$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/955A10B4D61111E999D7033CC4F9AE02.roa File: 955A10B4D61111E999D7033CC4F9AE02.roa (raw, json) Hash identifier: iq+yrjWRs9VMCVl3o8Vp/LVG5L/rpPAev+v2O+HbFVg= Subject key identifier: 59:31:59:86:53:18:26:48:59:01:D9:F8:8F:14:7A:43:36:F3:AA:E6 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2842 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/955A10B4D61111E999D7033CC4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:34 +0000 ROA not before: Thu 28 Dec 2023 16:03:34 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9551 IP address blocks: 49.231.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10306 (0x2842) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:34 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c56-a535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a1:2a:65:a3:17:75:41:01:47:f0:ea:40:40: 1f:e9:c1:9e:76:b2:c3:60:62:f0:65:83:82:2a:91: ca:bc:53:39:f5:c1:bf:bb:81:33:d6:5b:91:e0:7e: 5a:1d:0f:81:62:23:af:ab:83:0e:4d:55:11:77:fa: 3b:ee:05:78:20:a0:7b:93:55:37:6e:7c:cc:8f:40: db:90:f0:b7:0b:f0:17:3a:22:0a:22:f2:86:6f:3e: 78:cf:60:fe:fd:ac:d0:15:0e:21:bd:d5:8e:1b:53: 16:0d:7d:40:a3:9e:42:cd:ab:8e:18:d2:ef:96:1e: 8a:0e:ca:f1:90:67:c5:28:b3:71:49:8a:0a:67:40: 45:84:59:d1:88:6d:99:39:68:64:af:2b:c8:f0:11: ce:27:59:2e:aa:81:54:88:28:61:77:4a:5b:cd:ab: ab:13:89:63:07:a0:d2:2f:c6:fc:11:99:1a:4e:3d: 60:3b:82:a3:8c:c1:db:d3:21:b7:6e:20:e6:a0:b1: 35:fc:39:a8:6f:10:d8:a1:03:6b:e2:25:80:b4:b2: 52:bd:a1:61:60:99:0c:ac:f8:15:f2:f5:95:7f:84: 53:fe:77:d1:3a:bc:e7:39:49:b7:b5:e4:f2:32:a5: 3a:b4:dd:cb:af:30:c1:ab:d5:75:58:c8:03:e3:20: c5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:31:59:86:53:18:26:48:59:01:D9:F8:8F:14:7A:43:36:F3:AA:E6 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/955A10B4D61111E999D7033CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.231.232.0/23 Signature Algorithm: sha256WithRSAEncryption 65:f2:4f:1d:e0:6a:9b:84:9c:e3:1a:09:ca:e4:8d:3e:1e:2a: ef:3e:ed:db:a8:b7:54:55:ae:40:df:8c:f0:80:4b:7d:aa:b3: 85:03:e4:aa:05:e2:b0:9c:32:b3:da:09:75:d5:d5:7c:a4:f0: 9e:02:f8:fe:be:74:74:52:96:3e:67:b4:bf:c5:7d:50:c8:79: 63:a7:c7:6d:6a:27:f9:99:e5:44:33:64:6b:19:dd:39:99:d8: 8b:4a:94:1a:2f:43:44:fe:5e:a1:9e:3b:d7:51:b0:23:75:0a: 3f:c6:72:d2:89:cd:42:a8:ec:78:3f:60:12:54:e1:41:2c:2c: f4:ed:9a:38:c3:ff:05:d5:11:8a:ed:40:6d:e3:f4:b1:7a:df: 50:e0:64:b2:97:0c:e3:42:2b:8c:10:bd:0a:e2:a8:d2:cc:d4: f0:bb:df:fe:ef:10:6d:aa:fa:ef:c1:4e:5b:d8:4b:c6:3c:67: 3b:ae:d5:22:f8:f0:6f:b5:15:93:73:25:cc:b3:af:d4:cb:04: bd:10:ce:ca:4e:e5:9f:d4:b7:6a:66:f0:f7:a8:4f:73:10:22: c8:7b:15:03:06:7e:56:24:28:67:5f:6d:f1:06:b1:57:e8:25: 56:4f:c5:11:97:94:6b:15:4c:73:26:4b:5f:1f:58:b3:d0:6e: ec:e9:e9:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzM0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWM1Ni1hNTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaEqZaMXdUEBR/DqQEAf6cGedrLDYGLwZYOCKpHKvFM59cG/u4Ez1luR4H5a HQ+BYiOvq4MOTVURd/o77gV4IKB7k1U3bnzMj0DbkPC3C/AXOiIKIvKGbz54z2D+ /azQFQ4hvdWOG1MWDX1Ao55CzauOGNLvlh6KDsrxkGfFKLNxSYoKZ0BFhFnRiG2Z OWhkryvI8BHOJ1kuqoFUiChhd0pbzaurE4ljB6DSL8b8EZkaTj1gO4KjjMHb0yG3 biDmoLE1/DmobxDYoQNr4iWAtLJSvaFhYJkMrPgV8vWVf4RT/nfROrznOUm3teTy MqU6tN3LrzDBq9V1WMgD4yDFbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFkxWYZT GCZIWQHZ+I8UekM286rmMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvOTU1QTEwQjRE NjExMTFFOTk5RDcwMzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEx5+gwDQYJKoZIhvcNAQELBQADggEBAGXyTx3gapuEnOMa CcrkjT4eKu8+7duot1RVrkDfjPCAS32qs4UD5KoF4rCcMrPaCXXV1Xyk8J4C+P6+ dHRSlj5ntL/FfVDIeWOnx21qJ/mZ5UQzZGsZ3TmZ2ItKlBovQ0T+XqGeO9dRsCN1 Cj/GctKJzUKo7Hg/YBJU4UEsLPTtmjjD/wXVEYrtQG3j9LF631DgZLKXDONCK4wQ vQriqNLM1PC73/7vEG2q+u/BTlvYS8Y8Zzuu1SL48G+1FZNzJcyzr9TLBL0QzspO 5Z/Ut2pm8PeoT3MQIsh7FQMGflYkKGdfbfEGsVfoJVZPxRGXlGsVTHMmS18fWLPQ buzp6Zs= -----END CERTIFICATE-----Generated at Fri May 31 20:33:57 2024 by rpki-client on console-ams.rpki-client.org