F2:A8:E3:12 X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/FC159BECF4D911EFB4F5FC16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.240.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:ee:79:e5:f5:6f:67:c5:ce:10:50:91:28:19:8d:2e:df:5d: a5:96:a0:3c:5f:cc:5b:f6:23:db:c7:2d:85:52:95:0b:2a:f9: e2:9b:7e:b0:45:8b:d9:b8:a5:04:17:61:a9:b4:16:15:2e:f8: ad:1c:7e:cb:be:b0:7e:40:c7:71:11:39:6e:cb:5e:4d:92:2d: 2e:c4:ce:ba:b9:bb:0b:89:2b:55:b8:ba:44:50:a6:2c:99:af: 93:8d:4c:62:75:e1:cd:df:60:bd:77:6b:f3:11:8e:cd:74:cd: f7:21:c9:3f:13:2f:27:4e:4d:eb:70:36:be:a9:64:28:3a:19: 2b:bc:aa:17:5d:54:a4:34:53:92:1f:13:45:e2:42:5e:2f:ad: 26:fb:5f:73:52:40:7b:a4:32:04:90:02:69:0f:6e:d8:02:a3: 0f:c7:65:da:37:73:cd:f6:c8:97:bf:d8:f8:66:71:87:bf:55: 51:60:63:e0:68:5a:2f:06:c5:21:04:a0:a8:0c:f5:ce:16:07: ed:3c:36:4b:c6:89:68:76:95:ca:52:a2:23:89:19:4e:ce:e3: 6e:18:a5:01:76:9a:6e:e4:b1:5e:17:52:bc:02:88:ee:5e:38: d3:1e:fb:46:8b:91:6d:4d:78:0b:dc:4f:e2:f8:9d:6a:33:94: fc:d6:85:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjUwMjI3MDcxMDU1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MwMGZmZS05ODQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1REkq+Ljicq6BY6MClskOi83o326Fv2NuSTvbOwxDftjCcQCw2McW66rmAvL h8ceP2ngLIF5hnAE67fmNA8g753VLDH8PDh23o+YguwZDS5lA3oNtAQir00aqZU4 FugDCo8LbKW1VmY11oZn1PMgXzMY57emoFNJXQPMRfZDigoskUfppqXUfJC6Cp2Y gZz9xEJHMo7jTA4zaklkS1xTf0q+Da2cXCCVulkFEt0ifCuw9q+yl9xwWCa9AeSj H5xhs+s1I8KoKQEWPLH8/EUKMv21YkaXjhCK10hYCRNdo3DaFYvl5GfO4KYWkthC FUucUiPDYhcU3O6k7ie3/IEaNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHVsYZzx DxwwdEjGGfBIwE7yqOMSMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzAyQjkvM0I3MkVFOTBDNjA1MTFFQ0FCNzREOTYyQzRGOUFFMDIvRkMxNTlCRUNG NEQ5MTFFRkI0RjVGQzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAItc/AwDQYJKoZIhvcNAQELBQADggEBAI/ueeX1b2fFzhBQ kSgZjS7fXaWWoDxfzFv2I9vHLYVSlQsq+eKbfrBFi9m4pQQXYam0FhUu+K0cfsu+ sH5Ax3EROW7LXk2SLS7Ezrq5uwuJK1W4ukRQpiyZr5ONTGJ14c3fYL13a/MRjs10 zfchyT8TLydOTetwNr6pZCg6GSu8qhddVKQ0U5IfE0XiQl4vrSb7X3NSQHukMgSQ AmkPbtgCow/HZdo3c832yJe/2PhmcYe/VVFgY+BoWi8GxSEEoKgM9c4WB+08NkvG iWh2lcpSoiOJGU7O424YpQF2mm7ksV4XUrwCiO5eONMe+0aLkW1NeAvcT+L4nWoz lPzWhaM= -----END CERTIFICATE-----Generated at Sat Apr 5 16:29:15 2025 by rpki-client