$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/DB8B5E7AAB0A11EFA1D4470FC4F9AE02.roa File: DB8B5E7AAB0A11EFA1D4470FC4F9AE02.roa (raw, json) Hash identifier: V/CKHb4HlVLpUcEk3XyMdADgcUjxOzFlMjwiVj6qZm8= Subject key identifier: 03:C9:C6:D6:72:7A:BA:44:02:8D:99:E4:C8:BF:84:87:FA:E9:E5:06 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 04A1 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/DB8B5E7AAB0A11EFA1D4470FC4F9AE02.roa Signing time: Tue 17 Dec 2024 07:17:13 +0000 ROA not before: Tue 17 Dec 2024 07:17:13 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153407 IP address blocks: 160.191.220.0/23 maxlen: 23 160.191.220.0/24 maxlen: 24 160.191.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 14:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Dec 17 07:17:13 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67612579-f3fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:72:96:2a:c7:51:d0:fc:bc:cc:ad:2e:70:64: da:7e:27:00:d7:c2:f0:13:34:fc:28:63:19:96:a7: 5a:bf:18:3c:86:fe:26:d1:c1:80:96:4d:5f:61:fc: 11:1f:dc:9b:8e:b4:16:9a:e5:73:7e:db:b3:2f:2d: 02:59:9f:6f:58:bd:9b:8a:f8:69:d2:26:4c:84:d0: 79:7c:c7:71:f8:61:c7:68:09:25:67:b8:ff:b5:ab: a8:d2:89:d3:44:76:2e:06:b3:a1:ce:44:ab:15:bc: 7a:b0:61:b2:7e:d9:bc:42:e9:87:c3:e0:cf:4f:fb: a7:a5:0f:22:4e:f3:75:56:65:e0:8f:1c:6b:56:a2: 67:f5:77:ee:63:ba:cc:aa:a4:34:a1:f5:56:3d:b0: f1:8a:4a:ae:14:67:0d:4b:ba:9b:34:c4:c2:5d:fc: 98:f9:ca:d9:4a:0a:a5:da:9c:31:0d:d4:6e:cd:f2: 86:34:35:17:29:f9:c7:e1:82:5a:06:65:6a:9f:d7: ae:30:2b:72:09:d0:b7:f8:0c:ac:0b:9f:03:ff:17: fd:6a:e8:04:78:d4:e1:2b:63:1d:7b:de:b8:6b:4c: b8:a5:50:8d:fb:60:f5:f5:1f:15:1b:12:4f:a4:5a: b3:63:77:9d:dc:5a:17:23:71:93:31:5a:cf:13:b7: b3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:C9:C6:D6:72:7A:BA:44:02:8D:99:E4:C8:BF:84:87:FA:E9:E5:06 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/DB8B5E7AAB0A11EFA1D4470FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.220.0/23 Signature Algorithm: sha256WithRSAEncryption 16:ce:da:3a:00:d1:95:df:4c:3a:31:f2:29:fb:4c:b7:18:0c: aa:7b:e2:00:53:8b:40:11:58:c5:d1:a0:4e:0c:39:7b:64:01: 65:22:ae:2c:e0:79:55:db:fe:b4:7c:10:c4:d5:26:f2:4d:03: 02:bd:44:5a:37:51:7b:ff:ab:d6:bd:6e:cd:a7:46:b6:bf:13: 43:a9:ef:65:2c:26:48:86:ee:2e:82:d9:58:7b:1d:75:64:d8: c6:28:8f:27:01:89:af:bd:8c:0d:16:b6:90:7e:ab:ba:f8:cf: 28:db:50:79:31:54:cf:e3:75:b1:7d:d7:44:ca:87:c8:a3:15: 85:dc:fc:b4:3e:0a:4c:65:19:69:15:76:7d:e5:71:d4:81:8a: bd:16:52:44:64:fd:11:f2:95:48:60:af:4d:00:2a:a7:1a:bc: 0f:0d:ad:5a:c4:a7:16:b3:2f:0b:8e:06:e3:0d:ff:6c:f3:e1: d1:38:22:da:5c:8c:ba:db:9e:a4:58:76:5d:e0:da:a2:04:bd: de:ae:6d:19:8a:5a:1c:e9:41:4e:d8:55:8d:91:84:da:78:f8: 6a:e3:9e:80:ce:bb:73:03:cf:16:be:48:3c:b2:ee:8a:20:b8: 32:7a:e6:67:39:0d:35:1b:e1:b0:d5:94:12:17:07:c3:38:9d: dd:81:85:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMjE3MDcxNzEzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYxMjU3OS1mM2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3KWKsdR0Py8zK0ucGTaficA18LwEzT8KGMZlqdavxg8hv4m0cGAlk1fYfwR H9ybjrQWmuVzftuzLy0CWZ9vWL2bivhp0iZMhNB5fMdx+GHHaAklZ7j/tauo0onT RHYuBrOhzkSrFbx6sGGyftm8QumHw+DPT/unpQ8iTvN1VmXgjxxrVqJn9XfuY7rM qqQ0ofVWPbDxikquFGcNS7qbNMTCXfyY+crZSgql2pwxDdRuzfKGNDUXKfnH4YJa BmVqn9euMCtyCdC3+AysC58D/xf9augEeNThK2Mde964a0y4pVCN+2D19R8VGxJP pFqzY3ed3FoXI3GTMVrPE7ez1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAPJxtZy erpEAo2Z5Mi/hIf66eUGMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvREI4QjVFN0FB QjBBMTFFRkExRDQ0NzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv9wwDQYJKoZIhvcNAQELBQADggEBABbO2joA0ZXfTDox 8in7TLcYDKp74gBTi0ARWMXRoE4MOXtkAWUirizgeVXb/rR8EMTVJvJNAwK9RFo3 UXv/q9a9bs2nRra/E0Op72UsJkiG7i6C2Vh7HXVk2MYojycBia+9jA0WtpB+q7r4 zyjbUHkxVM/jdbF910TKh8ijFYXc/LQ+CkxlGWkVdn3lcdSBir0WUkRk/RHylUhg r00AKqcavA8NrVrEpxazLwuOBuMN/2zz4dE4ItpcjLrbnqRYdl3g2qIEvd6ubRmK WhzpQU7YVY2RhNp4+GrjnoDOu3MDzxa+SDyy7ooguDJ65mc5DTUb4bDVlBIXB8M4 nd2Bhd4= -----END CERTIFICATE-----Generated at Mon Apr 7 18:52:15 2025 by rpki-client