$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/94A4925CD61111E999D7033CC4F9AE02.roa File: 94A4925CD61111E999D7033CC4F9AE02.roa (raw, json) Hash identifier: oid5Pxh+TvlJ4AeBsiqZ2PZMl+2uRCTTd/LD8OLyfO4= Subject key identifier: AE:CC:81:DB:54:F9:DC:AF:0A:05:56:59:87:27:33:E6:9F:C8:93:D8 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2840 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/94A4925CD61111E999D7033CC4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:33 +0000 ROA not before: Thu 28 Dec 2023 16:03:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9464 IP address blocks: 110.49.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10304 (0x2840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:33 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c54-05d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bd:7a:b6:05:c2:b8:81:e8:fe:c3:38:17:ae: a1:45:6b:a7:3f:5c:d7:db:83:4a:ce:85:be:ec:4c: 37:b2:c2:c5:5e:36:f0:e8:c3:86:ca:d7:a8:c2:3d: ae:a2:b7:26:0f:79:1a:06:0b:d9:94:25:32:c8:79: 9e:77:24:61:b8:94:7d:c3:e8:50:15:6f:fc:c5:0c: 70:b6:08:b8:f9:2b:3d:77:00:bb:ed:0a:95:b5:bf: f7:fa:8b:de:0a:b5:2c:bc:f0:36:40:16:82:b4:9a: 41:bb:e8:52:ce:b9:b4:a1:12:90:69:6d:d6:40:57: 0b:88:77:34:36:ab:0e:9f:fc:44:3e:3b:3d:e8:c5: 0c:e4:a8:bd:7c:b3:9a:79:e3:0f:15:3f:f2:87:1f: 92:58:90:e6:cc:fd:4f:02:ad:76:75:a2:b6:aa:4f: 69:1d:e1:ee:fd:13:f2:48:d7:cb:b0:01:a9:30:7d: dd:46:f8:37:c4:3f:ac:f9:d3:60:fa:1b:70:e1:2a: 74:35:5f:15:99:b6:c0:04:c2:1c:f1:66:31:4a:55: 94:f2:1a:e2:39:c7:7c:a3:8b:01:89:c0:a2:91:7d: ba:65:59:72:64:95:02:84:3e:30:06:47:86:6b:bf: a6:2d:1f:33:80:a1:c5:af:e1:77:8f:ce:19:73:56: 35:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:CC:81:DB:54:F9:DC:AF:0A:05:56:59:87:27:33:E6:9F:C8:93:D8 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/94A4925CD61111E999D7033CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.49.62.0/23 Signature Algorithm: sha256WithRSAEncryption 40:13:86:90:e2:cb:05:28:ea:7d:3c:61:7d:fb:45:f1:9a:da: e5:3a:1f:3f:a2:f9:d6:19:ae:a0:bd:47:15:3b:d8:ee:e3:28: a7:6d:09:2a:4c:21:ea:8f:80:e9:b0:39:bf:e1:e1:f1:b8:21: b8:5e:72:c6:ae:31:b4:74:1b:c8:9c:11:6f:68:95:06:5e:72: cd:51:1a:f4:df:a3:6f:6f:eb:a8:45:5e:b3:15:49:c8:9e:85: 96:c4:03:bb:6a:64:19:97:2f:ab:b6:e2:19:09:7d:b6:da:31: ce:c8:5d:62:5c:12:f9:f4:d5:b7:2b:19:03:17:8e:a0:67:b6: 9f:fd:e5:78:75:fb:67:54:05:35:97:f4:3a:23:9d:16:33:73: e1:fa:1b:c5:d8:d1:d0:47:da:0a:bc:4e:77:03:a2:9b:6b:48: df:7b:92:b3:e2:d5:f5:7e:3f:78:b4:6e:87:b3:da:bd:ab:82: 00:6d:57:44:13:0b:97:af:b2:75:24:6a:77:27:8f:99:de:50: a9:9b:c2:2a:31:1f:46:6a:e4:df:9c:ae:fb:e4:ba:50:5e:03: ef:aa:75:16:b6:5a:14:9d:78:4b:b7:7b:cf:fd:f0:e4:75:8f: eb:b4:f4:e2:6d:4a:a2:d8:e4:4c:bb:4f:54:7a:5a:7a:6a:d0: 6e:71:60:6c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWM1NC0wNWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmb16tgXCuIHo/sM4F66hRWunP1zX24NKzoW+7Ew3ssLFXjbw6MOGyteowj2u orcmD3kaBgvZlCUyyHmedyRhuJR9w+hQFW/8xQxwtgi4+Ss9dwC77QqVtb/3+ove CrUsvPA2QBaCtJpBu+hSzrm0oRKQaW3WQFcLiHc0NqsOn/xEPjs96MUM5Ki9fLOa eeMPFT/yhx+SWJDmzP1PAq12daK2qk9pHeHu/RPySNfLsAGpMH3dRvg3xD+s+dNg +htw4Sp0NV8VmbbABMIc8WYxSlWU8hriOcd8o4sBicCikX26ZVlyZJUChD4wBkeG a7+mLR8zgKHFr+F3j84Zc1Y1rQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK7MgdtU +dyvCgVWWYcnM+afyJPYMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvOTRBNDkyNUNE NjExMTFFOTk5RDcwMzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFuMT4wDQYJKoZIhvcNAQELBQADggEBAEAThpDiywUo6n08 YX37RfGa2uU6Hz+i+dYZrqC9RxU72O7jKKdtCSpMIeqPgOmwOb/h4fG4Ibhecsau MbR0G8icEW9olQZecs1RGvTfo29v66hFXrMVSciehZbEA7tqZBmXL6u24hkJfbba Mc7IXWJcEvn01bcrGQMXjqBntp/95Xh1+2dUBTWX9DojnRYzc+H6G8XY0dBH2gq8 TncDoptrSN97krPi1fV+P3i0boez2r2rggBtV0QTC5evsnUkancnj5neUKmbwiox H0Zq5N+crvvkulBeA++qdRa2WhSdeEu3e8/98OR1j+u09OJtSqLY5Ey7T1R6Wnpq 0G5xYGw= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:03 2024 by rpki-client on console-ams.rpki-client.org