$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/4F89B0D6D86311E9BE55026FC4F9AE02.roa File: 4F89B0D6D86311E9BE55026FC4F9AE02.roa (raw, json) Hash identifier: a0j1NYQvFLmRhOKv8vh1NGjgzJgj31IUegslP5wHl7s= Subject key identifier: D6:1A:88:E4:E0:4E:25:97:1F:2C:4E:B3:13:25:41:C6:AF:E7:57:26 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2816 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/4F89B0D6D86311E9BE55026FC4F9AE02.roa Signing time: Thu 28 Dec 2023 16:02:55 +0000 ROA not before: Thu 28 Dec 2023 16:02:55 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136742 IP address blocks: 49.231.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10262 (0x2816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:02:55 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c2e-4e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3d:0d:c6:a5:44:82:a7:50:30:60:9f:97:20: f9:8a:cd:81:8a:c1:56:27:c9:d9:90:ed:78:35:c1: 1b:c3:aa:56:80:b2:9b:bd:bc:37:e0:2a:7f:13:dd: 6b:ce:7b:18:88:1e:34:13:8c:46:35:e8:56:62:14: 3e:91:34:5d:86:e4:70:7a:39:f3:78:1b:f9:8b:d6: f2:f1:86:12:78:cf:54:ec:50:01:8d:ab:88:9e:8b: f9:81:be:d1:44:47:39:b9:c5:7d:99:be:e0:a5:93: 68:ff:65:61:93:34:f7:f7:92:fd:ad:a6:fe:f3:47: 40:96:07:35:10:c4:01:c8:a4:61:e9:2b:43:f5:11: 24:d8:f9:f9:d1:19:c8:ce:93:39:fe:34:c1:29:68: d9:37:e1:cf:9c:6d:15:b7:4a:ec:09:ab:fc:99:38: 1d:ec:a5:30:cb:3b:57:3a:20:58:4d:af:cf:4c:93: f1:bd:92:d2:9e:fd:0f:e7:d0:5e:7e:c4:21:d7:7a: 4f:d7:eb:86:d3:1d:cc:e8:0e:4a:66:94:4c:43:39: d7:9e:c5:13:76:8d:15:bc:97:6a:e1:2c:cb:e8:04: 89:93:dc:ca:fb:3b:3b:d6:c3:50:e5:60:58:c1:b7: 86:ba:6e:3f:97:89:b1:04:7d:b2:66:19:c0:7e:6b: 8d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:1A:88:E4:E0:4E:25:97:1F:2C:4E:B3:13:25:41:C6:AF:E7:57:26 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/4F89B0D6D86311E9BE55026FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.231.191.0/24 Signature Algorithm: sha256WithRSAEncryption 45:1e:81:f1:cf:71:b1:9d:fb:de:22:c0:43:c9:0d:64:bd:44: ac:ec:db:8e:64:5d:f3:07:bd:a8:39:91:60:44:7e:ce:89:3a: c1:f4:d3:c4:af:a8:a2:24:15:a3:e0:b6:f3:4e:0d:7a:5e:5c: 13:7d:9e:c2:be:33:d8:7c:e8:d7:b9:86:dd:8a:c5:ff:0d:de: ad:43:a1:29:10:e9:ef:ea:6d:96:c3:35:0c:90:a2:fb:c6:7e: cd:3f:2f:1c:6e:7f:2f:2c:d0:1f:ad:a5:75:3b:9d:2d:ff:7c: 45:b4:8b:95:4f:26:07:4b:72:7b:c8:b9:fe:a5:1f:f3:7f:bc: f7:42:64:35:2d:84:08:e8:76:b8:70:29:b1:62:c4:dd:79:ca: d2:86:96:e5:9f:3f:69:51:a9:8b:cc:d6:b3:9a:7c:f7:e9:68: 27:91:d0:a0:0b:b2:06:e9:b7:f2:4b:b3:2c:95:a9:64:1b:2d: 59:07:be:3c:be:00:0e:97:c7:27:07:71:63:91:ce:7c:ef:ba: fb:46:33:2e:a8:d3:ed:c6:9a:bf:80:8d:b4:d3:54:52:02:19: 1e:33:e1:fb:9a:e1:6f:4b:47:75:e0:a9:9c:ae:5f:79:c6:b3: 0a:10:97:d8:cf:58:d8:be:04:4e:57:de:22:24:af:1c:e3:c6: e1:68:f4:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMjU1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWMyZS00ZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsz0NxqVEgqdQMGCflyD5is2BisFWJ8nZkO14NcEbw6pWgLKbvbw34Cp/E91r znsYiB40E4xGNehWYhQ+kTRdhuRwejnzeBv5i9by8YYSeM9U7FABjauInov5gb7R REc5ucV9mb7gpZNo/2VhkzT395L9rab+80dAlgc1EMQByKRh6StD9REk2Pn50RnI zpM5/jTBKWjZN+HPnG0Vt0rsCav8mTgd7KUwyztXOiBYTa/PTJPxvZLSnv0P59Be fsQh13pP1+uG0x3M6A5KZpRMQznXnsUTdo0VvJdq4SzL6ASJk9zK+zs71sNQ5WBY wbeGum4/l4mxBH2yZhnAfmuNFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNYaiOTg TiWXHyxOsxMlQcav51cmMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNEY4OUIwRDZE ODYzMTFFOUJFNTUwMjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAx578wDQYJKoZIhvcNAQELBQADggEBAEUegfHPcbGd+94i wEPJDWS9RKzs245kXfMHvag5kWBEfs6JOsH008SvqKIkFaPgtvNODXpeXBN9nsK+ M9h86Ne5ht2Kxf8N3q1DoSkQ6e/qbZbDNQyQovvGfs0/Lxxufy8s0B+tpXU7nS3/ fEW0i5VPJgdLcnvIuf6lH/N/vPdCZDUthAjodrhwKbFixN15ytKGluWfP2lRqYvM 1rOafPfpaCeR0KALsgbpt/JLsyyVqWQbLVkHvjy+AA6XxycHcWORznzvuvtGMy6o 0+3Gmr+AjbTTVFICGR4z4fua4W9LR3XgqZyuX3nGswoQl9jPWNi+BE5X3iIkrxzj xuFo9JU= -----END CERTIFICATE-----Generated at Fri May 31 17:44:21 2024 by rpki-client on console-fra.rpki-client.org