$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/50AF1E205CD411EEBADBCF7DC4F9AE02.roa File: 50AF1E205CD411EEBADBCF7DC4F9AE02.roa (raw, json) Hash identifier: Jo5fPiYa65aMAoum6b7Ul8L0BSiMHOWrhdixO3zUwaU= Subject key identifier: 3D:B4:75:01:8C:39:6D:0D:C7:EB:0A:55:E4:F1:32:7F:AE:06:91:5C Certificate issuer: /CN=A91F2B47/serialNumber=17D5FE323EBFD9A8D344E77B73799A8E75624352 Certificate serial: 0223 Authority key identifier: 17:D5:FE:32:3E:BF:D9:A8:D3:44:E7:7B:73:79:9A:8E:75:62:43:52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/50AF1E205CD411EEBADBCF7DC4F9AE02.roa Signing time: Wed 05 Mar 2025 03:48:08 +0000 ROA not before: Wed 05 Mar 2025 03:48:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 3758 IP address blocks: 166.120.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.crl rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B47 Validity Not Before: Mar 5 03:48:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c7c978-0f29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:74:46:0e:b8:65:de:3a:45:4e:7c:e3:7d:6c: 23:59:4c:3e:d4:68:d5:c2:e4:90:1b:d7:a9:f6:d0: d3:f6:6d:2b:10:43:28:6f:59:01:de:db:0a:9f:c4: 7b:ca:8a:01:62:1c:f6:db:79:a2:8b:e7:c7:b2:49: 21:36:d0:42:0d:34:8b:86:35:04:24:4e:0a:39:0b: 14:f2:a5:77:7a:aa:90:1b:84:e4:2d:2e:da:a3:8a: 02:c6:0a:c2:06:e9:e9:6b:ac:c5:38:2a:90:5b:f4: c7:14:f2:97:e9:34:fa:ed:d5:68:db:e2:1a:c9:b3: dd:0b:71:67:a0:d0:fc:99:4a:02:f0:5e:57:d3:25: 95:cb:16:08:e6:26:f6:5b:2b:e3:3c:44:47:41:2f: b2:25:01:e9:93:1b:39:19:4b:49:b4:d6:c0:a7:5c: e8:6a:22:f5:e2:12:05:cf:04:87:51:17:92:4a:9f: 13:94:cd:f0:44:b2:da:75:96:a3:1a:08:1b:cf:01: 91:7d:2c:da:ec:1c:8e:dc:13:81:04:85:68:cd:25: f4:16:2f:c0:e5:0c:4e:8a:dc:ea:16:ba:ae:93:78: ad:7b:77:39:be:1f:d1:78:2b:1e:b3:a6:9e:ff:be: 8a:94:f8:3d:bc:15:0b:6c:e3:ed:34:03:9c:f3:36: f0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B4:75:01:8C:39:6D:0D:C7:EB:0A:55:E4:F1:32:7F:AE:06:91:5C X509v3 Authority Key Identifier: keyid:17:D5:FE:32:3E:BF:D9:A8:D3:44:E7:7B:73:79:9A:8E:75:62:43:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/50AF1E205CD411EEBADBCF7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 166.120.129.0/24 Signature Algorithm: sha256WithRSAEncryption b5:10:c7:7e:11:12:11:47:eb:df:39:da:bd:16:b3:7a:e2:86: 48:2e:9f:da:2e:12:ec:f9:54:54:6c:cc:aa:92:25:17:0e:d4: 73:19:4a:d3:b4:22:c4:4f:d5:5f:cf:a1:22:1e:10:9c:ec:e7: 67:40:8c:0c:22:44:2e:dd:5f:54:5d:4d:73:c9:ee:e4:ee:d4: 5e:b7:f4:e9:09:27:ce:a0:d3:8c:41:e5:16:43:5f:2c:dc:5f: fd:5f:f5:c5:ba:1d:38:3d:1e:e5:3d:b6:40:d6:85:f5:51:c3: 19:21:5d:47:e7:ec:71:eb:62:90:c7:3e:b5:01:c7:e8:0f:f6: af:ea:a4:d7:33:fa:d0:54:25:4d:de:15:72:7e:96:e2:72:de: ee:df:07:b6:72:19:e5:a6:1b:e1:38:1d:c4:ee:bf:1a:c1:50: fd:b3:1a:12:77:21:ad:31:ab:80:79:b5:7d:ed:15:8c:f4:80: d9:05:ab:34:79:b0:0d:e3:63:12:fa:c4:85:87:03:e8:9a:26: 45:42:52:74:50:d1:4f:59:97:16:c7:23:2e:09:99:e7:81:c8: 82:3c:fb:ed:10:37:90:2e:9e:29:11:aa:49:ef:14:4b:cc:de: 48:9b:44:31:29:e0:35:43:91:ee:50:01:5f:17:3c:32:19:af: 87:99:4c:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNDcxMTAvBgNVBAUTKDE3RDVGRTMyM0VCRkQ5QThEMzQ0RTc3QjczNzk5QThF NzU2MjQzNTIwHhcNMjUwMzA1MDM0ODA4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3Yzk3OC0wZjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXRGDrhl3jpFTnzjfWwjWUw+1GjVwuSQG9ep9tDT9m0rEEMob1kB3tsKn8R7 yooBYhz223mii+fHskkhNtBCDTSLhjUEJE4KOQsU8qV3eqqQG4TkLS7ao4oCxgrC Bunpa6zFOCqQW/THFPKX6TT67dVo2+IaybPdC3FnoND8mUoC8F5X0yWVyxYI5ib2 WyvjPERHQS+yJQHpkxs5GUtJtNbAp1zoaiL14hIFzwSHUReSSp8TlM3wRLLadZaj GggbzwGRfSza7ByO3BOBBIVozSX0Fi/A5QxOitzqFrquk3ite3c5vh/ReCses6ae /76KlPg9vBULbOPtNAOc8zbwNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD20dQGM OW0Nx+sKVeTxMn+uBpFcMB8GA1UdIwQYMBaAFBfV/jI+v9mo00Tne3N5mo51YkNS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI0Ny9FODhFOUM3RTMz QUYxMUVEQjYxMDc0MzRDNEY5QUUwMi9GOVgtTWo2XzJhalRST2Q3YzNtYWpuVmlR MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Y5WC1NajZfMmFqVFJPZDdjM21ham5WaVExSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJCNDcvRTg4RTlDN0UzM0FGMTFFREI2MTA3NDM0QzRGOUFFMDIvNTBBRjFFMjA1 Q0Q0MTFFRUJBREJDRjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACmeIEwDQYJKoZIhvcNAQELBQADggEBALUQx34REhFH6985 2r0Ws3rihkgun9ouEuz5VFRszKqSJRcO1HMZStO0IsRP1V/PoSIeEJzs52dAjAwi RC7dX1RdTXPJ7uTu1F639OkJJ86g04xB5RZDXyzcX/1f9cW6HTg9HuU9tkDWhfVR wxkhXUfn7HHrYpDHPrUBx+gP9q/qpNcz+tBUJU3eFXJ+luJy3u7fB7ZyGeWmG+E4 HcTuvxrBUP2zGhJ3Ia0xq4B5tX3tFYz0gNkFqzR5sA3jYxL6xIWHA+iaJkVCUnRQ 0U9ZlxbHIy4JmeeByII8++0QN5AunikRqknvFEvM3kibRDEp4DVDke5QAV8XPDIZ r4eZTEE= -----END CERTIFICATE-----Generated at Sat Apr 5 23:35:31 2025 by rpki-client