$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/51B1F2A665D911EBA6089869C4F9AE02.roa File: 51B1F2A665D911EBA6089869C4F9AE02.roa (raw, json) Hash identifier: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM= Subject key identifier: 4A:63:70:95:E4:07:5A:4C:94:CC:EA:1F:71:D1:18:D2:D3:F2:0F:5B Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 07AB Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/51B1F2A665D911EBA6089869C4F9AE02.roa Signing time: Wed 22 Jan 2025 20:49:42 +0000 ROA not before: Wed 22 Jan 2025 20:49:42 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 59257 IP address blocks: 209.150.144.0/23 maxlen: 24 209.150.146.0/23 maxlen: 24 209.150.148.0/23 maxlen: 24 209.150.150.0/23 maxlen: 24 209.150.152.0/21 maxlen: 21 209.150.152.0/23 maxlen: 24 209.150.154.0/23 maxlen: 24 209.150.156.0/23 maxlen: 24 209.150.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1963 (0x7ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D Validity Not Before: Jan 22 20:49:42 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=679159e6-59f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1f:49:48:a2:3b:c2:69:d7:4e:19:64:62:f4: 13:2d:42:21:6c:4b:56:2b:0d:43:c1:08:62:06:7d: 65:66:b9:b7:3e:da:66:48:4e:5a:c0:75:3d:79:ba: 35:79:5d:93:f3:1a:84:b0:a6:0a:b8:76:48:ed:51: 9c:a3:88:76:84:eb:d0:e5:2f:a8:e0:2b:76:19:8d: 48:ef:4e:87:34:4a:7f:90:c3:93:29:1d:5d:46:6c: e3:d7:f0:6b:51:2a:b0:7a:1c:66:59:76:f0:01:4f: 48:9e:82:8c:b9:79:e7:29:1f:27:47:50:33:a3:ea: 3d:98:f5:94:81:97:df:55:78:a1:49:f4:ec:84:ba: 62:54:20:3b:5d:05:28:f3:ab:37:8d:26:82:fb:52: fe:81:26:fa:d2:9a:65:19:18:e2:be:6d:27:eb:71: 1b:f3:75:ee:96:74:8a:f9:0a:67:93:13:95:08:39: c7:f7:ca:16:89:00:a8:e8:8d:62:54:8a:be:aa:f2: 41:c6:50:7d:66:97:b2:4d:7a:13:9d:ad:08:b8:f6: 02:62:30:c4:48:0a:0a:99:a2:b9:6d:d8:10:bf:b8: 0c:12:b2:ed:c7:0e:bc:47:4a:55:38:0b:8a:44:c7: 0a:9d:2a:16:df:9f:41:af:93:72:a1:a7:18:72:40: 91:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:63:70:95:E4:07:5A:4C:94:CC:EA:1F:71:D1:18:D2:D3:F2:0F:5B X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/51B1F2A665D911EBA6089869C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 209.150.144.0/20 Signature Algorithm: sha256WithRSAEncryption 51:48:9e:db:d7:aa:7d:1d:9d:b8:d5:0e:ad:a9:ad:8b:a5:48: d8:57:b3:a1:3d:5a:8d:82:41:5a:b7:4d:72:b8:61:5f:c3:87: 01:66:df:6e:12:4b:ed:04:1d:73:6a:fa:de:b7:cd:8d:9d:93: 84:cb:ba:9a:50:95:03:a2:43:e6:e5:49:fd:fc:28:f7:99:86: fa:3a:77:6c:0b:3b:ae:e3:58:bb:09:ad:01:05:71:4a:f7:e9: b0:dc:83:bc:ea:e1:38:96:2a:ca:33:d9:e6:7a:75:9b:19:90: 12:05:6d:44:63:95:a9:68:d9:47:30:ea:0e:ee:d8:ec:40:89: 03:0a:ef:24:90:aa:e6:58:3a:54:9a:97:81:56:2a:65:43:cb: b4:09:3e:b6:df:17:d7:17:da:4e:b2:51:16:fc:fa:15:34:32: 46:ec:2b:40:9d:96:fb:e2:54:a3:d5:c6:04:f5:e1:5c:83:ce: 55:e3:17:e7:f3:94:33:59:d8:b9:6c:36:30:53:f0:90:0c:66: 60:cd:ec:4d:76:bd:f5:d6:05:c7:c7:e9:c1:01:7d:ac:e6:cc: 43:77:b7:6a:0a:3b:49:5b:9d:81:7b:b3:1e:aa:b9:cd:ce:cc: 37:12:96:62:8a:95:a7:25:5c:53:81:b3:f5:a1:1a:dc:d7:75: 3c:c4:40:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwMTIyMjA0OTQyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxNTllNi01OWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqh9JSKI7wmnXThlkYvQTLUIhbEtWKw1DwQhiBn1lZrm3PtpmSE5awHU9ebo1 eV2T8xqEsKYKuHZI7VGco4h2hOvQ5S+o4Ct2GY1I706HNEp/kMOTKR1dRmzj1/Br USqwehxmWXbwAU9InoKMuXnnKR8nR1Azo+o9mPWUgZffVXihSfTshLpiVCA7XQUo 86s3jSaC+1L+gSb60pplGRjivm0n63Eb83XulnSK+QpnkxOVCDnH98oWiQCo6I1i VIq+qvJBxlB9ZpeyTXoTna0IuPYCYjDESAoKmaK5bdgQv7gMErLtxw68R0pVOAuK RMcKnSoW359Br5NyoacYckCRCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEpjcJXk B1pMlMzqH3HRGNLT8g9bMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI5OEQvMkNCMTFGQ0VGMUE2MTFFQUI5NUMwRTJGQzRGOUFFMDIvNTFCMUYyQTY2 NUQ5MTFFQkE2MDg5ODY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATRlpAwDQYJKoZIhvcNAQELBQADggEBAFFIntvXqn0dnbjV Dq2prYulSNhXs6E9Wo2CQVq3TXK4YV/DhwFm324SS+0EHXNq+t63zY2dk4TLuppQ lQOiQ+blSf38KPeZhvo6d2wLO67jWLsJrQEFcUr36bDcg7zq4TiWKsoz2eZ6dZsZ kBIFbURjlalo2Ucw6g7u2OxAiQMK7ySQquZYOlSal4FWKmVDy7QJPrbfF9cX2k6y URb8+hU0MkbsK0CdlvviVKPVxgT14VyDzlXjF+fzlDNZ2LlsNjBT8JAMZmDN7E12 vfXWBcfH6cEBfazmzEN3t2oKO0lbnYF7sx6quc3OzDcSlmKKlaclXFOBs/WhGtzX dTzEQFs= -----END CERTIFICATE-----Generated at Sun Apr 6 14:14:25 2025 by rpki-client