$ rpki-client -vvf rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/E1769D329EF711EABE23195AC4F9AE02.roa File: E1769D329EF711EABE23195AC4F9AE02.roa (raw, json) Hash identifier: bnxide7jSDy0H4+26/GRiKEkbVdX6Jj48LQNDvhocz8= Subject key identifier: E2:1C:25:1C:3F:7B:8D:38:F4:08:2B:F3:8F:5B:17:7E:8A:82:80:BC Certificate issuer: /CN=A911B468/serialNumber=83BC7DD5D1427E83340D2DF6C33B623D43D7ECA4 Certificate serial: 0E55 Authority key identifier: 83:BC:7D:D5:D1:42:7E:83:34:0D:2D:F6:C3:3B:62:3D:43:D7:EC:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/E1769D329EF711EABE23195AC4F9AE02.roa Signing time: Thu 02 Jan 2025 18:06:12 +0000 ROA not before: Thu 02 Jan 2025 18:06:12 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 135006 IP address blocks: 59.152.32.0/24 maxlen: 24 59.152.33.0/24 maxlen: 24 59.152.34.0/24 maxlen: 24 59.152.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.crl rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3669 (0xe55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B468, serialNumber=83BC7DD5D1427E83340D2DF6C33B623D43D7ECA4 Validity Not Before: Jan 2 18:06:12 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6776d594-93b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:74:65:b8:4f:87:c6:7e:02:2a:cb:d1:64:4b: ee:55:92:87:28:6c:b3:ba:f8:c4:5d:d5:7d:a0:3d: eb:c0:f9:ef:27:cb:7d:e9:16:34:d5:ff:32:a9:8b: 10:7a:28:5c:01:30:ba:7e:36:22:44:75:7f:83:ba: 07:16:b8:04:90:43:d1:c6:56:09:6f:ba:e9:0e:0b: 29:dd:63:48:44:c0:0b:f6:0f:86:c0:34:56:9b:f9: 82:92:52:7e:6b:15:a1:29:3e:fb:39:63:1e:0b:b4: 28:ae:ea:79:a4:06:1b:03:da:98:7f:37:8b:10:28: 5d:15:26:d6:b0:29:aa:b3:92:a8:f8:53:18:15:6e: f4:5f:44:44:2c:48:5d:da:c6:f8:0d:32:31:b9:55: d1:58:dd:8e:6d:1f:c5:d7:a8:b4:8d:44:5d:49:c3: f8:9f:a1:1f:17:de:20:df:da:98:e2:ee:27:a0:a1: 42:0f:54:94:b6:62:65:55:b3:8a:4a:51:e5:4e:f0: 7d:01:91:ca:29:73:d7:36:ac:be:4b:d1:51:50:24: 5b:ea:57:76:e3:19:50:be:23:49:87:3b:97:5d:6d: 40:23:1e:45:fb:61:50:f5:46:33:d7:88:f6:27:56: 33:dc:f4:d7:d8:e7:34:02:19:a2:2d:69:d5:39:f8: ff:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:1C:25:1C:3F:7B:8D:38:F4:08:2B:F3:8F:5B:17:7E:8A:82:80:BC X509v3 Authority Key Identifier: keyid:83:BC:7D:D5:D1:42:7E:83:34:0D:2D:F6:C3:3B:62:3D:43:D7:EC:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/E1769D329EF711EABE23195AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.32.0/22 Signature Algorithm: sha256WithRSAEncryption 56:9c:64:8f:ff:e5:fa:30:4d:a6:20:08:7b:9b:1e:44:2f:42: 16:83:32:ff:4c:4c:4c:5c:28:f3:c3:4d:54:c9:e0:7f:57:3c: 8d:31:13:d5:52:a4:ef:ae:32:66:bd:a2:66:ec:17:f3:0c:a6: 85:b0:f8:00:11:93:f6:9c:fe:68:0d:a4:4c:ed:66:cb:4a:bb: 32:92:e1:a1:00:18:f6:f2:1c:1f:e6:45:2d:a8:63:fc:e7:08: 45:1f:44:0c:11:59:ca:22:c0:55:80:59:e7:98:c6:5f:28:f1: bb:3b:51:82:bf:5b:14:97:e4:e2:47:44:c9:72:87:e9:27:76: 30:d3:1c:de:4c:97:61:ce:6f:25:83:e0:d0:95:03:4c:2e:db: f6:10:7c:45:49:fd:b0:41:fa:5b:d9:c7:93:d6:6d:bb:88:fe: 6b:1a:6d:ae:4e:3b:28:b9:6c:e5:f2:cd:56:50:66:d8:b9:1c: 6e:8c:4d:4a:28:1a:3c:14:06:3a:4f:3d:3c:f7:4a:3b:79:0e: 99:5a:52:50:4e:9d:eb:cd:0a:2f:4f:28:d6:3f:7a:b8:42:4c: 13:4c:b5:75:f6:aa:6d:9e:b7:f2:7c:f8:e9:bb:e0:06:60:05: 70:d1:a6:e5:dc:75:d1:35:61:93:4d:b3:f2:e4:da:25:29:96: a8:8b:e0:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0NjgxMTAvBgNVBAUTKDgzQkM3REQ1RDE0MjdFODMzNDBEMkRGNkMzM0I2MjNE NDNEN0VDQTQwHhcNMjUwMTAyMTgwNjEyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc2ZDU5NC05M2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3RluE+Hxn4CKsvRZEvuVZKHKGyzuvjEXdV9oD3rwPnvJ8t96RY01f8yqYsQ eihcATC6fjYiRHV/g7oHFrgEkEPRxlYJb7rpDgsp3WNIRMAL9g+GwDRWm/mCklJ+ axWhKT77OWMeC7Qorup5pAYbA9qYfzeLEChdFSbWsCmqs5Ko+FMYFW70X0RELEhd 2sb4DTIxuVXRWN2ObR/F16i0jURdScP4n6EfF94g39qY4u4noKFCD1SUtmJlVbOK SlHlTvB9AZHKKXPXNqy+S9FRUCRb6ld24xlQviNJhzuXXW1AIx5F+2FQ9UYz14j2 J1Yz3PTX2Oc0AhmiLWnVOfj/VwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOIcJRw/ e4049Agr849bF36KgoC8MB8GA1UdIwQYMBaAFIO8fdXRQn6DNA0t9sM7Yj1D1+yk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQ2OC84MTIyNjAyODkx MUIxMUU5OTMwMEZFNTdDNEY5QUUwMi9nN3g5MWRGQ2ZvTTBEUzMyd3p0aVBVUFg3 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3eDkxZEZDZm9NMERTMzJ3enRpUFVQWDdLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0NjgvODEyMjYwMjg5MTFCMTFFOTkzMDBGRTU3QzRGOUFFMDIvRTE3NjlEMzI5 RUY3MTFFQUJFMjMxOTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAI7mCAwDQYJKoZIhvcNAQELBQADggEBAFacZI//5fowTaYg CHubHkQvQhaDMv9MTExcKPPDTVTJ4H9XPI0xE9VSpO+uMma9ombsF/MMpoWw+AAR k/ac/mgNpEztZstKuzKS4aEAGPbyHB/mRS2oY/znCEUfRAwRWcoiwFWAWeeYxl8o 8bs7UYK/WxSX5OJHRMlyh+kndjDTHN5Ml2HObyWD4NCVA0wu2/YQfEVJ/bBB+lvZ x5PWbbuI/msaba5OOyi5bOXyzVZQZti5HG6MTUooGjwUBjpPPTz3Sjt5DplaUlBO nevNCi9PKNY/erhCTBNMtXX2qm2et/J8+Om74AZgBXDRpuXcddE1YZNNs/Lk2iUp lqiL4Fg= -----END CERTIFICATE-----Generated at Sat Apr 12 23:02:21 2025 by rpki-client