$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa File: 450B9058E3B511EF8A23824BC4F9AE02.roa (raw, json) Hash identifier: r37bpTTUcU1lH0DUSQwsabLyee9wQt2kebjFicJO4a8= Subject key identifier: 25:49:1C:CD:9C:41:8A:E1:87:0D:E8:06:34:F4:38:CF:79:B2:5B:3B Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 3455 Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa Signing time: Thu 06 Feb 2025 03:46:07 +0000 ROA not before: Thu 06 Feb 2025 03:46:07 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132618 IP address blocks: 49.237.64.0/21 maxlen: 21 49.237.80.0/21 maxlen: 21 49.237.96.0/21 maxlen: 21 49.237.112.0/21 maxlen: 21 49.237.204.0/23 maxlen: 23 223.24.172.0/23 maxlen: 23 223.24.192.0/21 maxlen: 21 223.24.208.0/21 maxlen: 21 223.24.224.0/21 maxlen: 21 223.24.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:03:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13397 (0x3455) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5 Validity Not Before: Feb 6 03:46:07 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67a4307f-b093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0a:6f:6f:7c:a3:08:f1:b7:de:5e:27:79:2d: cf:42:1f:d3:4e:74:8b:c0:a3:d0:37:29:cd:46:d4: 79:39:21:07:dd:25:00:97:f9:5f:69:c1:7b:ff:bc: f8:c4:79:42:9f:8e:48:c3:cf:26:5c:43:4f:ab:2e: 6b:3b:8b:24:74:3d:4f:9f:0b:8b:45:e8:28:29:21: 97:0b:e3:cd:ac:3a:31:23:40:c8:c3:bb:7c:b9:e3: 8d:c0:3e:70:cf:66:b3:45:d8:3c:52:7d:aa:a6:08: d2:6a:b6:74:61:8e:71:78:52:cc:1d:55:52:ea:22: 8b:12:6c:5c:95:f8:73:cd:57:d0:02:3c:16:c4:5e: 5f:7c:eb:33:41:2d:33:ed:e7:56:23:20:e4:5b:26: 94:b6:fe:0b:3e:43:0a:d7:0a:3e:a1:fe:c7:63:68: 14:f1:75:49:8a:94:ac:9a:35:cc:17:87:af:fb:b3: 2e:c7:93:1d:67:57:f9:12:12:7e:fb:33:c1:55:d8: 73:a2:43:5b:90:75:19:1d:48:f4:99:0c:fe:0e:0c: db:ab:50:26:5b:b3:79:9c:3d:1c:ad:33:a3:7d:ed: 20:73:38:a3:80:0b:9a:d9:de:62:3e:9c:92:1c:84: a6:72:3d:42:00:24:c0:c6:86:14:d5:7c:e5:d7:3f: 68:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:49:1C:CD:9C:41:8A:E1:87:0D:E8:06:34:F4:38:CF:79:B2:5B:3B X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.237.64.0/21 49.237.80.0/21 49.237.96.0/21 49.237.112.0/21 49.237.204.0/23 223.24.172.0/23 223.24.192.0/21 223.24.208.0/21 223.24.224.0/21 223.24.240.0/21 Signature Algorithm: sha256WithRSAEncryption 94:5d:bd:a2:3a:ab:66:26:6e:ff:b7:00:3c:23:71:80:49:6f: d9:ab:0e:d0:0f:e1:6d:d4:65:f0:85:38:20:01:c5:b4:af:3d: 23:ab:58:5e:fb:83:1a:4e:e9:07:fe:74:bd:21:d1:39:f0:ec: b3:7a:c8:ea:eb:03:e1:09:c7:9a:55:00:0c:ab:d6:70:d0:37: 28:28:6d:45:f7:6c:d9:30:33:70:64:ce:d1:36:78:b7:b4:c4: d5:3d:3f:ba:01:af:01:65:39:2f:45:dc:1e:bf:5c:92:6b:e5: 9e:90:a6:41:47:5e:70:27:9f:20:08:64:d9:cd:65:a7:fc:84: 7e:11:2a:11:67:0c:49:3c:d0:c8:74:09:95:87:d7:47:99:c9: 35:a9:fc:51:1a:ae:1d:7f:d6:ab:07:96:e8:90:00:06:1e:0e: be:8a:70:04:99:03:6b:b1:65:7e:42:d3:54:82:ae:72:07:5c: 37:20:68:ea:4d:66:0f:b0:b0:8a:a5:25:d6:81:f1:e4:e7:e8: 98:c9:09:2d:1e:86:5b:66:36:0b:10:50:6a:17:f6:ac:b4:6d: c0:fc:6b:92:31:59:43:33:0a:6d:7c:d6:b1:82:42:a5:4c:e9: 9c:b5:d3:f9:c8:dc:04:af:47:fd:7d:7a:da:a3:f0:5e:3e:71: 3f:52:05:5e -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICNFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjUwMjA2MDM0NjA3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E0MzA3Zi1iMDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wpvb3yjCPG33l4neS3PQh/TTnSLwKPQNynNRtR5OSEH3SUAl/lfacF7/7z4 xHlCn45Iw88mXENPqy5rO4skdD1PnwuLRegoKSGXC+PNrDoxI0DIw7t8ueONwD5w z2azRdg8Un2qpgjSarZ0YY5xeFLMHVVS6iKLEmxclfhzzVfQAjwWxF5ffOszQS0z 7edWIyDkWyaUtv4LPkMK1wo+of7HY2gU8XVJipSsmjXMF4ev+7Mux5MdZ1f5EhJ+ +zPBVdhzokNbkHUZHUj0mQz+Dgzbq1AmW7N5nD0crTOjfe0gczijgAua2d5iPpyS HISmcj1CACTAxoYU1Xzl1z9onwIDAQABo4ICyzCCAscwHQYDVR0OBBYEFCVJHM2c QYrhhw3oBjT0OM95sls7MB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVERTUvNEEyQjZDQ0UxRDlFMTFFMjlDQTMwOThFMDhCMDJDRDIvNDUwQjkwNThF M0I1MTFFRjhBMjM4MjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E RjBEMEIEAgABMDwDBAMx7UADBAMx7VADBAMx7WADBAMx7XADBAEx7cwDBAHfGKwD BAPfGMADBAPfGNADBAPfGOADBAPfGPAwDQYJKoZIhvcNAQELBQADggEBAJRdvaI6 q2Ymbv+3ADwjcYBJb9mrDtAP4W3UZfCFOCABxbSvPSOrWF77gxpO6Qf+dL0h0Tnw 7LN6yOrrA+EJx5pVAAyr1nDQNygobUX3bNkwM3BkztE2eLe0xNU9P7oBrwFlOS9F 3B6/XJJr5Z6QpkFHXnAnnyAIZNnNZaf8hH4RKhFnDEk80Mh0CZWH10eZyTWp/FEa rh1/1qsHluiQAAYeDr6KcASZA2uxZX5C01SCrnIHXDcgaOpNZg+wsIqlJdaB8eTn 6JjJCS0ehltmNgsQUGoX9qy0bcD8a5IxWUMzCm181rGCQqVM6Zy10/nI3ASvR/19 etqj8F4+cT9SBV4= -----END CERTIFICATE-----Generated at Sat Apr 5 01:05:02 2025 by rpki-client