$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa File: F6FAB490BB5811EF8C37CB81C4F9AE02.roa (raw, json) Hash identifier: 8BNZKJ0bk38KOQOWjsH36VcnyN3HEx5P7NFwwrluJjM= Subject key identifier: 89:8D:EE:BE:FD:64:1E:DB:14:67:CC:B1:08:BF:FB:F7:70:3C:99:F1 Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 34CD Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa Signing time: Mon 16 Dec 2024 03:09:05 +0000 ROA not before: Mon 16 Dec 2024 03:09:04 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 23974 IP address blocks: 101.51.0.0/20 maxlen: 20 101.51.16.0/21 maxlen: 21 101.51.152.0/21 maxlen: 21 182.52.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13517 (0x34cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE Validity Not Before: Dec 16 03:09:04 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=675f99d0-0797 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:58:84:5e:ec:db:1c:dd:f6:f8:92:42:30:c8: 1e:41:4b:91:c0:8a:f3:49:58:aa:0d:4c:28:39:a6: 54:44:bf:aa:29:64:7a:ce:40:81:2e:12:70:19:87: 85:4f:20:8a:8d:9d:da:6b:c2:da:da:06:00:66:47: 92:b1:23:0e:2b:06:be:86:7b:18:aa:bb:37:f1:94: 0e:80:69:9a:a6:39:b8:5b:9c:ef:a9:50:00:1d:d7: b8:60:e8:25:e4:ea:85:f3:28:20:5f:02:e2:d4:29: 68:ae:67:9a:31:3e:9f:2f:bc:25:8f:0e:b8:02:78: 4a:ca:a4:1a:ba:b2:bc:80:99:c7:4c:68:31:bd:be: a6:92:50:bc:79:d2:50:a1:1d:12:6a:68:32:7c:44: 35:94:33:b2:1b:e4:c8:ae:07:7a:0a:3c:1e:a0:cd: a1:94:87:02:2c:31:9a:1f:b0:50:1b:4c:c9:02:11: 10:69:1b:80:2f:99:4e:d8:29:82:e4:64:49:70:77: 08:47:10:6c:f6:b1:1f:b4:6a:06:d8:38:ca:c4:00: 73:25:ed:55:62:9c:21:14:92:d5:37:b4:2a:32:bb: 8c:5c:bf:8d:09:b0:24:9a:fa:db:c9:7b:2c:08:21: 04:e7:cf:67:ae:5a:4c:d2:60:92:7c:12:2f:3b:e6: 37:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:8D:EE:BE:FD:64:1E:DB:14:67:CC:B1:08:BF:FB:F7:70:3C:99:F1 X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.51.0.0-101.51.23.255 101.51.152.0/21 182.52.230.0/24 Signature Algorithm: sha256WithRSAEncryption b5:89:9a:77:75:a9:d6:21:38:c1:b7:36:a5:ad:68:21:4b:38: b6:bb:57:12:e9:1e:23:25:38:d5:3e:4d:34:87:cc:89:57:21: 6f:e9:8f:16:27:a9:09:7e:f8:df:fe:c1:3a:c9:8a:af:b1:2b: 48:08:7b:8b:cb:0e:ac:d7:39:04:5a:eb:53:61:df:a1:17:a7: 2f:0c:fd:6a:3f:7d:61:3a:73:bd:a2:ec:57:9d:41:8a:9a:c6: aa:f7:1c:2e:d3:2f:f8:a4:f6:5e:f9:76:52:a1:9a:b0:79:fe: 84:37:60:53:8f:80:55:df:bd:20:7e:ee:1b:19:8c:05:94:64: ab:66:49:4f:03:f1:3b:10:bb:5c:bb:91:35:0c:78:48:50:6d: 63:18:70:96:a5:b2:1e:10:b0:b1:c0:37:2a:61:54:0e:b8:a4: 61:65:9d:39:95:f5:21:e4:7e:57:75:45:f2:f0:d4:00:e0:fb: 5e:cb:08:c5:bc:a5:83:6d:21:53:2b:f4:99:37:d6:86:31:f8: 24:f5:6e:eb:cb:b7:25:3b:78:f2:81:69:1f:21:c6:b4:84:bc: 70:82:e5:ff:83:f6:ba:2c:41:22:bd:54:3e:06:7f:13:61:e0: eb:ed:9d:e0:3e:61:15:65:d0:f9:43:51:b3:f8:60:41:06:78: 7c:cc:02:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjQxMjE2MDMwOTA0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVmOTlkMC0wNzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1liEXuzbHN32+JJCMMgeQUuRwIrzSViqDUwoOaZURL+qKWR6zkCBLhJwGYeF TyCKjZ3aa8La2gYAZkeSsSMOKwa+hnsYqrs38ZQOgGmapjm4W5zvqVAAHde4YOgl 5OqF8yggXwLi1ClormeaMT6fL7wljw64AnhKyqQaurK8gJnHTGgxvb6mklC8edJQ oR0SamgyfEQ1lDOyG+TIrgd6CjweoM2hlIcCLDGaH7BQG0zJAhEQaRuAL5lO2CmC 5GRJcHcIRxBs9rEftGoG2DjKxABzJe1VYpwhFJLVN7QqMruMXL+NCbAkmvrbyXss CCEE589nrlpM0mCSfBIvO+Y3FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImN7r79 ZB7bFGfMsQi/+/dwPJnxMB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvRjZGQUI0OTBC QjU4MTFFRjhDMzdDQjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMB8EAgABMBkwCwMDAGUzAwQDZTMQAwQDZTOYAwQAtjTmMA0GCSqGSIb3DQEB CwUAA4IBAQC1iZp3danWITjBtzalrWghSzi2u1cS6R4jJTjVPk00h8yJVyFv6Y8W J6kJfvjf/sE6yYqvsStICHuLyw6s1zkEWutTYd+hF6cvDP1qP31hOnO9ouxXnUGK msaq9xwu0y/4pPZe+XZSoZqwef6EN2BTj4BV370gfu4bGYwFlGSrZklPA/E7ELtc u5E1DHhIUG1jGHCWpbIeELCxwDcqYVQOuKRhZZ05lfUh5H5XdUXy8NQA4PteywjF vKWDbSFTK/SZN9aGMfgk9W7ry7clO3jygWkfIca0hLxwguX/g/a6LEEivVQ+Bn8T YeDr7Z3gPmEVZdD5Q1Gz+GBBBnh8zAJ0 -----END CERTIFICATE-----Generated at Sun Apr 6 12:24:06 2025 by rpki-client