$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/54CF3574EACC11ECAB5E9A54C4F9AE02.roa File: 54CF3574EACC11ECAB5E9A54C4F9AE02.roa (raw, json) Hash identifier: 46fMM1eIjaKQ15DgUQJzaTspdUild5cwN37TrP4hoCI= Subject key identifier: E9:93:66:B2:DD:E7:3B:7C:97:83:B1:45:66:6A:A2:05:61:74:BD:98 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2998 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/54CF3574EACC11ECAB5E9A54C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:30 +0000 ROA not before: Tue 31 Dec 2024 15:53:30 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 7630 IP address blocks: 49.231.212.0/24 maxlen: 24 49.231.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10648 (0x2998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54 Validity Not Before: Dec 31 15:53:30 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6774137a-24bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:74:a5:c5:c3:ed:59:57:08:01:4f:71:62:5f: 7b:10:c5:39:76:c3:b7:e3:be:31:12:bf:0e:6a:78: 10:35:f7:27:c0:10:ef:3a:5c:43:be:c9:3d:33:90: 90:32:aa:ba:4f:2d:41:f1:ed:59:47:e4:59:c3:fb: 04:bc:a2:c5:27:e2:6b:8a:5b:eb:0a:af:6d:1e:f9: 1e:24:0e:02:a6:5d:e6:53:7e:6c:2f:de:e6:75:bd: a4:f2:e3:a6:6e:4a:d9:91:24:1a:10:9b:cd:0f:87: d1:e0:10:ba:34:6c:c8:c6:3a:91:06:ac:8a:c9:0f: 7b:66:3e:d6:41:76:ef:4c:b8:88:a7:42:ec:bc:54: f0:59:21:25:11:53:8b:08:df:3e:f1:6f:3a:bd:d6: d8:0b:1b:71:32:26:eb:e3:5b:88:71:a3:17:cf:c4: c5:1d:ad:8f:46:bf:fa:dd:81:ff:c1:86:b3:77:df: f0:8e:a5:5c:d5:c0:bf:ff:e4:ba:9a:67:55:9f:b7: c1:c8:2e:c1:0e:82:6d:83:83:9c:51:d8:87:97:a6: 52:43:c1:15:10:be:8d:27:99:e5:23:e7:0b:cb:ba: 77:dc:32:3f:45:8c:9b:15:81:8a:fd:60:b7:d8:09: 35:5f:61:75:a6:d7:43:5f:de:6a:0f:6d:17:01:21: b9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:93:66:B2:DD:E7:3B:7C:97:83:B1:45:66:6A:A2:05:61:74:BD:98 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/54CF3574EACC11ECAB5E9A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.231.212.0/24 49.231.240.0/24 Signature Algorithm: sha256WithRSAEncryption 69:d8:2a:ad:76:ba:c2:23:31:c3:0f:0a:d2:ca:14:2b:b0:10: e5:ae:65:87:79:c5:d4:3f:72:05:b2:c7:54:c5:a9:c1:00:51: 02:c1:2c:eb:ea:07:4f:a0:ce:13:4b:36:76:f9:e8:fc:a1:43: 11:8d:5f:ef:e8:0a:8f:c5:05:26:48:0b:fb:c1:df:04:67:22: 07:98:b8:66:75:7f:33:9a:46:24:16:1a:c7:94:07:2f:d9:42: 65:3d:a0:1b:52:27:0a:66:d2:55:98:d8:b7:d3:be:dc:05:b9: cb:ed:30:75:29:c8:f8:39:6c:0e:db:1e:4d:85:d9:e6:25:80: 0a:f3:91:c3:60:c2:e8:f8:2a:f8:51:82:f1:91:f4:f0:7f:f0: 51:24:9e:8a:0b:22:3f:ca:90:a6:34:c3:7e:d1:ac:bf:b0:82: c3:fa:49:18:a6:99:0a:21:d6:8d:ab:8a:0c:39:66:44:3a:3e: 56:93:d1:d8:a5:57:9d:5e:89:85:83:9c:98:da:dd:50:eb:59: 58:1b:1c:6b:ac:85:18:7b:cf:cb:81:cf:43:90:38:a9:f5:cd: 11:39:55:9b:af:d8:5c:3f:7f:0b:5e:d0:da:1a:b7:24:f3:96: df:d1:4e:c8:d7:2b:da:48:18:5a:d5:e0:fd:ff:ec:37:aa:91: e3:09:48:ad -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICKZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzMwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM3YS0yNGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XSlxcPtWVcIAU9xYl97EMU5dsO3474xEr8OangQNfcnwBDvOlxDvsk9M5CQ Mqq6Ty1B8e1ZR+RZw/sEvKLFJ+JrilvrCq9tHvkeJA4Cpl3mU35sL97mdb2k8uOm bkrZkSQaEJvND4fR4BC6NGzIxjqRBqyKyQ97Zj7WQXbvTLiIp0LsvFTwWSElEVOL CN8+8W86vdbYCxtxMibr41uIcaMXz8TFHa2PRr/63YH/wYazd9/wjqVc1cC//+S6 mmdVn7fByC7BDoJtg4OcUdiHl6ZSQ8EVEL6NJ5nlI+cLy7p33DI/RYybFYGK/WC3 2Ak1X2F1ptdDX95qD20XASG5pwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOmTZrLd 5zt8l4OxRWZqogVhdL2YMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNTRDRjM1NzRF QUNDMTFFQ0FCNUU5QTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAx59QDBAAx5/AwDQYJKoZIhvcNAQELBQADggEBAGnYKq12 usIjMcMPCtLKFCuwEOWuZYd5xdQ/cgWyx1TFqcEAUQLBLOvqB0+gzhNLNnb56Pyh QxGNX+/oCo/FBSZIC/vB3wRnIgeYuGZ1fzOaRiQWGseUBy/ZQmU9oBtSJwpm0lWY 2LfTvtwFucvtMHUpyPg5bA7bHk2F2eYlgArzkcNgwuj4KvhRgvGR9PB/8FEknooL Ij/KkKY0w37RrL+wgsP6SRimmQoh1o2rigw5ZkQ6PlaT0dilV51eiYWDnJja3VDr WVgbHGushRh7z8uBz0OQOKn1zRE5VZuv2Fw/fwte0NoatyTzlt/RTsjXK9pIGFrV 4P3/7DeqkeMJSK0= -----END CERTIFICATE-----Generated at Sun Feb 16 20:29:27 2025 by rpki-client