$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/676D2776AD4911EFB10AD13FC4F9AE02.roa File: 676D2776AD4911EFB10AD13FC4F9AE02.roa (raw, json) Hash identifier: AmCOAvI937CtvXTSSc1hWW95eYnzgNMqrT8a7JvEIJw= Subject key identifier: 3B:3F:13:9A:35:BD:C7:9C:DE:9E:1C:15:79:D3:AD:F4:25:2E:2E:F7 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1BFF Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/676D2776AD4911EFB10AD13FC4F9AE02.roa Signing time: Thu 28 Nov 2024 05:27:05 +0000 ROA not before: Thu 28 Nov 2024 05:27:05 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135799 IP address blocks: 160.187.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7167 (0x1bff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Nov 28 05:27:05 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6747ff29-b382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4a:33:5e:58:f2:25:40:35:29:b1:89:0c:74: 74:2e:4c:de:94:c3:b0:ec:9d:13:56:90:28:57:d4: 13:62:3c:8d:fe:f0:d5:e1:74:85:c8:b2:25:e2:2c: 8b:a2:75:d1:36:0f:e3:2e:83:60:78:75:2c:3d:6f: 1d:e6:23:e9:76:f9:9c:65:e0:da:6d:17:e3:72:b7: 4b:77:9c:8b:90:7d:8f:0a:90:c1:05:b0:57:3d:d9: c1:ad:c0:7e:95:9d:c7:2d:7c:b4:ea:f9:27:42:df: dd:8f:17:c7:6d:fe:a0:60:a9:d9:19:e6:a4:18:b5: 35:6f:90:32:90:2d:ad:b7:94:08:c1:ff:d5:5d:d0: 18:38:d7:9a:54:1f:fd:7b:3e:78:6a:3b:67:a7:e3: 59:e5:88:5f:7b:c4:93:2f:c0:57:60:b6:4d:02:43: 8d:68:75:71:08:d9:a4:fe:36:b6:20:1d:76:22:52: 2c:ae:ab:fd:7e:2a:71:7b:e3:4c:3b:ef:7f:e3:65: fc:cc:2c:e1:87:cf:29:b6:48:59:b5:9c:ef:66:df: 1f:39:5d:7e:02:09:e0:ae:47:39:31:0d:1c:eb:e9: 4e:33:e7:80:43:7f:8e:d9:7f:e9:65:60:71:e3:c8: f8:7c:63:9c:10:85:6d:6d:45:40:60:9e:6a:b3:c6: 59:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3F:13:9A:35:BD:C7:9C:DE:9E:1C:15:79:D3:AD:F4:25:2E:2E:F7 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/676D2776AD4911EFB10AD13FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.178.0/23 Signature Algorithm: sha256WithRSAEncryption b6:07:09:91:14:ea:0a:c9:ab:e2:dc:ab:a7:0d:df:aa:aa:9e: 9a:63:a7:95:09:c1:14:ce:2e:71:f6:c0:a1:48:9a:af:6a:06: df:dd:12:95:c8:25:c5:c7:14:1c:91:14:2e:3a:b4:4d:b5:35: 10:75:7e:ea:03:83:9b:f6:26:37:d2:df:c9:ca:f8:21:27:03: fc:31:f5:29:57:f9:df:89:f3:af:16:6e:e3:6a:62:58:6c:c0: 51:c0:fa:58:f2:d8:6c:58:a6:32:5b:d4:cd:a7:25:ed:74:69: a7:28:74:c0:0e:58:e5:32:c5:0b:72:9c:15:00:3d:c4:65:25: ec:f9:a7:d2:dd:8e:b7:2f:17:c3:87:b3:c6:0c:15:cd:42:81: 18:37:1d:49:2f:94:e2:62:46:d4:2e:ab:be:8f:de:95:97:9c: 4d:92:e9:3c:58:8a:21:b6:1a:46:b4:25:88:22:ad:16:e7:45: 35:13:a0:ed:92:67:ff:bf:1b:b7:a9:b0:25:b6:b4:a5:40:ed: 35:2b:e1:26:ca:23:d4:27:cd:71:e1:ff:2a:2a:58:3a:33:88: 0e:00:18:ce:a5:d6:06:d3:ff:65:4b:1b:2e:76:67:08:6d:e7: 8e:ae:28:09:ae:bf:9d:f3:57:db:e6:50:b9:86:b3:57:62:83: 9d:36:0c:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQxMTI4MDUyNzA1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ3ZmYyOS1iMzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0ozXljyJUA1KbGJDHR0LkzelMOw7J0TVpAoV9QTYjyN/vDV4XSFyLIl4iyL onXRNg/jLoNgeHUsPW8d5iPpdvmcZeDabRfjcrdLd5yLkH2PCpDBBbBXPdnBrcB+ lZ3HLXy06vknQt/djxfHbf6gYKnZGeakGLU1b5AykC2tt5QIwf/VXdAYONeaVB/9 ez54ajtnp+NZ5Yhfe8STL8BXYLZNAkONaHVxCNmk/ja2IB12IlIsrqv9fipxe+NM O+9/42X8zCzhh88ptkhZtZzvZt8fOV1+Agngrkc5MQ0c6+lOM+eAQ3+O2X/pZWBx 48j4fGOcEIVtbUVAYJ5qs8ZZYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDs/E5o1 vcec3p4cFXnTrfQlLi73MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjc2RDI3NzZB RDQ5MTFFRkIxMEFEMTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu7IwDQYJKoZIhvcNAQELBQADggEBALYHCZEU6grJq+Lc q6cN36qqnppjp5UJwRTOLnH2wKFImq9qBt/dEpXIJcXHFByRFC46tE21NRB1fuoD g5v2JjfS38nK+CEnA/wx9SlX+d+J868WbuNqYlhswFHA+ljy2GxYpjJb1M2nJe10 aacodMAOWOUyxQtynBUAPcRlJez5p9LdjrcvF8OHs8YMFc1CgRg3HUkvlOJiRtQu q76P3pWXnE2S6TxYiiG2Gka0JYgirRbnRTUToO2SZ/+/G7epsCW2tKVA7TUr4SbK I9QnzXHh/yoqWDoziA4AGM6l1gbT/2VLGy52Zwht546uKAmuv53zV9vmULmGs1di g502DOY= -----END CERTIFICATE-----Generated at Sat Apr 5 08:06:43 2025 by rpki-client