$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/5A6EF3DCF25811ECB8BB9A10C4F9AE02.roa File: 5A6EF3DCF25811ECB8BB9A10C4F9AE02.roa (raw, json) Hash identifier: ZVMZKGcwjoAcij7fNrfxo6TWd9f4DjhLjE06umAwjDU= Subject key identifier: 4C:EF:F7:F0:B2:A4:90:DD:24:4C:48:73:F4:14:8A:B3:4D:AD:D6:B4 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2986 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/5A6EF3DCF25811ECB8BB9A10C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:15 +0000 ROA not before: Tue 31 Dec 2024 15:53:15 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 38444 IP address blocks: 49.229.0.0/23 maxlen: 23 49.229.2.0/23 maxlen: 23 110.49.0.0/16 maxlen: 16 110.49.128.0/17 maxlen: 23 110.49.128.0/19 maxlen: 24 110.49.160.0/21 maxlen: 24 110.49.168.0/24 maxlen: 24 110.49.170.0/23 maxlen: 24 110.49.172.0/22 maxlen: 24 110.49.176.0/20 maxlen: 24 110.49.192.0/18 maxlen: 24 119.31.0.0/17 maxlen: 24 202.149.24.0/21 maxlen: 24 2001:44c8:a000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10630 (0x2986) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54 Validity Not Before: Dec 31 15:53:15 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6774136a-47c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:89:30:21:c4:fe:f0:f9:b8:42:d9:f7:d3:e6: 1f:cb:eb:18:85:05:21:74:be:47:2c:0a:5b:24:66: a6:92:08:2c:d8:b5:09:ce:e8:29:3f:4b:8c:a8:00: 6f:cd:4a:b4:3d:ff:26:da:13:65:17:b4:2b:57:77: a4:59:2b:b3:50:c9:be:bf:fa:8b:1a:f3:1b:22:f8: 83:03:98:61:ff:ed:b8:f5:49:2e:48:73:ad:65:b6: 19:d3:35:53:31:5c:78:11:a9:59:d4:a2:1f:75:a7: bd:48:d5:f7:54:b8:14:9f:25:bd:97:72:c2:85:5c: 5a:1c:ac:90:5a:77:5e:eb:c7:59:c2:5f:57:78:20: 4b:a0:a1:40:31:74:ae:32:61:73:2e:b0:ae:69:27: a1:3b:c3:71:9e:68:3a:00:42:bf:5b:a5:db:f2:70: d0:ec:84:82:25:a8:b2:c7:3c:71:89:11:7b:04:55: d0:39:20:41:3b:44:bc:b7:eb:0c:a7:c1:58:f2:87: 38:cb:b9:85:1d:05:b6:8a:84:b3:26:ff:6b:f8:fc: a2:ef:d0:25:c5:f9:2d:29:5b:09:90:b6:7f:d1:de: 44:40:ff:0a:c8:67:20:fb:b9:12:05:37:8a:5a:2e: 06:9e:f8:b9:40:db:58:be:d9:4a:8d:d2:b7:fa:c0: a0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:EF:F7:F0:B2:A4:90:DD:24:4C:48:73:F4:14:8A:B3:4D:AD:D6:B4 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/5A6EF3DCF25811ECB8BB9A10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.229.0.0/22 110.49.0.0/16 119.31.0.0/17 202.149.24.0/21 IPv6: 2001:44c8:a000::/36 Signature Algorithm: sha256WithRSAEncryption 45:c1:0a:0e:c6:4d:18:1b:d8:ea:33:f9:5b:44:32:4d:33:fa: a7:bd:34:79:15:cc:b3:3f:b8:35:b5:f9:83:92:3a:16:c3:29: e6:ac:57:8d:a9:8e:e2:8c:6e:48:08:fc:1a:2f:1d:cf:f5:82: e3:86:9b:73:c1:5d:30:0b:dc:d6:7e:1f:4a:b5:ea:56:5d:10: 20:67:ad:b6:18:88:ca:a5:98:79:7f:ef:6a:34:5f:84:ad:3e: 26:7b:ac:9d:71:98:19:e0:f3:67:ed:d8:38:2b:78:3b:be:53: af:50:24:f2:80:8d:89:a3:99:7b:23:1d:b8:f8:f5:77:b4:2a: fa:8c:b7:f4:02:36:40:fa:18:8e:7e:5c:8e:19:74:5f:ad:82: f4:68:d8:51:6f:16:54:0c:c7:1b:a1:0e:fd:ff:d4:9e:81:ad: da:3d:29:de:4b:62:91:82:2c:5f:9f:9d:2e:32:4c:5e:c1:08: cf:9e:b3:85:6c:9e:cd:09:36:75:a7:c9:c2:83:e4:88:23:91: 54:a9:6a:2c:f1:ad:43:8c:22:a3:d4:69:d6:52:5f:5e:19:1c: ef:1e:7f:5e:f0:e2:c9:92:3b:50:f0:a5:2c:97:3a:79:03:49: 1f:51:d0:14:63:60:18:c8:f8:5b:25:fc:91:de:2a:05:99:3e: 6f:2b:40:34 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICKYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzE1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM2YS00N2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4kwIcT+8Pm4Qtn30+Yfy+sYhQUhdL5HLApbJGamkggs2LUJzugpP0uMqABv zUq0Pf8m2hNlF7QrV3ekWSuzUMm+v/qLGvMbIviDA5hh/+249UkuSHOtZbYZ0zVT MVx4EalZ1KIfdae9SNX3VLgUnyW9l3LChVxaHKyQWnde68dZwl9XeCBLoKFAMXSu MmFzLrCuaSehO8Nxnmg6AEK/W6Xb8nDQ7ISCJaiyxzxxiRF7BFXQOSBBO0S8t+sM p8FY8oc4y7mFHQW2ioSzJv9r+Pyi79AlxfktKVsJkLZ/0d5EQP8KyGcg+7kSBTeK Wi4Gnvi5QNtYvtlKjdK3+sCgoQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFEzv9/Cy pJDdJExIc/QUirNNrda0MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNUE2RUYzRENG MjU4MTFFQ0I4QkI5QTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB0EAgABMBcDBAIx5QADAwBuMQMEB3cfAAMEA8qVGDAOBAIAAjAIAwYEIAFE yKAwDQYJKoZIhvcNAQELBQADggEBAEXBCg7GTRgb2Ooz+VtEMk0z+qe9NHkVzLM/ uDW1+YOSOhbDKeasV42pjuKMbkgI/BovHc/1guOGm3PBXTAL3NZ+H0q16lZdECBn rbYYiMqlmHl/72o0X4StPiZ7rJ1xmBng82ft2DgreDu+U69QJPKAjYmjmXsjHbj4 9Xe0KvqMt/QCNkD6GI5+XI4ZdF+tgvRo2FFvFlQMxxuhDv3/1J6Brdo9Kd5LYpGC LF+fnS4yTF7BCM+es4Vsns0JNnWnycKD5IgjkVSpaizxrUOMIqPUadZSX14ZHO8e f17w4smSO1DwpSyXOnkDSR9R0BRjYBjI+Fsl/JHeKgWZPm8rQDQ= -----END CERTIFICATE-----Generated at Sun Feb 16 20:33:03 2025 by rpki-client