$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/4F89B0D6D86311E9BE55026FC4F9AE02.roa File: 4F89B0D6D86311E9BE55026FC4F9AE02.roa (raw, json) Hash identifier: G9NtX1d/I12Co+Y5omO8kC2cNcIbF7nKBD3O6/AeLwI= Subject key identifier: 11:E6:DE:BB:9A:28:E2:38:F6:95:B9:63:D2:CE:4D:97:C2:44:C0:D9 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 296E Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/4F89B0D6D86311E9BE55026FC4F9AE02.roa Signing time: Tue 31 Dec 2024 15:52:51 +0000 ROA not before: Tue 31 Dec 2024 15:52:51 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136742 IP address blocks: 49.231.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10606 (0x296e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54 Validity Not Before: Dec 31 15:52:51 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67741353-2d56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ed:29:25:ac:7c:a4:5b:03:1f:d3:9e:ad:71: c7:70:97:c7:78:b6:c4:f6:a9:e3:01:fe:14:fb:03: 33:a7:07:12:bb:61:2e:f7:1a:16:a2:8c:ad:2b:8d: 9c:17:78:6e:fa:71:57:13:94:aa:ca:6d:34:c0:4d: d5:80:bb:79:17:95:a9:91:27:3d:0d:58:b5:51:e1: 99:6f:23:9e:8f:4e:14:8e:1f:13:7f:28:3f:77:dc: 32:40:2b:77:f0:47:6e:10:bc:a2:7c:f2:53:41:9c: 7a:b2:fe:0d:e6:d1:31:45:d4:b1:18:9d:22:7e:27: 4f:71:f9:47:cf:bd:a4:c2:77:8b:35:40:62:8d:c7: 00:ea:69:e3:04:c3:d0:f4:00:96:bc:84:a0:bc:5f: 2f:8e:5b:44:8e:85:01:fa:51:8a:7f:84:f0:5d:97: b0:94:ed:f7:0d:71:e1:97:c8:89:ca:e1:6e:82:60: 5f:f6:81:54:d0:b5:70:74:19:c1:d5:91:b9:a3:48: 8a:96:dc:46:5b:2e:c5:4a:9a:df:0a:3f:8d:9d:39: 08:9a:3b:4f:37:98:86:ff:29:c3:00:5a:1c:29:96: 10:1f:77:1d:4f:eb:e0:3b:89:8a:f7:d3:32:fc:02: 67:f0:81:eb:8c:92:05:17:c2:e3:8a:00:b6:bd:fa: e1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E6:DE:BB:9A:28:E2:38:F6:95:B9:63:D2:CE:4D:97:C2:44:C0:D9 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/4F89B0D6D86311E9BE55026FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.231.191.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:76:8a:17:9f:5f:31:df:cd:77:e1:40:16:46:f9:e4:95:40: f0:86:c1:59:10:52:62:e1:02:8b:c5:a2:bb:79:66:df:19:09: 9c:eb:f9:6e:c4:bc:82:65:42:18:cb:d2:b1:e8:0c:07:c7:1a: 7e:15:62:1c:78:02:2c:35:d1:c8:d6:8a:94:59:a1:9b:f4:6f: 02:bc:93:76:e6:30:03:94:0b:74:e5:fd:f6:04:70:5f:a3:7c: bf:25:30:c1:06:66:89:55:42:7e:3a:f8:65:e1:49:23:eb:4c: 94:14:2e:76:70:ec:4c:4c:7a:61:8a:95:7c:44:de:6e:f4:f3: 4a:94:63:14:55:2e:c2:c1:81:2b:08:21:f0:8e:33:f9:2f:81: 97:dc:df:c1:6a:6d:d9:ff:e5:ae:61:d4:42:81:fd:62:85:37: 60:15:4a:a8:a8:40:ef:68:4a:65:f5:fe:89:11:f5:d2:48:40: 44:00:1f:f5:3f:42:14:82:7d:c4:e0:90:fb:98:7e:e3:51:0d: 0e:a2:05:84:89:9f:24:5a:ad:6a:cf:50:2c:97:4f:75:d6:9b: 30:8e:dc:7f:1b:5a:a3:28:d1:e9:aa:85:ce:91:8d:c5:68:1e: bb:9e:30:13:db:1a:f3:ff:3e:a6:08:35:72:bb:d3:a9:10:a7: b8:14:47:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MjUxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM1My0yZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+0pJax8pFsDH9OerXHHcJfHeLbE9qnjAf4U+wMzpwcSu2Eu9xoWooytK42c F3hu+nFXE5Sqym00wE3VgLt5F5WpkSc9DVi1UeGZbyOej04Ujh8Tfyg/d9wyQCt3 8EduELyifPJTQZx6sv4N5tExRdSxGJ0ifidPcflHz72kwneLNUBijccA6mnjBMPQ 9ACWvISgvF8vjltEjoUB+lGKf4TwXZewlO33DXHhl8iJyuFugmBf9oFU0LVwdBnB 1ZG5o0iKltxGWy7FSprfCj+NnTkImjtPN5iG/ynDAFocKZYQH3cdT+vgO4mK99My /AJn8IHrjJIFF8LjigC2vfrhWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBHm3rua KOI49pW5Y9LOTZfCRMDZMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNEY4OUIwRDZE ODYzMTFFOUJFNTUwMjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAx578wDQYJKoZIhvcNAQELBQADggEBAFp2ihefXzHfzXfh QBZG+eSVQPCGwVkQUmLhAovFort5Zt8ZCZzr+W7EvIJlQhjL0rHoDAfHGn4VYhx4 Aiw10cjWipRZoZv0bwK8k3bmMAOUC3Tl/fYEcF+jfL8lMMEGZolVQn46+GXhSSPr TJQULnZw7ExMemGKlXxE3m7080qUYxRVLsLBgSsIIfCOM/kvgZfc38Fqbdn/5a5h 1EKB/WKFN2AVSqioQO9oSmX1/okR9dJIQEQAH/U/QhSCfcTgkPuYfuNRDQ6iBYSJ nyRarWrPUCyXT3XWmzCO3H8bWqMo0emqhc6RjcVoHrueMBPbGvP/PqYINXK706kQ p7gUR0M= -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:15 2025 by rpki-client