$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa File: B5569B88096311EE9ECB644DC4F9AE02.roa (raw, json) Hash identifier: r69ry07FlZRyxMcGSskusquMKld1QByFguUcoWDQa3s= Subject key identifier: 34:0E:FC:7B:5D:05:0C:39:43:08:9F:A4:5B:C1:2F:D2:59:FE:C7:13 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 011B Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa Signing time: Tue 03 Dec 2024 03:26:35 +0000 ROA not before: Tue 03 Dec 2024 03:26:35 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 400318 IP address blocks: 49.0.56.0/21 maxlen: 21 49.0.56.0/24 maxlen: 24 49.0.57.0/24 maxlen: 24 49.0.58.0/24 maxlen: 24 49.0.59.0/24 maxlen: 24 49.0.60.0/24 maxlen: 24 49.0.61.0/24 maxlen: 24 49.0.62.0/24 maxlen: 24 49.0.63.0/24 maxlen: 29 103.36.54.0/23 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Dec 3 03:26:35 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e7a6a-61c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:24:37:f5:e9:6c:09:c3:09:55:47:b0:d1:45: 00:ee:b8:7d:bd:16:9d:af:5e:69:eb:9a:ac:22:df: 2a:52:ba:e9:33:71:58:ee:05:71:77:af:df:31:39: e5:f1:4d:ce:b4:69:6f:0d:e9:01:16:c5:8d:c7:48: 5a:5e:72:e2:f2:cb:3d:04:c3:0b:da:c5:ac:94:6e: a2:a0:2c:54:be:2b:25:c4:75:29:3e:90:2b:58:ea: de:2f:a0:37:b1:5a:62:12:6b:00:40:86:0a:71:98: c7:43:3d:1c:1a:34:a2:f4:34:10:15:a8:6f:84:d0: b8:34:22:12:73:c5:8b:6c:9f:29:dc:18:85:8c:7c: 2d:9c:c8:cb:f6:05:df:b2:4b:14:1d:83:30:b0:27: 0e:44:d5:13:82:7e:ab:a6:d2:a7:6a:0e:18:f1:07: c0:e7:25:1f:a1:e4:7a:b0:64:26:87:4b:ea:45:59: 90:8b:9e:ab:cb:f4:40:69:32:13:1b:3a:13:8b:f0: 7e:3e:17:c0:cc:b0:3a:0a:7a:ef:95:cc:2f:ce:cb: c7:f9:08:bb:59:66:16:4c:8e:43:b0:52:77:3d:63: c5:9f:ae:a8:73:b3:99:a3:c1:06:e5:bb:ec:ac:ff: 9a:61:88:a9:4f:00:ff:3f:98:12:71:c8:50:85:5f: ec:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0E:FC:7B:5D:05:0C:39:43:08:9F:A4:5B:C1:2F:D2:59:FE:C7:13 X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.0.56.0/21 103.36.54.0/23 Signature Algorithm: sha256WithRSAEncryption 81:00:3d:95:a7:52:36:a8:9c:5d:43:1a:20:dc:f2:7c:96:f0: 64:97:1c:7e:e6:a7:1e:3a:92:63:c7:fc:6a:39:d0:b8:59:78: f8:b6:4a:52:b7:6b:5c:29:72:02:ad:1b:f7:43:25:16:8d:3e: f7:c6:43:9d:56:44:29:54:70:d9:28:93:8c:c6:27:3f:ff:17: ca:33:64:1a:f8:f1:8b:55:2f:2a:f5:9e:d7:78:a3:1f:c6:29: 94:55:51:c6:b4:51:69:78:d0:93:53:ff:55:77:5d:e6:1c:8a: 44:9b:eb:18:27:e1:c3:a3:29:8b:a7:c5:47:78:ab:b0:0d:36: 5a:80:f8:df:97:ed:85:f7:47:a6:84:e4:de:62:af:6f:25:62: 08:51:26:fc:14:bd:b2:90:1a:02:90:fd:08:1e:a9:4b:1b:62: 44:27:e5:ab:97:ef:5f:69:1e:68:ea:9f:27:4e:a8:b9:11:ee: 1c:dc:b9:96:3f:60:b3:18:35:4f:dd:5b:bb:ec:94:6b:52:46: f6:5a:5b:46:9d:c9:1f:c0:98:4f:bb:97:b3:66:e0:ae:68:cd: 14:b1:8b:8a:47:d3:12:34:fa:81:8a:05:62:0d:eb:ac:77:08: d5:9f:da:1f:a2:3b:81:2f:6d:ac:78:1f:49:e2:29:b0:df:0e: 1b:1b:8e:b8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjQxMjAzMDMyNjM1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlN2E2YS02MWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCQ39elsCcMJVUew0UUA7rh9vRadr15p65qsIt8qUrrpM3FY7gVxd6/fMTnl 8U3OtGlvDekBFsWNx0haXnLi8ss9BMML2sWslG6ioCxUvislxHUpPpArWOreL6A3 sVpiEmsAQIYKcZjHQz0cGjSi9DQQFahvhNC4NCISc8WLbJ8p3BiFjHwtnMjL9gXf sksUHYMwsCcORNUTgn6rptKnag4Y8QfA5yUfoeR6sGQmh0vqRVmQi56ry/RAaTIT GzoTi/B+PhfAzLA6CnrvlcwvzsvH+Qi7WWYWTI5DsFJ3PWPFn66oc7OZo8EG5bvs rP+aYYipTwD/P5gScchQhV/sxwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDQO/Htd BQw5QwifpFvBL9JZ/scTMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUyODAvQzA0QjFCNzYwOTVGMTFFRUFEMEVEMDRDQzRGOUFFMDIvQjU1NjlCODgw OTYzMTFFRTlFQ0I2NDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAMxADgDBAFnJDYwDQYJKoZIhvcNAQELBQADggEBAIEAPZWn UjaonF1DGiDc8nyW8GSXHH7mpx46kmPH/Go50LhZePi2SlK3a1wpcgKtG/dDJRaN PvfGQ51WRClUcNkok4zGJz//F8ozZBr48YtVLyr1ntd4ox/GKZRVUca0UWl40JNT /1V3XeYcikSb6xgn4cOjKYunxUd4q7ANNlqA+N+X7YX3R6aE5N5ir28lYghRJvwU vbKQGgKQ/QgeqUsbYkQn5auX719pHmjqnydOqLkR7hzcuZY/YLMYNU/dW7vslGtS RvZaW0adyR/AmE+7l7Nm4K5ozRSxi4pH0xI0+oGKBWIN66x3CNWf2h+iO4Evbax4 H0niKbDfDhsbjrg= -----END CERTIFICATE-----Generated at Sun Apr 27 00:18:02 2025 by rpki-client