$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/C7E33F14260211EB8B2D4373C4F9AE02.roa File: C7E33F14260211EB8B2D4373C4F9AE02.roa (raw, json) Hash identifier: oa5xQLwnzZ8Ft2D1DcXaV2huK0bDoCc4awEVaazZ7Ng= Subject key identifier: A4:4B:A6:D3:18:41:F4:72:4B:AD:53:51:BC:8B:80:AB:D9:1F:9A:B8 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2817 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/C7E33F14260211EB8B2D4373C4F9AE02.roa Signing time: Thu 28 Dec 2023 16:02:56 +0000 ROA not before: Thu 28 Dec 2023 16:02:56 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136897 IP address blocks: 49.229.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10263 (0x2817) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:02:56 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c30-66e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2f:f2:81:64:4e:7e:fe:2b:32:f1:8b:19:93: 87:f0:9a:94:7c:dc:37:90:f7:26:4f:71:1e:65:26: ff:96:f4:b0:29:4d:63:57:74:37:d5:b8:b6:f3:44: b6:0b:32:2a:d3:4a:50:11:2b:29:51:b9:d0:8f:e7: 4b:4b:18:44:27:c2:d1:7a:5e:35:72:bc:e6:9b:19: cb:cc:0a:bb:aa:76:5d:31:b8:a6:dd:aa:af:d0:3c: 39:65:89:48:e4:48:2b:fa:ca:79:2b:1a:b1:3a:ad: 2f:c0:46:db:e9:2e:46:72:50:9b:8e:80:09:f2:01: 10:14:e7:4b:87:ee:b7:db:a3:4f:85:f8:12:ae:55: 92:3e:f2:05:0a:d5:fb:1a:b3:04:d4:3e:16:c6:53: 49:09:10:c5:a6:91:df:07:d9:1f:25:93:60:7f:4c: b5:fa:bf:46:49:07:8c:a4:cb:81:5f:04:a7:a0:16: 27:0a:85:a4:ea:63:d1:24:6c:59:96:80:d5:90:25: 22:93:65:00:2e:eb:9a:c5:31:9a:52:2d:61:41:40: 87:6e:9f:9b:44:ba:d3:89:51:05:97:ba:7b:b9:d4: 71:99:d9:87:27:6a:df:65:a1:a5:7d:df:c9:2a:f5: 22:41:31:a2:44:ae:1c:26:f0:98:a4:8d:63:f2:1f: 33:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:4B:A6:D3:18:41:F4:72:4B:AD:53:51:BC:8B:80:AB:D9:1F:9A:B8 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/C7E33F14260211EB8B2D4373C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.229.92.0/24 Signature Algorithm: sha256WithRSAEncryption 12:b1:ae:f9:18:04:55:66:8c:f2:6e:d5:85:6c:49:d1:c8:8a: 97:47:28:0d:68:e7:78:65:46:6a:bc:10:24:6c:c1:99:b0:fc: ba:fe:b7:93:1b:4e:73:3e:88:53:72:bd:72:4a:28:f6:f8:51: 51:9e:4f:bd:f0:cd:2f:fd:51:1e:2c:c7:78:9f:d1:ad:43:c4: b1:b8:11:6f:c6:d0:90:4b:9a:a5:6b:93:20:75:18:4e:ca:26: 18:65:57:e9:50:41:5a:e6:ff:bc:36:e1:fa:d6:7e:13:3d:a1: d0:1e:d8:91:c0:80:4d:83:14:73:61:d9:9e:75:ab:3e:98:bd: e8:3b:a3:ae:c4:a6:f6:3b:9c:d2:99:ec:e5:6f:ea:80:08:da: 22:c7:2f:4b:90:84:dd:77:bb:26:af:b5:9c:5a:38:eb:58:07: c0:19:40:27:33:ae:25:ac:b7:66:ff:69:b6:e3:12:62:9c:87: 62:88:8f:3e:86:10:bd:5a:66:89:24:55:14:09:81:91:84:74: 0c:b3:09:b5:f1:14:6f:95:c0:33:ce:e8:47:64:ff:6a:13:ed: 84:e8:c0:e5:74:9d:f4:cb:c9:ba:59:c2:7d:96:65:e7:a3:fe: 35:8c:d5:85:77:cb:32:79:48:9f:d6:a6:cc:3e:a1:01:9e:4f: 43:82:47:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMjU2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWMzMC02NmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwi/ygWROfv4rMvGLGZOH8JqUfNw3kPcmT3EeZSb/lvSwKU1jV3Q31bi280S2 CzIq00pQESspUbnQj+dLSxhEJ8LRel41crzmmxnLzAq7qnZdMbim3aqv0Dw5ZYlI 5Egr+sp5KxqxOq0vwEbb6S5GclCbjoAJ8gEQFOdLh+6326NPhfgSrlWSPvIFCtX7 GrME1D4WxlNJCRDFppHfB9kfJZNgf0y1+r9GSQeMpMuBXwSnoBYnCoWk6mPRJGxZ loDVkCUik2UALuuaxTGaUi1hQUCHbp+bRLrTiVEFl7p7udRxmdmHJ2rfZaGlfd/J KvUiQTGiRK4cJvCYpI1j8h8zvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKRLptMY QfRyS61TUbyLgKvZH5q4MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvQzdFMzNGMTQy NjAyMTFFQjhCMkQ0MzczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAx5VwwDQYJKoZIhvcNAQELBQADggEBABKxrvkYBFVmjPJu 1YVsSdHIipdHKA1o53hlRmq8ECRswZmw/Lr+t5MbTnM+iFNyvXJKKPb4UVGeT73w zS/9UR4sx3if0a1DxLG4EW/G0JBLmqVrkyB1GE7KJhhlV+lQQVrm/7w24frWfhM9 odAe2JHAgE2DFHNh2Z51qz6Yveg7o67EpvY7nNKZ7OVv6oAI2iLHL0uQhN13uyav tZxaOOtYB8AZQCczriWst2b/abbjEmKch2KIjz6GEL1aZokkVRQJgZGEdAyzCbXx FG+VwDPO6Edk/2oT7YTowOV0nfTLybpZwn2WZeej/jWM1YV3yzJ5SJ/Wpsw+oQGe T0OCR5M= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:03 2024 by rpki-client on console-ams.rpki-client.org