$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/816F50BE738E11E8AFDACE54C4F9AE02.roa File: 816F50BE738E11E8AFDACE54C4F9AE02.roa (raw, json) Hash identifier: jVGpg/DCgHftLyXbYiwMfRsakilEd2ftPionq/T/N1o= Subject key identifier: 9B:DB:E8:50:DE:AF:86:F0:A2:57:6B:0F:C4:37:C7:ED:08:2E:0D:E4 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2990 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/816F50BE738E11E8AFDACE54C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:23 +0000 ROA not before: Tue 31 Dec 2024 15:53:23 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45781 IP address blocks: 110.49.201.0/24 maxlen: 24 119.31.104.0/24 maxlen: 24 119.31.105.0/24 maxlen: 24 119.31.106.0/24 maxlen: 24 119.31.107.0/24 maxlen: 24 119.31.119.0/24 maxlen: 24 2001:44c8:2000::/36 maxlen: 48 2001:44c8:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10640 (0x2990) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54 Validity Not Before: Dec 31 15:53:23 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67741373-c821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:02:29:22:0f:cf:df:9d:63:84:9e:6f:09:60: 50:c5:2d:51:d9:0e:04:95:b1:c7:dd:c9:42:eb:c9: f0:9a:d5:ff:59:5e:8e:29:17:4b:e4:30:a1:84:ba: 31:18:11:53:70:df:5e:b2:67:e0:8c:d2:cf:8e:c5: ec:cf:01:85:99:80:7c:cb:0a:5c:9e:86:70:4c:75: 75:71:70:ad:02:69:ad:8e:dd:9b:ba:5b:0c:d4:9e: c7:a8:85:91:ed:b9:87:55:94:cf:17:1d:a9:94:16: 4c:e2:27:65:46:c7:89:62:bd:fe:ae:ba:20:00:c1: f6:3c:76:be:38:ab:f6:dc:04:bd:37:dd:65:05:94: 19:2c:ce:1b:39:68:23:a5:0e:24:f3:8d:8e:95:8c: 44:2e:1e:dd:9f:08:86:49:d0:78:f9:38:a5:8b:2b: 5b:6e:75:76:3e:9d:8b:6b:e6:53:37:8e:20:c4:b0: a4:8a:c2:a7:d3:4d:79:5a:bf:98:8d:29:c3:d6:1e: a5:3e:67:ea:f1:6b:08:3e:75:e8:c3:3a:8c:86:8b: 7b:20:7d:67:ff:4a:d6:98:26:44:f4:c0:b4:18:75: 1e:ff:09:de:5e:a9:00:ac:ed:7e:ef:39:f7:75:06: 01:7c:ce:71:fd:65:47:b6:52:f6:e7:71:39:eb:51: 1e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:DB:E8:50:DE:AF:86:F0:A2:57:6B:0F:C4:37:C7:ED:08:2E:0D:E4 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/816F50BE738E11E8AFDACE54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.49.201.0/24 119.31.104.0/22 119.31.119.0/24 IPv6: 2001:44c8:2000::/35 Signature Algorithm: sha256WithRSAEncryption 2e:61:3d:c2:60:7d:af:80:47:e8:6a:ff:0d:6c:e3:68:4b:2e: 4c:fc:90:e0:e2:10:26:3d:4e:82:51:86:97:07:58:10:03:60: 5a:92:89:42:16:59:29:88:7f:87:c8:7d:f0:58:9a:fd:87:38: 2c:35:bb:5f:a5:70:1c:c9:2c:31:5a:9c:41:de:10:f5:5b:e9: ac:3c:26:c6:3e:d3:dc:48:4d:96:16:0c:49:55:c3:31:bc:81: 6f:35:b0:ab:4d:20:e8:bf:79:28:d5:0d:9c:ca:44:4a:e4:a1: eb:b9:ab:49:1b:2e:87:b0:9b:11:aa:73:2b:ad:41:c1:9d:26: 3f:4f:45:bf:d5:9f:75:98:b2:b9:52:90:e0:69:0a:b9:4d:ff: af:70:bf:4b:fb:0a:13:c7:8d:b2:f9:23:44:06:e5:d0:f1:cb: 5d:54:b6:ec:b2:ee:68:b9:2e:92:4a:18:ec:9c:7b:9d:b1:9f: ae:0a:51:36:08:99:49:b2:99:24:ea:fa:33:ba:3b:80:d7:b2: d8:17:d7:08:7d:a0:af:28:5d:03:78:fd:31:cf:39:98:b9:85: 8c:a6:3d:9d:4e:5c:5d:d3:fd:cb:47:61:fd:0e:b8:f1:3d:1c: 18:16:28:17:50:83:b6:1c:a8:07:15:7c:69:26:4d:f7:bb:97: 86:2b:04:4f -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICKZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzIzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM3My1jODIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQIpIg/P351jhJ5vCWBQxS1R2Q4ElbHH3clC68nwmtX/WV6OKRdL5DChhLox GBFTcN9esmfgjNLPjsXszwGFmYB8ywpcnoZwTHV1cXCtAmmtjt2bulsM1J7HqIWR 7bmHVZTPFx2plBZM4idlRseJYr3+rrogAMH2PHa+OKv23AS9N91lBZQZLM4bOWgj pQ4k842OlYxELh7dnwiGSdB4+TiliytbbnV2Pp2La+ZTN44gxLCkisKn0015Wr+Y jSnD1h6lPmfq8WsIPnXowzqMhot7IH1n/0rWmCZE9MC0GHUe/wneXqkArO1+7zn3 dQYBfM5x/WVHtlL253E561Ee3wIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFJvb6FDe r4bwoldrD8Q3x+0ILg3kMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvODE2RjUwQkU3 MzhFMTFFOEFGREFDRTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMBgEAgABMBIDBABuMckDBAJ3H2gDBAB3H3cwDgQCAAIwCAMGBSABRMggMA0G CSqGSIb3DQEBCwUAA4IBAQAuYT3CYH2vgEfoav8NbONoSy5M/JDg4hAmPU6CUYaX B1gQA2BakolCFlkpiH+HyH3wWJr9hzgsNbtfpXAcySwxWpxB3hD1W+msPCbGPtPc SE2WFgxJVcMxvIFvNbCrTSDov3ko1Q2cykRK5KHruatJGy6HsJsRqnMrrUHBnSY/ T0W/1Z91mLK5UpDgaQq5Tf+vcL9L+woTx42y+SNEBuXQ8ctdVLbssu5ouS6SShjs nHudsZ+uClE2CJlJspkk6vozujuA17LYF9cIfaCvKF0DeP0xzzmYuYWMpj2dTlxd 0/3LR2H9DrjxPRwYFigXUIO2HKgHFXxpJk33u5eGKwRP -----END CERTIFICATE-----Generated at Sat Apr 5 01:58:03 2025 by rpki-client