$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/FA9BC95A548711EF89E24A18C4F9AE02.roa File: FA9BC95A548711EF89E24A18C4F9AE02.roa (raw, json) Hash identifier: Lh2x2UhtnOihYNKj9Kn76/xvcicNSKGJ9zs/lJzF/lU= Subject key identifier: BD:4C:43:7B:8C:94:68:92:04:07:29:F4:32:6E:90:80:32:91:6C:BD Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 10FE Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/FA9BC95A548711EF89E24A18C4F9AE02.roa Signing time: Mon 02 Jun 2025 21:07:00 +0000 ROA not before: Mon 02 Jun 2025 21:07:00 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55453 IP address blocks: 139.190.236.0/24 maxlen: 24 139.190.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4350 (0x10fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Jun 2 21:07:00 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e1274-91d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3a:43:b4:a2:47:50:6b:7b:01:f0:df:1d:8a: 50:f4:13:75:f2:7f:0f:38:87:6b:20:2b:74:c2:3d: bb:66:79:27:a1:76:29:69:74:1d:d9:37:eb:46:b2: bb:53:25:54:d2:b5:d2:e0:c9:5c:9a:a6:c0:b3:f8: dc:5f:95:e7:83:c7:35:ef:ff:d9:a7:5a:35:1e:46: 16:d7:72:51:32:44:47:c5:7a:48:c3:00:ae:85:8f: e5:a7:3b:62:08:87:e7:8e:b5:c3:11:9f:17:e6:d2: b5:c7:65:f1:68:59:f6:7a:81:cc:f5:fb:70:be:5d: df:80:2c:ab:da:91:8e:11:56:c0:54:8b:8e:b8:fa: aa:e7:34:e4:85:36:e3:c7:f5:21:4d:fc:b9:80:f0: 24:d2:b8:cd:72:57:ed:34:69:33:50:41:df:02:0f: d3:f3:2c:b2:de:30:c5:73:28:f5:76:ef:c4:cf:f9: 7b:37:77:f8:52:78:99:81:6b:59:6e:d5:ee:78:40: 0b:61:ef:e2:db:f2:fb:eb:82:5c:fd:4e:5e:15:ab: 5d:f8:05:49:6c:e9:2e:b7:84:fb:18:d7:2f:05:2f: ec:4a:61:00:77:eb:5c:55:b1:b7:fa:4d:25:fa:5b: 12:0e:af:32:e5:76:c9:33:02:e0:93:36:c9:dd:d8: 95:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:4C:43:7B:8C:94:68:92:04:07:29:F4:32:6E:90:80:32:91:6C:BD X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/FA9BC95A548711EF89E24A18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.236.0/23 Signature Algorithm: sha256WithRSAEncryption ba:1d:6f:68:af:5b:53:b4:44:d1:35:75:6f:fb:ae:a9:e1:96: 92:42:26:f1:9a:b8:6a:3b:c0:8c:08:47:c4:59:69:28:75:d0: f2:08:a1:7e:c9:3b:79:b7:51:db:e6:95:ab:73:dd:3d:8a:9e: 98:33:48:a9:ae:7f:b0:cc:1d:dc:a8:70:08:a2:cf:bf:9d:e5: dd:fe:fa:d4:1f:de:1f:4d:be:42:75:a1:0e:7a:c2:c2:85:d6: 1b:c1:e2:61:42:bb:7d:55:38:d9:9f:ea:22:02:7b:77:0a:48: b7:9a:03:de:36:36:c5:1f:62:65:6b:29:7c:ea:e7:b8:83:df: 3c:33:35:6b:c6:76:73:82:75:d6:3e:cc:aa:c0:14:2b:09:1a: ea:21:11:0c:8d:0b:fb:70:99:a6:5e:a1:5a:82:52:a7:fd:30: 51:bd:78:31:fe:b2:e6:d6:89:06:bb:a8:29:b1:d6:21:7a:7e: d8:da:45:4d:22:61:03:f3:33:1f:fd:bc:83:8f:68:ff:97:b1: d8:20:f2:71:d8:94:7b:78:14:fd:37:73:e6:73:4e:5f:c1:cd: a7:4f:27:4d:aa:d1:3f:4d:74:57:ae:e8:43:ba:ea:d6:48:26: b4:48:f4:b1:e1:ca:89:15:a7:a0:ad:16:f5:88:80:ea:10:8b: 5e:d5:10:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwNjAyMjEwNzAwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMTI3NC05MWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDpDtKJHUGt7AfDfHYpQ9BN18n8POIdrICt0wj27ZnknoXYpaXQd2TfrRrK7 UyVU0rXS4MlcmqbAs/jcX5Xng8c17//Zp1o1HkYW13JRMkRHxXpIwwCuhY/lpzti CIfnjrXDEZ8X5tK1x2XxaFn2eoHM9ftwvl3fgCyr2pGOEVbAVIuOuPqq5zTkhTbj x/UhTfy5gPAk0rjNclftNGkzUEHfAg/T8yyy3jDFcyj1du/Ez/l7N3f4UniZgWtZ btXueEALYe/i2/L764Jc/U5eFatd+AVJbOkut4T7GNcvBS/sSmEAd+tcVbG3+k0l +lsSDq8y5XbJMwLgkzbJ3diV+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFL1MQ3uM lGiSBAcp9DJukIAykWy9MB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRkE5QkM5NUE1 NDg3MTFFRjg5RTI0QTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGLvuwwDQYJKoZIhvcNAQELBQADggEBALodb2ivW1O0RNE1 dW/7rqnhlpJCJvGauGo7wIwIR8RZaSh10PIIoX7JO3m3Udvmlatz3T2KnpgzSKmu f7DMHdyocAiiz7+d5d3++tQf3h9NvkJ1oQ56wsKF1hvB4mFCu31VONmf6iICe3cK SLeaA942NsUfYmVrKXzq57iD3zwzNWvGdnOCddY+zKrAFCsJGuohEQyNC/twmaZe oVqCUqf9MFG9eDH+subWiQa7qCmx1iF6ftjaRU0iYQPzMx/9vIOPaP+Xsdgg8nHY lHt4FP03c+ZzTl/BzadPJ02q0T9NdFeu6EO66tZIJrRI9LHhyokVp6CtFvWIgOoQ i17VEMw= -----END CERTIFICATE-----Generated at Sun Jul 6 01:03:45 2025 by rpki-client