$ rpki-client -vvf rpki.apnic.net/member_repository/A911A0AB/744526F60FA111EFA6788886C4F9AE02/37241BF4757911EFB0F87073C4F9AE02.roa File: 37241BF4757911EFB0F87073C4F9AE02.roa (raw, json) Hash identifier: OOJ1+VUkBTXiPH6FI49m6U+9LsJszz3rE5lM11lv5ng= Subject key identifier: 86:F0:EC:C7:8E:65:D8:E3:61:92:7A:3A:93:98:1D:91:02:55:85:33 Certificate issuer: /CN=A911A0AB/serialNumber=265703D85933F45D9B04DAB77237584FC92D9D44 Certificate serial: 93 Authority key identifier: 26:57:03:D8:59:33:F4:5D:9B:04:DA:B7:72:37:58:4F:C9:2D:9D:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlcD2Fkz9F2bBNq3cjdYT8ktnUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A0AB/744526F60FA111EFA6788886C4F9AE02/37241BF4757911EFB0F87073C4F9AE02.roa Signing time: Fri 07 Feb 2025 05:08:33 +0000 ROA not before: Fri 07 Feb 2025 05:08:33 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132200 IP address blocks: 49.50.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A0AB/744526F60FA111EFA6788886C4F9AE02/JlcD2Fkz9F2bBNq3cjdYT8ktnUQ.crl rsync://rpki.apnic.net/member_repository/A911A0AB/744526F60FA111EFA6788886C4F9AE02/JlcD2Fkz9F2bBNq3cjdYT8ktnUQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlcD2Fkz9F2bBNq3cjdYT8ktnUQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A0AB Validity Not Before: Feb 7 05:08:33 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a59550-c894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:c0:93:7b:ae:f8:57:ab:a4:6f:44:3f:a7: 96:cf:23:9c:0e:35:6d:2b:ea:be:03:e4:f9:f3:22: 92:dd:cd:7b:8b:7a:e2:9e:f9:22:f8:8c:47:4c:37: fd:f5:f5:e4:ea:1a:b9:ba:c1:c0:72:2e:b8:48:21: 80:16:9a:05:5c:5b:56:17:14:2a:df:cf:40:3c:82: 60:2d:61:ce:0e:a4:f8:ef:2c:05:c5:70:c9:b5:26: 81:10:68:4c:02:dd:b9:3b:4c:a2:1e:1e:7e:dd:10: 57:b4:a8:0d:61:94:71:bf:bd:b6:2b:70:78:1d:31: c5:3f:26:36:da:ff:f0:87:1c:29:44:85:78:19:fa: c8:0f:1e:2e:d7:9f:4c:7b:16:d4:68:ca:87:e5:46: e4:e3:77:41:cd:44:f8:5d:6e:ce:2e:cd:69:6a:b2: dd:26:12:3e:fd:56:df:64:7b:f9:95:d1:7a:74:6d: 50:2f:ee:a7:de:d7:c8:59:13:22:ac:dc:ae:7b:c2: 70:f4:db:3e:45:07:24:d4:4d:b2:4a:b6:4f:4a:bc: 5d:cc:5a:ee:9e:aa:f6:b6:53:ed:a9:1c:03:5e:e2: 88:4b:f7:14:c6:3d:da:b3:f5:a8:39:49:95:31:4a: b7:05:56:b2:0c:42:19:ab:48:7e:ca:d5:f3:fa:17: d3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F0:EC:C7:8E:65:D8:E3:61:92:7A:3A:93:98:1D:91:02:55:85:33 X509v3 Authority Key Identifier: keyid:26:57:03:D8:59:33:F4:5D:9B:04:DA:B7:72:37:58:4F:C9:2D:9D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A0AB/744526F60FA111EFA6788886C4F9AE02/JlcD2Fkz9F2bBNq3cjdYT8ktnUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlcD2Fkz9F2bBNq3cjdYT8ktnUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A0AB/744526F60FA111EFA6788886C4F9AE02/37241BF4757911EFB0F87073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.50.11.0/24 Signature Algorithm: sha256WithRSAEncryption 06:7f:f6:26:cd:64:82:04:0f:ce:c9:8b:37:7a:5d:a1:a5:e2: b8:2b:a3:37:ea:fa:6e:1d:77:62:86:95:90:08:2c:18:57:7f: df:29:7b:d1:ac:7c:b7:f7:22:de:5e:5b:1b:0e:2c:e9:f7:6f: a3:e3:a9:0f:71:ce:3b:ce:de:74:91:80:b2:ed:1b:cc:4d:f2: dd:c7:66:e7:57:10:bd:73:43:f6:3a:35:e5:54:f1:1f:ed:15: 60:48:ad:03:4c:45:df:db:0f:0a:d5:48:d9:58:77:36:e8:ef: a4:3f:b3:a9:90:1a:d6:a5:25:a5:95:66:d5:b9:02:c5:3c:9a: 06:2b:16:4d:95:d5:3b:ff:67:1c:bf:7c:5d:f6:d7:62:9b:fa: 8b:f7:9e:a9:c1:8a:8a:95:32:74:a0:fc:d5:0e:1c:42:6d:1c: 16:ab:06:aa:fb:4f:31:0b:af:9f:85:cc:30:f0:7e:0a:53:b8: 0b:52:0a:2c:ae:5f:87:94:da:20:dd:82:86:b3:42:54:72:f3: 17:18:7a:83:1c:39:1b:38:cc:ce:50:2f:77:35:73:f3:eb:d8: 97:f6:3f:7e:e3:04:b4:4d:57:90:0b:45:74:d8:48:70:b0:e0: ea:a5:35:ea:99:9e:99:cb:0a:72:86:81:13:30:a7:ea:55:79: 6c:9c:c4:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUEwQUIxMTAvBgNVBAUTKDI2NTcwM0Q4NTkzM0Y0NUQ5QjA0REFCNzcyMzc1ODRG QzkyRDlENDQwHhcNMjUwMjA3MDUwODMzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1OTU1MC1jODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUvAk3uu+FerpG9EP6eWzyOcDjVtK+q+A+T58yKS3c17i3rinvki+IxHTDf9 9fXk6hq5usHAci64SCGAFpoFXFtWFxQq389APIJgLWHODqT47ywFxXDJtSaBEGhM At25O0yiHh5+3RBXtKgNYZRxv722K3B4HTHFPyY22v/whxwpRIV4GfrIDx4u159M exbUaMqH5Ubk43dBzUT4XW7OLs1parLdJhI+/VbfZHv5ldF6dG1QL+6n3tfIWRMi rNyue8Jw9Ns+RQck1E2ySrZPSrxdzFrunqr2tlPtqRwDXuKIS/cUxj3as/WoOUmV MUq3BVayDEIZq0h+ytXz+hfTmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIbw7MeO ZdjjYZJ6OpOYHZECVYUzMB8GA1UdIwQYMBaAFCZXA9hZM/RdmwTat3I3WE/JLZ1E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTBBQi83NDQ1MjZGNjBG QTExMUVGQTY3ODg4ODZDNEY5QUUwMi9KbGNEMkZrejlGMmJCTnEzY2pkWVQ4a3Ru VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0psY0QyRmt6OUYyYkJOcTNjamRZVDhrdG5VUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUEwQUIvNzQ0NTI2RjYwRkExMTFFRkE2Nzg4ODg2QzRGOUFFMDIvMzcyNDFCRjQ3 NTc5MTFFRkIwRjg3MDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAxMgswDQYJKoZIhvcNAQELBQADggEBAAZ/9ibNZIIED87J izd6XaGl4rgrozfq+m4dd2KGlZAILBhXf98pe9GsfLf3It5eWxsOLOn3b6PjqQ9x zjvO3nSRgLLtG8xN8t3HZudXEL1zQ/Y6NeVU8R/tFWBIrQNMRd/bDwrVSNlYdzbo 76Q/s6mQGtalJaWVZtW5AsU8mgYrFk2V1Tv/Zxy/fF3212Kb+ov3nqnBioqVMnSg /NUOHEJtHBarBqr7TzELr5+FzDDwfgpTuAtSCiyuX4eU2iDdgoazQlRy8xcYeoMc ORs4zM5QL3c1c/Pr2Jf2P37jBLRNV5ALRXTYSHCw4OqlNeqZnpnLCnKGgRMwp+pV eWycxH8= -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:12 2025 by rpki-client