$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/5A6EF3DCF25811ECB8BB9A10C4F9AE02.roa File: 5A6EF3DCF25811ECB8BB9A10C4F9AE02.roa (raw, json) Hash identifier: dURhEGcWeVzVWW97/Tqq+PHllUBdzbSqeUELH+nFvTw= Subject key identifier: 12:A4:D6:8B:B0:C4:75:03:EB:51:CA:D8:11:78:7C:47:1C:EB:15:EA Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 282D Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/5A6EF3DCF25811ECB8BB9A10C4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:16 +0000 ROA not before: Thu 28 Dec 2023 16:03:16 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38444 IP address blocks: 49.229.0.0/23 maxlen: 23 49.229.2.0/23 maxlen: 23 110.49.0.0/16 maxlen: 16 110.49.128.0/17 maxlen: 23 110.49.128.0/19 maxlen: 24 110.49.160.0/21 maxlen: 24 110.49.168.0/24 maxlen: 24 110.49.170.0/23 maxlen: 24 110.49.172.0/22 maxlen: 24 110.49.176.0/20 maxlen: 24 110.49.192.0/18 maxlen: 24 119.31.0.0/17 maxlen: 24 202.149.24.0/21 maxlen: 24 2001:44c8:a000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 16:10:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10285 (0x282d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:16 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c43-7b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ad:32:82:f3:d6:01:1e:ac:1d:66:14:50:e8: 7b:23:0d:a5:32:11:28:a6:56:11:f9:15:a9:3c:18: 85:3e:7e:f8:44:dd:cc:84:ee:48:63:54:b1:53:78: 22:f6:89:9d:96:09:53:a8:29:ce:67:53:cd:55:47: 83:f0:e6:91:13:87:5b:e4:73:f3:36:01:24:1b:4b: 27:9f:82:c5:b2:d8:10:f8:b0:7a:6e:29:1a:d4:74: 1d:f3:1e:15:76:16:56:35:7c:16:a6:7d:52:48:9d: e9:c9:24:95:3e:18:06:78:d2:df:2a:c8:0a:21:ac: 3f:a3:d6:e3:74:fd:88:ee:c5:56:b2:76:0a:62:7d: fc:24:a1:96:d7:73:25:2f:51:78:11:8c:df:c4:32: 9f:8f:7d:25:b6:0f:49:bf:4c:d3:b9:0c:b4:f8:c3: 69:aa:37:63:f6:b7:22:8e:c0:eb:ea:92:f0:ca:16: 9c:8c:1d:94:37:47:20:c5:08:6c:73:cc:f9:80:a9: 5f:ca:72:91:fe:17:60:6c:b8:f3:73:b2:6c:ab:cc: 58:bf:9a:95:b0:52:ea:c6:ba:1b:77:a8:d0:8f:16: 74:a9:dd:bb:8c:7a:49:0a:c1:7e:d2:80:2a:a2:c2: 17:bb:9d:25:24:e7:77:99:32:7a:96:53:49:1b:df: 37:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A4:D6:8B:B0:C4:75:03:EB:51:CA:D8:11:78:7C:47:1C:EB:15:EA X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/5A6EF3DCF25811ECB8BB9A10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.229.0.0/22 110.49.0.0/16 119.31.0.0/17 202.149.24.0/21 IPv6: 2001:44c8:a000::/36 Signature Algorithm: sha256WithRSAEncryption 4a:8a:f4:ed:a7:fa:0d:d0:f6:36:49:5b:3f:b1:db:49:c5:fd: 40:25:3b:45:30:2b:ee:9f:9d:02:c9:0d:de:17:72:4b:36:54: 05:be:69:fe:e2:3a:0b:4d:56:4e:90:d4:8b:86:ad:d3:40:c7: 71:5e:5a:61:db:cb:4c:f0:3d:b4:04:99:51:a0:c1:f7:f9:df: 85:6f:ff:3b:fd:b4:21:b3:56:b8:81:92:b8:c0:27:8c:ec:cf: ea:18:63:a0:79:43:74:fd:12:7b:36:f0:36:c2:af:a9:d1:0f: 4d:dd:47:16:b5:5e:05:84:63:fd:88:35:07:04:69:fc:d7:03: f0:a0:f1:f0:a1:ec:f4:3c:71:e9:62:d5:66:74:5d:67:af:30: 02:9c:cb:79:12:0b:ec:94:e4:04:72:0d:a4:4d:c6:5d:9b:b1: 3b:b5:6d:00:34:ef:7d:c4:6d:96:85:29:ed:a0:8d:65:08:b4: fe:c6:b4:f2:77:2c:fb:19:8c:69:35:55:71:26:3b:b4:73:60: 78:b6:25:2d:55:39:b1:46:75:4a:4e:b0:a2:48:b0:dd:d1:3b: 5d:d1:57:7e:e9:2c:aa:7b:52:b2:72:63:b6:45:9c:c3:4b:0f: 3d:bf:5b:8b:6c:1b:07:3e:4e:bb:d2:b5:8e:64:1e:11:c1:54: 30:bf:e2:da -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICKC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzE2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWM0My03YjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAua0ygvPWAR6sHWYUUOh7Iw2lMhEoplYR+RWpPBiFPn74RN3MhO5IY1SxU3gi 9omdlglTqCnOZ1PNVUeD8OaRE4db5HPzNgEkG0snn4LFstgQ+LB6bika1HQd8x4V dhZWNXwWpn1SSJ3pySSVPhgGeNLfKsgKIaw/o9bjdP2I7sVWsnYKYn38JKGW13Ml L1F4EYzfxDKfj30ltg9Jv0zTuQy0+MNpqjdj9rcijsDr6pLwyhacjB2UN0cgxQhs c8z5gKlfynKR/hdgbLjzc7Jsq8xYv5qVsFLqxrobd6jQjxZ0qd27jHpJCsF+0oAq osIXu50lJOd3mTJ6llNJG983nQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFBKk1ouw xHUD61HK2BF4fEcc6xXqMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNUE2RUYzRENG MjU4MTFFQ0I4QkI5QTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB0EAgABMBcDBAIx5QADAwBuMQMEB3cfAAMEA8qVGDAOBAIAAjAIAwYEIAFE yKAwDQYJKoZIhvcNAQELBQADggEBAEqK9O2n+g3Q9jZJWz+x20nF/UAlO0UwK+6f nQLJDd4Xcks2VAW+af7iOgtNVk6Q1IuGrdNAx3FeWmHby0zwPbQEmVGgwff534Vv /zv9tCGzVriBkrjAJ4zsz+oYY6B5Q3T9Ens28DbCr6nRD03dRxa1XgWEY/2INQcE afzXA/Cg8fCh7PQ8celi1WZ0XWevMAKcy3kSC+yU5ARyDaRNxl2bsTu1bQA0733E bZaFKe2gjWUItP7GtPJ3LPsZjGk1VXEmO7RzYHi2JS1VObFGdUpOsKJIsN3RO13R V37pLKp7UrJyY7ZFnMNLDz2/W4tsGwc+TrvStY5kHhHBVDC/4to= -----END CERTIFICATE-----Generated at Thu Jun 6 18:47:43 2024 by rpki-client on console-fra.rpki-client.org