$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/75D7B28C14B611EDABEFC57AC4F9AE02.roa File: 75D7B28C14B611EDABEFC57AC4F9AE02.roa (raw, json) Hash identifier: M+rbZud3Js+MOQkOzNmjr8MVLTYaPxi8wxjZp8dtQBY= Subject key identifier: 4D:1C:73:34:C9:6F:79:A3:47:49:11:75:3F:73:EC:D6:53:61:9A:A6 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2825 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/75D7B28C14B611EDABEFC57AC4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:08 +0000 ROA not before: Thu 28 Dec 2023 16:03:08 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150148 IP address blocks: 49.231.198.0/24 maxlen: 24 49.231.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10277 (0x2825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:08 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c3c-b85f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5b:e0:eb:37:d5:86:8e:26:7e:37:0b:a6:ae: f7:e6:fa:39:40:3c:b7:30:dc:79:01:42:b1:37:ac: f8:36:0f:8e:f4:77:23:e0:90:69:52:f0:70:9b:f7: db:68:fe:76:f0:1f:8e:b1:66:f0:47:3e:be:6f:55: fc:99:b2:eb:d1:b4:57:91:a4:6c:0c:2f:12:d8:c5: 44:cc:17:f6:3b:6a:14:7c:98:1d:d1:48:68:71:49: 6a:be:e4:46:50:3f:8d:5b:0c:b2:3d:9a:bb:79:76: 12:d2:af:14:16:d4:da:a4:19:58:c6:a7:df:37:d9: cc:c0:f8:fb:04:51:4d:8a:4b:d9:2d:d0:c3:62:7a: 4d:18:03:5f:d6:02:e8:65:54:6d:0b:17:c9:a3:c2: ae:13:22:51:bc:ac:ad:cd:4c:32:c5:67:b3:74:e3: f0:56:59:dd:a1:db:eb:be:ca:15:31:d3:97:f4:52: f6:bc:ee:43:f6:23:5f:10:49:11:e4:f4:e4:1f:62: 7a:12:2c:f4:e2:10:fc:ec:a3:ed:b8:3c:72:34:1c: 14:01:59:0f:8a:78:e8:e4:22:1d:bf:5c:fe:e5:d1: d0:00:a7:c9:7b:ea:18:97:6a:ea:c3:f0:dc:45:05: ca:b9:a7:b4:9a:39:ca:c8:da:7f:b7:2d:a8:7a:e1: 33:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:1C:73:34:C9:6F:79:A3:47:49:11:75:3F:73:EC:D6:53:61:9A:A6 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/75D7B28C14B611EDABEFC57AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.231.198.0/24 49.231.213.0/24 Signature Algorithm: sha256WithRSAEncryption 44:1f:93:19:e7:6c:a2:b8:01:b2:aa:81:56:ff:ec:f3:f8:86: af:e4:56:25:4b:0c:51:18:0d:d0:71:9f:e9:f7:67:f7:ba:42: c3:d9:4a:94:5b:a5:f7:e2:2a:13:cb:7e:84:7a:e8:fa:b6:9d: e5:dc:7a:03:01:4f:b2:33:1c:b3:28:38:b5:03:20:f1:d9:5f: d5:61:44:6f:be:3b:25:83:1d:c7:8c:73:60:7a:3f:04:1e:26: ef:73:17:0b:28:42:56:be:c7:e4:69:bb:4b:fa:1d:1e:4a:e8: 48:99:ca:cc:4c:a8:08:d3:d5:d0:b6:0e:41:93:15:62:cc:6f: 30:a6:4e:35:c7:8f:4d:4f:01:81:59:c1:93:d7:16:ac:d3:08: 6d:81:9a:b5:4d:47:61:b4:94:dd:4b:43:2a:15:2b:14:98:3e: 1c:ed:e6:46:99:1d:d8:84:a9:97:84:8b:43:88:b4:34:bc:ac: 2d:e4:03:56:89:f0:7d:78:cb:6b:bb:75:67:88:e3:df:41:21: d5:4a:13:9e:f4:e7:e1:7a:a0:af:48:5c:27:9a:16:d2:6a:ea: c1:e8:ab:f7:99:79:d1:2d:0f:7a:de:15:6c:ac:ba:d4:7b:8a: 0a:7c:9a:fd:b2:7e:7c:a6:dd:1f:2c:e7:42:99:bf:03:1a:cc: 7c:0f:fa:51 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICKCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzA4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWMzYy1iODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlvg6zfVho4mfjcLpq735vo5QDy3MNx5AUKxN6z4Ng+O9Hcj4JBpUvBwm/fb aP528B+OsWbwRz6+b1X8mbLr0bRXkaRsDC8S2MVEzBf2O2oUfJgd0UhocUlqvuRG UD+NWwyyPZq7eXYS0q8UFtTapBlYxqffN9nMwPj7BFFNikvZLdDDYnpNGANf1gLo ZVRtCxfJo8KuEyJRvKytzUwyxWezdOPwVlndodvrvsoVMdOX9FL2vO5D9iNfEEkR 5PTkH2J6Eiz04hD87KPtuDxyNBwUAVkPinjo5CIdv1z+5dHQAKfJe+oYl2rqw/Dc RQXKuae0mjnKyNp/ty2oeuEzRwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFE0cczTJ b3mjR0kRdT9z7NZTYZqmMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNzVEN0IyOEMx NEI2MTFFREFCRUZDNTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAx58YDBAAx59UwDQYJKoZIhvcNAQELBQADggEBAEQfkxnn bKK4AbKqgVb/7PP4hq/kViVLDFEYDdBxn+n3Z/e6QsPZSpRbpffiKhPLfoR66Pq2 neXcegMBT7IzHLMoOLUDIPHZX9VhRG++OyWDHceMc2B6PwQeJu9zFwsoQla+x+Rp u0v6HR5K6EiZysxMqAjT1dC2DkGTFWLMbzCmTjXHj01PAYFZwZPXFqzTCG2BmrVN R2G0lN1LQyoVKxSYPhzt5kaZHdiEqZeEi0OItDS8rC3kA1aJ8H14y2u7dWeI499B IdVKE5705+F6oK9IXCeaFtJq6sHoq/eZedEtD3reFWysutR7igp8mv2yfnym3R8s 50KZvwMazHwP+lE= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:11 2024 by rpki-client on console-ams.rpki-client.org