$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/FE1FDB12BCD011EC8283681EC4F9AE02.roa File: FE1FDB12BCD011EC8283681EC4F9AE02.roa (raw, json) Hash identifier: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg= Subject key identifier: 92:36:6C:8A:29:AE:A4:2B:C8:35:42:91:28:31:E0:10:EA:81:5F:DB Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 07BB Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/FE1FDB12BCD011EC8283681EC4F9AE02.roa Signing time: Thu 20 Mar 2025 21:01:07 +0000 ROA not before: Thu 20 Mar 2025 21:01:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 63962 IP address blocks: 43.231.112.0/22 maxlen: 24 103.50.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1979 (0x7bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Mar 20 21:01:07 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dc8212-4449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fc:0c:f2:9f:f7:08:43:74:1c:29:1b:c1:80: 19:f6:9f:54:6c:68:11:51:05:66:89:ab:93:03:f6: a9:20:27:84:75:c0:bb:f8:03:2b:d8:68:c9:c0:1c: eb:eb:87:cf:e3:0a:bf:cb:a1:25:8a:60:f2:59:1b: b9:8f:3d:af:a8:ae:6c:51:a7:86:ad:e2:f4:6d:a6: e2:88:e4:85:58:62:fa:b4:25:0c:ee:e8:fb:73:85: 22:c4:b8:5b:84:80:90:b0:8c:16:3d:36:36:9a:4a: d7:37:2d:b9:40:16:f7:ed:81:9d:75:0c:7c:5b:b7: c0:15:59:e5:15:af:8e:50:51:b0:72:ac:6d:bb:65: 65:1d:86:ce:4a:0e:ba:21:dc:de:4d:e4:fb:46:89: 0c:5d:16:91:6d:b5:b3:37:07:fe:f3:54:7f:43:06: f9:0d:f3:a3:97:2e:2c:6c:7c:c4:a0:e3:27:22:87: ea:e5:53:1e:f2:08:3b:4f:a7:b6:2d:b9:41:9a:25: e1:27:19:dc:cc:36:94:40:c8:f4:11:5c:a1:bd:89: 2e:48:8a:e4:84:9a:02:63:bb:ab:6f:f0:69:48:e8: ef:07:d3:73:f4:c4:a3:d8:7f:ba:f3:c5:93:8d:aa: c4:f5:5b:88:f4:92:74:13:40:a5:e8:85:0e:06:c5: 6f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:36:6C:8A:29:AE:A4:2B:C8:35:42:91:28:31:E0:10:EA:81:5F:DB X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/FE1FDB12BCD011EC8283681EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.112.0/22 103.50.204.0/22 Signature Algorithm: sha256WithRSAEncryption 13:04:72:d7:dc:e8:78:b1:29:72:9e:10:ca:19:16:85:67:e8: ed:8c:82:31:8c:40:4b:c6:95:4e:46:20:84:75:f6:56:6c:05: 03:2a:41:0c:91:1c:e4:05:8e:aa:4e:d7:5e:47:64:be:2b:53: 41:50:18:c6:29:4b:bb:02:75:04:38:64:86:80:cb:46:74:44: 32:41:33:8e:e1:63:87:85:30:32:a0:b2:1b:05:d4:36:c8:8a: 44:95:a1:2c:94:2f:d1:a6:34:a3:64:23:a7:1c:fe:b3:ab:cf: a5:fd:f0:b4:d4:10:fc:92:ac:f7:c0:55:fe:c7:67:6d:89:8c: 5a:38:d5:18:72:85:74:52:92:3a:ce:72:b5:8c:95:7a:07:79: c2:5b:d3:2d:ba:76:71:f3:e4:3b:fb:e8:35:3f:b2:32:d0:34: 7f:bb:96:cc:79:37:73:1d:a2:95:45:0f:1c:59:a2:2b:02:aa: 43:24:1c:62:f6:2d:77:d3:a5:90:44:e7:f2:81:21:84:cb:ec: fd:b2:aa:dc:13:a3:68:30:af:42:ac:bf:88:1b:ea:70:22:ab: 1a:0d:a5:8a:94:8a:b7:bf:4b:55:14:ef:06:33:9e:7f:32:2b: 20:66:c9:30:54:50:00:02:1e:c0:d9:95:6c:e4:a0:30:ed:b3: cb:f3:5f:8d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUwMzIwMjEwMTA3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjODIxMi00NDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/wM8p/3CEN0HCkbwYAZ9p9UbGgRUQVmiauTA/apICeEdcC7+AMr2GjJwBzr 64fP4wq/y6ElimDyWRu5jz2vqK5sUaeGreL0babiiOSFWGL6tCUM7uj7c4UixLhb hICQsIwWPTY2mkrXNy25QBb37YGddQx8W7fAFVnlFa+OUFGwcqxtu2VlHYbOSg66 IdzeTeT7RokMXRaRbbWzNwf+81R/Qwb5DfOjly4sbHzEoOMnIofq5VMe8gg7T6e2 LblBmiXhJxnczDaUQMj0EVyhvYkuSIrkhJoCY7urb/BpSOjvB9Nz9MSj2H+688WT jarE9VuI9JJ0E0Cl6IUOBsVvDwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJI2bIop rqQryDVCkSgx4BDqgV/bMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkEwMjQvRDMzQTQ3OTRGMTg4MTFFQTlFODBGNzFFQzRGOUFFMDIvRkUxRkRCMTJC Q0QwMTFFQzgyODM2ODFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr53ADBAJnMswwDQYJKoZIhvcNAQELBQADggEBABMEctfc 6HixKXKeEMoZFoVn6O2MgjGMQEvGlU5GIIR19lZsBQMqQQyRHOQFjqpO115HZL4r U0FQGMYpS7sCdQQ4ZIaAy0Z0RDJBM47hY4eFMDKgshsF1DbIikSVoSyUL9GmNKNk I6cc/rOrz6X98LTUEPySrPfAVf7HZ22JjFo41RhyhXRSkjrOcrWMlXoHecJb0y26 dnHz5Dv76DU/sjLQNH+7lsx5N3MdopVFDxxZoisCqkMkHGL2LXfTpZBE5/KBIYTL 7P2yqtwTo2gwr0Ksv4gb6nAiqxoNpYqUire/S1UU7wYznn8yKyBmyTBUUAACHsDZ lWzkoDDts8vzX40= -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:41 2025 by rpki-client