$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/54CF3574EACC11ECAB5E9A54C4F9AE02.roa File: 54CF3574EACC11ECAB5E9A54C4F9AE02.roa (raw, json) Hash identifier: 8HvSON00Rm+yvbbs2hxaVuUTKNRVr6XRTwFZSsKk9nw= Subject key identifier: 51:F3:DC:11:AC:15:06:E1:77:69:C3:B9:24:C0:06:09:1E:B2:39:6B Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 283F Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/54CF3574EACC11ECAB5E9A54C4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:32 +0000 ROA not before: Thu 28 Dec 2023 16:03:32 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 7630 IP address blocks: 49.231.212.0/24 maxlen: 24 49.231.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10303 (0x283f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:32 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c54-9b2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:da:c2:ed:40:87:3d:34:93:e7:3c:91:c1:14: 7c:ac:12:f2:26:1e:7d:4d:ea:81:ee:b5:a5:d7:a0: 1f:b6:9b:98:0c:3d:8d:8a:4d:89:98:82:c7:1d:16: e4:e8:f2:6b:0b:7e:ba:be:b5:b0:69:29:f8:72:aa: f8:87:d4:02:dc:89:2f:8a:2f:8d:7f:02:4f:12:10: 21:ce:6d:e9:1d:b7:0a:ea:f7:82:84:90:29:77:82: 34:1b:98:e4:d0:92:74:ea:11:1c:cb:79:c9:a8:de: d9:71:12:b6:61:3b:1f:cb:a8:6b:29:92:bc:cd:1e: e9:43:34:57:66:6b:37:54:11:0a:a4:5e:0d:ce:7d: 0c:bf:53:75:24:39:40:0f:15:02:a4:75:e1:90:d2: 25:1b:34:31:43:a7:a5:68:3c:70:ef:e7:8a:b4:9f: 67:fc:d4:0a:d8:d5:10:db:2d:6f:10:c5:bb:26:a7: e1:6c:ad:46:ef:62:24:d8:47:59:1a:12:40:c2:57: 58:41:92:8d:d1:7a:52:b9:61:79:9e:2c:04:1a:64: c6:50:20:b8:e8:e2:de:09:a3:b4:ea:a4:2a:92:9b: 88:ac:01:ec:fa:3b:df:c5:d1:be:94:bd:f1:08:af: 8b:aa:03:70:bc:6e:d5:63:08:f0:01:6e:ae:12:52: 3b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F3:DC:11:AC:15:06:E1:77:69:C3:B9:24:C0:06:09:1E:B2:39:6B X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/54CF3574EACC11ECAB5E9A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.231.212.0/24 49.231.240.0/24 Signature Algorithm: sha256WithRSAEncryption 71:95:84:99:e9:5f:a2:5c:bf:9f:7e:dc:63:a0:be:62:3b:c0: ee:1a:10:5e:38:5d:b9:b8:29:27:bb:49:14:dd:6a:7f:6e:a2: 6c:6b:b0:b6:08:6c:59:f9:d4:14:62:d1:87:34:c5:67:be:bc: 4e:c3:a8:61:17:4b:68:91:d7:c7:e9:e2:22:12:7b:f3:c7:67: ae:5b:2b:b4:7c:32:ec:37:32:3e:44:53:39:33:49:c7:75:f2: b0:5c:d9:c9:3e:e2:f1:11:24:9d:8a:34:22:10:73:d9:cc:5e: 83:b0:4c:35:e0:a4:ba:72:1c:31:40:be:73:56:f1:ef:b4:ac: 72:74:86:53:35:3b:0b:c3:7f:52:01:44:fa:e2:af:a2:db:dd: 25:62:41:77:5f:ec:4c:9a:55:e4:9b:74:f4:49:0d:33:82:91: 2d:67:aa:cf:ce:d5:ef:4f:0d:f8:d2:67:db:7d:a9:80:df:49: 07:8f:a0:e9:05:a5:71:96:84:5a:a7:64:be:9d:2b:36:57:3b: 1f:91:1b:00:bd:b8:8a:fe:6a:24:50:cf:7f:51:91:da:59:fc: fc:41:8a:fa:5a:df:07:61:dc:d4:95:38:92:6d:03:75:0f:98: 74:d9:14:d8:5e:c2:be:cd:ba:09:1f:f3:7d:fe:8c:b8:de:ec: df:12:84:79 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICKD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzMyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWM1NC05YjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNrC7UCHPTST5zyRwRR8rBLyJh59TeqB7rWl16AftpuYDD2Nik2JmILHHRbk 6PJrC366vrWwaSn4cqr4h9QC3Ikvii+NfwJPEhAhzm3pHbcK6veChJApd4I0G5jk 0JJ06hEcy3nJqN7ZcRK2YTsfy6hrKZK8zR7pQzRXZms3VBEKpF4Nzn0Mv1N1JDlA DxUCpHXhkNIlGzQxQ6elaDxw7+eKtJ9n/NQK2NUQ2y1vEMW7JqfhbK1G72Ik2EdZ GhJAwldYQZKN0XpSuWF5niwEGmTGUCC46OLeCaO06qQqkpuIrAHs+jvfxdG+lL3x CK+LqgNwvG7VYwjwAW6uElI7JQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFHz3BGs FQbhd2nDuSTABgkesjlrMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNTRDRjM1NzRF QUNDMTFFQ0FCNUU5QTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAx59QDBAAx5/AwDQYJKoZIhvcNAQELBQADggEBAHGVhJnp X6Jcv59+3GOgvmI7wO4aEF44Xbm4KSe7SRTdan9uomxrsLYIbFn51BRi0Yc0xWe+ vE7DqGEXS2iR18fp4iISe/PHZ65bK7R8Muw3Mj5EUzkzScd18rBc2ck+4vERJJ2K NCIQc9nMXoOwTDXgpLpyHDFAvnNW8e+0rHJ0hlM1OwvDf1IBRPrir6Lb3SViQXdf 7EyaVeSbdPRJDTOCkS1nqs/O1e9PDfjSZ9t9qYDfSQePoOkFpXGWhFqnZL6dKzZX Ox+RGwC9uIr+aiRQz39RkdpZ/PxBivpa3wdh3NSVOJJtA3UPmHTZFNhewr7Nugkf 833+jLje7N8ShHk= -----END CERTIFICATE-----Generated at Fri May 31 17:44:21 2024 by rpki-client on console-fra.rpki-client.org