$ rpki-client -vvf rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/E29CD82EC58B11EFBA44DE34C4F9AE02.roa File: E29CD82EC58B11EFBA44DE34C4F9AE02.roa (raw, json) Hash identifier: Dm+Qler0DP4/BlS/cktwlrkhP2z4/Lue67gvK431F+w= Subject key identifier: 45:AC:EF:15:8E:CA:98:D9:BE:C1:FA:99:A1:91:F7:81:0C:AE:00:09 Certificate issuer: /CN=A912C7DC/serialNumber=65A8D08B2EC8F42D43B9AA7A4235172BB7ED1665 Certificate serial: 02 Authority key identifier: 65:A8:D0:8B:2E:C8:F4:2D:43:B9:AA:7A:42:35:17:2B:B7:ED:16:65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/E29CD82EC58B11EFBA44DE34C4F9AE02.roa Signing time: Sun 29 Dec 2024 02:23:26 +0000 ROA not before: Sun 29 Dec 2024 02:23:26 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137943 IP address blocks: 161.248.50.0/23 maxlen: 23 161.248.50.0/24 maxlen: 24 161.248.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.crl rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C7DC Validity Not Before: Dec 29 02:23:26 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6770b29e-f9be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4d:40:67:b7:c5:9e:05:8e:57:74:de:38:62: 4f:96:e0:92:e2:3e:41:74:06:43:41:d4:7c:76:1e: f2:c7:f9:7e:a9:dc:e4:f0:b9:5a:81:2a:97:ac:63: d8:6f:e3:87:4a:80:ee:2c:65:0b:c6:23:c3:7f:68: c0:20:5a:19:34:25:37:6a:21:5d:1b:97:16:83:59: 07:e6:fa:38:48:63:37:d4:b5:f7:79:0e:e6:b5:e8: 31:bc:5d:7f:b4:67:26:e5:fe:2d:e6:ab:0f:bd:cb: 91:27:12:f9:fa:63:ef:47:e9:d9:3e:5f:2a:3e:3c: 97:4b:f2:6a:a7:45:ac:63:60:34:a3:4d:b1:b5:fc: 06:2e:b7:d6:94:26:63:a2:e6:b7:9e:c6:5d:f4:0e: 40:4f:2e:4f:42:54:ba:9d:ec:b7:c3:86:cc:00:46: 0f:ab:76:4c:a3:7a:93:fd:98:34:71:aa:10:8d:75: e3:e4:87:e3:c9:2e:b2:12:12:15:24:c5:d1:89:0e: 1a:04:75:0e:04:13:20:1d:b5:72:3e:b3:c1:a1:3a: 3d:90:7b:90:56:89:be:51:28:96:bd:45:5a:2e:66: 04:22:71:b7:2d:a5:d8:19:6e:ae:88:80:9c:44:c7: 11:f5:fb:eb:e8:09:b3:a3:60:e3:d2:1c:0c:26:50: 82:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AC:EF:15:8E:CA:98:D9:BE:C1:FA:99:A1:91:F7:81:0C:AE:00:09 X509v3 Authority Key Identifier: keyid:65:A8:D0:8B:2E:C8:F4:2D:43:B9:AA:7A:42:35:17:2B:B7:ED:16:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/E29CD82EC58B11EFBA44DE34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.50.0/23 Signature Algorithm: sha256WithRSAEncryption 70:59:7b:05:66:32:36:69:5c:66:f2:a6:7d:a9:87:4c:cb:59: 49:85:16:e7:67:d1:2a:d2:61:3e:63:bc:9e:40:2c:98:34:bb: 12:49:e7:8f:89:9d:03:ba:ec:98:e2:4c:1b:fe:da:da:68:02: 5c:1f:a6:23:ad:31:1c:f1:c7:b2:9c:11:4e:13:f1:6e:26:2f: 6b:dd:e4:2b:0c:96:30:f1:0f:1c:2e:8d:34:43:3f:21:80:f7: 43:62:56:47:97:f5:2d:3c:eb:4f:bd:78:b3:b9:5f:9c:71:8b: 37:12:e6:b9:00:cd:52:a0:d5:50:b5:87:80:12:7a:9e:6a:ad: 1c:9c:45:cf:52:e9:ed:8b:62:37:38:42:2c:56:0b:54:0d:63: 1d:48:b0:e2:a8:96:01:e3:69:38:80:67:72:1e:78:5c:5f:9c: 56:ad:31:7b:5f:84:01:3e:2f:d1:d5:14:8a:aa:87:25:99:c0: d3:77:59:97:f4:38:ca:07:0d:28:8c:3c:61:cf:d9:55:23:6f: 69:e1:c4:d3:0c:5d:09:87:12:b8:38:f8:2a:c2:b6:e5:97:44: 93:d6:37:da:84:da:3a:8f:e7:64:28:48:c6:b1:de:9e:ce:09: df:25:20:f6:7a:e7:a6:c5:64:da:ba:09:36:8f:fc:d8:4f:be: 2e:75:5b:77 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzdEQzExMC8GA1UEBRMoNjVBOEQwOEIyRUM4RjQyRDQzQjlBQTdBNDIzNTE3MkJC N0VEMTY2NTAeFw0yNDEyMjkwMjIzMjZaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzBiMjllLWY5YmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDATUBnt8WeBY5XdN44Yk+W4JLiPkF0BkNB1Hx2HvLH+X6p3OTwuVqBKpesY9hv 44dKgO4sZQvGI8N/aMAgWhk0JTdqIV0blxaDWQfm+jhIYzfUtfd5Dua16DG8XX+0 Zybl/i3mqw+9y5EnEvn6Y+9H6dk+Xyo+PJdL8mqnRaxjYDSjTbG1/AYut9aUJmOi 5reexl30DkBPLk9CVLqd7LfDhswARg+rdkyjepP9mDRxqhCNdePkh+PJLrISEhUk xdGJDhoEdQ4EEyAdtXI+s8GhOj2Qe5BWib5RKJa9RVouZgQicbctpdgZbq6IgJxE xxH1++voCbOjYOPSHAwmUIJHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURazvFY7K mNm+wfqZoZH3gQyuAAkwHwYDVR0jBBgwFoAUZajQiy7I9C1Duap6QjUXK7ftFmUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDN0RDLzY0QkE0QkE4QzU4 QjExRUZCODdFNUYzM0M0RjlBRTAyL1phalFpeTdJOUMxRHVhcDZRalVYSzdmdEZt VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWmFqUWl5N0k5QzFEdWFwNlFqVVhLN2Z0Rm1VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzdEQy82NEJBNEJBOEM1OEIxMUVGQjg3RTVGMzNDNEY5QUUwMi9FMjlDRDgyRUM1 OEIxMUVGQkE0NERFMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4MjANBgkqhkiG9w0BAQsFAAOCAQEAcFl7BWYyNmlcZvKm famHTMtZSYUW52fRKtJhPmO8nkAsmDS7Eknnj4mdA7rsmOJMG/7a2mgCXB+mI60x HPHHspwRThPxbiYva93kKwyWMPEPHC6NNEM/IYD3Q2JWR5f1LTzrT714s7lfnHGL NxLmuQDNUqDVULWHgBJ6nmqtHJxFz1Lp7YtiNzhCLFYLVA1jHUiw4qiWAeNpOIBn ch54XF+cVq0xe1+EAT4v0dUUiqqHJZnA03dZl/Q4ygcNKIw8Yc/ZVSNvaeHE0wxd CYcSuDj4KsK25ZdEk9Y32oTaOo/nZChIxrHens4J3yUg9nrnpsVk2roJNo/82E++ LnVbdw== -----END CERTIFICATE-----Generated at Wed Feb 5 21:51:31 2025 by rpki-client