$ rpki-client -vvf rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/A2C3AA7E904E11EF9FC6B922C4F9AE02.roa File: A2C3AA7E904E11EF9FC6B922C4F9AE02.roa (raw, json) Hash identifier: bRFbzj6pr/OF3ESUy9ky5waEguFBGACn3nS0+utKTXI= Subject key identifier: D8:5C:6C:9E:D1:E9:AB:C8:A7:28:8C:7C:BE:FC:17:08:80:3E:A1:4A Certificate issuer: /CN=A9197724/serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Certificate serial: 03 Authority key identifier: A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/A2C3AA7E904E11EF9FC6B922C4F9AE02.roa Signing time: Tue 22 Oct 2024 08:21:29 +0000 ROA not before: Tue 22 Oct 2024 08:21:29 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153361 IP address blocks: 160.187.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197724/serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Validity Not Before: Oct 22 08:21:29 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67176088-e087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:55:97:e6:8c:d6:b6:65:f5:14:84:20:06:aa: ef:19:4a:27:02:ec:e9:38:57:4c:04:23:ba:ca:40: b5:88:e2:27:3c:2e:90:e3:96:d7:6f:ee:c5:0d:e1: 32:ab:fb:4a:0f:88:c2:02:e7:3d:e8:8a:15:cb:ec: ba:89:24:a2:77:bc:ec:7b:28:1c:db:4c:3a:7d:0b: 7a:0e:8c:79:32:89:05:e5:82:32:93:58:57:a5:4b: 78:2a:51:14:1b:f7:d1:65:29:e4:26:ae:7f:5c:f8: 0e:c2:b7:35:d0:aa:5b:96:f3:47:c0:9f:3a:b4:26: f9:b3:e9:89:26:fb:17:6e:20:cc:1d:89:90:9a:ea: a3:10:9e:1c:37:3b:88:89:9f:3d:45:0c:d9:f2:a2: 9e:f5:93:90:3f:4f:ef:e1:b3:62:1e:76:e0:ff:45: 71:49:ec:fe:51:4d:8f:29:5f:fd:0f:6c:0a:4e:6f: f6:e9:b2:de:db:95:e9:d9:05:da:a9:af:1c:2f:c4: d3:d2:1c:23:47:f9:e3:d9:d4:03:59:00:15:63:07: 29:38:f9:23:68:c5:54:5d:24:54:f3:7d:e2:0d:8c: 4c:9f:a3:31:c6:55:f6:6a:a5:a5:78:a9:6e:42:b2: 93:7b:41:f1:ce:4d:8c:9e:e6:a4:17:a7:51:cb:dc: 87:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5C:6C:9E:D1:E9:AB:C8:A7:28:8C:7C:BE:FC:17:08:80:3E:A1:4A X509v3 Authority Key Identifier: keyid:A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/A2C3AA7E904E11EF9FC6B922C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.222.0/24 Signature Algorithm: sha256WithRSAEncryption 40:f4:71:f6:7a:e6:65:8c:3a:28:00:70:85:e0:b3:57:01:63: e3:a7:ee:b3:c5:76:f3:25:3e:a2:60:f4:07:7b:96:00:df:61: e2:e5:7b:d3:17:5e:60:ee:50:38:55:fa:70:b0:4b:7d:f8:e4: 0e:14:e8:d2:df:87:22:9d:d1:5e:42:e5:34:60:46:b9:76:39: 1f:88:77:68:c5:49:91:d1:bb:54:59:f6:4a:11:4e:95:51:b6: b1:f7:71:b6:bf:c8:cf:c2:bc:1b:d0:fe:c6:87:b4:08:ab:4b: 92:20:1d:84:d4:ce:95:17:26:cf:c1:7f:d9:04:2f:a7:b5:89: 75:bd:72:ff:07:c0:31:bd:26:d0:a2:1f:7f:37:34:3d:db:87: 5b:b7:55:e7:47:04:fe:99:c9:da:15:ef:7a:47:9e:7e:c7:83: 65:25:82:ce:08:89:85:6a:61:3b:da:a0:85:04:92:d6:1c:a7: 76:f1:ce:bd:97:b2:59:a4:f9:05:15:ae:d0:4d:65:e9:e6:75: d2:87:88:92:c2:dc:0a:38:96:f7:f6:8a:ba:fc:37:67:77:09: a3:db:75:4e:a9:7e:07:c0:3f:ec:2d:fa:b0:5b:e8:0b:3c:3e: b3:34:6a:11:7b:ad:02:d1:66:32:60:5a:c2:aa:a6:36:5c:fc: 0f:0e:d3:71 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzcyNDExMC8GA1UEBRMoQTUxQ0ZCOEEyODM4REMyM0YyODc2NDRBNDczNUVGQzEz RDhDMzExMzAeFw0yNDEwMjIwODIxMjlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTc2MDg4LWUwODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaVZfmjNa2ZfUUhCAGqu8ZSicC7Ok4V0wEI7rKQLWI4ic8LpDjltdv7sUN4TKr +0oPiMIC5z3oihXL7LqJJKJ3vOx7KBzbTDp9C3oOjHkyiQXlgjKTWFelS3gqURQb 99FlKeQmrn9c+A7CtzXQqluW80fAnzq0Jvmz6Ykm+xduIMwdiZCa6qMQnhw3O4iJ nz1FDNnyop71k5A/T+/hs2IeduD/RXFJ7P5RTY8pX/0PbApOb/bpst7blenZBdqp rxwvxNPSHCNH+ePZ1ANZABVjByk4+SNoxVRdJFTzfeINjEyfozHGVfZqpaV4qW5C spN7QfHOTYye5qQXp1HL3IeXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2FxsntHp q8inKIx8vvwXCIA+oUowHwYDVR0jBBgwFoAUpRz7iig43CPyh2RKRzXvwT2MMRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3NzI0LzU2QzY3MDc2OTA0 RDExRUZBMTEwMzg2NEM0RjlBRTAyL3BSejdpaWc0M0NQeWgyUktSelh2d1QyTU1S TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcFJ6N2lpZzQzQ1B5aDJSS1J6WHZ3VDJNTVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzcyNC81NkM2NzA3NjkwNEQxMUVGQTExMDM4NjRDNEY5QUUwMi9BMkMzQUE3RTkw NEUxMUVGOUZDNkI5MjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC73jANBgkqhkiG9w0BAQsFAAOCAQEAQPRx9nrmZYw6KABw heCzVwFj46fus8V28yU+omD0B3uWAN9h4uV70xdeYO5QOFX6cLBLffjkDhTo0t+H Ip3RXkLlNGBGuXY5H4h3aMVJkdG7VFn2ShFOlVG2sfdxtr/Iz8K8G9D+xoe0CKtL kiAdhNTOlRcmz8F/2QQvp7WJdb1y/wfAMb0m0KIffzc0PduHW7dV50cE/pnJ2hXv ekeefseDZSWCzgiJhWphO9qghQSS1hyndvHOvZeyWaT5BRWu0E1l6eZ10oeIksLc CjiW9/aKuvw3Z3cJo9t1Tql+B8A/7C36sFvoCzw+szRqEXutAtFmMmBawqqmNlz8 Dw7TcQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:31 2024 by rpki-client on console-fra.rpki-client.org