$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9DDCAB1AC9EC11EE9644540FC4F9AE02.roa File: 9DDCAB1AC9EC11EE9644540FC4F9AE02.roa (raw, json) Hash identifier: Kic8h5EKd6f6RJkj1KvOZp4O1CzZUY/VSl4mLsZ7Pfc= Subject key identifier: AC:B3:CF:DA:FD:82:5C:1C:1E:4E:53:6F:82:60:FA:5E:D7:6A:C8:32 Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: 0F Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9DDCAB1AC9EC11EE9644540FC4F9AE02.roa Signing time: Fri 01 Mar 2024 08:39:33 +0000 ROA not before: Fri 01 Mar 2024 08:39:33 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 17461 IP address blocks: 143.119.160.0/24 maxlen: 24 143.119.161.0/24 maxlen: 24 143.119.162.0/24 maxlen: 24 143.119.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Validity Not Before: Mar 1 08:39:33 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e19445-0901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bf:ab:af:6d:98:13:fb:8d:f8:30:c6:f0:56: 53:95:bf:e6:fd:08:f6:8f:56:23:de:03:58:a9:11: a5:3c:05:f6:7b:3c:20:9e:fc:6f:95:05:93:c8:fb: 03:96:03:c6:8c:32:35:a7:b1:55:68:72:09:f6:ce: a5:dc:f9:6d:39:cd:4d:23:c6:53:62:48:e6:59:07: eb:2d:11:73:3c:e2:24:6e:5a:95:0e:e5:ae:4d:8d: 34:ea:1a:14:a1:49:e6:fa:cd:88:8b:b5:3f:ec:4e: 3d:46:3b:39:d1:81:d2:5e:c5:b1:21:bb:0c:14:36: f1:44:7c:12:74:2d:c5:e5:69:17:3a:2d:ad:66:48: 07:c4:58:cd:77:63:2f:2b:49:dd:33:6c:ba:2b:37: 2c:ef:51:b3:a0:03:c1:89:53:1e:d3:91:8d:71:b6: cd:22:e6:f6:d0:6d:cb:52:e7:9d:1c:8b:67:a0:f5: d2:40:6f:a5:3f:24:c0:10:ba:15:18:59:89:95:c1: 78:8c:b8:c8:f7:66:ac:77:b3:c6:7f:e6:0b:63:e7: 27:73:f6:e5:2e:0f:d8:d9:37:cf:f4:9e:16:06:55: 96:d0:a4:40:b5:71:83:14:97:ce:d2:93:ec:0a:72: 76:83:40:35:1d:8c:73:3f:02:c0:f1:f5:f9:9e:f9: 9a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B3:CF:DA:FD:82:5C:1C:1E:4E:53:6F:82:60:FA:5E:D7:6A:C8:32 X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9DDCAB1AC9EC11EE9644540FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.119.160.0/22 Signature Algorithm: sha256WithRSAEncryption c1:6f:08:b3:5c:3d:bf:c2:03:89:70:4c:41:52:63:d9:6a:bf: f0:ab:2a:24:00:42:c5:82:9c:39:89:a8:d2:64:04:88:95:51: 74:a6:0b:3d:1d:88:81:58:6a:ca:ea:a9:ad:c5:12:c3:8b:bf: 75:ba:e4:6d:9f:34:c7:42:af:55:5d:b1:7b:d3:31:48:04:a5: 89:8d:c5:22:b4:0a:62:35:c3:bb:8f:f0:43:2b:5d:34:3c:88: 38:e0:ba:6b:e9:96:4e:14:5e:cb:eb:97:af:ec:0a:a4:e3:a5: 23:4d:8e:a8:92:2c:f5:ea:10:9f:dd:d1:30:a4:1a:27:75:8e: 97:e3:8a:9e:1a:47:cc:65:f5:89:b7:ea:c5:cd:59:5d:d7:67: c8:97:a4:8d:1b:07:3e:ea:02:6f:4b:0f:3a:e0:47:af:f3:62: b0:35:e2:be:10:6f:15:75:c9:ba:82:a3:d1:d6:66:50:f4:97: d0:7e:f6:9b:c8:5e:b0:9a:2e:68:ae:e6:d7:18:e8:96:b4:8c: 5a:e8:4a:3f:9e:08:ce:69:fc:b1:ea:bf:3d:2d:1b:b2:a8:e9: 77:25:56:6f:80:3d:1b:08:d9:7c:32:e4:c9:d3:cb:31:5c:a6: 18:6b:24:b6:0e:a0:7c:63:ff:c9:9f:1c:27:4a:8b:47:a3:a1: d7:e3:23:b8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTVDOTExMC8GA1UEBRMoRUM2NzhERTBEN0JDRjgzOUQ5OThBMEZDRTVDOUVCNzVG RkM4NjczRDAeFw0yNDAzMDEwODM5MzNaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTE5NDQ1LTA5MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuv6uvbZgT+434MMbwVlOVv+b9CPaPViPeA1ipEaU8BfZ7PCCe/G+VBZPI+wOW A8aMMjWnsVVocgn2zqXc+W05zU0jxlNiSOZZB+stEXM84iRuWpUO5a5NjTTqGhSh Seb6zYiLtT/sTj1GOznRgdJexbEhuwwUNvFEfBJ0LcXlaRc6La1mSAfEWM13Yy8r Sd0zbLorNyzvUbOgA8GJUx7TkY1xts0i5vbQbctS550ci2eg9dJAb6U/JMAQuhUY WYmVwXiMuMj3Zqx3s8Z/5gtj5ydz9uUuD9jZN8/0nhYGVZbQpEC1cYMUl87Sk+wK cnaDQDUdjHM/AsDx9fme+ZpRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUrLPP2v2C XBweTlNvgmD6XtdqyDIwHwYDVR0jBBgwFoAU7GeN4Ne8+DnZmKD85cnrdf/IZz0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1NUM5LzdFMkYxMjY4QzlF QjExRUU4Qjg1N0IwQ0M0RjlBRTAyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvN0dlTjROZTgtRG5abUtEODVjbnJkZl9JWnowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTVDOS83RTJGMTI2OEM5RUIxMUVFOEI4NTdCMENDNEY5QUUwMi85RERDQUIxQUM5 RUMxMUVFOTY0NDU0MEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAo93oDANBgkqhkiG9w0BAQsFAAOCAQEAwW8Is1w9v8IDiXBM QVJj2Wq/8KsqJABCxYKcOYmo0mQEiJVRdKYLPR2IgVhqyuqprcUSw4u/dbrkbZ80 x0KvVV2xe9MxSASliY3FIrQKYjXDu4/wQytdNDyIOOC6a+mWThRey+uXr+wKpOOl I02OqJIs9eoQn93RMKQaJ3WOl+OKnhpHzGX1ibfqxc1ZXddnyJekjRsHPuoCb0sP OuBHr/NisDXivhBvFXXJuoKj0dZmUPSX0H72m8hesJouaK7m1xjolrSMWuhKP54I zmn8seq/PS0bsqjpdyVWb4A9GwjZfDLkydPLMVymGGsktg6gfGP/yZ8cJ0qLR6Oh 1+MjuA== -----END CERTIFICATE-----Generated at Fri May 31 10:02:40 2024 by rpki-client on console-ams.rpki-client.org