$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/20313836639E11ECA24A0411C4F9AE02.roa File: 20313836639E11ECA24A0411C4F9AE02.roa (raw, json) Hash identifier: kfy6uj6HbA6gXYNWblB0fyMEydPjtq8Nrmfp+98wtaU= Subject key identifier: BA:E8:85:25:CC:10:8A:83:B3:56:89:9E:2D:32:A0:F0:37:97:25:56 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2993 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/20313836639E11ECA24A0411C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:26 +0000 ROA not before: Tue 31 Dec 2024 15:53:26 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4827 IP address blocks: 58.64.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 15:53:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10643 (0x2993) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 31 15:53:26 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67741376-2ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:83:ff:bd:97:cb:01:c1:a7:11:f9:bf:31:dc: e7:08:76:9d:36:39:e1:89:9c:f2:82:2b:10:ed:2f: 42:27:c7:2b:ce:01:93:2c:1d:31:ec:f7:21:88:a6: d0:f0:c5:58:b7:13:9a:76:bb:07:39:c8:74:9e:f0: 4f:b5:3a:85:fd:f6:ca:77:eb:18:61:33:e3:d6:c9: 9a:c9:eb:44:a0:52:32:6f:d2:fa:02:3f:4e:1e:15: 3a:a9:0b:65:40:cd:22:e6:0f:c8:0a:2b:c1:f4:17: 20:c1:99:d5:83:8e:98:2c:2f:b7:b3:31:f3:41:51: cf:b2:54:df:1c:ff:9f:8e:9b:00:34:db:5c:fb:ea: 43:f6:40:59:f8:8d:92:03:56:d4:31:a8:04:d6:76: b0:bd:08:ba:05:8c:09:28:e4:cf:1e:c3:5d:3c:02: 71:18:d4:cb:de:19:e6:b0:59:f4:00:2c:10:be:2b: 2b:14:2d:23:7f:c7:43:10:f4:07:24:23:33:fc:4b: c9:23:dd:2a:3f:c6:a9:80:fe:98:b8:ee:c2:8c:d6: 48:ca:71:66:2e:47:c2:9a:2e:ff:03:eb:d7:2e:8e: 43:12:8a:bc:ae:5b:67:bf:62:07:40:84:49:25:07: cb:b1:96:5b:84:7c:94:ad:04:77:07:85:f2:7e:15: e0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E8:85:25:CC:10:8A:83:B3:56:89:9E:2D:32:A0:F0:37:97:25:56 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/20313836639E11ECA24A0411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.34.0/24 Signature Algorithm: sha256WithRSAEncryption 30:3e:b1:04:cf:da:92:20:d3:3a:99:6c:54:77:b8:40:8d:6e: 46:57:d1:61:35:58:f9:2d:8b:28:94:85:1f:82:1b:b2:db:df: 3f:3f:6e:ac:31:5b:8b:be:37:8a:c6:58:30:13:df:4e:fe:bd: 14:16:0b:a2:69:4a:7b:6b:87:ed:9b:bc:ea:9a:45:d6:e8:bb: eb:d0:b9:e3:e1:92:52:fe:f5:ac:72:1a:a1:51:11:c0:19:29: f7:8a:02:64:a8:bd:a6:68:f8:16:68:77:4a:7b:5a:bf:5a:26: 15:74:2b:42:a8:a5:c4:eb:fb:13:05:f9:b0:d4:c5:8e:2c:c1: b8:e3:9a:ab:86:13:18:2e:c5:53:4d:ba:4b:92:8a:4a:8c:d1: c6:87:37:73:19:cb:9a:a4:05:61:84:21:a4:a9:4c:11:36:fb: 31:ee:41:63:35:9f:3a:46:23:b5:65:18:d2:0b:0c:54:76:c8: 9d:40:ce:35:04:29:5e:24:5d:07:07:5e:b3:5b:75:08:06:77: 51:45:a3:47:2e:c8:ea:26:fe:8c:87:30:7c:71:a7:7f:94:33: 0c:7c:33:e6:96:d9:6e:31:7d:39:5d:82:d3:1b:df:40:c4:90: 88:99:6e:fa:66:08:b0:94:7b:ba:85:c4:4a:39:99:6d:43:16: b9:15:c0:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzI2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM3Ni0yY2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoP/vZfLAcGnEfm/MdznCHadNjnhiZzygisQ7S9CJ8crzgGTLB0x7PchiKbQ 8MVYtxOadrsHOch0nvBPtTqF/fbKd+sYYTPj1smayetEoFIyb9L6Aj9OHhU6qQtl QM0i5g/ICivB9BcgwZnVg46YLC+3szHzQVHPslTfHP+fjpsANNtc++pD9kBZ+I2S A1bUMagE1nawvQi6BYwJKOTPHsNdPAJxGNTL3hnmsFn0ACwQvisrFC0jf8dDEPQH JCMz/EvJI90qP8apgP6YuO7CjNZIynFmLkfCmi7/A+vXLo5DEoq8rltnv2IHQIRJ JQfLsZZbhHyUrQR3B4XyfhXgkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLrohSXM EIqDs1aJni0yoPA3lyVWMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvMjAzMTM4MzY2 MzlFMTFFQ0EyNEEwNDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6QCIwDQYJKoZIhvcNAQELBQADggEBADA+sQTP2pIg0zqZ bFR3uECNbkZX0WE1WPktiyiUhR+CG7Lb3z8/bqwxW4u+N4rGWDAT307+vRQWC6Jp Sntrh+2bvOqaRdbou+vQuePhklL+9axyGqFREcAZKfeKAmSovaZo+BZod0p7Wr9a JhV0K0KopcTr+xMF+bDUxY4swbjjmquGExguxVNNukuSikqM0caHN3MZy5qkBWGE IaSpTBE2+zHuQWM1nzpGI7VlGNILDFR2yJ1AzjUEKV4kXQcHXrNbdQgGd1FFo0cu yOom/oyHMHxxp3+UMwx8M+aW2W4xfTldgtMb30DEkIiZbvpmCLCUe7qFxEo5mW1D FrkVwEU= -----END CERTIFICATE-----Generated at Fri Oct 24 06:42:47 2025 by rpki-client