$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: MC4D1jZCDOy7Yvm2TDa24wglg9YglvTc3EwelKavrSE= Subject key identifier: 85:DA:01:43:E7:96:D7:89:16:70:40:07:D3:A0:2E:11:7E:9B:3E:23 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 06D4 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Wed 23 Apr 2025 02:50:15 +0000 ROA not before: Wed 23 Apr 2025 02:50:15 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 62610 IP address blocks: 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 162.128.90.0/24 maxlen: 24 162.128.91.0/24 maxlen: 24 162.128.92.0/24 maxlen: 24 162.128.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Apr 23 02:50:15 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68085567-4187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:78:fd:8c:b7:7a:26:3c:6b:15:96:93:df:72: 30:2b:f6:64:c5:f3:27:a1:f8:7a:69:55:43:d0:61: 2d:c9:d6:28:83:2f:96:a3:08:47:7f:f7:57:ad:54: 4a:a4:ce:89:91:55:e0:0e:99:57:b1:a3:ed:05:e5: 34:e4:05:65:34:4b:96:8b:3e:1b:71:2a:a4:d8:35: 15:9f:fc:e1:87:87:d8:0f:41:15:54:28:1b:61:a8: 51:9c:ae:c7:b9:ae:45:40:e2:d4:71:a1:e5:99:b7: b7:af:30:f4:b7:02:0e:38:fd:73:2a:eb:ff:17:5f: c6:19:93:54:45:a8:b4:b4:20:d8:bc:63:01:9e:c7: 0c:5c:3c:ff:ef:c1:60:1a:9f:fd:f2:fb:03:a1:98: 3b:33:e2:c2:ae:6e:ed:02:16:76:04:ee:32:88:f3: bc:32:ef:bc:c9:dc:e6:cc:80:e1:1c:4a:0d:65:24: 68:f0:3f:b2:e7:e3:4e:b9:ca:8a:f3:94:c2:8f:b9: 69:c5:8a:76:b0:d3:4e:5a:03:01:87:8d:61:f3:e7: f5:10:9b:ad:f9:5d:24:10:7c:88:f1:2d:b8:6c:01: 37:6f:7c:fa:43:77:e8:5b:4d:3c:2d:33:ae:02:f4: d6:c1:82:ae:64:28:99:a3:2b:3b:02:ac:52:95:e3: 96:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:DA:01:43:E7:96:D7:89:16:70:40:07:D3:A0:2E:11:7E:9B:3E:23 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 162.128.90.0-162.128.93.255 Signature Algorithm: sha256WithRSAEncryption 51:09:4b:78:45:fb:50:2e:03:a4:41:b6:40:bd:bd:98:54:52: fb:da:02:39:90:f7:ee:a5:7b:b9:4c:e1:2c:f4:2d:d6:8c:f3: 9f:96:9f:01:c2:52:5a:97:61:4b:c7:46:1c:d9:1c:d9:f1:8f: 25:b7:19:dd:68:a0:3c:59:0d:16:79:62:27:5a:97:fb:c1:a7: 6c:2b:ad:31:3e:2a:e8:eb:de:b0:3e:bd:05:bf:52:54:3d:7b: d0:fa:af:a4:05:d9:fb:0a:c1:39:a2:66:38:7b:25:47:21:b5: d0:cd:3f:8e:a2:08:d9:5c:0b:5c:7d:14:43:72:e8:2c:2f:70: c1:8a:2d:6a:79:5e:f3:81:ef:de:e5:bf:2c:6e:59:bf:b4:e9: 07:29:3e:b5:ff:be:d4:91:c7:cf:9b:19:7d:8a:68:3c:b7:53: 87:73:b0:86:71:01:50:ae:a5:36:f8:81:5e:4e:09:0f:47:73: 7a:20:9d:42:a1:8b:49:0a:0f:21:fd:43:e7:be:ad:36:94:54: e1:af:8f:ae:90:8a:d4:43:55:25:ae:69:8b:f8:20:16:da:34: d2:8c:93:a8:b6:49:c9:5d:2f:ef:bb:71:e5:85:da:10:96:f6: 42:89:a9:3f:a8:31:19:cd:6c:00:6f:6e:bb:92:ae:62:aa:dd: cb:30:7a:f2 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUwNDIzMDI1MDE1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA4NTU2Ny00MTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXj9jLd6JjxrFZaT33IwK/ZkxfMnofh6aVVD0GEtydYogy+WowhHf/dXrVRK pM6JkVXgDplXsaPtBeU05AVlNEuWiz4bcSqk2DUVn/zhh4fYD0EVVCgbYahRnK7H ua5FQOLUcaHlmbe3rzD0twIOOP1zKuv/F1/GGZNURai0tCDYvGMBnscMXDz/78Fg Gp/98vsDoZg7M+LCrm7tAhZ2BO4yiPO8Mu+8ydzmzIDhHEoNZSRo8D+y5+NOucqK 85TCj7lpxYp2sNNOWgMBh41h8+f1EJut+V0kEHyI8S24bAE3b3z6Q3foW008LTOu AvTWwYKuZCiZoys7AqxSleOWDQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFIXaAUPn lteJFnBAB9OgLhF+mz4jMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBACcO0kDBACcO3sDBACcO5IDBACcO7gwDAMEAaKAWgMEAaKA XDANBgkqhkiG9w0BAQsFAAOCAQEAUQlLeEX7UC4DpEG2QL29mFRS+9oCOZD37qV7 uUzhLPQt1ozzn5afAcJSWpdhS8dGHNkc2fGPJbcZ3WigPFkNFnliJ1qX+8GnbCut MT4q6OvesD69Bb9SVD170PqvpAXZ+wrBOaJmOHslRyG10M0/jqII2VwLXH0UQ3Lo LC9wwYotanle84Hv3uW/LG5Zv7TpByk+tf++1JHHz5sZfYpoPLdTh3OwhnEBUK6l NviBXk4JD0dzeiCdQqGLSQoPIf1D576tNpRU4a+PrpCK1ENVJa5pi/ggFto00oyT qLZJyV0v77tx5YXaEJb2QompP6gxGc1sAG9uu5KuYqrdyzB68g== -----END CERTIFICATE-----Generated at Sat Apr 26 17:05:05 2025 by rpki-client