$ rpki-client -vvf rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/FDAEEFB0A12A11EAB063A548C4F9AE02.roa File: FDAEEFB0A12A11EAB063A548C4F9AE02.roa (raw, json) Hash identifier: jfGEyrs8irz34ZW5qDRzJ5sduiRp3kjnfVg2NZqBN9E= Subject key identifier: DD:05:30:A9:37:15:00:25:E6:A1:6E:2F:15:9C:81:8B:96:58:D1:53 Certificate issuer: /CN=A91D890E/serialNumber=0B022B1EA34C037C51F657FC3E0D84A3C6186822 Certificate serial: 0881 Authority key identifier: 0B:02:2B:1E:A3:4C:03:7C:51:F6:57:FC:3E:0D:84:A3:C6:18:68:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/FDAEEFB0A12A11EAB063A548C4F9AE02.roa Signing time: Fri 12 Jul 2024 21:39:35 +0000 ROA not before: Fri 12 Jul 2024 21:39:35 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 23760 IP address blocks: 202.41.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.crl rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:06:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2177 (0x881) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D890E Validity Not Before: Jul 12 21:39:35 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6691a296-e508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e1:9c:fc:87:dc:b5:3c:5e:36:78:45:65:c0: 16:e9:3f:15:0a:c4:cf:34:89:31:41:e2:23:d0:57: 10:e8:8d:a0:9d:b0:c8:72:27:38:0c:ec:fb:b9:00: 4c:f7:2c:18:10:4d:00:3b:ad:52:af:c0:da:09:39: 95:7e:d3:b9:11:cd:c3:0c:a0:fa:99:fd:8e:0b:cc: c8:10:a8:d7:23:21:da:41:93:be:e6:2d:e4:7a:3b: 3f:0a:4d:34:32:cd:7c:c5:2e:51:4a:08:50:33:6c: b6:69:36:23:e4:eb:1b:dd:62:32:df:a7:9d:7c:4d: 6c:53:21:28:17:79:1d:55:f8:5a:d5:ad:00:bf:7a: 0a:ca:5a:0f:d5:3e:2c:56:76:f0:29:39:60:6f:76: 71:61:ce:94:1f:59:db:ca:53:d8:90:e7:9d:35:15: 69:ef:66:36:13:07:39:b8:14:50:36:bd:93:fe:0d: 61:de:b6:98:ff:fc:a5:09:61:d0:31:74:c7:f9:c0: 00:b4:34:91:b5:32:63:0b:4a:ea:90:67:a0:dc:67: e1:92:3e:fd:be:56:6a:ad:9e:83:87:dd:e9:2c:73: 94:99:54:a1:48:7a:01:8a:68:cd:00:00:6d:66:04: c0:21:55:55:90:3e:1d:1c:63:be:7d:99:56:fb:91: a1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:05:30:A9:37:15:00:25:E6:A1:6E:2F:15:9C:81:8B:96:58:D1:53 X509v3 Authority Key Identifier: keyid:0B:02:2B:1E:A3:4C:03:7C:51:F6:57:FC:3E:0D:84:A3:C6:18:68:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/FDAEEFB0A12A11EAB063A548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.135.0/24 Signature Algorithm: sha256WithRSAEncryption 88:7d:e7:e6:a7:69:69:0c:7e:f1:ee:2f:23:d4:80:27:be:df: 35:1a:7f:05:9e:05:f6:dc:79:6a:09:41:48:74:8b:69:a8:14: a4:e8:3a:3c:10:95:57:31:cc:7e:46:f0:f4:9a:b1:ee:4f:6e: ec:52:d5:e7:3d:f7:54:2f:83:3f:7e:a6:f0:0e:8b:e3:58:17: 52:64:7d:71:94:1b:30:3a:7d:14:55:80:f6:8b:1d:7c:e4:8d: 9b:24:00:2e:39:df:b7:f0:75:b1:4d:d8:14:a3:9a:16:c8:29: ee:f7:33:25:c0:32:96:1d:31:bb:88:90:f8:ef:25:c4:72:5a: 00:67:15:79:16:60:a3:f4:27:7f:ca:1b:76:e5:be:ae:2f:f6: 4e:2b:c0:61:ca:65:45:49:0e:09:c2:cd:a4:a1:dc:27:75:78: 91:4c:d9:20:40:ce:cf:e0:e6:6f:2b:10:fe:5f:50:b2:44:88: a6:3d:58:ae:2c:d8:ab:2b:e3:8e:6d:64:a5:5a:91:cb:6a:9f: 3e:1a:12:64:0f:f5:48:26:21:f8:e7:25:7a:aa:d8:b3:14:83: 0e:d8:9f:34:4d:77:d2:de:b8:e0:c6:be:d6:bf:6b:f5:da:b1: f8:a8:11:17:97:1b:2c:62:70:7a:3e:7c:f1:cf:dc:78:82:88: 45:e9:bb:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MEUxMTAvBgNVBAUTKDBCMDIyQjFFQTM0QzAzN0M1MUY2NTdGQzNFMEQ4NEEz QzYxODY4MjIwHhcNMjQwNzEyMjEzOTM1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxYTI5Ni1lNTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuGc/IfctTxeNnhFZcAW6T8VCsTPNIkxQeIj0FcQ6I2gnbDIcic4DOz7uQBM 9ywYEE0AO61Sr8DaCTmVftO5Ec3DDKD6mf2OC8zIEKjXIyHaQZO+5i3kejs/Ck00 Ms18xS5RSghQM2y2aTYj5Osb3WIy36edfE1sUyEoF3kdVfha1a0Av3oKyloP1T4s VnbwKTlgb3ZxYc6UH1nbylPYkOedNRVp72Y2Ewc5uBRQNr2T/g1h3raY//ylCWHQ MXTH+cAAtDSRtTJjC0rqkGeg3Gfhkj79vlZqrZ6Dh93pLHOUmVShSHoBimjNAABt ZgTAIVVVkD4dHGO+fZlW+5GhqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN0FMKk3 FQAl5qFuLxWcgYuWWNFTMB8GA1UdIwQYMBaAFAsCKx6jTAN8UfZX/D4NhKPGGGgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkwRS84RDQxMzVGRUEx MjkxMUVBQTAyMjc3NDZDNEY5QUUwMi9Dd0lySHFOTUEzeFI5bGY4UGcyRW84WVlh Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N3SXJIcU5NQTN4UjlsZjhQZzJFbzhZWWFDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5MEUvOEQ0MTM1RkVBMTI5MTFFQUEwMjI3NzQ2QzRGOUFFMDIvRkRBRUVGQjBB MTJBMTFFQUIwNjNBNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKYcwDQYJKoZIhvcNAQELBQADggEBAIh95+anaWkMfvHu LyPUgCe+3zUafwWeBfbceWoJQUh0i2moFKToOjwQlVcxzH5G8PSase5PbuxS1ec9 91Qvgz9+pvAOi+NYF1JkfXGUGzA6fRRVgPaLHXzkjZskAC4537fwdbFN2BSjmhbI Ke73MyXAMpYdMbuIkPjvJcRyWgBnFXkWYKP0J3/KG3blvq4v9k4rwGHKZUVJDgnC zaSh3Cd1eJFM2SBAzs/g5m8rEP5fULJEiKY9WK4s2Ksr445tZKVakctqnz4aEmQP 9UgmIfjnJXqq2LMUgw7YnzRNd9LeuODGvta/a/XasfioEReXGyxicHo+fPHP3HiC iEXpu0c= -----END CERTIFICATE-----Generated at Thu Mar 13 21:51:48 2025 by rpki-client