$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/FDAC7EBA26D811EE86689D0EC4F9AE02.roa File: FDAC7EBA26D811EE86689D0EC4F9AE02.roa (raw, json) Hash identifier: MeekIL6so4gjZtd7naeHv/pTHtXC6CO9tqXsAjmLWMY= Subject key identifier: D0:E8:9C:4D:B2:75:F6:24:5C:4E:32:35:9E:72:D2:4F:93:30:C2:40 Certificate issuer: /CN=A91B9E19/serialNumber=255290A01AA9B9118B66EEDA0F905F6D40DB05AE Certificate serial: 0DC2 Authority key identifier: 25:52:90:A0:1A:A9:B9:11:8B:66:EE:DA:0F:90:5F:6D:40:DB:05:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/FDAC7EBA26D811EE86689D0EC4F9AE02.roa Signing time: Fri 04 Apr 2025 17:47:32 +0000 ROA not before: Fri 04 Apr 2025 17:47:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137185 IP address blocks: 103.88.92.0/24 maxlen: 24 103.88.93.0/24 maxlen: 24 220.158.192.0/24 maxlen: 24 220.158.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.crl rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3522 (0xdc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9E19, serialNumber=255290A01AA9B9118B66EEDA0F905F6D40DB05AE Validity Not Before: Apr 4 17:47:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f01b34-1f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6e:4c:5c:e0:49:c6:6f:ca:2d:d1:5f:52:45: 7f:b0:a4:c9:97:47:8f:f9:4d:f1:71:ac:a7:6f:65: 31:94:29:86:72:2f:0b:bc:e3:39:64:ca:12:46:3d: d6:30:f0:e8:f3:59:bf:d9:47:64:43:52:57:33:c4: 33:45:b1:10:78:d7:99:96:3f:24:75:91:77:e6:d5: 0d:fb:b5:66:61:e0:ef:f9:f9:75:69:46:67:4d:99: 3a:67:7e:28:fd:25:52:b9:d7:5d:8b:11:8a:ab:13: 29:c5:56:d4:68:97:6b:b9:ef:6c:53:77:be:91:7c: d5:11:05:17:d1:7d:fc:74:e6:bb:76:05:f0:e5:b8: 3a:15:a8:81:ea:8f:15:87:d4:cc:e7:fb:12:e7:67: 4d:18:cd:fd:40:1d:c7:b2:a6:2a:67:ff:39:f7:b9: 6d:55:e9:7c:1d:9a:e0:85:cb:ce:18:60:47:37:cb: 06:aa:f2:2f:4e:9c:71:73:cb:20:bb:b7:89:32:8d: 6b:5c:03:50:2d:71:ae:f5:ed:71:de:3b:bb:a2:c2: b2:8a:dc:97:50:9d:32:3a:1d:8c:c2:2b:bc:f3:ce: 4d:1f:92:11:f0:e2:c4:22:7b:11:d7:bf:c8:67:bd: b6:9d:98:50:ac:d1:b5:92:89:65:dd:3d:6d:37:a2: 05:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E8:9C:4D:B2:75:F6:24:5C:4E:32:35:9E:72:D2:4F:93:30:C2:40 X509v3 Authority Key Identifier: keyid:25:52:90:A0:1A:A9:B9:11:8B:66:EE:DA:0F:90:5F:6D:40:DB:05:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/FDAC7EBA26D811EE86689D0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.92.0/23 220.158.192.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:89:2e:7c:49:8b:a2:56:2e:67:c9:5d:f8:7b:ce:77:2b:b8: b6:07:aa:a7:ce:8b:85:7d:e6:d8:9c:7f:ea:ae:15:10:75:c7: ee:3a:42:42:ff:81:9c:ad:0b:7f:1a:9b:1b:c4:b9:b8:a8:8a: 8c:6b:70:01:88:45:06:0b:fd:07:a4:7a:d9:dc:4e:3e:3c:80: 95:31:bd:54:8f:18:69:4e:19:a3:07:2a:62:ca:34:17:02:c6: 6a:81:38:0b:b5:fb:76:51:16:6e:a8:e8:47:15:be:4c:94:3a: 49:0e:18:9a:b4:d8:0c:d8:a1:fe:46:82:ae:cd:a2:b2:5c:a2: 76:3e:4c:70:5f:e7:c0:22:da:1f:bf:c8:87:a7:7c:c5:3a:79: b2:2f:0a:3d:b1:fc:8e:63:20:62:9f:ad:b4:2a:2e:df:b6:3d: 9d:d0:e2:f3:81:30:ce:f7:e4:e4:75:06:7e:3c:2f:fd:f0:92: a7:9c:78:dd:95:d4:c0:1e:62:6b:77:07:ab:0d:9c:29:39:f3: ba:0c:f1:67:b5:73:00:24:4c:70:b9:18:1d:f0:ef:ee:f3:7b: 96:d3:68:dd:f2:2d:81:6c:a6:30:3c:a5:59:13:42:60:8c:ac: 1a:71:36:ae:ed:95:cd:0a:79:82:14:60:b2:8a:26:c7:5b:ca: 39:91:12:67 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFMTkxMTAvBgNVBAUTKDI1NTI5MEEwMUFBOUI5MTE4QjY2RUVEQTBGOTA1RjZE NDBEQjA1QUUwHhcNMjUwNDA0MTc0NzMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwMWIzNC0xZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW5MXOBJxm/KLdFfUkV/sKTJl0eP+U3xcaynb2UxlCmGci8LvOM5ZMoSRj3W MPDo81m/2UdkQ1JXM8QzRbEQeNeZlj8kdZF35tUN+7VmYeDv+fl1aUZnTZk6Z34o /SVSudddixGKqxMpxVbUaJdrue9sU3e+kXzVEQUX0X38dOa7dgXw5bg6FaiB6o8V h9TM5/sS52dNGM39QB3HsqYqZ/8597ltVel8HZrghcvOGGBHN8sGqvIvTpxxc8sg u7eJMo1rXANQLXGu9e1x3ju7osKyityXUJ0yOh2Mwiu8885NH5IR8OLEInsR17/I Z722nZhQrNG1koll3T1tN6IF8wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNDonE2y dfYkXE4yNZ5y0k+TMMJAMB8GA1UdIwQYMBaAFCVSkKAaqbkRi2bu2g+QX21A2wWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUUxOS8zNTZGMkYzRUMx QTUxMUU5QThCOEYzMzZDNEY5QUUwMi9KVktRb0JxcHVSR0xadTdhRDVCZmJVRGJC YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pWS1FvQnFwdVJHTFp1N2FENUJmYlVEYkJhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlFMTkvMzU2RjJGM0VDMUE1MTFFOUE4QjhGMzM2QzRGOUFFMDIvRkRBQzdFQkEy NkQ4MTFFRTg2Njg5RDBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnWFwDBAHcnsAwDQYJKoZIhvcNAQELBQADggEBAA2JLnxJ i6JWLmfJXfh7zncruLYHqqfOi4V95ticf+quFRB1x+46QkL/gZytC38amxvEubio ioxrcAGIRQYL/QeketncTj48gJUxvVSPGGlOGaMHKmLKNBcCxmqBOAu1+3ZRFm6o 6EcVvkyUOkkOGJq02AzYof5Ggq7NorJconY+THBf58Ai2h+/yIenfMU6ebIvCj2x /I5jIGKfrbQqLt+2PZ3Q4vOBMM735OR1Bn48L/3wkqeceN2V1MAeYmt3B6sNnCk5 87oM8We1cwAkTHC5GB3w7+7ze5bTaN3yLYFspjA8pVkTQmCMrBpxNq7tlc0KeYIU YLKKJsdbyjmREmc= -----END CERTIFICATE-----Generated at Sat Apr 26 12:19:03 2025 by rpki-client