$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/FC159BECF4D911EFB4F5FC16C4F9AE02.roa File: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (raw, json) Hash identifier: SFUw1crOwEdM2KZGmzmI0Y/ekMkiUyOErHqNpQ3ZimY= Subject key identifier: 38:D2:BB:69:68:00:57:DF:75:ED:EF:A3:53:80:4A:D6:5E:2A:7D:AF Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 0331 Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/FC159BECF4D911EFB4F5FC16C4F9AE02.roa Signing time: Sun 11 May 2025 01:07:43 +0000 ROA not before: Sun 11 May 2025 01:07:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132742 IP address blocks: 45.115.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:08:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: May 11 01:07:43 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ff85f-318f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:65:c6:7a:bd:7a:f0:94:0e:54:7e:a8:b2:67: 3c:1b:e8:db:7f:cc:bd:51:ae:7a:64:bd:bf:73:6b: ae:2d:60:c7:91:4a:0e:61:6e:d1:3c:7b:e5:75:e6: 33:f9:76:98:bc:64:b1:ac:bd:75:b2:a4:eb:13:67: 23:cb:b9:64:62:66:f1:a9:01:49:c2:f8:a1:e4:3b: f5:3c:63:74:27:2c:05:13:6f:b7:85:2a:df:18:e7: 16:fe:68:eb:b9:d7:6b:fd:90:8f:62:9f:e4:7a:95: ba:68:c8:76:9d:56:b3:85:c7:a6:6a:17:07:81:38: bb:99:1b:f8:35:11:d8:a1:4b:88:da:43:85:02:01: 75:e9:04:86:2a:de:dc:9e:70:92:90:72:14:c2:af: 8e:83:1b:84:2d:d5:b6:d8:ef:cb:bb:c7:8c:e6:9f: fa:62:8b:55:78:82:0d:9e:f1:e2:51:07:a9:df:dc: 99:d1:b4:0b:de:f2:45:50:91:04:2c:80:83:39:50: 0c:92:b9:95:c0:5e:8a:81:0a:a8:33:70:08:15:3d: 89:9d:ac:c6:12:31:bd:4a:55:ed:db:8d:36:7e:a8: c8:1b:f4:21:4f:1e:1b:d7:2c:71:a1:23:ff:f1:6a: 96:cc:3a:fe:9e:c9:50:1a:a6:73:f1:0b:e8:8d:1e: df:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D2:BB:69:68:00:57:DF:75:ED:EF:A3:53:80:4A:D6:5E:2A:7D:AF X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/FC159BECF4D911EFB4F5FC16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.240.0/22 Signature Algorithm: sha256WithRSAEncryption 40:c7:c6:43:a0:93:5e:db:98:4f:80:83:de:1b:59:81:1b:52: 95:62:02:e2:f6:66:60:09:f2:fb:d3:2e:2c:64:ae:64:5f:bb: f7:d0:ff:6e:8e:b2:d1:43:4d:f3:60:cd:c7:b3:0c:14:04:15: 36:23:d4:19:f2:90:c8:83:76:d9:05:a6:ad:a4:1b:eb:4a:a4: d2:83:cd:c7:e0:c1:a7:bd:a7:23:50:97:b9:36:43:cc:cd:d0: b5:b7:8a:40:12:19:86:47:15:6a:ee:2d:4c:7f:6a:1c:d0:f3: 6f:b3:bf:86:4a:fd:27:33:1a:11:3d:47:f9:03:06:bd:55:99: e6:be:77:13:e3:cd:81:e7:4e:b5:22:86:3a:27:f4:1c:95:6c: 6c:15:fe:af:fb:4e:dc:f7:80:1a:88:a6:27:fa:8b:a9:53:d5: 19:61:56:40:08:f4:de:3c:d1:f8:d1:34:51:1b:7e:b3:67:ac: 42:9c:85:dd:fd:bd:dc:da:41:32:02:bc:a4:bd:3a:1a:20:90: ad:0a:a5:f8:f8:15:fc:22:e0:94:8d:83:48:5f:1b:3f:2f:c3: 47:54:88:88:b9:c3:98:f3:29:ab:10:a1:87:cd:fe:9e:5d:a6: 81:0b:dd:65:3b:63:a4:fd:a9:5d:08:7f:84:00:2b:b5:10:00: d3:c0:52:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjUwNTExMDEwNzQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmZjg1Zi0zMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4WXGer168JQOVH6osmc8G+jbf8y9Ua56ZL2/c2uuLWDHkUoOYW7RPHvldeYz +XaYvGSxrL11sqTrE2cjy7lkYmbxqQFJwvih5Dv1PGN0JywFE2+3hSrfGOcW/mjr uddr/ZCPYp/kepW6aMh2nVazhcemahcHgTi7mRv4NRHYoUuI2kOFAgF16QSGKt7c nnCSkHIUwq+OgxuELdW22O/Lu8eM5p/6YotVeIINnvHiUQep39yZ0bQL3vJFUJEE LICDOVAMkrmVwF6KgQqoM3AIFT2JnazGEjG9SlXt2402fqjIG/QhTx4b1yxxoSP/ 8WqWzDr+nslQGqZz8QvojR7fFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDjSu2lo AFffde3vo1OAStZeKn2vMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzAyQjkvM0I3MkVFOTBDNjA1MTFFQ0FCNzREOTYyQzRGOUFFMDIvRkMxNTlCRUNG NEQ5MTFFRkI0RjVGQzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAItc/AwDQYJKoZIhvcNAQELBQADggEBAEDHxkOgk17bmE+A g94bWYEbUpViAuL2ZmAJ8vvTLixkrmRfu/fQ/26OstFDTfNgzcezDBQEFTYj1Bny kMiDdtkFpq2kG+tKpNKDzcfgwae9pyNQl7k2Q8zN0LW3ikASGYZHFWruLUx/ahzQ 82+zv4ZK/SczGhE9R/kDBr1Vmea+dxPjzYHnTrUihjon9ByVbGwV/q/7Ttz3gBqI pif6i6lT1RlhVkAI9N480fjRNFEbfrNnrEKchd39vdzaQTICvKS9OhogkK0Kpfj4 Ffwi4JSNg0hfGz8vw0dUiIi5w5jzKasQoYfN/p5dpoEL3WU7Y6T9qV0If4QAK7UQ ANPAUo0= -----END CERTIFICATE-----Generated at Fri May 16 13:48:20 2025 by rpki-client