$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/E22BD636AC5011EBA37CCA28C4F9AE02.roa File: E22BD636AC5011EBA37CCA28C4F9AE02.roa (raw, json) Hash identifier: fdFSt8Mu6WuYnLA2fbE3V7b+qZmpKdHiBdsuXljNq4c= Subject key identifier: 75:7D:02:7B:15:31:9F:27:DE:B7:AE:B6:8A:AE:44:F0:AF:5E:B8:BB Certificate issuer: /CN=A9136BD7/serialNumber=56A03167FAE12B1BA14BB8474D442B6770BB9829 Certificate serial: 05A2 Authority key identifier: 56:A0:31:67:FA:E1:2B:1B:A1:4B:B8:47:4D:44:2B:67:70:BB:98:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/E22BD636AC5011EBA37CCA28C4F9AE02.roa Signing time: Fri 06 Dec 2024 23:01:33 +0000 ROA not before: Fri 06 Dec 2024 23:01:33 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55885 IP address blocks: 49.156.48.0/22 maxlen: 22 49.156.48.0/24 maxlen: 24 49.156.49.0/24 maxlen: 24 49.156.50.0/24 maxlen: 24 49.156.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.crl rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 22:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BD7, serialNumber=56A03167FAE12B1BA14BB8474D442B6770BB9829 Validity Not Before: Dec 6 23:01:33 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6753824d-139e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:15:0b:e1:6b:4c:38:26:a6:7d:b5:e1:bb:14: 2f:6b:53:2f:ca:f2:db:f0:e5:84:26:c5:83:0c:e3: 0b:cf:60:05:07:6e:e5:55:c0:ad:6e:e1:cc:31:ca: 1c:14:e0:3d:ca:27:8a:1e:28:a3:47:8d:b1:63:2b: b6:99:4b:b4:f3:05:e3:15:1c:7a:2e:9e:58:70:e1: 07:bd:0c:a2:20:8e:12:59:67:26:f4:98:13:8e:0f: bf:27:32:66:d3:de:33:48:c2:90:da:2a:60:89:ba: 3a:74:b5:1f:e4:e1:0d:93:83:8d:28:6f:b4:3b:db: 88:d4:05:03:dc:b3:e2:8f:87:76:7a:9b:03:22:8b: 4d:8e:fb:05:cc:94:55:f4:3c:25:8b:8b:bd:1a:15: 8b:df:82:ba:c8:c9:a4:e7:fc:67:2e:0e:0e:12:b5: 66:05:a6:9a:bc:87:91:2e:fb:b2:4b:30:95:5c:ca: 71:f1:ac:ca:db:ad:ea:ca:49:17:09:78:07:a9:a2: 6b:fa:82:a6:bb:ae:83:b6:c8:52:7e:b6:e5:7d:d6: 4d:40:16:fe:31:c0:ee:63:c3:42:c9:59:39:ca:a6: 17:77:a4:d3:aa:98:fb:09:d5:1a:0b:01:64:d5:e8: 97:b6:6b:54:c1:41:66:be:5c:ce:e6:29:af:be:c8: 79:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7D:02:7B:15:31:9F:27:DE:B7:AE:B6:8A:AE:44:F0:AF:5E:B8:BB X509v3 Authority Key Identifier: keyid:56:A0:31:67:FA:E1:2B:1B:A1:4B:B8:47:4D:44:2B:67:70:BB:98:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/E22BD636AC5011EBA37CCA28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.156.48.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:42:d6:de:7e:01:5f:33:1e:bc:eb:89:74:7d:dd:05:74:fa: 10:0f:95:7a:c1:f0:38:b4:e8:b0:d3:e4:68:11:06:7b:46:af: b6:b3:3d:58:06:2a:b6:da:cc:6b:5d:34:69:b7:50:cb:68:73: 73:8a:1d:36:77:ed:b6:37:22:56:e8:3e:5f:c1:6f:a0:76:08: bd:f7:c2:7c:c7:4b:5a:36:a8:e7:62:79:6d:01:db:d7:09:97: a4:fa:78:c9:d8:b8:0a:c2:99:c9:da:b8:f6:02:0e:14:c2:a2: 7a:09:de:e4:1f:96:2f:d9:a9:3b:47:49:c5:d4:51:78:ff:f5: b3:c5:c3:8c:8d:78:58:2b:00:8d:0e:d7:5d:20:b5:e1:cc:0b: df:2d:47:e4:e5:7c:bf:aa:fd:88:bc:c1:0c:d2:35:d8:f5:ae: aa:56:96:34:f0:06:06:1c:52:59:4c:c3:73:d1:5d:8b:d5:e4: 6e:ba:53:37:bc:1d:fd:57:5d:b0:33:fa:be:e4:1d:b8:5e:aa: 5f:66:fc:dc:e1:f4:72:7b:1a:8c:e9:28:aa:77:47:89:4b:12: cc:aa:79:0f:61:42:ef:36:50:82:a3:ab:6d:c2:da:81:83:59: 8f:97:f6:8a:ba:7f:a3:09:e5:e1:ee:4c:c1:eb:c8:5a:55:65: e4:09:14:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRDcxMTAvBgNVBAUTKDU2QTAzMTY3RkFFMTJCMUJBMTRCQjg0NzRENDQyQjY3 NzBCQjk4MjkwHhcNMjQxMjA2MjMwMTMzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzODI0ZC0xMzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlRUL4WtMOCamfbXhuxQva1MvyvLb8OWEJsWDDOMLz2AFB27lVcCtbuHMMcoc FOA9yieKHiijR42xYyu2mUu08wXjFRx6Lp5YcOEHvQyiII4SWWcm9JgTjg+/JzJm 094zSMKQ2ipgibo6dLUf5OENk4ONKG+0O9uI1AUD3LPij4d2epsDIotNjvsFzJRV 9Dwli4u9GhWL34K6yMmk5/xnLg4OErVmBaaavIeRLvuySzCVXMpx8azK263qykkX CXgHqaJr+oKmu66DtshSfrblfdZNQBb+McDuY8NCyVk5yqYXd6TTqpj7CdUaCwFk 1eiXtmtUwUFmvlzO5imvvsh5owIDAQABo4IClTCCApEwHQYDVR0OBBYEFHV9AnsV MZ8n3reutoquRPCvXri7MB8GA1UdIwQYMBaAFFagMWf64SsboUu4R01EK2dwu5gp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJENy9BNjUxQjQ3NEFD NEYxMUVCODNEMThFMjhDNEY5QUUwMi9WcUF4Wl9yaEt4dWhTN2hIVFVRclozQzdt Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZxQXhaX3JoS3h1aFM3aEhUVVFyWjNDN21Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRDcvQTY1MUI0NzRBQzRGMTFFQjgzRDE4RTI4QzRGOUFFMDIvRTIyQkQ2MzZB QzUwMTFFQkEzN0NDQTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIxnDAwDQYJKoZIhvcNAQELBQADggEBAJ9C1t5+AV8zHrzr iXR93QV0+hAPlXrB8Di06LDT5GgRBntGr7azPVgGKrbazGtdNGm3UMtoc3OKHTZ3 7bY3IlboPl/Bb6B2CL33wnzHS1o2qOdieW0B29cJl6T6eMnYuArCmcnauPYCDhTC onoJ3uQfli/ZqTtHScXUUXj/9bPFw4yNeFgrAI0O110gteHMC98tR+TlfL+q/Yi8 wQzSNdj1rqpWljTwBgYcUllMw3PRXYvV5G66Uze8Hf1XXbAz+r7kHbheql9m/Nzh 9HJ7GozpKKp3R4lLEsyqeQ9hQu82UIKjq23C2oGDWY+X9oq6f6MJ5eHuTMHryFpV ZeQJFIQ= -----END CERTIFICATE-----Generated at Tue Apr 22 00:18:05 2025 by rpki-client