$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/FB50A65027B311EFBA31BB40C4F9AE02.roa File: FB50A65027B311EFBA31BB40C4F9AE02.roa (raw, json) Hash identifier: lCjcuN3RSUzDTTX5oZhMnE3axtzeaFw5cyewHimqMWM= Subject key identifier: 5E:00:74:C8:A8:7C:3C:C4:00:83:D5:63:74:40:51:F5:08:03:88:4C Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 348D Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/FB50A65027B311EFBA31BB40C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:20:52 +0000 ROA not before: Tue 08 Apr 2025 15:20:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23655 IP address blocks: 110.92.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13453 (0x348d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06, serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: Apr 8 15:20:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f53ed4-829e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8c:5b:1d:b6:8f:cc:a2:af:df:5e:a2:28:0d: 6c:b2:41:b7:ea:90:57:41:d4:b6:d1:46:4b:3a:65: 9f:93:62:3e:ce:14:54:c6:56:5a:d7:17:eb:93:fa: ee:18:a4:85:10:13:a3:0b:01:da:9a:7a:ec:af:36: 18:ac:00:9a:ae:ff:58:35:08:09:c5:73:06:eb:cc: 7d:36:58:bd:f6:dc:a9:3e:f6:76:2d:f6:c1:d2:c0: 6d:9f:cf:f1:a2:0f:9f:3a:5a:80:cd:d6:f1:89:54: 07:96:c3:b1:3e:e6:84:ac:fc:fe:ff:0f:8c:e7:d5: 14:b1:44:9c:e3:64:99:fd:fb:7a:11:10:17:67:57: 3e:e0:a6:b3:a5:67:48:89:52:e3:3a:8c:df:67:a4: 69:21:69:83:6c:34:61:22:d1:ca:25:f1:fa:14:db: ce:c1:70:80:ec:25:1c:13:e3:d2:d4:2a:92:6e:58: c6:16:e8:fa:a2:3c:3b:8c:5a:1e:4a:0b:6e:aa:73: e4:b7:14:18:4d:15:42:40:3b:2d:73:5f:58:5e:7e: ab:7c:71:66:41:b3:36:9e:d1:35:eb:13:f4:c7:b4: 1e:e8:98:d6:f8:e5:76:52:98:55:bf:c9:86:dc:63: 1a:d3:dc:8d:d1:08:f8:ac:5d:c1:96:21:1f:ad:55: 03:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:00:74:C8:A8:7C:3C:C4:00:83:D5:63:74:40:51:F5:08:03:88:4C X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/FB50A65027B311EFBA31BB40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.92.18.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:2c:0b:47:b1:e2:92:13:62:79:b7:c5:c8:b7:cf:c8:c9:02: e6:a4:f7:97:b0:98:6b:61:71:eb:a7:d9:12:60:85:88:1a:8f: ec:66:7a:c5:0b:95:5d:6f:d6:a1:a1:4d:7a:05:04:06:3e:b3: 6e:f4:b1:db:2b:a5:6d:bf:e6:29:1d:d9:df:42:36:33:ee:5e: 34:d3:b4:67:85:4a:c4:5b:06:7d:27:18:17:3e:7a:eb:90:1c: 5b:55:f2:21:ca:59:8f:0a:c0:73:0c:1a:23:04:30:8f:0a:5d: 82:1b:40:7f:ed:4a:05:37:6f:f0:84:68:98:0f:3c:b9:e2:8a: 78:fd:7d:b5:db:c0:42:d1:0d:ec:54:f1:87:1c:ea:89:e8:67: fd:ea:91:73:ce:f2:17:b0:1f:95:0e:f2:76:a4:5e:65:97:00: 87:eb:9d:d7:cf:47:8b:ed:5e:12:82:85:12:3a:d3:f2:b8:1a: 58:2f:6d:f2:98:6a:35:55:46:65:68:d7:bf:69:e2:6a:b9:37: 4d:b2:d7:2a:a5:6c:50:62:24:33:1e:23:ab:f2:92:69:6e:ea: cc:92:86:62:db:7a:b3:f8:5f:34:31:d7:4d:5e:17:8b:03:1a: 2a:8e:d4:40:04:e6:17:48:00:62:ac:1d:58:0b:e0:b8:a0:c9: 35:70:0e:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjUwNDA4MTUyMDUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1M2VkNC04MjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4xbHbaPzKKv316iKA1sskG36pBXQdS20UZLOmWfk2I+zhRUxlZa1xfrk/ru GKSFEBOjCwHamnrsrzYYrACarv9YNQgJxXMG68x9Nli99typPvZ2LfbB0sBtn8/x og+fOlqAzdbxiVQHlsOxPuaErPz+/w+M59UUsUSc42SZ/ft6ERAXZ1c+4KazpWdI iVLjOozfZ6RpIWmDbDRhItHKJfH6FNvOwXCA7CUcE+PS1CqSbljGFuj6ojw7jFoe SgtuqnPktxQYTRVCQDstc19YXn6rfHFmQbM2ntE16xP0x7Qe6JjW+OV2UphVv8mG 3GMa09yN0Qj4rF3BliEfrVUDGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF4AdMio fDzEAIPVY3RAUfUIA4hMMB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFDMDYvNkRFQUUyMUMxRDlEMTFFMjhCMUZBNzhDMDhCMDJDRDIvRkI1MEE2NTAy N0IzMTFFRkJBMzFCQjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABuXBIwDQYJKoZIhvcNAQELBQADggEBAI4sC0ex4pITYnm3 xci3z8jJAuak95ewmGthceun2RJghYgaj+xmesULlV1v1qGhTXoFBAY+s270sdsr pW2/5ikd2d9CNjPuXjTTtGeFSsRbBn0nGBc+euuQHFtV8iHKWY8KwHMMGiMEMI8K XYIbQH/tSgU3b/CEaJgPPLniinj9fbXbwELRDexU8Ycc6onoZ/3qkXPO8hewH5UO 8nakXmWXAIfrndfPR4vtXhKChRI60/K4GlgvbfKYajVVRmVo179p4mq5N02y1yql bFBiJDMeI6vykmlu6syShmLberP4XzQx101eF4sDGiqO1EAE5hdIAGKsHVgL4Lig yTVwDm0= -----END CERTIFICATE-----Generated at Sat Apr 26 08:19:55 2025 by rpki-client