$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/53C2E0FCD85C11E9811E5758C4F9AE02.roa File: 53C2E0FCD85C11E9811E5758C4F9AE02.roa (raw, json) Hash identifier: 8SiEA7Vz5m8rzUZnloxrfKf1ul/Edidy6TZl8458ASk= Subject key identifier: 82:99:67:DD:E5:76:12:ED:1D:18:85:08:09:3A:6E:8D:AB:A3:21:F5 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 283D Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/53C2E0FCD85C11E9811E5758C4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:30 +0000 ROA not before: Thu 28 Dec 2023 16:03:30 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 55545 IP address blocks: 58.64.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10301 (0x283d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:30 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c52-160a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:76:d9:d4:88:58:e5:a3:79:9f:5a:8d:72:df: d0:5a:1c:b6:5a:8d:00:ea:23:80:b7:bf:c6:a3:91: 97:50:aa:bc:24:f3:0e:17:55:f8:97:43:b8:a2:5a: d4:b2:26:a5:82:ba:36:cf:bd:af:49:21:cd:10:1c: 36:7f:83:71:07:1d:db:09:f9:0c:c5:6b:ad:aa:1f: 84:ba:85:b1:92:9b:77:6f:48:80:1a:26:70:74:56: 04:99:43:ed:38:7f:3d:e2:46:8e:68:54:0a:c3:ba: e2:f5:0c:36:aa:c8:33:97:7c:2a:98:9a:dc:1b:f1: 75:9d:b9:f4:c3:af:ce:91:21:38:a7:16:e9:9c:9f: d5:75:b3:25:ae:f5:7f:f1:6d:f1:8f:b5:a7:bd:75: b4:8b:71:e3:28:2e:94:f5:38:bc:21:06:03:69:fe: 00:7f:ec:a9:8e:f6:aa:c2:89:48:18:e0:10:9b:65: 41:42:04:d1:4e:c4:8e:24:f0:91:bf:ce:64:29:91: 50:60:e5:a1:12:67:57:48:00:2c:8e:e3:6c:33:6e: 1c:a1:8a:51:aa:73:b4:4b:6b:66:75:47:b6:96:67: eb:fa:be:b9:2e:10:1b:4f:17:bc:d9:18:3c:e5:61: f6:b1:40:02:0b:04:f0:e3:69:9e:93:b5:04:36:97: ea:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:99:67:DD:E5:76:12:ED:1D:18:85:08:09:3A:6E:8D:AB:A3:21:F5 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/53C2E0FCD85C11E9811E5758C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.32.0/24 Signature Algorithm: sha256WithRSAEncryption 69:d5:96:88:29:f8:5a:42:55:42:ff:f2:b7:e6:0c:fa:43:a0: f6:a5:fc:f5:6b:34:b6:4f:48:19:ec:d7:79:f0:25:cb:01:49: 24:e0:16:4a:ec:ce:98:7c:4b:67:47:60:29:e2:b0:5e:5e:00: 26:2c:d2:cb:3f:b9:2c:24:3f:58:c6:04:ef:c8:7a:02:cc:8d: 5a:57:89:27:62:0b:91:ab:79:dc:32:7a:13:da:08:36:b3:b6: 33:59:75:b6:9d:c2:2e:02:e6:c0:18:98:5b:24:61:2a:f6:8f: 67:a0:a2:e9:6a:aa:05:67:a9:d7:20:95:da:c3:c9:f6:22:3b: 46:c9:dd:c3:86:07:2b:70:41:97:3c:20:ae:db:b0:6d:cc:dd: 46:29:47:86:ad:ba:97:12:17:41:51:d5:b5:f3:81:c2:17:02: 2b:9f:e5:07:41:b2:16:b8:1f:07:7b:a4:6b:1d:ac:ec:e3:9b: 0a:a1:24:6d:1b:5a:bb:bc:ec:58:6a:49:68:81:38:b6:11:2c: 09:76:0c:98:03:e4:f3:bb:b0:e9:55:5f:a3:be:4a:d0:14:b1: f8:9b:c1:49:d6:18:de:e1:b7:ab:92:0d:62:ad:fa:91:cb:db: e5:2f:f4:8b:6e:ef:f4:e2:e5:43:c1:01:d5:08:7f:dc:52:85: 0e:eb:eb:7c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzMwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWM1Mi0xNjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHbZ1IhY5aN5n1qNct/QWhy2Wo0A6iOAt7/Go5GXUKq8JPMOF1X4l0O4olrU sialgro2z72vSSHNEBw2f4NxBx3bCfkMxWutqh+EuoWxkpt3b0iAGiZwdFYEmUPt OH894kaOaFQKw7ri9Qw2qsgzl3wqmJrcG/F1nbn0w6/OkSE4pxbpnJ/VdbMlrvV/ 8W3xj7WnvXW0i3HjKC6U9Ti8IQYDaf4Af+ypjvaqwolIGOAQm2VBQgTRTsSOJPCR v85kKZFQYOWhEmdXSAAsjuNsM24coYpRqnO0S2tmdUe2lmfr+r65LhAbTxe82Rg8 5WH2sUACCwTw42mek7UENpfqPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIKZZ93l dhLtHRiFCAk6bo2royH1MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNTNDMkUwRkNE ODVDMTFFOTgxMUU1NzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6QCAwDQYJKoZIhvcNAQELBQADggEBAGnVlogp+FpCVUL/ 8rfmDPpDoPal/PVrNLZPSBns13nwJcsBSSTgFkrszph8S2dHYCnisF5eACYs0ss/ uSwkP1jGBO/IegLMjVpXiSdiC5GredwyehPaCDaztjNZdbadwi4C5sAYmFskYSr2 j2egoulqqgVnqdcgldrDyfYiO0bJ3cOGBytwQZc8IK7bsG3M3UYpR4atupcSF0FR 1bXzgcIXAiuf5QdBsha4Hwd7pGsdrOzjmwqhJG0bWru87FhqSWiBOLYRLAl2DJgD 5PO7sOlVX6O+StAUsfibwUnWGN7ht6uSDWKt+pHL2+Uv9Itu7/Ti5UPBAdUIf9xS hQ7r63w= -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:46 2024 by rpki-client on console-fra.rpki-client.org