$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/CE53574A54B411EBAC30E864C4F9AE02.roa File: CE53574A54B411EBAC30E864C4F9AE02.roa (raw, json) Hash identifier: 3DsYMZT0iiJLNcFnT67u3K3sOTF6RT9kO001IyzxNeA= Subject key identifier: A3:B3:C1:4A:A7:F0:2A:58:A8:36:F7:69:AF:3C:8A:2E:31:99:1F:76 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 281F Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/CE53574A54B411EBAC30E864C4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:03 +0000 ROA not before: Thu 28 Dec 2023 16:03:03 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141454 IP address blocks: 49.0.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10271 (0x281f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:03 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c37-7391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0a:92:52:39:a5:a6:94:2e:09:3c:c3:6e:56: b6:b9:54:57:e4:56:3b:7c:ff:86:ee:d5:32:ec:86: e9:b4:00:b9:2f:c4:88:44:5b:cf:46:06:b5:2b:c0: 14:f0:c8:71:34:be:e6:a5:19:d2:24:2a:bf:d4:0e: 42:b7:53:0f:98:d9:e0:23:ab:d9:6f:e0:be:49:07: 23:e6:d0:60:8c:d9:99:90:65:0c:f9:d5:c5:62:4e: 58:1c:d8:0d:bf:65:a3:a2:ee:f2:55:b8:82:58:d1: 59:55:92:14:d5:28:8c:00:48:2d:2c:46:b4:60:c1: cf:81:7f:9f:31:f1:7e:7f:b3:6e:0f:86:20:73:4f: a1:81:f4:e3:7e:1f:47:c0:f5:1d:b5:1d:ce:08:a7: 9b:77:ae:45:e2:cd:0c:37:02:81:17:83:9c:64:5b: 7f:d8:77:1c:40:8c:dc:9d:ea:8b:c2:6e:a1:a1:3d: 59:b2:44:7c:3a:a3:91:55:74:1b:b6:dd:72:e5:c4: fd:c2:a9:0b:88:7a:3f:63:9e:a4:29:d1:79:db:8c: 72:44:cc:57:d8:fa:f1:18:da:2a:51:2c:ab:25:e7: bf:b4:0b:a9:88:b0:04:04:2e:77:1e:97:32:38:b7: f2:3e:04:4e:fe:0f:3e:04:35:0b:f0:cd:b7:dd:f6: ad:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B3:C1:4A:A7:F0:2A:58:A8:36:F7:69:AF:3C:8A:2E:31:99:1F:76 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/CE53574A54B411EBAC30E864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.0.119.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:d2:00:51:8a:fe:93:3b:12:e4:a8:9d:c9:02:97:ed:a7:ae: 2a:d8:f1:0a:84:33:24:40:87:0e:c9:d6:82:50:68:2d:23:33: 3e:32:57:30:8d:c9:aa:30:80:7b:e4:5c:59:41:7f:6c:8a:71: 75:dd:06:f3:77:19:27:af:6c:fa:89:aa:43:05:55:43:17:9d: b0:b7:e5:0d:48:7b:bb:d1:d2:b5:e5:dc:8e:ac:bb:bc:59:b3: 6f:a7:45:bb:d9:c7:62:a5:81:27:c7:1d:cd:7d:71:88:ac:e8: b5:37:74:8f:82:f2:5b:a0:b8:5f:d6:cb:0b:b8:d0:2e:fe:1e: 2f:c2:4c:33:17:ce:8d:b5:84:63:55:c3:52:8c:00:4a:1c:4c: 69:ce:c1:94:a5:08:2a:5d:5e:f2:bc:78:8b:67:ce:ea:73:ba: 95:68:5f:8c:2f:4d:d8:5c:63:77:9c:5c:c7:15:52:a9:ed:68: 4f:3a:44:40:0d:09:66:e9:48:c9:a8:37:9f:76:6c:35:97:7a: ed:cc:a2:02:bb:2c:5e:d0:13:1f:b8:c9:9d:ba:35:38:79:0a: f9:ea:e9:9d:43:95:7d:49:b3:a2:47:d5:43:19:09:18:70:6d: 89:c3:7a:cd:df:e0:ee:8a:4a:cb:e7:a1:8c:91:e6:64:c3:69: 72:43:b8:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzAzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWMzNy03MzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwqSUjmlppQuCTzDbla2uVRX5FY7fP+G7tUy7IbptAC5L8SIRFvPRga1K8AU 8MhxNL7mpRnSJCq/1A5Ct1MPmNngI6vZb+C+SQcj5tBgjNmZkGUM+dXFYk5YHNgN v2Wjou7yVbiCWNFZVZIU1SiMAEgtLEa0YMHPgX+fMfF+f7NuD4Ygc0+hgfTjfh9H wPUdtR3OCKebd65F4s0MNwKBF4OcZFt/2HccQIzcneqLwm6hoT1ZskR8OqORVXQb tt1y5cT9wqkLiHo/Y56kKdF524xyRMxX2PrxGNoqUSyrJee/tAupiLAEBC53Hpcy OLfyPgRO/g8+BDUL8M233fatZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKOzwUqn 8CpYqDb3aa88ii4xmR92MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvQ0U1MzU3NEE1 NEI0MTFFQkFDMzBFODY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAxAHcwDQYJKoZIhvcNAQELBQADggEBAD3SAFGK/pM7EuSo nckCl+2nrirY8QqEMyRAhw7J1oJQaC0jMz4yVzCNyaowgHvkXFlBf2yKcXXdBvN3 GSevbPqJqkMFVUMXnbC35Q1Ie7vR0rXl3I6su7xZs2+nRbvZx2KlgSfHHc19cYis 6LU3dI+C8luguF/Wywu40C7+Hi/CTDMXzo21hGNVw1KMAEocTGnOwZSlCCpdXvK8 eItnzupzupVoX4wvTdhcY3ecXMcVUqntaE86REANCWbpSMmoN592bDWXeu3MogK7 LF7QEx+4yZ26NTh5Cvnq6Z1DlX1Js6JH1UMZCRhwbYnDes3f4O6KSsvnoYyR5mTD aXJDuAs= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:03 2024 by rpki-client on console-ams.rpki-client.org