$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/B42D2E32421511ECB7A6506EC4F9AE02.roa File: B42D2E32421511ECB7A6506EC4F9AE02.roa (raw, json) Hash identifier: RNYBrOzFndAe+Zotigsdh3aYyQydi8Yu4q2xOOF9MOE= Subject key identifier: 1E:32:50:BB:32:BD:B4:FC:7D:BB:55:D2:71:D0:2D:23:CE:3C:17:9E Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 297A Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/B42D2E32421511ECB7A6506EC4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:02 +0000 ROA not before: Tue 31 Dec 2024 15:53:02 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 148984 IP address blocks: 27.254.1.0/24 maxlen: 24 49.231.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10618 (0x297a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54 Validity Not Before: Dec 31 15:53:02 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6774135d-b7fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:92:5a:db:d5:36:a4:dc:7d:d0:bc:0a:ac:4f: a9:c0:4f:e0:57:d0:28:3d:d1:24:31:d9:a4:b5:68: 2f:67:6e:7f:38:14:4c:c4:c0:99:28:5c:8f:26:fb: 60:bb:08:d0:31:4c:5f:79:e9:04:f3:62:90:85:5b: c5:3a:1f:02:6a:22:7c:97:12:99:45:1a:3e:34:e7: af:35:6b:b8:94:3f:f4:29:69:24:55:03:1a:3b:77: de:6d:49:1a:96:b2:f5:2a:38:f4:ce:1e:2f:da:d5: aa:f5:66:3c:72:cf:64:67:4f:f9:86:96:f7:82:60: e6:70:b0:e7:5d:c6:f1:b7:d6:1c:21:e3:a0:d7:31: 45:29:1c:6a:43:7c:d3:42:13:9c:50:06:d0:59:3f: a6:17:fc:b2:8e:9d:4c:1b:91:37:ee:d8:3b:a4:43: 94:7c:97:d4:4e:e5:3b:2c:6b:06:a6:93:76:3e:0a: c2:34:5f:64:d4:b5:9f:58:2b:70:0c:32:2a:a7:d6: 96:e6:ab:be:a2:ab:14:dc:27:af:cc:27:b1:20:09: d6:fe:72:89:0f:18:34:6f:94:f1:d1:05:65:af:0e: 29:60:b6:db:1a:6e:3a:a4:0b:07:fa:05:b3:08:fe: 88:b1:c3:f2:cb:0a:f0:54:30:68:04:cb:2d:ab:0b: 11:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:32:50:BB:32:BD:B4:FC:7D:BB:55:D2:71:D0:2D:23:CE:3C:17:9E X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/B42D2E32421511ECB7A6506EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.254.1.0/24 49.231.43.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:13:5c:15:e6:23:c2:bc:8e:ce:d8:4b:f0:56:91:ed:b7:1d: 0c:14:f3:84:43:63:11:c7:bb:da:36:68:49:b8:a1:d0:20:3f: 63:e4:27:b6:17:2a:d7:73:83:a3:cf:bf:c6:f2:9d:9b:d4:a6: 3a:0d:a5:a6:bb:8a:a9:eb:c7:04:04:35:6e:81:19:24:3f:4b: 2b:6c:d9:7b:a1:86:b1:27:f4:a5:be:ac:e7:6d:ed:53:77:87: a2:66:4d:d9:a2:0d:5a:b4:e3:69:2c:51:14:23:ec:7a:07:22: 3d:d2:bc:07:1f:34:4d:86:80:5c:6a:50:ee:7c:90:ee:84:3d: 97:f4:8e:22:66:60:12:c0:e2:6f:20:25:37:8c:a1:c2:a7:d9: 33:80:24:f2:46:f9:98:4a:fc:30:7b:4b:8d:dd:a1:2e:a5:05: e4:e6:55:be:49:c9:33:9a:9c:d4:ba:9d:ca:e5:e2:32:c9:3d: de:70:08:82:ff:18:36:4c:93:60:a6:68:22:3b:84:38:62:f4: 52:59:97:6b:cf:98:64:1c:1b:73:45:64:5b:18:70:1e:e2:4c: ae:c1:00:19:f2:d2:4e:66:e5:8e:84:cf:ed:b5:ae:79:b0:a3: e5:65:b4:cd:cf:a6:27:1b:1a:30:69:4c:7a:68:73:21:56:87: d6:95:e1:b6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICKXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzAyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM1ZC1iN2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5Ja29U2pNx90LwKrE+pwE/gV9AoPdEkMdmktWgvZ25/OBRMxMCZKFyPJvtg uwjQMUxfeekE82KQhVvFOh8CaiJ8lxKZRRo+NOevNWu4lD/0KWkkVQMaO3febUka lrL1Kjj0zh4v2tWq9WY8cs9kZ0/5hpb3gmDmcLDnXcbxt9YcIeOg1zFFKRxqQ3zT QhOcUAbQWT+mF/yyjp1MG5E37tg7pEOUfJfUTuU7LGsGppN2PgrCNF9k1LWfWCtw DDIqp9aW5qu+oqsU3CevzCexIAnW/nKJDxg0b5Tx0QVlrw4pYLbbGm46pAsH+gWz CP6IscPyywrwVDBoBMstqwsRSwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB4yULsy vbT8fbtV0nHQLSPOPBeeMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvQjQyRDJFMzI0 MjE1MTFFQ0I3QTY1MDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAb/gEDBAAx5yswDQYJKoZIhvcNAQELBQADggEBAEoTXBXm I8K8js7YS/BWke23HQwU84RDYxHHu9o2aEm4odAgP2PkJ7YXKtdzg6PPv8bynZvU pjoNpaa7iqnrxwQENW6BGSQ/Syts2XuhhrEn9KW+rOdt7VN3h6JmTdmiDVq042ks URQj7HoHIj3SvAcfNE2GgFxqUO58kO6EPZf0jiJmYBLA4m8gJTeMocKn2TOAJPJG +ZhK/DB7S43doS6lBeTmVb5JyTOanNS6ncrl4jLJPd5wCIL/GDZMk2CmaCI7hDhi 9FJZl2vPmGQcG3NFZFsYcB7iTK7BABny0k5m5Y6Ez+21rnmwo+VltM3PpicbGjBp THpocyFWh9aV4bY= -----END CERTIFICATE-----Generated at Sun Feb 16 20:18:48 2025 by rpki-client