$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/2A67700A9B4411EFA1772153C4F9AE02.roa File: 2A67700A9B4411EFA1772153C4F9AE02.roa (raw, json) Hash identifier: umP1jM7YynccOJheC11YvDxU2JNxDYT6vSOoFYsUbhA= Subject key identifier: 46:DA:D5:DE:B0:AE:C7:24:47:D6:0C:A0:64:AF:BE:54:84:58:A6:5D Certificate issuer: /CN=A91DBAF1/serialNumber=25F3D21688AB9381AA8B952BCE2641293542A7F2 Certificate serial: 0782 Authority key identifier: 25:F3:D2:16:88:AB:93:81:AA:8B:95:2B:CE:26:41:29:35:42:A7:F2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/2A67700A9B4411EFA1772153C4F9AE02.roa Signing time: Sat 10 May 2025 21:39:49 +0000 ROA not before: Sat 10 May 2025 21:39:49 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 23686 IP address blocks: 51.162.48.0/24 maxlen: 24 51.162.49.0/24 maxlen: 24 51.162.50.0/23 maxlen: 23 51.162.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.crl rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 14:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1922 (0x782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBAF1, serialNumber=25F3D21688AB9381AA8B952BCE2641293542A7F2 Validity Not Before: May 10 21:39:49 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681fc7a5-28fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b9:c4:d8:64:51:ed:56:8f:cd:49:8d:34:05: 84:95:6a:76:e4:fa:66:e2:1c:d1:25:7c:e0:d3:8b: b7:d7:a0:bf:12:bf:4c:eb:bf:9b:7f:87:b8:7f:83: 24:ec:15:d1:58:5a:5b:4e:23:72:4f:44:63:f3:5c: 9c:d2:16:62:08:b3:71:bf:fb:65:46:43:98:5b:e8: 8d:72:73:b0:24:c4:6e:0f:0c:0d:0d:d6:d6:1a:2d: 41:37:d8:9f:46:bd:db:c4:36:d8:3c:2b:77:cc:df: 51:b6:9b:26:d0:e0:df:7b:45:3d:7e:53:f2:e7:dd: 6d:91:6a:db:75:12:7f:09:1c:53:2c:2c:f1:53:f2: 62:69:00:9d:a0:de:ed:be:04:19:ac:4d:5a:56:4a: 88:4b:e5:07:99:06:a4:d3:1e:63:db:e0:36:91:01: c3:b0:b1:97:2a:a5:40:09:29:b6:48:41:19:f0:2c: fc:28:41:ce:ac:97:ed:b0:73:49:8a:31:b5:28:a9: 1b:11:cf:be:3e:95:f0:62:e6:24:c5:85:7e:14:49: 2e:67:29:a3:6f:fe:ed:df:40:3a:a2:21:e9:1a:0d: 15:81:ed:bf:e7:d6:4d:d2:20:38:53:e0:f9:d6:97: c7:8b:79:77:79:37:68:e4:68:b2:63:b7:2c:eb:cd: 00:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:DA:D5:DE:B0:AE:C7:24:47:D6:0C:A0:64:AF:BE:54:84:58:A6:5D X509v3 Authority Key Identifier: keyid:25:F3:D2:16:88:AB:93:81:AA:8B:95:2B:CE:26:41:29:35:42:A7:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/2A67700A9B4411EFA1772153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 51.162.48.0/22 51.162.71.0/24 Signature Algorithm: sha256WithRSAEncryption 88:aa:ed:bd:5e:19:82:7d:6a:cc:a5:8c:27:0b:fd:cd:4f:12: 33:be:c5:6b:7b:fb:f2:9d:1c:ac:0b:02:29:ab:a3:be:4d:4a: 3b:92:d3:0c:30:c0:10:68:7b:41:1c:ea:d1:2a:b6:24:1e:04: 53:06:bb:48:2a:64:9d:a9:5f:61:cb:e8:0a:8e:34:ad:5b:aa: 39:ce:6b:8d:87:8c:3f:93:5f:c2:13:75:eb:9c:e5:c5:3e:18: a1:ce:5f:78:28:dd:40:9d:48:e5:33:e0:6a:41:b8:98:46:29: 6e:34:9d:80:d7:cd:68:6f:96:41:43:a5:46:34:ce:c2:5c:d3: ec:72:99:9b:3e:d4:23:ab:a3:71:e0:55:e8:09:6b:e1:6c:df: 82:76:4a:03:c9:2d:44:53:e8:5a:74:a5:ed:b2:aa:97:87:3b: 1c:d3:52:f5:e0:dd:2e:e9:d1:c6:10:8f:33:74:d3:0f:c3:2a: cb:8f:19:7f:f5:19:6c:c7:32:6d:a2:a0:27:10:d9:f9:5b:07: c3:7e:52:92:92:73:b3:38:18:5c:c7:2d:1e:47:26:50:fe:12: 02:1b:3c:3a:d3:2b:d8:1b:c9:19:d7:b1:b2:8b:73:63:3a:34: a6:b6:1f:73:c8:4e:8d:ff:a5:d9:26:b8:51:66:4a:f9:89:23: 2d:50:86:b3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBRjExMTAvBgNVBAUTKDI1RjNEMjE2ODhBQjkzODFBQThCOTUyQkNFMjY0MTI5 MzU0MkE3RjIwHhcNMjUwNTEwMjEzOTQ5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmYzdhNS0yOGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07nE2GRR7VaPzUmNNAWElWp25Ppm4hzRJXzg04u316C/Er9M67+bf4e4f4Mk 7BXRWFpbTiNyT0Rj81yc0hZiCLNxv/tlRkOYW+iNcnOwJMRuDwwNDdbWGi1BN9if Rr3bxDbYPCt3zN9Rtpsm0ODfe0U9flPy591tkWrbdRJ/CRxTLCzxU/JiaQCdoN7t vgQZrE1aVkqIS+UHmQak0x5j2+A2kQHDsLGXKqVACSm2SEEZ8Cz8KEHOrJftsHNJ ijG1KKkbEc++PpXwYuYkxYV+FEkuZymjb/7t30A6oiHpGg0Vge2/59ZN0iA4U+D5 1pfHi3l3eTdo5GiyY7cs680AtwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEba1d6w rsckR9YMoGSvvlSEWKZdMB8GA1UdIwQYMBaAFCXz0haIq5OBqouVK84mQSk1Qqfy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkFGMS84NkRCMkNDQzI0 OEUxMUVCQUJFRjJCMkZDNEY5QUUwMi9KZlBTRm9pcms0R3FpNVVyemlaQktUVkNw X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pmUFNGb2lyazRHcWk1VXJ6aVpCS1RWQ3BfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJBRjEvODZEQjJDQ0MyNDhFMTFFQkFCRUYyQjJGQzRGOUFFMDIvMkE2NzcwMEE5 QjQ0MTFFRkExNzcyMTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIzojADBAAzokcwDQYJKoZIhvcNAQELBQADggEBAIiq7b1e GYJ9asyljCcL/c1PEjO+xWt7+/KdHKwLAimro75NSjuS0wwwwBBoe0Ec6tEqtiQe BFMGu0gqZJ2pX2HL6AqONK1bqjnOa42HjD+TX8ITdeuc5cU+GKHOX3go3UCdSOUz 4GpBuJhGKW40nYDXzWhvlkFDpUY0zsJc0+xymZs+1COro3HgVegJa+Fs34J2SgPJ LURT6Fp0pe2yqpeHOxzTUvXg3S7p0cYQjzN00w/DKsuPGX/1GWzHMm2ioCcQ2flb B8N+UpKSc7M4GFzHLR5HJlD+EgIbPDrTK9gbyRnXsbKLc2M6NKa2H3PITo3/pdkm uFFmSvmJIy1QhrM= -----END CERTIFICATE-----Generated at Thu May 15 00:21:22 2025 by rpki-client