$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa File: FCF99042301011EFBC350682C4F9AE02.roa (raw, json) Hash identifier: XWGP9p2mOx8ysC8jxYuZax/p5YTro1dxNcHjCXKScxs= Subject key identifier: 79:92:85:DD:FE:8C:38:1B:97:A5:DC:06:A1:B2:54:87:9C:A4:CC:77 Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 0119 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa Signing time: Tue 27 May 2025 17:58:14 +0000 ROA not before: Tue 27 May 2025 17:58:14 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 53813 IP address blocks: 167.103.110.0/24 maxlen: 24 167.103.111.0/24 maxlen: 24 167.103.118.0/23 maxlen: 24 167.103.122.0/23 maxlen: 24 167.103.124.0/23 maxlen: 24 167.103.126.0/23 maxlen: 24 167.103.132.0/23 maxlen: 24 167.103.134.0/23 maxlen: 24 167.103.136.0/23 maxlen: 24 167.103.138.0/23 maxlen: 24 167.103.140.0/23 maxlen: 24 167.103.160.0/23 maxlen: 24 167.103.166.0/23 maxlen: 24 167.103.196.0/23 maxlen: 24 167.103.198.0/23 maxlen: 24 167.103.200.0/23 maxlen: 24 167.103.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: May 27 17:58:14 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6835fd36-1178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:73:9c:af:c2:e4:5e:ee:8a:15:7a:b3:e5:0f: 18:c4:27:25:8d:65:96:21:56:dc:1a:29:f6:02:31: 8f:d7:08:58:f5:a0:2a:23:d2:17:b6:2c:a3:8a:8e: 98:37:4d:83:75:7b:73:6f:49:a9:1f:23:1d:79:ac: 3c:3c:f9:fa:0a:71:c5:77:25:10:80:cb:ef:3d:de: 1b:6f:a1:56:14:28:e9:e8:dc:e9:f1:52:48:b7:d9: 50:4a:0c:dd:88:0e:3b:59:56:7d:91:03:70:7d:aa: 25:f9:8f:cb:75:4b:1d:62:86:ff:96:6b:ec:3c:d5: 07:e9:0e:2e:0a:a9:2f:fd:89:1f:a5:94:c3:50:74: b4:b8:a8:df:bd:ad:fe:eb:b6:c7:9e:f4:e2:09:3b: 4e:d0:2a:be:d3:36:f1:3f:8f:ff:73:1a:f4:4c:08: 8c:b9:86:82:3c:c4:9f:64:9b:27:36:89:73:82:53: 1e:b8:e9:e6:80:0d:34:45:aa:36:17:1a:85:12:8a: d9:3f:cb:72:1e:f4:7c:53:19:2c:1d:3a:6a:2c:63: 85:aa:10:e0:ea:cf:6c:54:bf:32:da:c6:8e:f5:87: 97:3a:70:f1:06:68:9d:ef:06:b6:1d:7d:74:f5:85: d6:60:aa:7a:f9:c0:72:d4:9f:78:bd:a3:48:cc:67: 28:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:92:85:DD:FE:8C:38:1B:97:A5:DC:06:A1:B2:54:87:9C:A4:CC:77 X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.110.0/23 167.103.118.0/23 167.103.122.0-167.103.127.255 167.103.132.0-167.103.141.255 167.103.160.0/23 167.103.166.0/23 167.103.196.0-167.103.203.255 Signature Algorithm: sha256WithRSAEncryption 1a:15:03:bd:36:73:3e:97:e9:bf:12:a9:1d:20:0a:e6:42:9e: cf:d2:f8:66:8b:98:1b:d0:ba:98:5a:59:b9:a3:ad:ec:94:4d: 0c:22:e1:93:fe:c7:92:0e:9a:b9:bb:b6:a9:6c:9f:cd:6d:a1: 8e:eb:7f:19:ac:84:47:eb:f7:36:9c:4c:ca:5e:5c:13:5c:6e: a4:41:a4:fc:11:84:03:5d:c5:fc:3d:1d:1b:3c:21:0b:a1:56: 2e:51:0b:4b:53:0d:f6:44:ac:1d:c5:a5:7c:a5:c8:06:6c:51: 72:09:bc:a6:1a:f1:32:ab:41:25:3b:c4:26:06:97:c4:e1:fd: 7d:57:29:0d:ff:cb:36:6d:46:2f:b0:d8:fc:89:c1:01:e6:84: d5:34:2d:1c:de:21:4c:d8:0e:84:af:17:48:54:54:b8:4d:bb: 3f:9a:0f:fa:d0:1b:04:bd:27:75:97:65:4a:7c:e8:73:6d:c9: b5:e3:f2:13:4f:12:f9:81:f8:76:d5:d3:42:bc:90:a4:56:95: c1:c5:65:58:6c:51:68:4f:25:1b:f5:f3:9b:ad:4b:37:4f:8e: 8e:29:15:c9:82:37:a0:40:3a:ae:17:60:93:41:ea:da:1c:fc: a7:b9:d6:24:47:11:17:dc:ae:60:c7:fc:79:73:94:17:6a:0d: af:4f:bd:bc -----BEGIN CERTIFICATE----- MIIFrTCCBJWgAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwNTI3MTc1ODE0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1ZmQzNi0xMTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHOcr8LkXu6KFXqz5Q8YxCcljWWWIVbcGin2AjGP1whY9aAqI9IXtiyjio6Y N02DdXtzb0mpHyMdeaw8PPn6CnHFdyUQgMvvPd4bb6FWFCjp6Nzp8VJIt9lQSgzd iA47WVZ9kQNwfaol+Y/LdUsdYob/lmvsPNUH6Q4uCqkv/YkfpZTDUHS0uKjfva3+ 67bHnvTiCTtO0Cq+0zbxP4//cxr0TAiMuYaCPMSfZJsnNolzglMeuOnmgA00Rao2 FxqFEorZP8tyHvR8UxksHTpqLGOFqhDg6s9sVL8y2saO9YeXOnDxBmid7wa2HX10 9YXWYKp6+cBy1J94vaNIzGco9QIDAQABo4IC0TCCAs0wHQYDVR0OBBYEFHmShd3+ jDgbl6XcBqGyVIecpMx3MB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvRkNGOTkwNDIz MDEwMTFFRkJDMzUwNjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWwYIKwYBBQUHAQcBAf8E TDBKMEgEAgABMEIDBAGnZ24DBAGnZ3YwDAMEAadnegMEB6dnADAMAwQCp2eEAwQB p2eMAwQBp2egAwQBp2emMAwDBAKnZ8QDBAKnZ8gwDQYJKoZIhvcNAQELBQADggEB ABoVA702cz6X6b8SqR0gCuZCns/S+GaLmBvQuphaWbmjreyUTQwi4ZP+x5IOmrm7 tqlsn81toY7rfxmshEfr9zacTMpeXBNcbqRBpPwRhANdxfw9HRs8IQuhVi5RC0tT DfZErB3FpXylyAZsUXIJvKYa8TKrQSU7xCYGl8Th/X1XKQ3/yzZtRi+w2PyJwQHm hNU0LRzeIUzYDoSvF0hUVLhNuz+aD/rQGwS9J3WXZUp86HNtybXj8hNPEvmB+HbV 00K8kKRWlcHFZVhsUWhPJRv185utSzdPjo4pFcmCN6BAOq4XYJNB6toc/Ke51iRH ERfcrmDH/HlzlBdqDa9Pvbw= -----END CERTIFICATE-----Generated at Wed Jun 4 12:25:18 2025 by rpki-client