$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8649EB6CF30E11EDAD4C2045C4F9AE02.roa File: 8649EB6CF30E11EDAD4C2045C4F9AE02.roa (raw, json) Hash identifier: KaIdl7YrPY2TGXq+X2GHjpZuMqbsPNWiodIPB5jNynA= Subject key identifier: E7:63:E9:CF:30:2A:03:4D:F9:1B:DC:AC:09:4D:03:B0:C8:A5:FE:15 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8EC2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8649EB6CF30E11EDAD4C2045C4F9AE02.roa Signing time: Thu 30 May 2024 16:21:01 +0000 ROA not before: Thu 30 May 2024 16:21:01 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 148001 IP address blocks: 160.202.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36546 (0x8ec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:21:01 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a76d-f491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d5:45:bf:7f:00:5b:82:e8:ba:f0:9f:7f:97: 97:b6:f6:77:ca:2c:3c:eb:25:63:7d:9c:9c:50:81: d2:a9:e2:fa:9a:2e:ce:91:f1:b2:44:a1:92:6c:1f: 75:81:56:98:ce:67:1a:37:30:9f:81:b7:fa:8f:2a: 2f:f1:c7:5a:2c:7f:97:b5:f5:f6:3f:9a:8c:99:0f: 3c:e3:19:99:3b:f8:02:26:68:45:f4:1e:d6:ad:7e: 14:fd:5e:8e:ed:b8:24:b4:fe:ee:79:87:d7:42:b8: 72:bb:75:92:56:25:8b:f3:15:95:e2:42:cd:e8:8c: bf:46:73:72:40:59:ce:8f:c7:a7:10:12:fb:6c:d8: 00:af:d0:01:16:43:65:0e:ae:81:6a:d0:67:e8:6d: f2:3a:4f:54:2b:0a:11:b5:f4:08:11:ca:5f:37:96: 69:b3:39:33:7f:63:f2:34:82:0c:5c:53:01:82:f7: 39:10:39:1d:8c:7c:7d:57:25:77:a3:00:f6:80:16: c3:a7:e2:e3:90:fa:6e:20:7c:44:bb:19:1c:bc:96: 6f:48:f7:6d:6c:01:99:e2:ef:7b:03:1c:27:1d:1a: 75:44:ef:93:55:72:0d:9a:98:9a:ae:3c:93:d8:d1: 07:cb:ae:bb:a3:6b:cf:79:9e:09:68:59:81:a8:96: 19:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:63:E9:CF:30:2A:03:4D:F9:1B:DC:AC:09:4D:03:B0:C8:A5:FE:15 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8649EB6CF30E11EDAD4C2045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.202.192.0/20 Signature Algorithm: sha256WithRSAEncryption 93:4e:f4:4a:0f:9c:1a:a1:20:06:2f:26:77:7e:e2:10:9d:90: 1f:8f:8b:ad:ae:12:b6:60:50:64:e9:63:0b:e8:e9:a4:af:5c: 53:69:d0:7e:2c:16:b3:21:c1:97:69:6b:c2:0e:35:0f:8a:eb: f6:af:64:89:ee:43:26:40:44:6e:09:1c:81:b0:a0:14:88:f7: 67:7b:a9:91:43:4d:90:c3:b7:c8:aa:21:6f:ef:d1:4e:22:21: ee:36:88:04:22:8d:6a:ca:18:ce:3a:cb:4e:61:2c:76:a8:72: fe:4a:70:1f:a8:7d:ae:5c:9a:65:40:92:f3:83:3d:08:09:35: 3f:8f:0d:aa:d1:cb:7b:70:7f:12:55:5b:b3:fd:bb:0d:94:8d: d4:49:68:73:07:89:8a:2c:95:6b:2c:78:83:ee:ce:96:49:52: 34:e4:fc:08:5b:df:62:74:62:4f:50:37:da:80:b8:fc:dd:5c: 6d:fa:82:02:4a:c4:f3:5c:a6:65:ac:35:e2:cc:a8:5b:af:b4: e3:fc:e8:1c:4b:b0:30:b1:a7:ff:ff:ea:b3:98:e3:ba:3a:64: d1:1f:6a:d5:24:b7:fd:df:1e:44:91:92:0c:06:fa:00:a1:4e: 84:3e:f4:51:14:8b:21:a9:8c:2a:24:c2:41:ae:2c:c4:52:51: 8d:4c:f5:85 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI7CMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjEwMVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE3NmQtZjQ5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfVRb9/AFuC6Lrwn3+Xl7b2d8osPOslY32cnFCB0qni+pouzpHxskShkmwf dYFWmM5nGjcwn4G3+o8qL/HHWix/l7X19j+ajJkPPOMZmTv4AiZoRfQe1q1+FP1e ju24JLT+7nmH10K4crt1klYli/MVleJCzeiMv0ZzckBZzo/HpxAS+2zYAK/QARZD ZQ6ugWrQZ+ht8jpPVCsKEbX0CBHKXzeWabM5M39j8jSCDFxTAYL3ORA5HYx8fVcl d6MA9oAWw6fi45D6biB8RLsZHLyWb0j3bWwBmeLvewMcJx0adUTvk1VyDZqYmq48 k9jRB8uuu6Nrz3meCWhZgaiWGacCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTnY+nP MCoDTfkb3KwJTQOwyKX+FTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg2NDlFQjZD RjMwRTExRURBRDRDMjA0NUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQEoMrAMA0GCSqGSIb3DQEBCwUAA4IBAQCTTvRKD5waoSAG LyZ3fuIQnZAfj4utrhK2YFBk6WML6Omkr1xTadB+LBazIcGXaWvCDjUPiuv2r2SJ 7kMmQERuCRyBsKAUiPdne6mRQ02Qw7fIqiFv79FOIiHuNogEIo1qyhjOOstOYSx2 qHL+SnAfqH2uXJplQJLzgz0ICTU/jw2q0ct7cH8SVVuz/bsNlI3USWhzB4mKLJVr LHiD7s6WSVI05PwIW99idGJPUDfagLj83Vxt+oICSsTzXKZlrDXizKhbr7Tj/Ogc S7Awsaf//+qzmOO6OmTRH2rVJLf93x5EkZIMBvoAoU6EPvRRFIshqYwqJMJBrizE UlGNTPWF -----END CERTIFICATE-----Generated at Sun Feb 16 20:12:52 2025 by rpki-client