$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/FA56A6A6294B11F09738296CC4F9AE02.roa File: FA56A6A6294B11F09738296CC4F9AE02.roa (raw, json) Hash identifier: BGxaxmK1Rc2u9Sc8xMRRL969zXBpia6mSkZ8lM9pZcs= Subject key identifier: 89:53:AA:C2:E3:C5:54:24:4C:67:68:24:4F:0C:41:E4:8A:DD:7F:8C Certificate issuer: /CN=A91B7DCB/serialNumber=0A2A3312E08BA9C41BE7E0FB58AA642C6D01B875 Certificate serial: 05 Authority key identifier: 0A:2A:33:12:E0:8B:A9:C4:1B:E7:E0:FB:58:AA:64:2C:6D:01:B8:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/FA56A6A6294B11F09738296CC4F9AE02.roa Signing time: Mon 05 May 2025 00:57:55 +0000 ROA not before: Mon 05 May 2025 00:57:55 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 4771 IP address blocks: 203.171.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=0A2A3312E08BA9C41BE7E0FB58AA642C6D01B875 Validity Not Before: May 5 00:57:55 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68180d13-6223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:57:b5:37:eb:7a:d7:07:6d:2c:a4:63:8c: f2:88:f8:f9:0f:ee:25:15:a4:22:06:16:98:51:06: 21:fb:50:4d:2a:b8:02:75:44:6c:ac:46:09:08:a5: bc:95:e9:8e:b4:15:68:3e:50:5a:8a:d9:a1:a8:04: 4d:04:44:a0:b9:ca:6c:4f:c8:1c:de:28:95:fe:5a: d1:f6:5a:13:ca:2c:6e:77:77:6e:d3:cf:27:6d:e3: 1a:4b:3f:29:37:52:65:dd:21:3a:8d:a4:77:70:d7: ae:6f:48:91:2b:ce:62:68:5b:db:36:1c:ca:98:75: f7:3a:dc:73:71:f9:7c:5e:4c:90:5c:f2:0f:8e:ed: 74:ee:f5:0e:a5:83:5f:6f:6f:e7:f2:eb:d1:b8:c6: 59:f3:1e:5e:dd:ee:e7:58:6a:8f:8f:de:38:ce:e5: 95:b1:45:c1:73:2c:74:81:70:ff:fc:b8:79:e2:af: 6a:4c:0c:04:58:cc:cc:e6:2d:aa:8c:e9:88:36:1c: 5a:54:d0:ca:d8:1f:8b:55:30:08:62:25:77:a6:ba: e8:af:69:67:45:b2:23:21:b5:a0:94:03:e8:70:b2: d1:d3:9f:d8:a9:3c:be:a8:97:84:c9:f7:10:39:98: 82:3d:9e:76:10:e5:f4:70:cf:a8:20:5c:30:b4:95: d3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:53:AA:C2:E3:C5:54:24:4C:67:68:24:4F:0C:41:E4:8A:DD:7F:8C X509v3 Authority Key Identifier: keyid:0A:2A:33:12:E0:8B:A9:C4:1B:E7:E0:FB:58:AA:64:2C:6D:01:B8:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/FA56A6A6294B11F09738296CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.171.223.0/24 Signature Algorithm: sha256WithRSAEncryption 17:d0:67:6f:b0:f4:3d:f0:3d:c2:2f:55:5e:1b:f2:07:b5:72: a2:17:09:c3:df:88:58:e7:c7:c3:63:3a:bc:05:3d:2b:78:c6: 01:21:67:f1:ef:e0:99:84:5c:7b:6b:eb:af:94:6a:05:4e:28: 3b:39:4d:e2:90:43:93:07:a2:03:61:45:29:96:b9:68:a2:a2: 4a:ae:92:9f:43:e8:b9:5d:a8:e4:10:19:02:da:bf:41:0b:4f: 6f:08:da:31:c0:f8:72:dc:25:31:29:f2:b0:5f:12:0c:61:c2: 16:70:9d:98:4c:32:d0:47:1f:23:25:80:fb:73:cd:cc:36:6c: 2f:bc:58:dd:bb:f0:b9:e0:87:60:70:f2:f0:52:4e:51:63:c0: 74:91:74:4a:9c:7b:8a:f3:15:4d:bb:14:74:76:03:c9:42:cd: cc:d6:68:7e:da:89:16:75:bd:50:bb:6b:48:89:88:3b:bb:1e: 5d:18:f0:61:17:65:9c:0c:3e:86:72:9f:63:15:53:f0:aa:33: 12:d9:9f:e0:82:c5:b6:ab:6a:12:f3:a8:13:2b:51:2b:de:d8: 9d:03:26:9a:00:b0:15:85:91:95:e1:50:b2:ee:8e:ff:c5:8c: bd:a5:b8:40:f1:2a:60:c3:e5:09:03:e3:41:bc:54:c1:0e:63: 99:27:07:33 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoMEEyQTMzMTJFMDhCQTlDNDFCRTdFMEZCNThBQTY0MkM2 RDAxQjg3NTAeFw0yNTA1MDUwMDU3NTVaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTgwZDEzLTYyMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/5Ve1N+t61wdtLKRjjPKI+PkP7iUVpCIGFphRBiH7UE0quAJ1RGysRgkIpbyV 6Y60FWg+UFqK2aGoBE0ERKC5ymxPyBzeKJX+WtH2WhPKLG53d27Tzydt4xpLPyk3 UmXdITqNpHdw165vSJErzmJoW9s2HMqYdfc63HNx+XxeTJBc8g+O7XTu9Q6lg19v b+fy69G4xlnzHl7d7udYao+P3jjO5ZWxRcFzLHSBcP/8uHnir2pMDARYzMzmLaqM 6Yg2HFpU0MrYH4tVMAhiJXemuuivaWdFsiMhtaCUA+hwstHTn9ipPL6ol4TJ9xA5 mII9nnYQ5fRwz6ggXDC0ldN7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUiVOqwuPF VCRMZ2gkTwxB5Irdf4wwHwYDVR0jBBgwFoAUCiozEuCLqcQb5+D7WKpkLG0BuHUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCLzAxNTA1QTMwMjk0 NTExRjBBRTFBQkM3NEM0RjlBRTAyL0Npb3pFdUNMcWNRYjUtRDdXS3BrTEcwQnVI VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2lvekV1Q0xxY1FiNS1EN1dLcGtMRzBCdUhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi8wMTUwNUEzMDI5NDUxMUYwQUUxQUJDNzRDNEY5QUUwMi9GQTU2QTZBNjI5 NEIxMUYwOTczODI5NkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMur3zANBgkqhkiG9w0BAQsFAAOCAQEAF9Bnb7D0PfA9wi9V XhvyB7VyohcJw9+IWOfHw2M6vAU9K3jGASFn8e/gmYRce2vrr5RqBU4oOzlN4pBD kweiA2FFKZa5aKKiSq6Sn0PouV2o5BAZAtq/QQtPbwjaMcD4ctwlMSnysF8SDGHC FnCdmEwy0EcfIyWA+3PNzDZsL7xY3bvwueCHYHDy8FJOUWPAdJF0Spx7ivMVTbsU dHYDyULNzNZoftqJFnW9ULtrSImIO7seXRjwYRdlnAw+hnKfYxVT8KozEtmf4ILF tqtqEvOoEytRK97YnQMmmgCwFYWRleFQsu6O/8WMvaW4QPEqYMPlCQPjQbxUwQ5j mScHMw== -----END CERTIFICATE-----Generated at Mon Jun 2 06:28:02 2025 by rpki-client