$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/3486D47412D511EFB1EF161DC4F9AE02.roa File: 3486D47412D511EFB1EF161DC4F9AE02.roa (raw, json) Hash identifier: Crj6EQEsFsVZ7Rl37tD7+KlB9qlhMrOAHvL0KyIGgkI= Subject key identifier: 01:A5:05:3C:2A:C0:D0:D9:B1:AC:D2:A8:DA:2F:C1:03:A1:58:38:86 Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 02D2 Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/3486D47412D511EFB1EF161DC4F9AE02.roa Signing time: Mon 03 Mar 2025 03:25:45 +0000 ROA not before: Mon 03 Mar 2025 03:25:45 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55256 IP address blocks: 45.250.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2 Validity Not Before: Mar 3 03:25:45 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c52139-6ea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:46:c5:02:14:c5:5a:d1:70:7b:5d:ef:a9:ca: 17:6a:51:2b:40:ff:b2:d6:cc:e1:0c:1d:ac:c7:48: ec:9e:4d:8e:b8:c2:4a:4d:4c:b0:80:20:cd:6f:8c: ba:4a:57:f6:14:ae:c2:50:84:33:ed:09:42:8f:25: 14:97:e4:9d:a9:66:53:92:c9:0b:e8:55:c1:11:a3: 7c:f9:be:0e:9c:50:5f:80:d9:f5:05:41:90:d8:ec: 5c:bb:5e:98:fe:21:f2:d6:f0:59:6c:03:e8:50:70: ef:73:ad:00:35:3a:4d:79:06:2c:2e:5b:33:92:ce: 70:24:bd:19:26:39:e2:46:ca:f5:d3:1c:f6:68:7f: 95:35:be:36:b7:99:ad:83:6e:e1:fb:ef:8e:35:f8: 28:4a:55:d9:4d:3b:a2:89:2c:e5:b6:f3:51:65:d6: a1:64:b9:c8:6a:6f:dc:18:e2:1c:c4:e4:d7:6f:91: 15:fd:1a:9a:1c:ff:ea:fc:53:37:66:c3:71:cc:04: 15:ad:a3:d0:0a:cd:76:fd:60:dc:61:e4:77:f4:5e: 12:75:3a:3d:d7:2d:10:52:4e:62:7c:8a:69:a1:01: 67:4a:ff:46:aa:9b:18:34:15:da:7d:d2:7c:22:23: f5:78:d5:0d:92:ab:2f:57:0d:46:30:b2:fa:cf:2c: e1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A5:05:3C:2A:C0:D0:D9:B1:AC:D2:A8:DA:2F:C1:03:A1:58:38:86 X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/3486D47412D511EFB1EF161DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.161.0/24 Signature Algorithm: sha256WithRSAEncryption 25:65:8c:47:67:1a:ca:fb:9d:9a:69:d8:da:e3:0f:0c:0c:54: 74:89:bf:80:56:7e:30:d3:25:ac:f5:2a:81:35:de:27:eb:f4: 85:17:dc:86:f9:7b:7e:71:0a:d6:3c:57:9f:cb:5f:66:13:7c: 4e:f4:e9:96:8e:50:0d:55:85:9f:ea:1e:dd:45:4a:4f:9c:57: c0:ef:89:d8:14:7b:39:b9:e1:37:ac:4f:af:81:8b:f0:3f:51: ce:2d:25:48:7c:28:87:88:14:7e:a0:8f:35:eb:c5:8f:9c:d8: 8a:c0:b2:44:67:d4:55:5e:2e:2c:58:36:f2:cc:c4:0d:12:0b: 72:49:c1:62:70:7a:05:72:b6:cd:c5:7a:f1:d5:da:da:36:2d: d4:09:43:a9:41:38:01:c1:77:69:9e:50:8b:36:a6:9d:43:20: 4b:f5:e0:d8:71:be:6c:e4:71:80:f8:30:3d:69:d7:da:6f:e6: cb:46:8d:7d:fd:9f:c3:23:31:3c:f0:48:4b:4d:86:e8:0d:b5: 83:d2:6a:f6:16:7a:78:69:01:05:80:27:d9:46:b9:c7:0b:07: 31:c4:f9:04:96:7c:ce:5d:19:54:d3:3d:3d:f9:5e:e5:8e:ac: a9:13:e9:78:91:0e:cf:33:5c:e8:b9:b0:32:82:c2:79:0d:ed: a3:88:89:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjUwMzAzMDMyNTQ1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1MjEzOS02ZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0bFAhTFWtFwe13vqcoXalErQP+y1szhDB2sx0jsnk2OuMJKTUywgCDNb4y6 Slf2FK7CUIQz7QlCjyUUl+SdqWZTkskL6FXBEaN8+b4OnFBfgNn1BUGQ2Oxcu16Y /iHy1vBZbAPoUHDvc60ANTpNeQYsLlszks5wJL0ZJjniRsr10xz2aH+VNb42t5mt g27h+++ONfgoSlXZTTuiiSzltvNRZdahZLnIam/cGOIcxOTXb5EV/RqaHP/q/FM3 ZsNxzAQVraPQCs12/WDcYeR39F4SdTo91y0QUk5ifIppoQFnSv9GqpsYNBXafdJ8 IiP1eNUNkqsvVw1GMLL6zyzhewIDAQABo4IClTCCApEwHQYDVR0OBBYEFAGlBTwq wNDZsazSqNovwQOhWDiGMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTgwRDIvRDQyOEQwQzZEQURFMTFFQzg3NzExNDUwQzRGOUFFMDIvMzQ4NkQ0NzQx MkQ1MTFFRkIxRUYxNjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAt+qEwDQYJKoZIhvcNAQELBQADggEBACVljEdnGsr7nZpp 2NrjDwwMVHSJv4BWfjDTJaz1KoE13ifr9IUX3Ib5e35xCtY8V5/LX2YTfE706ZaO UA1VhZ/qHt1FSk+cV8DvidgUezm54TesT6+Bi/A/Uc4tJUh8KIeIFH6gjzXrxY+c 2IrAskRn1FVeLixYNvLMxA0SC3JJwWJwegVyts3FevHV2to2LdQJQ6lBOAHBd2me UIs2pp1DIEv14NhxvmzkcYD4MD1p19pv5stGjX39n8MjMTzwSEtNhugNtYPSavYW enhpAQWAJ9lGuccLBzHE+QSWfM5dGVTTPT35XuWOrKkT6XiRDs8zXOi5sDKCwnkN 7aOIiQI= -----END CERTIFICATE-----Generated at Sat Apr 5 02:03:07 2025 by rpki-client