$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa File: FCF99042301011EFBC350682C4F9AE02.roa (raw, json) Hash identifier: 4zWkF54fFYIlLcGDrxu60ccu1Jo/sOlDzQpRDsrkmZ0= Subject key identifier: FA:FA:F7:E7:28:3F:BA:6C:8A:3F:9D:63:35:3C:E5:F2:4B:A7:51:2F Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: E0 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa Signing time: Thu 10 Apr 2025 13:35:03 +0000 ROA not before: Thu 10 Apr 2025 13:35:03 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 53813 IP address blocks: 167.103.110.0/24 maxlen: 24 167.103.111.0/24 maxlen: 24 167.103.118.0/23 maxlen: 24 167.103.122.0/23 maxlen: 24 167.103.124.0/23 maxlen: 24 167.103.126.0/23 maxlen: 24 167.103.160.0/23 maxlen: 24 167.103.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Apr 10 13:35:03 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67f7c907-7483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7b:de:97:84:39:98:6b:0b:d0:05:9f:c3:23: 54:41:ef:98:22:46:54:79:dd:fc:ae:49:45:f6:fe: ab:e9:a0:a4:fd:52:1c:c2:56:79:7e:53:13:25:7a: cc:63:61:6e:99:dd:fc:92:e7:0b:a5:00:c9:a2:12: 97:18:89:54:10:db:65:4a:56:46:c0:e2:0e:1f:85: 71:1d:86:c4:49:ab:7e:a1:29:2e:ff:41:f7:08:da: 2b:b8:53:5e:e7:be:2c:aa:0e:76:e0:58:5a:02:65: f3:e1:4f:b0:4d:a2:05:ac:f4:bc:ed:35:4e:aa:b5: 47:47:25:29:83:2b:c2:9b:0c:9c:fd:f7:a7:e6:68: 45:fc:ca:a1:58:24:5a:85:2f:16:42:d6:b8:01:41: b8:0d:7c:d1:74:ac:0f:36:34:ea:06:50:b5:6e:41: d3:aa:96:92:1f:bc:6d:52:05:99:19:f3:8d:30:1c: 2a:f7:06:ed:99:dd:bf:8f:72:ad:f9:f3:08:54:46: 99:2a:e4:63:3e:70:c9:d6:d7:61:c4:c0:a6:03:23: 84:a5:0a:14:dd:c4:ce:bc:b0:c3:05:cc:d6:cf:69: 27:6c:67:79:ae:f2:4d:f8:f3:a8:10:01:72:5a:ed: bb:0f:4c:c3:50:b7:f0:18:46:2b:45:97:f3:8d:66: c3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:FA:F7:E7:28:3F:BA:6C:8A:3F:9D:63:35:3C:E5:F2:4B:A7:51:2F X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.110.0/23 167.103.118.0/23 167.103.122.0-167.103.127.255 167.103.160.0/23 167.103.166.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:6a:18:72:0e:3c:3b:e2:55:76:91:b4:cc:04:49:3c:69:53: a9:6e:0c:80:90:04:f8:4a:d8:56:16:a9:17:10:0c:5d:a6:be: 34:f9:28:ca:a8:1c:c7:f2:82:39:ef:d2:a5:07:82:ed:96:ed: b1:6f:07:02:9e:00:5e:0f:76:70:5c:50:28:59:42:3e:e8:7e: 78:3a:99:90:51:78:74:6a:32:98:0a:8b:e4:cc:fd:20:2a:e0: 58:3e:73:36:8a:fe:a5:fa:fe:02:c7:b7:e0:79:71:7a:63:e3: 27:3f:3b:8a:bb:56:81:d6:00:35:be:7b:e3:3e:66:69:5e:4c: a4:28:73:a4:a9:5b:05:e9:f6:f4:07:67:4a:27:60:72:4c:99: f5:57:cf:00:f3:42:52:2d:5f:55:c8:10:71:51:d8:12:af:72: ba:6d:ba:e3:ca:31:12:61:5c:b4:06:bb:e8:25:c5:66:61:d7: 97:f2:d5:28:b5:d8:88:b5:cb:b6:ec:71:2a:c2:52:29:54:93: 3f:72:0a:59:c7:7d:76:3f:ae:ea:d6:38:2d:87:96:b1:d1:6e: d4:12:cd:cc:b8:70:9a:f6:af:49:3f:e0:77:b4:6d:a7:97:54: 38:0c:ea:39:6a:9c:f3:24:0d:bf:07:f5:c6:9e:fc:c5:e2:b0: e7:b1:01:b5 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwNDEwMTMzNTAzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y3YzkwNy03NDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3vel4Q5mGsL0AWfwyNUQe+YIkZUed38rklF9v6r6aCk/VIcwlZ5flMTJXrM Y2Fumd38kucLpQDJohKXGIlUENtlSlZGwOIOH4VxHYbESat+oSku/0H3CNoruFNe 574sqg524FhaAmXz4U+wTaIFrPS87TVOqrVHRyUpgyvCmwyc/fen5mhF/MqhWCRa hS8WQta4AUG4DXzRdKwPNjTqBlC1bkHTqpaSH7xtUgWZGfONMBwq9wbtmd2/j3Kt +fMIVEaZKuRjPnDJ1tdhxMCmAyOEpQoU3cTOvLDDBczWz2knbGd5rvJN+POoEAFy Wu27D0zDULfwGEYrRZfzjWbD2QIDAQABo4ICtTCCArEwHQYDVR0OBBYEFPr69+co P7psij+dYzU85fJLp1EvMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvRkNGOTkwNDIz MDEwMTFFRkJDMzUwNjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAGnZ24DBAGnZ3YwDAMEAadnegMEB6dnAAMEAadnoAMEAadn pjANBgkqhkiG9w0BAQsFAAOCAQEADmoYcg48O+JVdpG0zARJPGlTqW4MgJAE+ErY VhapFxAMXaa+NPkoyqgcx/KCOe/SpQeC7ZbtsW8HAp4AXg92cFxQKFlCPuh+eDqZ kFF4dGoymAqL5Mz9ICrgWD5zNor+pfr+Ase34HlxemPjJz87irtWgdYANb574z5m aV5MpChzpKlbBen29AdnSidgckyZ9VfPAPNCUi1fVcgQcVHYEq9yum2648oxEmFc tAa76CXFZmHXl/LVKLXYiLXLtuxxKsJSKVSTP3IKWcd9dj+u6tY4LYeWsdFu1BLN zLhwmvavST/gd7Rtp5dUOAzqOWqc8yQNvwf1xp78xeKw57EBtQ== -----END CERTIFICATE-----Generated at Sat Apr 26 17:07:08 2025 by rpki-client