$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa File: FA39CA70790E11EE86665E43C4F9AE02.roa (raw, json) Hash identifier: xsuXssQOBAE3nj0lpLNVKszjiNPCs90eXxis5UuNvjA= Subject key identifier: 98:56:CB:CA:5A:4F:C1:B8:0F:08:F7:6B:8B:40:E1:D5:D6:7B:53:C7 Certificate issuer: /CN=A91D6DBD/serialNumber=B1C58C0785159ED73696AFB312D235CF40F3C441 Certificate serial: 7C Authority key identifier: B1:C5:8C:07:85:15:9E:D7:36:96:AF:B3:12:D2:35:CF:40:F3:C4:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa Signing time: Wed 19 Jun 2024 07:43:49 +0000 ROA not before: Wed 19 Jun 2024 07:43:49 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9792 IP address blocks: 203.1.240.0/21 maxlen: 21 2406:11c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.crl rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6DBD Validity Not Before: Jun 19 07:43:49 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66728c35-75fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6f:09:14:a8:ee:d8:eb:08:d4:2a:46:fe:49: 8a:a3:f8:81:f5:73:24:db:5c:a1:bc:9e:20:64:83: 09:bb:33:c8:ab:9c:2c:20:29:03:f8:cc:fb:80:3e: 2b:9d:38:99:58:83:59:dd:ca:04:73:dd:45:a9:f1: 9e:a6:59:25:a9:1d:25:39:98:7c:c4:88:11:02:68: 27:d4:a1:e6:1c:e7:3f:49:26:0e:7c:5c:11:76:7b: 51:a3:ea:c1:2f:53:87:af:47:ca:5f:5c:33:f1:60: b5:b2:65:88:bf:0d:9e:07:3a:22:e9:a6:b6:a7:42: a8:60:ee:a1:90:dd:3d:3f:a3:9b:11:0c:fb:c0:2f: 7a:06:9a:98:17:1f:aa:16:4b:0c:8b:0b:c5:71:80: 30:f6:da:ca:87:90:53:03:1f:f4:5f:93:86:9d:e3: b8:d5:0a:74:f9:63:d4:0d:af:67:28:25:50:51:03: 2d:e1:86:0e:7c:1a:67:90:f1:17:c5:d1:01:2d:b3: 94:bc:db:16:e8:04:1f:e5:06:84:4b:03:ff:7f:fb: 96:33:97:ee:e4:21:ff:0a:09:21:53:40:41:e7:20: e0:7f:56:83:2e:1b:3c:ff:74:59:d0:a1:fc:0a:ef: e3:37:2a:df:fe:cc:76:5e:1f:8a:af:c5:66:ed:e7: 12:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:56:CB:CA:5A:4F:C1:B8:0F:08:F7:6B:8B:40:E1:D5:D6:7B:53:C7 X509v3 Authority Key Identifier: keyid:B1:C5:8C:07:85:15:9E:D7:36:96:AF:B3:12:D2:35:CF:40:F3:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.1.240.0/21 IPv6: 2406:11c0::/32 Signature Algorithm: sha256WithRSAEncryption b1:52:e9:0b:15:3a:94:1c:53:ef:3c:d4:56:db:78:7c:ba:ca: 0f:ff:cc:48:f2:5c:4f:0a:67:c9:6d:79:3c:71:0c:72:df:54: d9:5c:b2:b3:30:1b:d4:0d:05:47:63:d1:db:ab:01:1c:a7:e8: 2b:dc:6f:a1:7a:e0:3d:57:6f:45:7e:1e:e1:65:6b:8c:af:21: 87:33:cb:8e:72:ad:bc:86:f9:66:7b:24:5b:74:e1:58:de:82: c3:3b:16:2b:f4:bd:7d:23:30:d8:e6:0c:3f:53:38:df:ff:12: ed:6e:22:7b:cc:fa:09:74:16:43:b8:d1:fe:52:9d:42:96:48: f9:b4:93:98:a0:30:56:de:ff:22:42:84:74:7f:20:0b:a0:97: 1d:4f:ea:7c:3e:8c:12:a6:32:14:84:60:eb:27:dc:df:57:9e: 0b:a9:b8:6f:ac:d5:a4:f5:74:86:e1:96:3e:47:4a:10:61:f9: f8:c1:c8:d8:17:79:83:eb:31:c6:30:22:7f:ee:83:22:ee:c3: 83:e4:d5:79:1a:70:4c:f5:02:2c:a0:64:ef:57:4a:ca:bf:21: 39:79:61:b6:7c:3d:27:d8:2f:9a:9c:9a:2e:d7:79:7d:8c:b8: 69:07:a8:be:d8:d1:99:73:89:67:fc:22:c7:66:23:c4:bc:d5: 36:cf:c0:76 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NkRCRDExMC8GA1UEBRMoQjFDNThDMDc4NTE1OUVENzM2OTZBRkIzMTJEMjM1Q0Y0 MEYzQzQ0MTAeFw0yNDA2MTkwNzQzNDlaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzI4YzM1LTc1ZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCybwkUqO7Y6wjUKkb+SYqj+IH1cyTbXKG8niBkgwm7M8irnCwgKQP4zPuAPiud OJlYg1ndygRz3UWp8Z6mWSWpHSU5mHzEiBECaCfUoeYc5z9JJg58XBF2e1Gj6sEv U4evR8pfXDPxYLWyZYi/DZ4HOiLppranQqhg7qGQ3T0/o5sRDPvAL3oGmpgXH6oW SwyLC8VxgDD22sqHkFMDH/Rfk4ad47jVCnT5Y9QNr2coJVBRAy3hhg58GmeQ8RfF 0QEts5S82xboBB/lBoRLA/9/+5Yzl+7kIf8KCSFTQEHnIOB/VoMuGzz/dFnQofwK 7+M3Kt/+zHZeH4qvxWbt5xKnAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUmFbLylpP wbgPCPdri0Dh1dZ7U8cwHwYDVR0jBBgwFoAUscWMB4UVntc2lq+zEtI1z0DzxEEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2REJELzAyQUE0OTUwNzkw QTExRUU5OUVERDExRkM0RjlBRTAyL3NjV01CNFVWbnRjMmxxLXpFdEkxejBEenhF RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2NXTUI0VVZudGMybHEtekV0STF6MER6eEVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkRCRC8wMkFBNDk1MDc5MEExMUVFOTlFREQxMUZDNEY5QUUwMi9GQTM5Q0E3MDc5 MEUxMUVFODY2NjVFNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEA8sB8DANBAIAAjAHAwUAJAYRwDANBgkqhkiG9w0BAQsFAAOC AQEAsVLpCxU6lBxT7zzUVtt4fLrKD//MSPJcTwpnyW15PHEMct9U2VyyszAb1A0F R2PR26sBHKfoK9xvoXrgPVdvRX4e4WVrjK8hhzPLjnKtvIb5ZnskW3ThWN6CwzsW K/S9fSMw2OYMP1M43/8S7W4ie8z6CXQWQ7jR/lKdQpZI+bSTmKAwVt7/IkKEdH8g C6CXHU/qfD6MEqYyFIRg6yfc31eeC6m4b6zVpPV0huGWPkdKEGH5+MHI2Bd5g+sx xjAif+6DIu7Dg+TVeRpwTPUCLKBk71dKyr8hOXlhtnw9J9gvmpyaLtd5fYy4aQeo vtjRmXOJZ/wix2YjxLzVNs/Adg== -----END CERTIFICATE-----Generated at Thu Mar 13 21:50:03 2025 by rpki-client