$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/FAC7FE320F0311E997412A4EC4F9AE02.roa File: FAC7FE320F0311E997412A4EC4F9AE02.roa (raw, json) Hash identifier: V2NhhwUM+gXJ6K0MxfFES/mwWiEj/nQp8QceYienoFY= Subject key identifier: 10:12:8D:B5:F5:69:E9:DF:88:05:AB:37:6D:88:E1:33:4C:5B:DE:D3 Certificate issuer: /CN=A91F67BB/serialNumber=1BF5A8D94CE06CE301FC35D869F70D740D709752 Certificate serial: 1104 Authority key identifier: 1B:F5:A8:D9:4C:E0:6C:E3:01:FC:35:D8:69:F7:0D:74:0D:70:97:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_Wo2UzgbOMB_DXYafcNdA1wl1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/FAC7FE320F0311E997412A4EC4F9AE02.roa Signing time: Tue 10 Dec 2024 17:45:30 +0000 ROA not before: Tue 10 Dec 2024 17:45:30 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132132 IP address blocks: 103.6.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/G_Wo2UzgbOMB_DXYafcNdA1wl1I.crl rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/G_Wo2UzgbOMB_DXYafcNdA1wl1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_Wo2UzgbOMB_DXYafcNdA1wl1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4356 (0x1104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB Validity Not Before: Dec 10 17:45:30 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67587e39-5eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fd:38:da:aa:46:34:d0:b8:30:7a:d9:11:fc: 15:6f:a7:79:f0:b5:e0:39:e1:7f:69:fb:1c:ba:eb: 2e:72:b5:29:a3:f8:52:25:22:53:c5:0d:3d:8e:37: a0:fe:93:b9:f6:d6:5b:38:91:74:b1:11:31:1e:79: 04:ef:50:05:f6:b2:ad:30:f6:21:98:cd:fb:bf:13: 1a:e5:07:e7:1b:05:3b:b6:af:ad:77:69:77:a7:33: d1:bf:ed:f3:70:b2:08:4f:9a:fb:94:49:e8:6c:80: 52:e7:9d:06:ee:46:a6:48:f6:b3:b6:c0:8e:8e:c1: 11:d6:c9:6a:7b:ae:9f:b4:39:78:3f:e1:ff:0f:52: 6b:56:db:c9:3d:43:9e:e0:51:a5:40:9a:0f:2c:a3: 28:47:66:77:28:bc:b2:fd:67:53:26:0a:d1:d4:01: 4d:33:43:39:38:54:f0:93:44:bc:10:c3:90:da:0a: b5:fa:1b:5d:1e:67:3b:ae:42:99:87:b2:b5:e9:28: b4:db:27:48:c2:41:a5:53:51:ae:e8:93:60:19:3b: f1:3f:32:8b:fc:26:be:b4:43:d4:f3:3c:12:ec:c3: 0c:3c:8e:02:1b:ff:32:69:2b:d0:bf:5a:af:a7:53: 1a:db:bb:f1:0f:d4:84:63:57:eb:0d:26:9a:2b:81: b5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:12:8D:B5:F5:69:E9:DF:88:05:AB:37:6D:88:E1:33:4C:5B:DE:D3 X509v3 Authority Key Identifier: keyid:1B:F5:A8:D9:4C:E0:6C:E3:01:FC:35:D8:69:F7:0D:74:0D:70:97:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/G_Wo2UzgbOMB_DXYafcNdA1wl1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_Wo2UzgbOMB_DXYafcNdA1wl1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/FAC7FE320F0311E997412A4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.148.0/24 Signature Algorithm: sha256WithRSAEncryption 10:30:b7:3f:3d:44:55:29:1c:74:3e:4a:d8:a9:b9:33:62:39: de:b0:e4:ec:3c:90:59:d3:c1:44:b5:88:27:b4:cc:bf:b7:8f: b3:e0:9b:6c:dc:74:a1:2e:3b:cc:6b:86:f0:2d:5b:5b:eb:1b: 36:28:ed:38:85:cb:fe:fa:51:0d:76:0a:50:79:7f:8e:8c:5e: 4c:c0:00:3c:ef:82:1e:24:7f:c8:a6:61:ab:65:d5:db:d6:df: 16:fc:a8:72:f1:07:91:1b:22:3f:da:9d:b1:c9:d9:03:54:d6: 7c:ac:1e:c8:48:cf:25:91:d3:7c:9b:f6:1b:d1:dc:c5:73:c5: d8:0e:30:47:a1:2b:43:18:de:8a:05:bb:bd:c0:53:f8:b0:dd: a6:3d:53:f2:4a:44:84:2c:93:b9:f1:dd:58:71:7f:24:0a:60: 75:87:66:ba:6c:de:ac:df:e8:31:e1:1b:4c:e3:85:7c:bf:8f: d8:8e:ed:83:0b:4a:22:35:91:42:c2:5e:7e:75:64:19:7b:43: 66:6d:22:1c:fb:dc:c2:64:0f:67:ce:35:20:7b:17:44:7a:50: 08:bc:1c:d7:86:5d:3a:a0:aa:44:0e:01:7c:cc:40:7b:5a:91: b9:e3:9b:93:e9:77:67:0c:04:0a:7b:1d:ef:5d:ac:27:05:d5: 73:50:23:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKDFCRjVBOEQ5NENFMDZDRTMwMUZDMzVEODY5RjcwRDc0 MEQ3MDk3NTIwHhcNMjQxMjEwMTc0NTMwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4N2UzOS01ZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyv042qpGNNC4MHrZEfwVb6d58LXgOeF/afscuusucrUpo/hSJSJTxQ09jjeg /pO59tZbOJF0sRExHnkE71AF9rKtMPYhmM37vxMa5QfnGwU7tq+td2l3pzPRv+3z cLIIT5r7lEnobIBS550G7kamSPaztsCOjsER1slqe66ftDl4P+H/D1JrVtvJPUOe 4FGlQJoPLKMoR2Z3KLyy/WdTJgrR1AFNM0M5OFTwk0S8EMOQ2gq1+htdHmc7rkKZ h7K16Si02ydIwkGlU1Gu6JNgGTvxPzKL/Ca+tEPU8zwS7MMMPI4CG/8yaSvQv1qv p1Ma27vxD9SEY1frDSaaK4G1PwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBASjbX1 aenfiAWrN22I4TNMW97TMB8GA1UdIwQYMBaAFBv1qNlM4GzjAfw12Gn3DXQNcJdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9DOURCODlFRTBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi9HX1dvMlV6Z2JPTUJfRFhZYWZjTmRBMXds MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dfV28yVXpnYk9NQl9EWFlhZmNOZEExd2wxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQzlEQjg5RUUwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvRkFDN0ZFMzIw RjAzMTFFOTk3NDEyQTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnBpQwDQYJKoZIhvcNAQELBQADggEBABAwtz89RFUpHHQ+ StipuTNiOd6w5Ow8kFnTwUS1iCe0zL+3j7Pgm2zcdKEuO8xrhvAtW1vrGzYo7TiF y/76UQ12ClB5f46MXkzAADzvgh4kf8imYatl1dvW3xb8qHLxB5EbIj/anbHJ2QNU 1nysHshIzyWR03yb9hvR3MVzxdgOMEehK0MY3ooFu73AU/iw3aY9U/JKRIQsk7nx 3VhxfyQKYHWHZrps3qzf6DHhG0zjhXy/j9iO7YMLSiI1kULCXn51ZBl7Q2ZtIhz7 3MJkD2fONSB7F0R6UAi8HNeGXTqgqkQOAXzMQHtakbnjm5Ppd2cMBAp7He9drCcF 1XNQI4w= -----END CERTIFICATE-----Generated at Sat Apr 5 11:41:08 2025 by rpki-client