$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/E51A0F1CBC7211EF870FDD21C4F9AE02.roa File: E51A0F1CBC7211EF870FDD21C4F9AE02.roa (raw, json) Hash identifier: T9bVFC+7xpXVsPqPdgoCB8jD3lh7ibXEAScTNhvEn5k= Subject key identifier: 77:4B:7E:2C:52:EC:59:D5:6C:09:69:7B:0F:D7:E5:C9:5B:3E:9E:7B Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: 06 Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/E51A0F1CBC7211EF870FDD21C4F9AE02.roa Signing time: Tue 17 Dec 2024 12:31:53 +0000 ROA not before: Tue 17 Dec 2024 12:31:53 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 214571 IP address blocks: 160.250.224.0/24 maxlen: 24 160.250.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753 Validity Not Before: Dec 17 12:31:53 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67616f39-9eab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:20:f3:87:21:c4:40:f2:1a:46:cc:36:61: 47:c3:ea:74:20:c1:45:25:f6:1b:61:c2:bd:5a:e5: d1:ac:9a:2a:f5:00:4a:03:a6:3d:84:07:a5:31:de: 23:8f:e5:f4:6b:9f:07:66:e3:6c:91:92:03:74:da: a0:15:38:90:3c:80:2f:3c:14:63:47:60:55:e9:d9: 01:47:aa:7f:15:ea:2d:d4:c6:03:e3:bd:1b:c0:9e: 99:94:95:7f:10:53:9f:ca:d6:25:f3:c5:11:a4:f9: 6e:2d:13:34:06:f5:aa:31:5d:8c:81:fc:78:0d:a7: 51:11:99:52:2e:9f:0f:99:cb:c4:1f:31:93:1d:6e: 07:b8:5d:c1:1f:e8:f7:06:17:20:88:9f:24:a6:15: 3a:b5:02:11:65:97:4f:6a:66:56:d0:1f:86:17:8c: c9:14:3d:20:43:6c:db:ac:df:6b:2a:ad:11:50:eb: 98:da:66:08:34:12:f8:07:03:9f:2f:77:d7:fb:dc: 9a:b6:8d:ff:22:4e:f9:51:3d:2b:35:48:8f:21:0b: 1c:2f:cb:fd:3b:3b:6b:f8:2c:38:9e:62:f7:b3:b3: 6b:e0:cb:d9:40:e3:8c:6f:35:b4:30:78:e5:8e:dd: de:aa:b1:1e:91:9e:a3:32:19:e1:93:69:21:92:e4: 4f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:4B:7E:2C:52:EC:59:D5:6C:09:69:7B:0F:D7:E5:C9:5B:3E:9E:7B X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/E51A0F1CBC7211EF870FDD21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.224.0/23 Signature Algorithm: sha256WithRSAEncryption 25:ed:7b:47:17:e9:d1:50:10:07:1b:8b:d4:34:05:74:44:2d: 99:4c:1b:b1:13:1e:73:46:f2:ef:13:a0:8d:37:84:d9:15:ed: c0:51:65:26:f6:1d:53:ae:3f:0b:ba:81:cd:64:35:7e:7c:40: a6:ab:00:a9:5c:ef:a8:ab:db:53:8b:c3:3a:d0:c4:86:2a:6f: a9:a0:f6:fd:d9:c7:8c:4f:5b:33:b4:78:25:63:8e:1e:93:b0: 90:f2:c9:98:e1:fb:2e:21:18:26:61:df:8e:5f:13:fe:68:75: 95:9b:3b:66:ee:25:17:06:1a:80:d1:da:97:93:50:20:46:52: 0c:5d:e4:69:07:61:80:72:53:89:96:5c:c3:45:92:97:02:f6: 84:16:4c:70:a1:9b:70:bb:c5:56:5f:67:a6:b7:22:af:4a:47: 16:13:7c:9b:02:04:3f:26:cb:b6:5b:fc:df:90:65:38:61:95: f7:3e:83:82:cc:05:dd:b4:5b:0f:48:fa:d4:d3:1f:df:9a:ac: ec:c4:ed:39:4f:30:f5:25:98:9d:50:ca:bb:d3:ae:07:f0:c7: e9:e9:17:4a:cb:d9:de:7f:18:38:0d:fb:c4:43:aa:7d:ad:fb: cf:2e:b8:7e:4a:f7:4d:06:7a:3d:f7:50:ad:85:6c:de:fc:cd: 0c:71:10:57 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Rjc1MzExMC8GA1UEBRMoMkQ0OUIzQUU2REExOEI2MzQ2NEEzMTc3QUIzMjEwMTk0 MkU2QTUxQTAeFw0yNDEyMTcxMjMxNTNaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NjE2ZjM5LTllYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDa6iDzhyHEQPIaRsw2YUfD6nQgwUUl9hthwr1a5dGsmir1AEoDpj2EB6Ux3iOP 5fRrnwdm42yRkgN02qAVOJA8gC88FGNHYFXp2QFHqn8V6i3UxgPjvRvAnpmUlX8Q U5/K1iXzxRGk+W4tEzQG9aoxXYyB/HgNp1ERmVIunw+Zy8QfMZMdbge4XcEf6PcG FyCInySmFTq1AhFll09qZlbQH4YXjMkUPSBDbNus32sqrRFQ65jaZgg0EvgHA58v d9f73Jq2jf8iTvlRPSs1SI8hCxwvy/07O2v4LDieYvezs2vgy9lA44xvNbQweOWO 3d6qsR6RnqMyGeGTaSGS5E+BAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUd0t+LFLs WdVsCWl7D9flyVs+nnswHwYDVR0jBBgwFoAULUmzrm2hi2NGSjF3qzIQGULmpRow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNzUzLzc4MDlEQTAyQkMw RDExRUY5QjRBRDY0OUM0RjlBRTAyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBS by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTFVtenJtMmhpMk5HU2pGM3F6SVFHVUxtcFJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9FNTFBMEYxQ0JD NzIxMUVGODcwRkREMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD64DANBgkqhkiG9w0BAQsFAAOCAQEAJe17Rxfp0VAQBxuL 1DQFdEQtmUwbsRMec0by7xOgjTeE2RXtwFFlJvYdU64/C7qBzWQ1fnxApqsAqVzv qKvbU4vDOtDEhipvqaD2/dnHjE9bM7R4JWOOHpOwkPLJmOH7LiEYJmHfjl8T/mh1 lZs7Zu4lFwYagNHal5NQIEZSDF3kaQdhgHJTiZZcw0WSlwL2hBZMcKGbcLvFVl9n prcir0pHFhN8mwIEPybLtlv835BlOGGV9z6DgswF3bRbD0j61NMf35qs7MTtOU8w 9SWYnVDKu9OuB/DH6ekXSsvZ3n8YOA37xEOqfa37zy64fkr3TQZ6PfdQrYVs3vzN DHEQVw== -----END CERTIFICATE-----Generated at Wed Feb 5 23:09:10 2025 by rpki-client