$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/71D21A40A05E11EDAC005F21C4F9AE02.roa File: 71D21A40A05E11EDAC005F21C4F9AE02.roa (raw, json) Hash identifier: wWAuh5kIJNSIRZFUI/17Ka/eUztNPx+QrG0g1L0q+HM= Subject key identifier: E8:C3:97:4F:4C:8A:2A:5D:FF:9B:F9:DE:3E:56:74:63:CC:79:65:67 Certificate issuer: /CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Certificate serial: 24FF Authority key identifier: 2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/71D21A40A05E11EDAC005F21C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:41 +0000 ROA not before: Tue 31 Dec 2024 15:53:41 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 37932 IP address blocks: 147.50.197.0/24 maxlen: 24 147.50.198.0/24 maxlen: 24 147.50.199.0/24 maxlen: 24 147.50.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9471 (0x24ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Validity Not Before: Dec 31 15:53:41 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67741385-7098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:89:a6:e2:4c:9b:a4:ed:17:96:81:e9:b1:e6: b6:5b:a2:38:74:77:c0:c7:28:03:67:78:29:be:cd: 71:9b:dd:46:51:75:93:ad:36:64:9c:92:35:7d:4f: bf:8d:37:f1:b3:1a:54:08:72:f1:5d:5b:20:1d:76: 24:1f:87:6e:ee:39:43:94:41:8f:8b:f2:83:af:50: ef:6d:f0:5b:2e:64:df:e8:a4:54:4b:b0:99:57:4b: fc:a4:bc:47:07:9f:38:98:be:b0:78:32:a8:23:28: 14:d2:1f:b9:6a:e8:47:59:e5:de:06:f2:c1:4b:7a: 22:82:87:ae:37:42:77:11:e7:b5:79:d2:8d:ea:63: 65:a4:95:72:d8:e9:6d:38:47:75:b3:19:20:b8:69: c4:59:e8:9d:7e:0e:fa:af:92:55:07:4e:46:a6:a6: b3:a5:df:60:7e:b4:e2:0d:4d:53:28:b2:58:4f:38: e0:ab:d1:2b:55:eb:57:3b:f3:46:1f:07:22:4e:5a: 5b:1d:52:ac:b5:64:31:0e:7c:86:38:82:70:ff:3a: 3b:7f:a7:2c:1e:15:a5:78:36:aa:c4:c4:0c:d5:8b: 95:a8:a4:15:19:ac:89:0e:48:36:0d:4d:d9:63:04: a9:06:ef:7c:61:13:c0:88:95:09:63:e6:bf:88:cc: d6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C3:97:4F:4C:8A:2A:5D:FF:9B:F9:DE:3E:56:74:63:CC:79:65:67 X509v3 Authority Key Identifier: keyid:2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/71D21A40A05E11EDAC005F21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.197.0-147.50.200.255 Signature Algorithm: sha256WithRSAEncryption 29:37:ab:dc:3e:7c:b0:48:70:70:03:23:a4:4c:95:ce:72:db: a9:5e:04:63:b2:01:a0:6c:97:b4:dc:0a:6a:c8:5e:d5:0f:52: 5e:69:22:a1:dc:93:10:cb:fa:0e:10:53:e2:18:fa:40:93:58: d7:54:3e:0e:2e:d7:ed:ba:b0:8e:da:21:2c:35:d4:3c:eb:a4: a1:59:f3:a0:f2:48:ea:78:3c:7e:3c:5c:15:dc:5a:7c:fa:e3: fe:c4:0e:e3:7c:2b:ac:2f:ce:59:1d:98:7b:60:1d:93:56:bd: 9e:f2:9d:17:c1:5e:4b:69:3d:d3:d3:74:c0:f0:4e:8b:1b:1f: c9:08:2d:86:97:3e:f8:b3:dd:8c:f0:74:50:01:fd:a3:e6:17: 96:c4:f3:e8:50:31:4c:e0:36:f5:51:34:4f:21:14:39:00:37: 69:5e:19:5b:08:17:1e:dd:11:f8:b9:f9:07:e0:90:0b:f5:6f: be:ee:da:33:60:c7:c0:a6:a3:55:2e:56:ac:b2:c3:47:35:0a: 8d:6a:ca:91:9b:03:23:c9:a5:51:fd:e6:91:46:5f:b5:1e:66: 41:d0:8f:47:99:ae:07:58:07:32:9a:30:e7:8f:57:60:69:96: d3:bc:f1:ca:35:be:49:7b:83:70:3d:d1:da:c7:6f:1f:da:90: a4:d2:f3:e9 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICJP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKDJGNTlDRURBNjE0ODE1RjQ2MzJGMzlENUEzMUMyQTUx NDhDNkI0RkEwHhcNMjQxMjMxMTU1MzQxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM4NS03MDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4mm4kybpO0XloHpsea2W6I4dHfAxygDZ3gpvs1xm91GUXWTrTZknJI1fU+/ jTfxsxpUCHLxXVsgHXYkH4du7jlDlEGPi/KDr1DvbfBbLmTf6KRUS7CZV0v8pLxH B584mL6weDKoIygU0h+5auhHWeXeBvLBS3oigoeuN0J3Eee1edKN6mNlpJVy2Olt OEd1sxkguGnEWeidfg76r5JVB05Gpqazpd9gfrTiDU1TKLJYTzjgq9ErVetXO/NG HwciTlpbHVKstWQxDnyGOIJw/zo7f6csHhWleDaqxMQM1YuVqKQVGayJDkg2DU3Z YwSpBu98YRPAiJUJY+a/iMzWhQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFOjDl09M iipd/5v53j5WdGPMeWVnMB8GA1UdIwQYMBaAFC9ZztphSBX0Yy851aMcKlFIxrT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC9EOTAxMTI4NDNG NEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZmUmpMem5Wb3h3cVVVakd0 UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0wxbk8ybUZJRmZSakx6blZveHdxVVVqR3RQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvRDkwMTEyODQzRjRGMTFFNTk1MTJFMDRDQzRGOUFFMDIvNzFEMjFBNDBB MDVFMTFFREFDMDA1RjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAJMyxQMEAJMyyDANBgkqhkiG9w0BAQsFAAOCAQEAKTer 3D58sEhwcAMjpEyVznLbqV4EY7IBoGyXtNwKashe1Q9SXmkiodyTEMv6DhBT4hj6 QJNY11Q+Di7X7bqwjtohLDXUPOukoVnzoPJI6ng8fjxcFdxafPrj/sQO43wrrC/O WR2Ye2Adk1a9nvKdF8FeS2k909N0wPBOixsfyQgthpc++LPdjPB0UAH9o+YXlsTz 6FAxTOA29VE0TyEUOQA3aV4ZWwgXHt0R+Ln5B+CQC/Vvvu7aM2DHwKajVS5WrLLD RzUKjWrKkZsDI8mlUf3mkUZftR5mQdCPR5muB1gHMpow549XYGmW07zxyjW+SXuD cD3R2sdvH9qQpNLz6Q== -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:22 2025 by rpki-client