$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/04AB651469C211EFA06F8562C4F9AE02.roa File: 04AB651469C211EFA06F8562C4F9AE02.roa (raw, json) Hash identifier: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10= Subject key identifier: 51:33:E6:32:2F:76:A1:B9:32:CB:1D:16:B0:EB:B9:40:C1:63:AC:A6 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0385 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/04AB651469C211EFA06F8562C4F9AE02.roa Signing time: Thu 05 Dec 2024 01:15:05 +0000 ROA not before: Thu 05 Dec 2024 01:15:05 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 13335 IP address blocks: 150.129.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B Validity Not Before: Dec 5 01:15:05 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6750fe98-fe41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a5:a3:ce:8c:36:95:80:49:f3:da:16:f5:5e: b8:54:b3:7d:7b:96:95:bd:3a:d1:87:60:e4:69:f7: e9:72:e2:a4:d5:61:e9:65:9c:f5:91:9f:dc:2f:ad: 66:d8:4d:c7:bf:83:9e:c9:e1:6b:b5:a3:5d:26:29: df:60:77:92:d2:47:5d:7c:ed:08:ae:79:f2:00:b3: b6:6b:35:5d:f8:e5:80:f9:6c:47:f9:a5:47:28:6a: 65:c4:1d:77:96:57:5f:9d:c0:a9:ee:f4:dd:4c:55: 66:5b:1b:46:59:5b:49:81:bf:a0:01:87:f1:12:6e: 26:cd:93:09:02:8b:64:7e:44:8e:44:20:a5:4e:2e: 50:46:17:27:42:77:0e:5d:69:b7:30:ea:8b:23:61: 81:d7:0d:bd:a2:65:5c:dd:cf:cd:ad:81:2e:7a:3f: 26:13:5f:c0:df:47:ca:bf:88:e6:10:71:d7:73:f2: 06:65:86:4b:2a:84:cc:26:b0:da:50:05:8a:b8:37: 5a:a9:f2:35:48:40:a7:d7:89:19:a6:09:c6:9e:fc: 61:19:9b:41:3f:89:98:c5:d7:72:00:76:d0:08:61: 69:6e:b1:ce:63:5d:cc:f4:be:be:96:ca:a1:34:b4: 2f:bb:0b:75:98:1a:fc:d2:a5:4e:ea:d1:d1:0b:e3: e5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:33:E6:32:2F:76:A1:B9:32:CB:1D:16:B0:EB:B9:40:C1:63:AC:A6 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/04AB651469C211EFA06F8562C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.129.217.0/24 Signature Algorithm: sha256WithRSAEncryption 17:d5:e1:dc:54:f2:25:96:d9:4f:45:cd:4a:75:5f:3f:3d:90: bd:4b:ca:88:59:8e:e2:6d:e5:34:fc:f1:47:16:1c:d3:97:38: 66:b9:96:db:9b:8a:11:21:98:19:74:43:ec:86:da:4b:54:40: 89:b3:21:ee:66:99:0c:18:f1:e0:f8:00:71:0e:a7:30:d6:2b: e0:f2:be:db:88:57:41:12:d0:dd:0d:ea:e2:5e:92:37:a6:8a: e8:46:1c:7a:54:b2:36:35:07:ce:aa:87:69:8c:cf:4a:9d:b1: bb:16:c5:9b:2e:bd:ff:76:1a:b4:58:57:e6:62:09:21:6b:5f: 5a:5d:b2:d4:f4:86:66:5f:68:3a:fc:71:a0:ba:19:7a:6a:09: 81:18:6c:18:49:62:36:d1:56:66:8f:dc:d4:75:24:01:b5:51: 6e:bb:11:cb:bc:ac:61:d1:31:53:a2:fb:44:b1:38:f4:ea:a4: e3:b3:da:45:0c:53:5a:7d:cc:76:0c:b1:f2:22:f4:00:0c:34: ef:37:2c:20:cb:a9:ca:1c:87:2f:7c:48:9a:05:d5:7b:e2:d0: c3:d8:ec:85:9d:94:82:37:84:c1:9c:52:28:f7:91:30:65:c1: ed:f4:fc:e5:a0:6c:dd:84:ce:e2:a6:4c:72:3b:42:33:9f:ac: 29:d5:8f:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjQxMjA1MDExNTA1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwZmU5OC1mZTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6Wjzow2lYBJ89oW9V64VLN9e5aVvTrRh2DkaffpcuKk1WHpZZz1kZ/cL61m 2E3Hv4OeyeFrtaNdJinfYHeS0kddfO0IrnnyALO2azVd+OWA+WxH+aVHKGplxB13 lldfncCp7vTdTFVmWxtGWVtJgb+gAYfxEm4mzZMJAotkfkSORCClTi5QRhcnQncO XWm3MOqLI2GB1w29omVc3c/NrYEuej8mE1/A30fKv4jmEHHXc/IGZYZLKoTMJrDa UAWKuDdaqfI1SECn14kZpgnGnvxhGZtBP4mYxddyAHbQCGFpbrHOY13M9L6+lsqh NLQvuwt1mBr80qVO6tHRC+Pl4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFEz5jIv dqG5MssdFrDruUDBY6ymMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvMDRBQjY1MTQ2 OUMyMTFFRkEwNkY4NTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACWgdkwDQYJKoZIhvcNAQELBQADggEBABfV4dxU8iWW2U9F zUp1Xz89kL1LyohZjuJt5TT88UcWHNOXOGa5ltubihEhmBl0Q+yG2ktUQImzIe5m mQwY8eD4AHEOpzDWK+DyvtuIV0ES0N0N6uJekjemiuhGHHpUsjY1B86qh2mMz0qd sbsWxZsuvf92GrRYV+ZiCSFrX1pdstT0hmZfaDr8caC6GXpqCYEYbBhJYjbRVmaP 3NR1JAG1UW67Ecu8rGHRMVOi+0SxOPTqpOOz2kUMU1p9zHYMsfIi9AAMNO83LCDL qcochy98SJoF1Xvi0MPY7IWdlII3hMGcUij3kTBlwe30/OWgbN2EzuKmTHI7QjOf rCnVj4Y= -----END CERTIFICATE-----Generated at Sat Apr 5 11:22:55 2025 by rpki-client