$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/6AD18BAAD60D11E9A0539B2EC4F9AE02.roa File: 6AD18BAAD60D11E9A0539B2EC4F9AE02.roa (raw, json) Hash identifier: Ds0SlOC+zER7JfA69IZBrruygeLlpHbQs+hFcGtFYxo= Subject key identifier: AC:15:C6:27:AC:14:07:B1:19:4A:C1:7D:7A:2D:24:63:3B:AE:DD:56 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 282B Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/6AD18BAAD60D11E9A0539B2EC4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:14 +0000 ROA not before: Thu 28 Dec 2023 16:03:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 3839 IP address blocks: 49.0.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10283 (0x282b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:14 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c42-76bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1c:11:a9:e5:de:57:4c:38:d2:43:70:70:16: 0e:0c:37:b1:27:84:74:9d:93:84:bd:e5:c0:3f:f1: 6f:b4:7b:48:c2:55:d7:fe:5b:7c:d4:50:bf:47:ab: 10:2a:61:3c:d7:4f:00:19:d7:8e:fd:13:a7:b5:a3: c5:6f:2e:d7:80:e8:6c:cf:7a:9e:d5:cf:0c:ed:4e: 2e:4b:3f:7e:20:f9:2f:f0:ba:d4:47:83:bc:a1:57: b5:b4:ac:00:01:25:ed:7f:1d:fc:03:06:cc:7e:71: f0:c1:4f:c2:fc:a3:78:9a:47:6b:d8:0d:76:3d:a4: 2f:40:23:7b:cd:a0:c2:f3:1b:eb:00:85:bc:71:36: 3b:44:62:ce:ca:bd:0c:6e:2c:1d:71:77:be:a6:52: 93:cc:a3:9d:49:d9:9a:5c:5c:7f:4f:77:be:8d:b7: 18:ac:64:6e:34:4e:a6:2a:55:1b:c0:6a:a0:d7:ba: a1:38:73:39:93:63:1a:00:3c:ac:d6:05:a3:ae:1b: 88:4e:55:f9:5a:0e:96:4c:a5:84:7b:74:a1:fd:e7: 85:05:29:27:ff:a6:1b:f0:0c:c5:bf:4f:d4:9c:e8: 37:6b:a8:bd:af:72:1d:52:56:12:35:36:02:43:86: 8a:47:3f:f2:3b:cc:0b:f1:1d:5d:41:14:3e:55:36: 1b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:15:C6:27:AC:14:07:B1:19:4A:C1:7D:7A:2D:24:63:3B:AE:DD:56 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/6AD18BAAD60D11E9A0539B2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.0.113.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:80:77:97:46:01:df:46:e5:f4:36:ea:99:43:2c:53:af:a2: e7:f0:00:fb:6c:fc:3a:50:78:88:f6:22:10:78:8a:85:56:6d: 6f:97:e1:6b:e1:96:fc:88:11:20:1c:75:b2:6d:0c:d6:3f:fe: 76:7b:df:93:fc:8b:11:08:81:9c:8f:46:08:ff:d0:48:3d:b5: 5c:42:f3:05:a3:fc:2b:2e:8a:1c:f5:5a:24:f2:6f:5a:56:dd: 0e:22:bf:02:d1:3a:f3:d4:6c:11:ee:c5:5d:e2:e1:19:e7:1e: d2:55:b4:f0:1c:36:2f:19:40:ab:c6:1f:6c:2c:13:ba:88:35: b2:46:3a:37:2d:17:c0:f0:bb:82:42:35:35:23:15:ea:70:29: 0d:3b:16:9d:5c:88:e4:32:00:6c:68:01:48:9b:08:51:a8:d3: ef:62:c1:ed:e9:fc:1e:c9:ca:e8:6b:88:0c:97:2f:26:c1:d9: 04:ea:33:c7:ef:74:2c:d6:0c:1b:51:8e:44:5b:74:8d:f3:46: 47:14:4c:cd:ab:25:9e:48:27:1d:98:97:1f:b6:4d:1c:4d:be: 0f:27:af:e7:4c:75:db:24:64:ec:93:aa:fb:87:f7:2d:63:d1: f1:31:4e:e8:70:fc:6a:be:39:47:e8:c2:1d:bf:d3:2e:60:25: 78:f4:23:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWM0Mi03NmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphwRqeXeV0w40kNwcBYODDexJ4R0nZOEveXAP/FvtHtIwlXX/lt81FC/R6sQ KmE8108AGdeO/ROntaPFby7XgOhsz3qe1c8M7U4uSz9+IPkv8LrUR4O8oVe1tKwA ASXtfx38AwbMfnHwwU/C/KN4mkdr2A12PaQvQCN7zaDC8xvrAIW8cTY7RGLOyr0M biwdcXe+plKTzKOdSdmaXFx/T3e+jbcYrGRuNE6mKlUbwGqg17qhOHM5k2MaADys 1gWjrhuITlX5Wg6WTKWEe3Sh/eeFBSkn/6Yb8AzFv0/UnOg3a6i9r3IdUlYSNTYC Q4aKRz/yO8wL8R1dQRQ+VTYbfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKwVxies FAexGUrBfXotJGM7rt1WMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNkFEMThCQUFE NjBEMTFFOUEwNTM5QjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAxAHEwDQYJKoZIhvcNAQELBQADggEBAEuAd5dGAd9G5fQ2 6plDLFOvoufwAPts/DpQeIj2IhB4ioVWbW+X4WvhlvyIESAcdbJtDNY//nZ735P8 ixEIgZyPRgj/0Eg9tVxC8wWj/Csuihz1WiTyb1pW3Q4ivwLROvPUbBHuxV3i4Rnn HtJVtPAcNi8ZQKvGH2wsE7qINbJGOjctF8Dwu4JCNTUjFepwKQ07Fp1ciOQyAGxo AUibCFGo0+9iwe3p/B7JyuhriAyXLybB2QTqM8fvdCzWDBtRjkRbdI3zRkcUTM2r JZ5IJx2Ylx+2TRxNvg8nr+dMddskZOyTqvuH9y1j0fExTuhw/Gq+OUfowh2/0y5g JXj0I2I= -----END CERTIFICATE-----Generated at Fri May 31 20:33:57 2024 by rpki-client on console-ams.rpki-client.org