$ rpki-client -vvf rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/FA5399BC3AE211ECA119BA68C4F9AE02.roa File: FA5399BC3AE211ECA119BA68C4F9AE02.roa (raw, json) Hash identifier: dZ03PlivQiWcdxJuslt2Fyk44MUpvC5il4kYFX0N5Ns= Subject key identifier: 80:2E:DD:C7:4D:29:36:06:DF:53:2C:EB:F4:10:BD:1C:25:D9:78:4D Certificate issuer: /CN=A9145418/serialNumber=5FE1543C85B06530A164CF90E1A27DA8DB72450E Certificate serial: 048D Authority key identifier: 5F:E1:54:3C:85:B0:65:30:A1:64:CF:90:E1:A2:7D:A8:DB:72:45:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/FA5399BC3AE211ECA119BA68C4F9AE02.roa Signing time: Fri 09 May 2025 00:16:46 +0000 ROA not before: Fri 09 May 2025 00:16:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38325 IP address blocks: 182.239.32.0/21 maxlen: 22 182.239.32.0/24 maxlen: 24 182.239.33.0/24 maxlen: 24 182.239.34.0/24 maxlen: 24 182.239.35.0/24 maxlen: 24 182.239.36.0/24 maxlen: 24 182.239.37.0/24 maxlen: 24 182.239.38.0/24 maxlen: 24 182.239.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.crl rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1165 (0x48d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145418, serialNumber=5FE1543C85B06530A164CF90E1A27DA8DB72450E Validity Not Before: May 9 00:16:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681d496d-8e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1f:68:1e:14:12:54:70:71:bf:3b:56:f8:06: 91:56:61:4a:5e:02:b5:0d:35:ee:9e:44:69:f7:3e: db:fc:03:c4:13:53:df:a4:49:81:75:61:ce:64:75: 10:d7:14:d0:6d:d2:07:13:f6:38:08:66:ce:92:17: e1:3f:48:f7:b0:63:8b:b0:fe:d5:4e:69:a4:5f:a9: ed:00:8c:f2:b9:6a:cc:b0:1d:72:90:19:b1:a1:6b: 42:66:c7:14:85:6c:c9:12:45:34:43:b8:dd:16:81: 7a:ac:89:c2:26:ad:dc:34:42:86:64:93:dc:2d:40: 6b:49:75:9b:55:1f:14:d3:66:9d:e9:4b:54:46:11: 88:91:e8:33:e8:ee:2e:67:a0:84:da:c6:34:29:05: b6:77:9b:3f:4d:d2:9b:ad:90:a7:69:1a:79:b2:48: 36:ab:39:5f:11:be:04:3a:99:a4:3b:0a:e0:fe:3b: fc:d2:b7:f2:42:62:55:8f:81:a6:2b:25:aa:8a:8e: 9c:b3:8c:99:bc:27:d2:c5:85:aa:62:f3:69:4b:9e: cf:17:d5:7f:83:94:85:f2:9b:cb:d3:ed:6e:4d:59: da:29:e0:c7:b4:ab:7b:b8:1d:a9:96:70:75:b6:2f: 85:24:10:fe:84:9e:51:e0:0a:2d:9b:f8:33:80:62: b8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2E:DD:C7:4D:29:36:06:DF:53:2C:EB:F4:10:BD:1C:25:D9:78:4D X509v3 Authority Key Identifier: keyid:5F:E1:54:3C:85:B0:65:30:A1:64:CF:90:E1:A2:7D:A8:DB:72:45:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/FA5399BC3AE211ECA119BA68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.239.32.0/21 Signature Algorithm: sha256WithRSAEncryption 84:80:56:23:c4:0e:7c:c8:4a:47:e5:b1:9f:6a:94:4e:5d:5c: bc:75:62:13:65:b8:f4:1b:39:82:db:6f:66:e9:71:71:73:4b: 79:8d:30:ea:b5:18:2a:ff:84:c9:bb:1b:8c:c1:95:cf:64:18: 6f:95:26:e4:ea:e9:3f:4e:31:15:0e:87:25:47:53:eb:ff:8d: 94:83:c8:91:32:3d:39:2b:fa:59:5e:2c:ab:29:7e:79:e9:b1: cf:6c:b2:8e:78:74:68:ce:8c:22:bd:c4:94:fe:a7:67:ea:bd: 2d:50:e9:43:0a:07:06:47:d2:bb:9b:75:40:2e:6a:97:d6:ce: 47:1f:c5:90:22:9c:27:0c:fe:ac:32:29:50:5f:79:d5:d8:81: 7e:7f:cf:1f:f9:9a:ec:92:ac:4c:9f:9b:24:1d:d8:49:3c:27: 9a:6a:3c:da:60:02:6b:b5:98:d7:84:a6:75:b5:dc:32:6e:1c: 9e:33:21:05:e3:8f:07:d4:f3:24:96:fd:52:0d:c4:7c:99:ba: 11:b5:be:47:33:de:11:63:e1:6a:4d:00:03:fc:aa:66:58:db: 75:00:06:f5:7d:fe:70:c6:d6:db:99:04:55:ba:8a:4c:8d:4b: f4:3b:87:e9:81:0f:b3:0c:1f:0c:07:40:38:2f:b7:72:ff:fb: b6:75:f6:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0MTgxMTAvBgNVBAUTKDVGRTE1NDNDODVCMDY1MzBBMTY0Q0Y5MEUxQTI3REE4 REI3MjQ1MEUwHhcNMjUwNTA5MDAxNjQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkNDk2ZC04ZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzR9oHhQSVHBxvztW+AaRVmFKXgK1DTXunkRp9z7b/APEE1PfpEmBdWHOZHUQ 1xTQbdIHE/Y4CGbOkhfhP0j3sGOLsP7VTmmkX6ntAIzyuWrMsB1ykBmxoWtCZscU hWzJEkU0Q7jdFoF6rInCJq3cNEKGZJPcLUBrSXWbVR8U02ad6UtURhGIkegz6O4u Z6CE2sY0KQW2d5s/TdKbrZCnaRp5skg2qzlfEb4EOpmkOwrg/jv80rfyQmJVj4Gm KyWqio6cs4yZvCfSxYWqYvNpS57PF9V/g5SF8pvL0+1uTVnaKeDHtKt7uB2plnB1 ti+FJBD+hJ5R4Aotm/gzgGK4EQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIAu3cdN KTYG31Ms6/QQvRwl2XhNMB8GA1UdIwQYMBaAFF/hVDyFsGUwoWTPkOGifajbckUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQxOC83NzE5MzE4MDNB RTAxMUVDOTM3MjhENjZDNEY5QUUwMi9YLUZVUElXd1pUQ2haTS1RNGFKOXFOdHlS UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtRlVQSVd3WlRDaFpNLVE0YUo5cU50eVJRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0MTgvNzcxOTMxODAzQUUwMTFFQzkzNzI4RDY2QzRGOUFFMDIvRkE1Mzk5QkMz QUUyMTFFQ0ExMTlCQTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAO27yAwDQYJKoZIhvcNAQELBQADggEBAISAViPEDnzISkfl sZ9qlE5dXLx1YhNluPQbOYLbb2bpcXFzS3mNMOq1GCr/hMm7G4zBlc9kGG+VJuTq 6T9OMRUOhyVHU+v/jZSDyJEyPTkr+lleLKspfnnpsc9sso54dGjOjCK9xJT+p2fq vS1Q6UMKBwZH0rubdUAuapfWzkcfxZAinCcM/qwyKVBfedXYgX5/zx/5muySrEyf myQd2Ek8J5pqPNpgAmu1mNeEpnW13DJuHJ4zIQXjjwfU8ySW/VINxHyZuhG1vkcz 3hFj4WpNAAP8qmZY23UABvV9/nDG1tuZBFW6ikyNS/Q7h+mBD7MMHwwHQDgvt3L/ +7Z19hI= -----END CERTIFICATE-----Generated at Thu May 15 16:43:59 2025 by rpki-client