$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/251E5BC2C72011EC9501FE0FC4F9AE02.roa File: 251E5BC2C72011EC9501FE0FC4F9AE02.roa (raw, json) Hash identifier: qzgy2R8SjzvEBYqnWpV7m0g7zT8B3Ylc6dWY417jjPA= Subject key identifier: 75:60:65:89:A0:DB:6E:82:DC:E9:7C:00:C4:B1:3A:7A:87:3A:8B:6C Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 297B Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/251E5BC2C72011EC9501FE0FC4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:04 +0000 ROA not before: Tue 31 Dec 2024 15:53:04 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149640 IP address blocks: 49.229.94.0/24 maxlen: 24 58.64.0.0/24 maxlen: 24 58.64.11.0/24 maxlen: 24 2405:9800:c921::/48 maxlen: 48 2405:9800:c922::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10619 (0x297b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 31 15:53:04 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67741360-874a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:91:be:3b:65:da:21:f1:65:01:3f:17:41:4e: b3:a5:b1:41:aa:37:76:c9:a0:ac:82:cf:89:42:ea: 4c:e6:74:da:b8:5b:89:60:d2:8e:fd:7b:71:84:0b: f9:70:c7:a9:11:4b:a4:a8:e5:a6:c7:49:55:9b:e3: dc:31:5f:07:74:53:91:eb:6d:b4:34:2a:9a:60:6d: b9:e8:48:df:68:22:7d:f7:4d:b7:96:64:d8:77:88: 97:a9:09:0d:be:3a:ef:c5:22:e6:75:4a:20:cf:28: 9e:7d:7e:13:e2:be:2f:4f:ab:e1:57:20:55:86:8a: 75:20:8c:4a:94:00:12:c1:ef:6b:42:a6:58:69:07: 54:91:c4:8c:cc:61:29:30:06:bc:aa:0d:3c:c4:48: 24:4a:ba:49:ed:62:de:29:da:cf:8d:bf:92:eb:0c: bc:06:27:d7:54:c6:f4:d9:50:3b:4f:e5:46:1b:eb: a0:7e:5a:4d:a9:07:25:a7:5c:9b:a8:b3:a7:8c:aa: 1c:85:35:94:9c:6d:fd:bb:0e:23:94:c9:67:f9:48: 04:60:9f:b8:01:ff:26:ed:71:74:05:79:21:f5:87: 1e:20:ed:25:e4:ad:9e:98:f6:4b:3c:a4:55:b2:1f: 58:5c:7c:c4:0c:99:fb:5b:47:83:f8:58:64:22:d3: 4c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:60:65:89:A0:DB:6E:82:DC:E9:7C:00:C4:B1:3A:7A:87:3A:8B:6C X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/251E5BC2C72011EC9501FE0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.229.94.0/24 58.64.0.0/24 58.64.11.0/24 IPv6: 2405:9800:c921::-2405:9800:c922:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 37:97:07:91:69:da:71:0c:19:77:c7:23:a2:e7:a6:7f:9b:66: 56:67:2f:2f:9e:08:51:cb:d9:ff:4b:b7:8d:bc:79:5c:d8:aa: 46:a9:5a:b0:95:8b:a1:5a:bb:40:32:e3:ae:d9:c6:c2:8f:b4: 84:ac:d2:95:db:6a:c4:1e:e9:bd:bd:85:c5:f5:49:0e:b4:cf: f6:2e:15:af:cc:58:5d:91:45:2c:3a:f1:38:43:03:3d:eb:35: 68:d4:e0:20:b7:3d:24:4e:48:ef:75:6e:6c:60:ad:a8:cb:77: d5:1b:68:0e:3f:f4:3d:b5:bf:49:aa:3e:2f:93:f2:9e:fa:ff: b2:9c:da:7b:6d:db:cb:01:5a:fe:bf:e5:a5:85:0b:e0:19:7b: d2:83:49:d6:26:96:f2:34:3c:f5:a5:20:e5:97:be:41:7b:be: 6d:96:88:01:d5:53:75:43:fe:7c:e0:f6:62:1b:c8:a9:5c:1c: 4d:49:28:a0:b6:dc:86:68:6c:59:66:36:1b:7e:c3:8d:67:63: ab:e2:27:a5:2d:66:49:f1:22:91:8c:d5:25:9f:75:d9:ec:22: b8:0a:81:5b:cb:a9:84:3a:29:66:24:02:26:70:49:15:6e:bd: ae:b6:cd:7b:c9:c9:66:3c:0f:d5:11:ca:bc:c6:7a:a3:96:c7: 2e:b6:3c:1f -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICKXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzA0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM2MC04NzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZG+O2XaIfFlAT8XQU6zpbFBqjd2yaCsgs+JQupM5nTauFuJYNKO/XtxhAv5 cMepEUukqOWmx0lVm+PcMV8HdFOR6220NCqaYG256EjfaCJ99023lmTYd4iXqQkN vjrvxSLmdUogzyiefX4T4r4vT6vhVyBVhop1IIxKlAASwe9rQqZYaQdUkcSMzGEp MAa8qg08xEgkSrpJ7WLeKdrPjb+S6wy8BifXVMb02VA7T+VGG+ugflpNqQclp1yb qLOnjKochTWUnG39uw4jlMln+UgEYJ+4Af8m7XF0BXkh9YceIO0l5K2emPZLPKRV sh9YXHzEDJn7W0eD+FhkItNMuwIDAQABo4ICvTCCArkwHQYDVR0OBBYEFHVgZYmg 226C3Ol8AMSxOnqHOotsMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvMjUxRTVCQzJD NzIwMTFFQzk1MDFGRTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MBgEAgABMBIDBAAx5V4DBAA6QAADBAA6QAswGgQCAAIwFDASAwcAJAWYAMkh AwcAJAWYAMkiMA0GCSqGSIb3DQEBCwUAA4IBAQA3lweRadpxDBl3xyOi56Z/m2ZW Zy8vnghRy9n/S7eNvHlc2KpGqVqwlYuhWrtAMuOu2cbCj7SErNKV22rEHum9vYXF 9UkOtM/2LhWvzFhdkUUsOvE4QwM96zVo1OAgtz0kTkjvdW5sYK2oy3fVG2gOP/Q9 tb9Jqj4vk/Ke+v+ynNp7bdvLAVr+v+WlhQvgGXvSg0nWJpbyNDz1pSDll75Be75t logB1VN1Q/584PZiG8ipXBxNSSigttyGaGxZZjYbfsONZ2Or4ielLWZJ8SKRjNUl n3XZ7CK4CoFby6mEOilmJAImcEkVbr2uts17yclmPA/VEcq8xnqjlscutjwf -----END CERTIFICATE-----Generated at Sat Apr 26 12:29:26 2025 by rpki-client