$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa File: FCF99042301011EFBC350682C4F9AE02.roa (raw, json) Hash identifier: vPFMqrSUjzYIWWD5OrrbcLDLskBcQKIeZfMaAZKS9a8= Subject key identifier: 6E:09:F3:A8:A1:9A:C9:80:EC:55:40:8C:66:C1:58:46:DE:8A:C6:32 Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 012F Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa Signing time: Fri 27 Jun 2025 05:04:26 +0000 ROA not before: Fri 27 Jun 2025 05:04:26 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 53813 IP address blocks: 167.103.110.0/24 maxlen: 24 167.103.111.0/24 maxlen: 24 167.103.118.0/23 maxlen: 24 167.103.122.0/23 maxlen: 24 167.103.124.0/23 maxlen: 24 167.103.126.0/23 maxlen: 24 167.103.132.0/23 maxlen: 24 167.103.134.0/23 maxlen: 24 167.103.136.0/23 maxlen: 24 167.103.138.0/23 maxlen: 24 167.103.140.0/23 maxlen: 24 167.103.160.0/23 maxlen: 24 167.103.166.0/23 maxlen: 24 167.103.196.0/23 maxlen: 24 167.103.198.0/23 maxlen: 24 167.103.200.0/23 maxlen: 24 167.103.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Jun 27 05:04:26 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e2659-2b38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4e:85:75:62:9d:78:33:ea:3b:34:bb:65:99: ea:f9:42:ba:b4:f6:93:02:44:a7:d0:7c:2a:03:34: 5e:38:c4:89:b6:63:fd:37:3c:7e:2a:d7:c8:c6:fc: a7:23:38:65:45:80:65:ba:a3:e6:ea:2d:80:44:1b: b3:87:f0:83:ab:59:7f:d5:fc:c6:74:68:c0:3d:c9: ab:6b:1d:36:a7:3d:7c:ae:74:b1:c4:66:cf:1c:e4: 1d:f4:29:ab:18:28:1c:e5:3a:d6:7e:d0:c7:d1:5e: dc:f3:9f:a1:71:1f:9f:70:7a:39:14:73:57:ac:34: af:ed:f3:61:50:f6:77:3f:67:68:0e:9b:40:7a:5a: ed:fc:53:00:6c:b8:2f:ce:11:70:63:cc:1e:3b:0e: 24:cc:3a:1f:4f:2a:d4:c8:92:2f:c6:2c:3a:78:ee: bf:02:1c:bc:22:94:ce:20:ad:b7:12:54:80:bf:1c: 22:3f:7c:67:ce:9f:dc:96:80:73:03:d0:cc:60:b3: 7f:30:7c:05:6d:b7:63:3f:ce:26:dd:43:ec:c9:7c: f1:a6:47:4f:2b:26:ca:12:2b:14:1f:52:ef:89:77: 05:e2:bc:a3:55:da:b2:93:5d:82:b4:98:31:f6:5f: 19:eb:5a:a2:16:28:3f:39:10:e8:39:37:e3:ac:13: 0f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:09:F3:A8:A1:9A:C9:80:EC:55:40:8C:66:C1:58:46:DE:8A:C6:32 X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.110.0/23 167.103.118.0/23 167.103.122.0-167.103.127.255 167.103.132.0-167.103.141.255 167.103.160.0/23 167.103.166.0/23 167.103.196.0-167.103.203.255 Signature Algorithm: sha256WithRSAEncryption 28:26:d4:b8:78:94:3d:95:49:d8:bc:42:dd:89:20:92:f0:7f: 12:de:7c:c3:d2:70:6c:e8:b0:90:10:1b:60:9a:d2:47:ce:b8: ad:cd:ef:cd:50:e3:68:9b:88:e6:ea:b4:91:ba:87:b0:7e:93: 5b:30:be:6b:62:78:a2:da:4e:5f:e4:22:41:53:80:84:3e:60: f5:34:d4:dd:91:d2:f5:81:dc:74:ca:07:c6:72:4f:f8:33:51: 02:e1:52:de:c5:e5:71:ef:b2:30:45:05:07:1f:7f:68:8a:fc: 96:23:94:c0:54:c3:8f:a3:f7:44:17:16:71:ab:22:8f:05:d5: 0c:1e:4f:91:68:ae:2b:d1:32:e8:96:a6:6a:99:70:0a:78:bf: 87:1b:93:be:60:74:65:5a:c1:be:51:81:a1:ae:b9:75:9f:87: b7:5f:a6:d7:be:f7:4a:9a:53:10:15:7c:c6:c9:47:6a:31:ad: 5b:1d:14:f6:65:2f:5d:1a:7d:5f:72:d3:40:41:e5:08:ba:2f: 83:e5:45:f9:fa:21:33:f2:53:62:06:91:f8:0e:55:8c:bd:b2: 56:67:55:6e:d7:7d:5d:70:b4:09:8b:5f:a5:2a:2f:7f:3d:6c: f4:ae:3f:bd:bc:c5:bd:8f:f1:a4:91:fa:e1:28:01:80:2a:b9: 30:99:88:a3 -----BEGIN CERTIFICATE----- MIIFrTCCBJWgAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwNjI3MDUwNDI2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMjY1OS0yYjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwU6FdWKdeDPqOzS7ZZnq+UK6tPaTAkSn0HwqAzReOMSJtmP9Nzx+KtfIxvyn IzhlRYBluqPm6i2ARBuzh/CDq1l/1fzGdGjAPcmrax02pz18rnSxxGbPHOQd9Cmr GCgc5TrWftDH0V7c85+hcR+fcHo5FHNXrDSv7fNhUPZ3P2doDptAelrt/FMAbLgv zhFwY8weOw4kzDofTyrUyJIvxiw6eO6/Ahy8IpTOIK23ElSAvxwiP3xnzp/cloBz A9DMYLN/MHwFbbdjP84m3UPsyXzxpkdPKybKEisUH1LviXcF4ryjVdqyk12CtJgx 9l8Z61qiFig/ORDoOTfjrBMPZQIDAQABo4IC0TCCAs0wHQYDVR0OBBYEFG4J86ih msmA7FVAjGbBWEbeisYyMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvRkNGOTkwNDIz MDEwMTFFRkJDMzUwNjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWwYIKwYBBQUHAQcBAf8E TDBKMEgEAgABMEIDBAGnZ24DBAGnZ3YwDAMEAadnegMEB6dnADAMAwQCp2eEAwQB p2eMAwQBp2egAwQBp2emMAwDBAKnZ8QDBAKnZ8gwDQYJKoZIhvcNAQELBQADggEB ACgm1Lh4lD2VSdi8Qt2JIJLwfxLefMPScGzosJAQG2Ca0kfOuK3N781Q42ibiObq tJG6h7B+k1swvmtieKLaTl/kIkFTgIQ+YPU01N2R0vWB3HTKB8ZyT/gzUQLhUt7F 5XHvsjBFBQcff2iK/JYjlMBUw4+j90QXFnGrIo8F1QweT5ForivRMuiWpmqZcAp4 v4cbk75gdGVawb5RgaGuuXWfh7dfpte+90qaUxAVfMbJR2oxrVsdFPZlL10afV9y 00BB5Qi6L4PlRfn6ITPyU2IGkfgOVYy9slZnVW7XfV1wtAmLX6UqL389bPSuP728 xb2P8aSR+uEoAYAquTCZiKM= -----END CERTIFICATE-----Generated at Thu Jul 3 02:46:02 2025 by rpki-client