$ rpki-client -vvf rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/19DD1D64320F11EF85003478C4F9AE02.roa File: 19DD1D64320F11EF85003478C4F9AE02.roa (raw, json) Hash identifier: kwZ3vbIqcZVhBnfxvzCA1Qx5wPtS+rnm/GCZ9YWxN9g= Subject key identifier: 09:FB:4F:62:35:E9:FD:C6:5E:1B:02:E9:15:A9:28:80:5D:39:0D:37 Certificate issuer: /CN=A91106C7/serialNumber=229EE6CFB79584BA2310ACCE452838F7A48A501E Certificate serial: 04 Authority key identifier: 22:9E:E6:CF:B7:95:84:BA:23:10:AC:CE:45:28:38:F7:A4:8A:50:1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ip7mz7eVhLojEKzORSg496SKUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/19DD1D64320F11EF85003478C4F9AE02.roa Signing time: Mon 24 Jun 2024 09:51:58 +0000 ROA not before: Mon 24 Jun 2024 09:51:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152928 IP address blocks: 160.22.214.0/23 maxlen: 23 160.22.214.0/24 maxlen: 24 160.22.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.crl rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ip7mz7eVhLojEKzORSg496SKUB4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91106C7/serialNumber=229EE6CFB79584BA2310ACCE452838F7A48A501E Validity Not Before: Jun 24 09:51:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667941bd-5a8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f2:2b:21:06:97:40:42:35:91:be:c8:3c:ac: 7b:3d:3d:f3:5e:88:17:10:55:5a:dc:f6:48:2e:fd: a9:94:93:27:4c:db:39:b8:e9:c0:3a:79:4a:5e:af: 04:60:74:00:36:c0:26:af:68:d4:77:44:4d:f4:47: 7e:6b:d7:b3:2e:4b:90:84:e1:f3:56:3b:c0:5a:92: 74:d1:2a:43:7a:77:d1:11:ef:41:f3:27:76:ed:1e: 45:f9:6f:c1:b8:a2:36:bb:6d:c0:5c:32:10:73:54: de:3e:f9:55:ed:9d:59:75:bf:d6:65:76:68:ff:1b: 03:76:85:fc:32:08:6c:bb:f0:e3:fc:ab:13:c1:33: 5b:2d:2a:45:2f:bd:3e:01:7b:54:7f:20:aa:b2:f4: 75:e2:fb:1a:43:9c:14:42:45:a7:18:f4:7a:4d:e4: 4e:08:b2:f1:4f:28:0c:fe:22:b3:39:b4:8e:46:d4: 10:fd:e0:ff:e7:f8:c5:f1:8c:be:4f:4e:d6:16:3a: c3:45:d4:8e:11:58:15:2c:24:00:37:e6:b1:d3:3a: 81:0e:34:eb:43:28:81:0f:fc:40:1f:9a:8a:1f:2b: cb:b0:94:e9:db:59:cd:17:af:ea:6b:1d:8e:be:14: 57:39:0a:f1:ba:9e:6c:0d:33:e6:1a:61:5a:cc:bb: 5e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FB:4F:62:35:E9:FD:C6:5E:1B:02:E9:15:A9:28:80:5D:39:0D:37 X509v3 Authority Key Identifier: keyid:22:9E:E6:CF:B7:95:84:BA:23:10:AC:CE:45:28:38:F7:A4:8A:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ip7mz7eVhLojEKzORSg496SKUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/19DD1D64320F11EF85003478C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.214.0/23 Signature Algorithm: sha256WithRSAEncryption 52:ed:f0:ab:ca:29:1f:bb:f5:00:d6:03:1d:f7:99:e5:59:e9: 95:d9:15:b4:52:b4:fc:06:fa:c8:8a:98:c9:97:c4:29:dc:82: 37:16:81:8c:ed:98:5a:2c:f5:24:95:f2:63:49:4a:f3:58:ce: 76:27:38:18:c6:13:e9:92:75:42:1b:ec:4d:b6:dd:b0:fe:24: 81:af:d4:1f:24:bc:bc:1f:08:e4:75:2b:4e:5e:af:92:c2:c5: 52:b8:98:de:8e:8e:01:e4:df:4a:53:c5:4d:37:ae:83:7d:6a: 44:2a:23:18:dc:9e:5b:34:a4:ad:aa:95:54:3b:23:dd:cb:14: 9c:6d:f8:f5:d7:7b:f4:f7:fd:ca:55:7f:ae:0a:2f:e6:22:53: 07:04:88:a5:1c:04:78:39:76:73:58:47:1c:a5:1e:9e:f7:57: 1c:74:52:62:9e:b4:e7:3a:c1:ec:5d:01:e7:35:a1:03:8e:33: f1:3c:6b:98:d0:9a:1d:6f:6c:56:b8:94:2f:e6:8f:de:87:8f: fc:8d:11:e6:2f:8f:1e:69:a1:7c:c3:48:f9:c5:2f:34:4e:79: 19:4a:fe:0e:b9:7b:51:67:03:12:9c:0e:a6:85:e7:2d:c2:0a: ac:10:d0:7a:28:b0:2e:a5:5b:c8:3e:83:e3:6d:d8:a5:5c:5b: bb:37:7a:55 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDZDNzExMC8GA1UEBRMoMjI5RUU2Q0ZCNzk1ODRCQTIzMTBBQ0NFNDUyODM4RjdB NDhBNTAxRTAeFw0yNDA2MjQwOTUxNThaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Nzk0MWJkLTVhOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt8ishBpdAQjWRvsg8rHs9PfNeiBcQVVrc9kgu/amUkydM2zm46cA6eUperwRg dAA2wCavaNR3RE30R35r17MuS5CE4fNWO8BaknTRKkN6d9ER70HzJ3btHkX5b8G4 oja7bcBcMhBzVN4++VXtnVl1v9Zldmj/GwN2hfwyCGy78OP8qxPBM1stKkUvvT4B e1R/IKqy9HXi+xpDnBRCRacY9HpN5E4IsvFPKAz+IrM5tI5G1BD94P/n+MXxjL5P TtYWOsNF1I4RWBUsJAA35rHTOoEONOtDKIEP/EAfmoofK8uwlOnbWc0Xr+prHY6+ FFc5CvG6nmwNM+YaYVrMu17/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCftPYjXp /cZeGwLpFakogF05DTcwHwYDVR0jBBgwFoAUIp7mz7eVhLojEKzORSg496SKUB4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwNkM3LzZGMDNENjMwMzIw RTExRUZCNkUwREE3NkM0RjlBRTAyL0lwN216N2VWaExvakVLek9SU2c0OTZTS1VC NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSXA3bXo3ZVZoTG9qRUt6T1JTZzQ5NlNLVUI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDZDNy82RjAzRDYzMDMyMEUxMUVGQjZFMERBNzZDNEY5QUUwMi8xOUREMUQ2NDMy MEYxMUVGODUwMDM0NzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAW1jANBgkqhkiG9w0BAQsFAAOCAQEAUu3wq8opH7v1ANYD HfeZ5VnpldkVtFK0/Ab6yIqYyZfEKdyCNxaBjO2YWiz1JJXyY0lK81jOdic4GMYT 6ZJ1QhvsTbbdsP4kga/UHyS8vB8I5HUrTl6vksLFUriY3o6OAeTfSlPFTTeug31q RCojGNyeWzSkraqVVDsj3csUnG349dd79Pf9ylV/rgov5iJTBwSIpRwEeDl2c1hH HKUenvdXHHRSYp605zrB7F0B5zWhA44z8TxrmNCaHW9sVriUL+aP3oeP/I0R5i+P HmmhfMNI+cUvNE55GUr+Drl7UWcDEpwOpoXnLcIKrBDQeiiwLqVbyD6D423YpVxb uzd6VQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:12 2024 by rpki-client on console-fra.rpki-client.org