$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/49D54560C91C11EFB0DEB92DC4F9AE02.roa File: 49D54560C91C11EFB0DEB92DC4F9AE02.roa (raw, json) Hash identifier: LPMf8e8oe7ripTj9cOjgsGbklShL3L+ImY+41IEZRaQ= Subject key identifier: F8:F1:C5:5B:FA:AD:FA:EF:CF:88:CA:AE:D4:62:30:3F:60:91:D2:57 Certificate issuer: /CN=A91F08A5/serialNumber=85E8EE9A8D30528599062D08CB9CB9D513DF6BD7 Certificate serial: 36 Authority key identifier: 85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/49D54560C91C11EFB0DEB92DC4F9AE02.roa Signing time: Thu 27 Mar 2025 07:13:30 +0000 ROA not before: Thu 27 Mar 2025 07:13:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137047 IP address blocks: 119.160.214.0/24 maxlen: 24 119.160.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08A5 Validity Not Before: Mar 27 07:13:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67e4fa99-aabc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cd:a2:df:1e:e5:5a:44:2d:9a:9e:d7:cd:0c: 28:a9:8a:26:e1:6d:0b:4e:4a:bb:13:82:ec:e5:8a: a7:f8:ae:e7:b8:9c:7e:a5:15:57:a4:54:f3:8c:82: 9d:ce:1d:8e:94:48:17:ac:60:7b:18:81:c9:b8:9f: ca:5b:02:b8:b6:d4:ce:ae:94:3f:74:cb:12:f8:33: 98:6a:95:4a:4b:0a:9f:ae:47:46:65:fe:a8:9c:76: b8:56:2a:ba:4b:91:a5:2a:bb:e9:a9:54:37:c1:18: d2:e2:d3:76:b3:7e:d9:c9:2e:d0:eb:9f:21:50:81: f6:64:cf:ff:e7:46:1b:4e:0d:ee:79:b1:4d:a5:5c: c0:20:fb:1d:31:80:78:1a:4f:8f:17:4d:cc:bf:24: de:80:f1:6f:31:40:2a:23:e3:89:ba:d8:c6:0e:78: 31:5c:9c:be:ec:25:f8:b5:cf:96:df:96:4c:2a:92: fc:e0:18:65:11:6f:f1:b1:18:1f:5f:59:20:81:e5: 32:af:40:dc:39:fd:02:6b:40:80:c1:ce:ff:7b:7e: 35:f6:14:88:9f:24:80:ca:16:47:e9:6b:0c:ba:e8: 12:5c:df:d9:ea:a1:00:3a:92:e7:11:cc:cf:a1:28: b6:02:e1:e5:d4:e0:bd:f5:96:f0:3d:07:13:c7:24: ae:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F1:C5:5B:FA:AD:FA:EF:CF:88:CA:AE:D4:62:30:3F:60:91:D2:57 X509v3 Authority Key Identifier: keyid:85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/49D54560C91C11EFB0DEB92DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.160.214.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:04:e3:09:9c:ad:46:52:b1:18:2c:ae:74:c4:34:82:ac:50: cc:e3:ab:32:90:2b:a1:50:13:a8:32:54:7a:82:6d:5f:58:ed: 15:f7:79:ce:6c:ca:a8:58:dc:02:1f:70:ab:87:f5:14:61:91: 62:37:d8:d6:3d:b5:3f:f4:0f:85:30:1f:8c:7d:78:54:d6:66: 62:6b:4e:e4:65:4d:e9:ff:ef:01:71:46:06:ec:75:86:25:22: c0:9a:51:5d:c1:4b:a1:43:94:cc:e0:4a:d1:5c:55:b8:b9:65: e2:ff:ce:da:3a:a1:f4:8d:ec:d7:9c:be:5f:26:61:86:3e:0a: 2c:8e:55:b6:10:87:d1:23:58:f7:4c:ac:61:41:da:d5:b1:18: 65:02:e8:80:d7:4f:9f:ed:4d:73:1e:d0:89:dd:d8:db:94:1d: d3:e9:ae:99:b8:21:56:30:71:25:b6:be:68:56:40:9c:09:6a: de:e2:09:21:a5:ac:14:ff:7f:6f:0a:9f:7c:bf:dc:1c:88:7d: 7f:9b:73:4d:0a:d6:39:d8:f8:84:2e:01:4b:00:f4:51:15:b9: fa:39:22:ce:54:8e:ff:35:df:9a:3b:dd:ec:86:29:2a:61:1e: d2:d7:17:b0:a5:55:ec:55:fb:9a:c7:1c:27:1b:07:87:f5:51: b7:16:d4:1c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhBNTExMC8GA1UEBRMoODVFOEVFOUE4RDMwNTI4NTk5MDYyRDA4Q0I5Q0I5RDUx M0RGNkJENzAeFw0yNTAzMjcwNzEzMzBaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTRmYTk5LWFhYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSzaLfHuVaRC2antfNDCipiibhbQtOSrsTguzliqf4rue4nH6lFVekVPOMgp3O HY6USBesYHsYgcm4n8pbAri21M6ulD90yxL4M5hqlUpLCp+uR0Zl/qicdrhWKrpL kaUqu+mpVDfBGNLi03azftnJLtDrnyFQgfZkz//nRhtODe55sU2lXMAg+x0xgHga T48XTcy/JN6A8W8xQCoj44m62MYOeDFcnL7sJfi1z5bflkwqkvzgGGURb/GxGB9f WSCB5TKvQNw5/QJrQIDBzv97fjX2FIifJIDKFkfpawy66BJc39nqoQA6kucRzM+h KLYC4eXU4L31lvA9BxPHJK73AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU+PHFW/qt +u/PiMqu1GIwP2CR0lcwHwYDVR0jBBgwFoAUhejumo0wUoWZBi0Iy5y51RPfa9cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEE1L0QxNTAzMTM2Qzkx QjExRUY4ODdENkYyQ0M0RjlBRTAyL2hlanVtbzB3VW9XWkJpMEl5NXk1MVJQZmE5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGVqdW1vMHdVb1daQmkwSXk1eTUxUlBmYTljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDhBNS9EMTUwMzEzNkM5MUIxMUVGODg3RDZGMkNDNEY5QUUwMi80OUQ1NDU2MEM5 MUMxMUVGQjBERUI5MkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAXeg1jANBgkqhkiG9w0BAQsFAAOCAQEAmgTjCZytRlKxGCyu dMQ0gqxQzOOrMpAroVATqDJUeoJtX1jtFfd5zmzKqFjcAh9wq4f1FGGRYjfY1j21 P/QPhTAfjH14VNZmYmtO5GVN6f/vAXFGBux1hiUiwJpRXcFLoUOUzOBK0VxVuLll 4v/O2jqh9I3s15y+XyZhhj4KLI5VthCH0SNY90ysYUHa1bEYZQLogNdPn+1Ncx7Q id3Y25Qd0+mumbghVjBxJba+aFZAnAlq3uIJIaWsFP9/bwqffL/cHIh9f5tzTQrW Odj4hC4BSwD0URW5+jkizlSO/zXfmjvd7IYpKmEe0tcXsKVV7FX7msccJxsHh/VR txbUHA== -----END CERTIFICATE-----Generated at Sat Apr 5 01:55:09 2025 by rpki-client