$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/816F50BE738E11E8AFDACE54C4F9AE02.roa File: 816F50BE738E11E8AFDACE54C4F9AE02.roa (raw, json) Hash identifier: KkBewIG80PEwzRMoiGlrni2JEISNCxOyxvF1r9u69r8= Subject key identifier: 89:5F:B1:3D:8B:F7:61:8B:8F:C1:A9:AC:FC:53:89:DF:8D:5C:9C:F4 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2837 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/816F50BE738E11E8AFDACE54C4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:25 +0000 ROA not before: Thu 28 Dec 2023 16:03:25 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 45781 IP address blocks: 110.49.201.0/24 maxlen: 24 119.31.104.0/24 maxlen: 24 119.31.105.0/24 maxlen: 24 119.31.106.0/24 maxlen: 24 119.31.107.0/24 maxlen: 24 119.31.119.0/24 maxlen: 24 2001:44c8:2000::/36 maxlen: 48 2001:44c8:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10295 (0x2837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:25 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c4d-c7c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:24:6b:19:19:70:b9:7f:9a:f1:39:1d:ed:21: d1:03:81:a4:9c:83:15:ce:72:90:9b:f1:8a:a4:3f: fc:4f:6d:83:ee:4a:fb:fa:33:19:56:bf:af:7c:81: d2:d9:6d:7e:52:04:6e:a7:3b:c2:f0:4c:62:fc:85: 24:38:f7:10:76:d5:6c:4b:e9:08:29:9d:09:b5:eb: 59:d9:3a:a9:70:a4:b6:4a:24:11:06:5d:42:c7:c1: eb:e6:f2:bf:4c:cd:df:fa:65:12:c9:41:62:66:9d: 92:d0:c6:13:23:52:2a:5c:c6:81:3c:25:5a:9b:fc: 5f:f9:1d:d3:7d:d5:55:54:10:ed:90:46:d3:a2:38: 1c:41:20:ef:4b:ef:fa:ab:22:f7:c0:54:f5:67:2e: f2:84:0c:9a:f2:82:10:0c:d9:05:6a:02:4e:9f:f1: 89:5d:2e:66:bc:05:82:7a:3d:59:1d:d7:5c:cf:ad: 24:6f:7c:f2:c3:8a:bb:26:1e:7c:9a:a7:c6:5a:0e: 5d:7a:50:f8:75:38:a0:9f:ba:68:84:99:31:99:42: 8a:f3:a1:1d:19:4f:22:51:d8:5b:94:ef:e0:65:74: ff:ed:a6:e8:d1:81:6e:bd:e6:f4:90:8b:7c:a1:19: 10:33:cf:b2:e6:78:af:78:f3:c4:19:29:8b:ef:77: f7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:5F:B1:3D:8B:F7:61:8B:8F:C1:A9:AC:FC:53:89:DF:8D:5C:9C:F4 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/816F50BE738E11E8AFDACE54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.49.201.0/24 119.31.104.0/22 119.31.119.0/24 IPv6: 2001:44c8:2000::/35 Signature Algorithm: sha256WithRSAEncryption b3:60:e8:03:a4:9b:07:bd:48:af:e5:5a:c6:62:2d:27:8a:37: 9f:bd:8f:53:ef:95:48:61:50:33:c3:75:1f:9c:2d:e2:59:e2: be:87:f2:96:1b:4b:4b:81:c8:24:4c:bb:ac:1c:9a:ed:1f:d2: 0b:94:58:db:b7:a2:39:f9:34:2e:c3:92:d5:e1:e4:3d:01:d7: 04:db:11:7c:88:1e:d9:95:92:d0:77:b6:99:c7:ac:57:18:84: 96:e6:eb:4c:9a:cb:e8:49:a4:e3:b4:02:47:a5:ce:84:09:40: d6:5a:1e:80:6e:b1:b1:bf:82:8b:d6:f6:61:aa:75:f0:73:0f: 14:ca:a2:77:be:e0:0f:7b:f0:c4:44:39:e0:d7:40:7b:a9:1e: 89:81:46:3f:ed:5b:06:b5:46:f7:4b:97:7a:82:60:7f:bc:97: 1a:98:ca:eb:16:c8:96:c5:e5:1d:05:60:fc:c0:c1:a9:aa:ae: 3c:42:95:73:c3:df:97:73:69:38:15:99:b6:7a:6c:19:d6:12: b2:4b:0a:18:70:71:9f:e1:78:52:d7:54:eb:4e:8b:c0:33:03: 79:a9:c4:c2:79:77:a2:73:38:98:c5:28:6e:13:44:6b:00:e4: 90:a3:88:e8:4c:aa:49:f7:ef:67:2a:f2:81:1f:11:8f:a5:04: 0c:84:27:b2 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICKDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzI1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWM0ZC1jN2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4CRrGRlwuX+a8Tkd7SHRA4GknIMVznKQm/GKpD/8T22D7kr7+jMZVr+vfIHS 2W1+UgRupzvC8Exi/IUkOPcQdtVsS+kIKZ0JtetZ2TqpcKS2SiQRBl1Cx8Hr5vK/ TM3f+mUSyUFiZp2S0MYTI1IqXMaBPCVam/xf+R3TfdVVVBDtkEbTojgcQSDvS+/6 qyL3wFT1Zy7yhAya8oIQDNkFagJOn/GJXS5mvAWCej1ZHddcz60kb3zyw4q7Jh58 mqfGWg5delD4dTign7pohJkxmUKK86EdGU8iUdhblO/gZXT/7abo0YFuveb0kIt8 oRkQM8+y5nivePPEGSmL73f3KQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFIlfsT2L 92GLj8GprPxTid+NXJz0MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvODE2RjUwQkU3 MzhFMTFFOEFGREFDRTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMBgEAgABMBIDBABuMckDBAJ3H2gDBAB3H3cwDgQCAAIwCAMGBSABRMggMA0G CSqGSIb3DQEBCwUAA4IBAQCzYOgDpJsHvUiv5VrGYi0nijefvY9T75VIYVAzw3Uf nC3iWeK+h/KWG0tLgcgkTLusHJrtH9ILlFjbt6I5+TQuw5LV4eQ9AdcE2xF8iB7Z lZLQd7aZx6xXGISW5utMmsvoSaTjtAJHpc6ECUDWWh6AbrGxv4KL1vZhqnXwcw8U yqJ3vuAPe/DERDng10B7qR6JgUY/7VsGtUb3S5d6gmB/vJcamMrrFsiWxeUdBWD8 wMGpqq48QpVzw9+Xc2k4FZm2emwZ1hKySwoYcHGf4XhS11TrTovAMwN5qcTCeXei cziYxShuE0RrAOSQo4joTKpJ9+9nKvKBHxGPpQQMhCey -----END CERTIFICATE-----Generated at Fri May 31 17:44:21 2024 by rpki-client on console-fra.rpki-client.org