$ rpki-client -vvf rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/CEB166C0E47D11EFAFC6496FC4F9AE02.roa File: CEB166C0E47D11EFAFC6496FC4F9AE02.roa (raw, json) Hash identifier: DZtIXQ1ghN4hCYJ+ctwT88CELrMnqgkRwXBOtM2ymVg= Subject key identifier: BE:B9:87:B8:41:20:43:32:FA:EB:35:7D:58:F4:4D:EB:96:89:98:67 Certificate issuer: /CN=A9110D07/serialNumber=4AC95C8A975E4CF310842C95564051753DEB0289 Certificate serial: 012D Authority key identifier: 4A:C9:5C:8A:97:5E:4C:F3:10:84:2C:95:56:40:51:75:3D:EB:02:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/CEB166C0E47D11EFAFC6496FC4F9AE02.roa Signing time: Thu 06 Feb 2025 11:30:46 +0000 ROA not before: Thu 06 Feb 2025 11:30:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152300 IP address blocks: 36.50.19.0/24 maxlen: 24 2001:df3:51c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.crl rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110D07 Validity Not Before: Feb 6 11:30:46 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67a49d66-490b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ce:16:61:2d:94:9e:42:dd:19:b2:0c:df:bb: 43:01:2b:87:e9:7d:8c:f7:0c:b2:ab:d8:cb:31:9a: 1c:2c:45:55:d0:e4:db:7d:01:37:a1:ff:39:92:cf: 80:02:84:27:a2:c2:d5:85:c9:d4:e3:3c:2f:e0:23: 66:aa:f8:13:2f:e1:d2:f8:58:da:4c:4c:0a:cc:ea: 50:bd:fe:47:08:ef:2e:8d:12:55:61:b5:9b:88:49: 4c:f2:1a:a7:37:d0:07:46:60:20:0d:55:ea:90:06: 65:08:0b:0e:b5:27:cd:ee:af:5c:91:da:c0:21:7e: ec:2a:d8:63:cc:59:91:2c:3f:76:9e:41:48:2a:8d: 69:6c:ca:c6:0a:f9:15:a9:b6:d3:e4:c0:25:dd:53: 87:48:53:bf:cc:d2:77:17:27:14:0c:1d:91:76:78: 19:e6:f2:5f:39:8c:11:f1:20:6c:5a:a0:1c:c9:12: 1d:b3:fb:82:12:8d:4f:26:1b:5f:ce:39:cd:74:b6: 35:fd:d6:1e:20:df:ef:61:b0:2b:90:88:d9:9d:85: d9:ca:7f:bc:0c:e9:2f:25:12:52:70:9b:53:e3:c3: ca:03:e8:cd:6f:93:fc:1e:05:86:85:3a:99:52:88: ca:7b:9c:f5:29:5d:66:94:08:a8:81:c3:e1:c6:f8: 74:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B9:87:B8:41:20:43:32:FA:EB:35:7D:58:F4:4D:EB:96:89:98:67 X509v3 Authority Key Identifier: keyid:4A:C9:5C:8A:97:5E:4C:F3:10:84:2C:95:56:40:51:75:3D:EB:02:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/CEB166C0E47D11EFAFC6496FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.19.0/24 IPv6: 2001:df3:51c0::/48 Signature Algorithm: sha256WithRSAEncryption 58:bf:f6:a9:68:75:9e:f3:f0:46:3d:87:ac:23:66:78:eb:c8: bf:b2:7b:77:c4:36:1a:e0:c6:c6:93:f5:7c:cb:64:12:62:f5: 77:fd:88:9a:ab:8a:6d:ce:7a:33:35:f6:0e:8b:f1:b0:c3:89: eb:13:1d:d2:dd:0b:6d:8a:73:97:e7:0b:ef:36:8d:5f:77:6a: 7e:84:ff:b9:f0:df:ba:da:99:cc:b1:15:73:1f:37:ce:e5:11: ed:31:b5:12:60:ab:8d:f3:ce:0c:93:21:80:5d:a9:ec:53:d9: 38:a2:bb:d7:17:31:d5:c1:9a:4a:b0:c5:4a:c2:61:4c:df:46: 79:69:b1:0d:4f:36:45:85:ff:da:f0:0b:be:e4:6b:31:a4:d3: 21:67:57:5f:22:93:e4:ee:37:30:1b:5d:02:d7:43:90:26:4e: f7:57:d8:25:5a:1e:b2:25:b1:b9:b0:5c:ad:d7:5c:7d:16:c1: 73:90:18:11:98:c6:7a:77:ee:af:5a:7a:fe:92:a6:48:bc:e1: 15:89:f3:52:4d:1d:43:57:b3:58:53:8e:ca:9f:0e:fa:29:8b: b8:28:13:81:6c:61:9e:b4:49:02:05:f1:da:92:94:47:8e:a2: 8d:1c:c9:8f:67:6f:ec:40:e0:62:f8:4e:9d:d3:b8:7a:f8:9e: ff:d9:b3:f4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBEMDcxMTAvBgNVBAUTKDRBQzk1QzhBOTc1RTRDRjMxMDg0MkM5NTU2NDA1MTc1 M0RFQjAyODkwHhcNMjUwMjA2MTEzMDQ2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E0OWQ2Ni00OTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAws4WYS2UnkLdGbIM37tDASuH6X2M9wyyq9jLMZocLEVV0OTbfQE3of85ks+A AoQnosLVhcnU4zwv4CNmqvgTL+HS+FjaTEwKzOpQvf5HCO8ujRJVYbWbiElM8hqn N9AHRmAgDVXqkAZlCAsOtSfN7q9ckdrAIX7sKthjzFmRLD92nkFIKo1pbMrGCvkV qbbT5MAl3VOHSFO/zNJ3FycUDB2RdngZ5vJfOYwR8SBsWqAcyRIds/uCEo1PJhtf zjnNdLY1/dYeIN/vYbArkIjZnYXZyn+8DOkvJRJScJtT48PKA+jNb5P8HgWGhTqZ UojKe5z1KV1mlAiogcPhxvh0rwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFL65h7hB IEMy+us1fVj0TeuWiZhnMB8GA1UdIwQYMBaAFErJXIqXXkzzEIQslVZAUXU96wKJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEQwNy9EM0U4ODlENDhF N0YxMUVFOEU5N0I0ODRDNEY5QUUwMi9Tc2xjaXBkZVRQTVFoQ3lWVmtCUmRUM3JB b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NzbGNpcGRlVFBNUWhDeVZWa0JSZFQzckFvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBEMDcvRDNFODg5RDQ4RTdGMTFFRThFOTdCNDg0QzRGOUFFMDIvQ0VCMTY2QzBF NDdEMTFFRkFGQzY0OTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAkMhMwDwQCAAIwCQMHACABDfNRwDANBgkqhkiG9w0BAQsF AAOCAQEAWL/2qWh1nvPwRj2HrCNmeOvIv7J7d8Q2GuDGxpP1fMtkEmL1d/2ImquK bc56MzX2DovxsMOJ6xMd0t0LbYpzl+cL7zaNX3dqfoT/ufDfutqZzLEVcx83zuUR 7TG1EmCrjfPODJMhgF2p7FPZOKK71xcx1cGaSrDFSsJhTN9GeWmxDU82RYX/2vAL vuRrMaTTIWdXXyKT5O43MBtdAtdDkCZO91fYJVoesiWxubBcrddcfRbBc5AYEZjG enfur1p6/pKmSLzhFYnzUk0dQ1ezWFOOyp8O+imLuCgTgWxhnrRJAgXx2pKUR46i jRzJj2dv7EDgYvhOndO4evie/9mz9A== -----END CERTIFICATE-----Generated at Sat Apr 5 11:42:11 2025 by rpki-client