$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa File: FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa (raw, json) Hash identifier: G4iwG5XMEp5g2eV1gP3t6eKMuKxcRTnnbvUBF3nUwk4= Subject key identifier: 32:60:B3:4C:DD:F6:98:BD:9B:D6:B9:0C:16:50:F1:33:55:33:82:5C Certificate issuer: /CN=A91A5849/serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Certificate serial: CC Authority key identifier: 53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa Signing time: Sat 03 May 2025 05:12:28 +0000 ROA not before: Sat 03 May 2025 05:12:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 202.37.173.0/24 maxlen: 24 2001:df3:aac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5849, serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Validity Not Before: May 3 05:12:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815a5bc-d530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d9:b2:71:f9:ca:47:61:a0:d8:69:1f:13:9f: f9:5e:bc:ae:e3:94:a0:8e:b4:1f:7e:d2:cb:4a:5b: 0b:ac:c1:d9:e4:78:95:0b:b2:11:05:10:43:35:aa: 05:e4:6a:f8:59:44:a5:c6:05:b6:d7:68:be:02:cf: e5:6e:b7:ce:1a:45:b2:67:43:42:ad:2e:78:bf:f4: d9:0f:67:7a:57:0c:32:7e:53:ba:79:bc:db:d0:54: 62:4b:2b:7f:02:de:49:4d:f1:28:b5:b0:1c:1f:45: 6a:df:47:9f:e2:a5:7a:e7:85:e1:57:76:07:42:58: 7e:5a:8b:f2:41:46:63:59:74:9c:af:d5:33:ba:0b: 16:79:f9:b5:39:45:76:ba:02:aa:63:79:bd:70:f9: 4a:52:cc:72:81:36:af:fd:e6:5f:73:a6:9a:77:f1: cc:75:c1:40:c8:29:43:9f:bf:6f:1c:22:ad:a3:6b: f0:e5:49:ca:36:d2:8a:f9:86:14:5b:80:e7:d1:0c: f6:e0:a8:c9:38:e9:4f:98:a4:83:d4:06:91:67:e3: 8c:78:e7:82:c9:50:2d:85:f6:bd:36:4e:d0:e8:74: 3d:20:88:3c:44:ea:a2:43:83:03:bf:cc:03:fb:20: fa:e7:82:fd:2f:a6:a1:d7:54:e0:b7:90:95:ec:76: ea:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:60:B3:4C:DD:F6:98:BD:9B:D6:B9:0C:16:50:F1:33:55:33:82:5C X509v3 Authority Key Identifier: keyid:53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.173.0/24 IPv6: 2001:df3:aac0::/48 Signature Algorithm: sha256WithRSAEncryption 7f:e3:d9:4f:6a:fd:40:b9:89:29:bc:ed:83:56:5e:bb:99:19: 2b:af:ee:05:41:8a:75:97:8a:70:56:e6:fa:21:7b:83:29:b7: 86:ab:3e:23:90:02:7d:58:f5:99:49:48:6c:be:5e:bf:26:a8: bd:73:49:2f:2f:ba:22:52:62:a1:19:1c:da:7a:cf:d9:f5:e5: 69:2a:23:2c:57:cc:a0:69:4e:96:a3:08:24:c3:8f:e9:5c:cb: df:b0:21:14:b5:3a:e2:08:f3:83:ab:3e:1f:05:76:ff:9c:fe: a4:10:ba:17:ca:dc:d3:b1:e6:cd:fe:0b:49:a8:b9:64:dd:7f: de:96:d7:13:f6:7a:be:d3:5c:2a:e4:12:50:a7:46:af:63:4d: f9:0f:2d:da:17:7d:19:12:0b:56:53:27:14:33:f3:b3:c5:5c: 08:e1:62:a0:e7:98:39:89:f4:68:92:bc:54:ab:d7:98:06:a2: d6:6e:62:c0:35:46:e7:58:bc:01:97:a6:73:79:e7:a4:8d:62: 3b:46:d7:45:10:07:5c:c7:06:ae:79:17:72:29:8b:80:eb:12: 56:c0:75:26:4b:91:bc:da:ee:0f:61:5c:9d:4f:c9:3f:2a:7d: 0c:2c:1f:71:f5:8e:2a:bc:94:29:56:35:eb:1b:a2:3c:06:24: 1d:5a:09:72 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4NDkxMTAvBgNVBAUTKDUzNkJGOEREQ0U4MDI2NjczNzhGNDdCRDQ5NTRBOTBC N0M3MDA5QzEwHhcNMjUwNTAzMDUxMjI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1YTViYy1kNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtmycfnKR2Gg2GkfE5/5Xryu45SgjrQfftLLSlsLrMHZ5HiVC7IRBRBDNaoF 5Gr4WUSlxgW212i+As/lbrfOGkWyZ0NCrS54v/TZD2d6VwwyflO6ebzb0FRiSyt/ At5JTfEotbAcH0Vq30ef4qV654XhV3YHQlh+WovyQUZjWXScr9UzugsWefm1OUV2 ugKqY3m9cPlKUsxygTav/eZfc6aad/HMdcFAyClDn79vHCKto2vw5UnKNtKK+YYU W4Dn0Qz24KjJOOlPmKSD1AaRZ+OMeOeCyVAthfa9Nk7Q6HQ9IIg8ROqiQ4MDv8wD +yD654L9L6ah11Tgt5CV7Hbq0QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDJgs0zd 9pi9m9a5DBZQ8TNVM4JcMB8GA1UdIwQYMBaAFFNr+N3OgCZnN49HvUlUqQt8cAnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTg0OS9EQkFEMzg0RUY3 OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUptYzNqMGU5U1ZTcEMzeHdD Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UydjQzYzZBSm1jM2owZTlTVlNwQzN4d0NjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU4NDkvREJBRDM4NEVGNzlFMTFFRUE0NUFBRTJDQzRGOUFFMDIvRkEzQjVEQ0FG N0EwMTFFRUJBQzFFMDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKJa0wDwQCAAIwCQMHACABDfOqwDANBgkqhkiG9w0BAQsF AAOCAQEAf+PZT2r9QLmJKbztg1Zeu5kZK6/uBUGKdZeKcFbm+iF7gym3hqs+I5AC fVj1mUlIbL5evyaovXNJLy+6IlJioRkc2nrP2fXlaSojLFfMoGlOlqMIJMOP6VzL 37AhFLU64gjzg6s+HwV2/5z+pBC6F8rc07Hmzf4LSai5ZN1/3pbXE/Z6vtNcKuQS UKdGr2NN+Q8t2hd9GRILVlMnFDPzs8VcCOFioOeYOYn0aJK8VKvXmAai1m5iwDVG 51i8AZemc3nnpI1iO0bXRRAHXMcGrnkXcimLgOsSVsB1JkuRvNruD2FcnU/JPyp9 DCwfcfWOKryUKVY16xuiPAYkHVoJcg== -----END CERTIFICATE-----Generated at Sun May 11 15:05:58 2025 by rpki-client