$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/B4A54CAC5EEC11ECBD3D6737C4F9AE02.roa File: B4A54CAC5EEC11ECBD3D6737C4F9AE02.roa (raw, json) Hash identifier: L/nJ2fp5ku4k2iYWA1fKWGa1DosqiNOLK+rVPLG/J7Y= Subject key identifier: 4E:DD:B3:1E:EC:94:55:B3:23:A6:3D:8D:B9:74:02:83:98:BD:0B:FD Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 298F Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/B4A54CAC5EEC11ECBD3D6737C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:23 +0000 ROA not before: Tue 31 Dec 2024 15:53:23 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4558 IP address blocks: 49.229.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10639 (0x298f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54 Validity Not Before: Dec 31 15:53:23 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67741372-2c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:88:67:7b:27:e9:95:d4:20:c4:34:63:7e: ae:66:9d:ae:9b:3d:84:34:6a:96:b2:ae:98:65:50: c7:07:51:36:b5:07:25:74:72:b0:9f:f2:e8:00:54: 2d:1b:98:4f:9e:b8:8e:bd:7b:55:b2:70:6c:2c:6d: 5b:25:9b:a3:bc:9f:04:4a:3e:46:8a:27:84:49:48: ce:01:a1:48:31:e8:61:92:e8:98:97:22:b7:e0:68: cb:06:3d:78:68:ae:eb:94:b2:1c:7c:2b:77:7a:c0: 38:d7:21:42:2b:60:2a:cd:fe:bf:7d:0c:d9:17:e6: 50:f3:d0:a1:78:e7:27:d2:78:a0:3b:71:b0:38:49: 41:37:7a:1c:1f:5c:65:27:ce:fe:a2:b9:14:f0:0c: ef:cd:d7:14:ea:1d:01:6c:47:b7:74:84:12:4b:34: c7:6c:da:0c:39:4b:7e:a2:c9:7c:00:fe:9b:51:e7: 43:a6:6f:e6:a8:14:3b:f8:4b:4d:4c:43:1e:0c:b3: 4d:44:98:88:8f:51:81:e7:c0:13:37:2c:1d:6a:c8: ae:ab:50:a8:ab:54:c8:17:59:08:8d:01:4a:75:94: b3:a2:2d:7a:5e:80:3b:2b:10:75:90:cd:cf:5b:da: f5:1a:1d:42:37:d1:02:f6:cf:6a:58:1c:1a:ce:f6: ea:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DD:B3:1E:EC:94:55:B3:23:A6:3D:8D:B9:74:02:83:98:BD:0B:FD X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/B4A54CAC5EEC11ECBD3D6737C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.229.152.0/21 Signature Algorithm: sha256WithRSAEncryption 07:5b:59:5f:4e:08:fa:a7:b6:e8:11:44:4b:40:f9:34:78:88: 5f:e2:96:41:44:35:87:e9:cc:4b:0e:d2:93:44:34:69:93:e8: 91:c5:a7:a8:9b:ce:e4:1a:00:5f:3b:0e:6a:a0:63:66:28:c2: d8:f4:ab:c9:5c:48:9e:c3:b9:c0:96:e4:04:8a:6c:89:d7:1b: 52:ea:05:1d:f0:41:7c:84:33:3c:98:7c:b8:42:a7:9e:21:32: da:ff:6e:74:e4:e4:c9:c6:5a:99:7d:09:c1:31:00:9f:66:ee: c9:37:a7:ef:f6:a8:ce:56:7a:28:c3:de:da:fb:5a:d5:af:8c: 97:a0:e3:54:09:00:60:77:79:1b:bb:a3:af:f3:67:6a:c1:5f: d4:39:97:3c:ed:63:78:e9:a5:b8:f8:0c:dd:e0:74:26:f7:09: d3:62:bf:e3:bd:93:b5:f1:fa:fd:c9:bf:ad:90:e3:38:07:41: 1c:a0:1a:2e:93:2f:2c:79:3c:32:fd:23:70:f9:c6:98:23:a6: 0e:19:17:82:f5:6b:65:07:2e:1a:00:04:0c:60:dd:f7:70:a2: 0b:51:54:03:1e:ee:b5:c3:fd:92:d0:ee:32:94:d3:ee:c5:6e: 95:ca:93:6f:22:b1:c8:bc:56:87:8f:68:c6:d8:33:2f:b9:31: 19:2e:d5:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzIzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM3Mi0yYzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNCIZ3sn6ZXUIMQ0Y36uZp2umz2ENGqWsq6YZVDHB1E2tQcldHKwn/LoAFQt G5hPnriOvXtVsnBsLG1bJZujvJ8ESj5GiieESUjOAaFIMehhkuiYlyK34GjLBj14 aK7rlLIcfCt3esA41yFCK2Aqzf6/fQzZF+ZQ89CheOcn0nigO3GwOElBN3ocH1xl J87+orkU8AzvzdcU6h0BbEe3dIQSSzTHbNoMOUt+osl8AP6bUedDpm/mqBQ7+EtN TEMeDLNNRJiIj1GB58ATNywdasiuq1Coq1TIF1kIjQFKdZSzoi16XoA7KxB1kM3P W9r1Gh1CN9EC9s9qWBwazvbqAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE7dsx7s lFWzI6Y9jbl0AoOYvQv9MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvQjRBNTRDQUM1 RUVDMTFFQ0JEM0Q2NzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAMx5ZgwDQYJKoZIhvcNAQELBQADggEBAAdbWV9OCPqntugR REtA+TR4iF/ilkFENYfpzEsO0pNENGmT6JHFp6ibzuQaAF87DmqgY2Yowtj0q8lc SJ7DucCW5ASKbInXG1LqBR3wQXyEMzyYfLhCp54hMtr/bnTk5MnGWpl9CcExAJ9m 7sk3p+/2qM5WeijD3tr7WtWvjJeg41QJAGB3eRu7o6/zZ2rBX9Q5lzztY3jppbj4 DN3gdCb3CdNiv+O9k7Xx+v3Jv62Q4zgHQRygGi6TLyx5PDL9I3D5xpgjpg4ZF4L1 a2UHLhoABAxg3fdwogtRVAMe7rXD/ZLQ7jKU0+7FbpXKk28isci8VoePaMbYMy+5 MRku1QQ= -----END CERTIFICATE-----Generated at Sun Feb 16 20:20:36 2025 by rpki-client