$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/E454A324EC5811EF80EABF18C4F9AE02.roa File: E454A324EC5811EF80EABF18C4F9AE02.roa (raw, json) Hash identifier: YHG5dJrgWguVVX0TqVGNfIMAFQq1FZHSymYvBAi+Egs= Subject key identifier: B8:AD:7E:FA:A3:0E:1D:52:88:A8:BC:1B:00:3A:AA:F4:FC:34:82:38 Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: 29 Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/E454A324EC5811EF80EABF18C4F9AE02.roa Signing time: Sun 16 Feb 2025 11:26:41 +0000 ROA not before: Sun 16 Feb 2025 11:26:40 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 213862 IP address blocks: 160.250.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Feb 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753 Validity Not Before: Feb 16 11:26:40 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67b1cb70-2549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7e:a2:31:67:5f:d0:3e:c8:d8:92:27:4f:29: 6f:8e:af:67:d0:60:a5:35:b2:49:ec:44:c1:1e:55: 85:53:40:57:7c:d8:bc:2c:38:1a:52:86:f4:e9:74: d7:e3:8e:56:5d:9d:d7:77:4b:75:94:7a:bc:41:ab: 8a:93:fd:a2:78:c8:fb:38:cd:af:8a:67:d5:9a:67: c8:04:43:a0:d4:7f:31:df:0f:22:43:3f:51:a8:28: ce:74:4e:be:ba:9e:a1:91:51:96:e9:0f:11:0e:ba: c7:52:df:65:e9:d6:ba:b0:33:86:d9:a7:41:07:51: 01:71:de:2d:b9:49:23:8e:75:24:e8:36:e5:c2:b4: af:88:5d:ef:71:92:de:3a:ab:a0:58:16:32:f1:6c: 98:6b:1c:db:dc:c3:82:91:99:d9:12:0d:64:8c:40: 3b:bb:8e:69:64:cc:ad:51:aa:16:c8:0b:96:de:5a: c8:66:d4:6b:4d:a8:55:da:86:35:f4:8d:a1:78:62: 92:df:6e:46:73:59:ac:21:a4:4f:04:c6:21:d6:39: 82:be:4a:3f:25:26:ff:77:06:16:44:3e:4f:42:b6: 46:af:dd:13:13:e0:9a:53:6a:fe:d2:f6:71:8b:ef: ce:60:f4:a8:7b:86:bf:78:30:c5:11:3b:97:41:fb: fe:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AD:7E:FA:A3:0E:1D:52:88:A8:BC:1B:00:3A:AA:F4:FC:34:82:38 X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/E454A324EC5811EF80EABF18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.225.0/24 Signature Algorithm: sha256WithRSAEncryption 03:7f:20:dd:82:b7:e7:4e:c1:c6:bd:4f:d7:ba:a5:70:f8:cc: 9b:83:87:e4:7e:d9:c4:6c:9e:3d:59:4e:fb:c8:03:a2:b4:60: 07:4d:fa:81:c1:0f:4f:4c:8e:a3:38:68:36:54:00:76:6e:22: d1:fa:1b:a1:f5:d8:ab:aa:1d:10:35:d4:58:b5:69:30:19:85: 5f:63:bc:f5:91:d7:f7:40:1e:f5:4e:42:87:6e:c1:ba:ba:85: 8b:0e:c6:8a:c8:c4:4b:4b:8e:cf:8c:49:3a:e1:2d:50:68:4b: ad:6e:35:68:c0:fc:71:7a:7f:17:c0:24:72:8c:4f:3b:1a:d8: 6c:59:13:4a:c4:1f:47:f4:a8:ab:b6:8a:04:13:15:b9:a9:40: 79:fd:e7:87:3c:89:aa:bf:57:62:e5:e2:4b:c3:73:2d:5a:f7: cc:57:3d:c8:a0:fb:51:2f:ac:16:da:74:9e:04:8c:e6:67:e4: 1f:97:25:77:80:c9:17:78:26:66:96:81:56:5d:94:c9:1f:8f: 33:21:7a:73:b0:9f:15:a1:51:33:3b:f9:51:1f:8b:8b:03:2a: 2b:ca:23:29:21:11:06:a8:57:dd:1e:91:83:99:d0:20:9c:3c: 4b:7d:cc:cf:d3:55:a2:16:c6:20:ed:31:e4:b9:d1:83:c3:08: 51:a6:1c:2d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Rjc1MzExMC8GA1UEBRMoMkQ0OUIzQUU2REExOEI2MzQ2NEEzMTc3QUIzMjEwMTk0 MkU2QTUxQTAeFw0yNTAyMTYxMTI2NDBaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjFjYjcwLTI1NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+fqIxZ1/QPsjYkidPKW+Or2fQYKU1sknsRMEeVYVTQFd82LwsOBpShvTpdNfj jlZdndd3S3WUerxBq4qT/aJ4yPs4za+KZ9WaZ8gEQ6DUfzHfDyJDP1GoKM50Tr66 nqGRUZbpDxEOusdS32Xp1rqwM4bZp0EHUQFx3i25SSOOdSToNuXCtK+IXe9xkt46 q6BYFjLxbJhrHNvcw4KRmdkSDWSMQDu7jmlkzK1RqhbIC5beWshm1GtNqFXahjX0 jaF4YpLfbkZzWawhpE8ExiHWOYK+Sj8lJv93BhZEPk9Ctkav3RMT4JpTav7S9nGL 785g9Kh7hr94MMURO5dB+/4XAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuK1++qMO HVKIqLwbADqq9Pw0gjgwHwYDVR0jBBgwFoAULUmzrm2hi2NGSjF3qzIQGULmpRow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNzUzLzc4MDlEQTAyQkMw RDExRUY5QjRBRDY0OUM0RjlBRTAyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBS by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTFVtenJtMmhpMk5HU2pGM3F6SVFHVUxtcFJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9FNDU0QTMyNEVD NTgxMUVGODBFQUJGMThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD64TANBgkqhkiG9w0BAQsFAAOCAQEAA38g3YK3507Bxr1P 17qlcPjMm4OH5H7ZxGyePVlO+8gDorRgB036gcEPT0yOozhoNlQAdm4i0fobofXY q6odEDXUWLVpMBmFX2O89ZHX90Ae9U5Ch27BurqFiw7GisjES0uOz4xJOuEtUGhL rW41aMD8cXp/F8AkcoxPOxrYbFkTSsQfR/Soq7aKBBMVualAef3nhzyJqr9XYuXi S8NzLVr3zFc9yKD7US+sFtp0ngSM5mfkH5cld4DJF3gmZpaBVl2UyR+PMyF6c7Cf FaFRMzv5UR+LiwMqK8ojKSERBqhX3R6Rg5nQIJw8S33Mz9NVohbGIO0x5LnRg8MI UaYcLQ== -----END CERTIFICATE-----Generated at Fri Feb 21 13:03:12 2025 by rpki-client