$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/DFBA2ED05EA611ECB7A8FE42C4F9AE02.roa File: DFBA2ED05EA611ECB7A8FE42C4F9AE02.roa (raw, json) Hash identifier: Hh0DBtJs9ioG0qCfEDxIsitJeW5LK8cHT0Up+kY0AZU= Subject key identifier: B3:F7:07:FD:72:44:32:B0:9E:F2:6E:FE:A1:3C:A8:CC:6D:75:10:37 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2814 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/DFBA2ED05EA611ECB7A8FE42C4F9AE02.roa Signing time: Thu 28 Dec 2023 16:02:53 +0000 ROA not before: Thu 28 Dec 2023 16:02:53 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136538 IP address blocks: 49.229.120.0/22 maxlen: 24 49.229.124.0/22 maxlen: 24 49.229.128.0/21 maxlen: 24 49.229.136.0/21 maxlen: 24 49.229.144.0/22 maxlen: 24 49.229.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10260 (0x2814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:02:53 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c2c-51f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b7:26:2d:c6:e5:0b:e4:f0:66:28:25:53:73: ec:73:b3:39:aa:6f:2d:73:75:59:d8:54:f7:bc:a5: 66:bd:e6:7c:d7:53:c2:bf:fd:5a:3b:c5:9b:54:db: 0c:26:fc:e6:ff:2f:2c:1c:df:f8:65:28:65:a0:17: e7:fe:e9:c3:05:ce:bf:8e:89:58:a8:9a:16:42:05: db:b1:e6:df:53:44:9d:4b:40:7b:b7:c1:de:15:b8: ea:fd:de:31:3e:38:b6:db:b9:75:4d:92:fd:8a:e8: 63:44:b0:23:6a:15:93:16:cd:4e:6b:b0:7d:3f:1a: 55:b7:73:d6:79:7a:0e:ff:b5:bd:03:9b:e9:dd:34: e1:22:e7:02:9f:31:53:50:d0:9e:8d:8d:3b:ad:79: 0b:b2:c8:37:14:5c:45:e9:1d:a5:25:6c:b1:a8:3a: 0d:98:a0:78:9c:b4:df:a8:a5:0c:a4:5f:ef:2b:bf: 66:d1:62:54:25:52:fc:ff:6e:f5:35:6c:a2:44:73: 70:72:75:8a:4a:43:b6:1c:e7:27:6f:27:d4:85:b9: a2:d6:6c:9c:9f:01:2f:d3:df:19:e2:d2:36:4f:65: db:ee:36:a2:be:14:25:27:d1:79:5c:3c:10:43:a6: e6:76:5b:0e:92:f9:c2:af:73:a5:61:1d:94:1f:f8: 75:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F7:07:FD:72:44:32:B0:9E:F2:6E:FE:A1:3C:A8:CC:6D:75:10:37 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/DFBA2ED05EA611ECB7A8FE42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.229.120.0-49.229.151.255 Signature Algorithm: sha256WithRSAEncryption 03:94:4c:11:5f:6f:d0:77:94:09:ab:a1:fa:28:ca:f4:04:b5: 6b:68:c6:79:28:c6:84:18:d8:f7:b0:dc:e4:35:8e:1b:0c:4f: 07:79:95:48:3d:d7:db:93:ce:b0:cd:51:3a:e4:92:af:41:f3: 53:42:f6:9e:fb:df:2e:62:18:b6:5e:64:04:0c:9a:e5:43:1a: 49:87:80:f9:f8:dc:2b:90:4e:2b:04:b3:ed:43:65:c5:ad:15: ad:ff:2c:7c:18:cc:0f:86:0c:a9:5c:4a:f4:1d:ae:cb:ee:03: fe:39:45:c3:18:95:f4:92:09:7e:98:1e:9a:3d:a9:bd:59:2e: 51:c1:6b:6a:01:7c:2c:77:43:90:de:c3:5d:80:e3:42:70:51: 1f:ac:d7:e5:24:ef:92:4d:81:5a:1c:48:81:6c:03:3c:18:1a: b2:aa:e5:40:41:4b:81:55:86:ae:08:8f:d0:2e:6c:5f:83:31: d8:73:09:4f:6b:a7:0c:a7:47:9d:0e:e7:6c:dc:09:e0:21:92: d2:be:7d:dc:46:8d:6f:de:85:40:08:4e:57:ea:1f:c8:ac:2c: 34:bc:83:d5:37:c2:fb:f8:9e:5f:a8:75:07:7d:4b:3c:9d:7c: 2e:52:b3:ce:68:0c:10:8d:b1:85:3b:b4:5d:3e:8e:86:2a:52: c9:9d:f3:ce -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICKBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMjUzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWMyYy01MWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbcmLcblC+TwZiglU3Psc7M5qm8tc3VZ2FT3vKVmveZ811PCv/1aO8WbVNsM Jvzm/y8sHN/4ZShloBfn/unDBc6/jolYqJoWQgXbsebfU0SdS0B7t8HeFbjq/d4x Pji227l1TZL9iuhjRLAjahWTFs1Oa7B9PxpVt3PWeXoO/7W9A5vp3TThIucCnzFT UNCejY07rXkLssg3FFxF6R2lJWyxqDoNmKB4nLTfqKUMpF/vK79m0WJUJVL8/271 NWyiRHNwcnWKSkO2HOcnbyfUhbmi1mycnwEv098Z4tI2T2Xb7jaivhQlJ9F5XDwQ Q6bmdlsOkvnCr3OlYR2UH/h1XwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFLP3B/1y RDKwnvJu/qE8qMxtdRA3MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvREZCQTJFRDA1 RUE2MTFFQ0I3QThGRTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAzHleAMEAzHlkDANBgkqhkiG9w0BAQsFAAOCAQEAA5RM EV9v0HeUCauh+ijK9AS1a2jGeSjGhBjY97Dc5DWOGwxPB3mVSD3X25POsM1ROuSS r0HzU0L2nvvfLmIYtl5kBAya5UMaSYeA+fjcK5BOKwSz7UNlxa0Vrf8sfBjMD4YM qVxK9B2uy+4D/jlFwxiV9JIJfpgemj2pvVkuUcFragF8LHdDkN7DXYDjQnBRH6zX 5STvkk2BWhxIgWwDPBgasqrlQEFLgVWGrgiP0C5sX4Mx2HMJT2unDKdHnQ7nbNwJ 4CGS0r593EaNb96FQAhOV+ofyKwsNLyD1TfC+/ieX6h1B31LPJ18LlKzzmgMEI2x hTu0XT6OhipSyZ3zzg== -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:57 2024 by rpki-client on console-fra.rpki-client.org