$ rpki-client -vvf rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/F17DA0FE85FC11EFBD7A485FC4F9AE02.roa File: F17DA0FE85FC11EFBD7A485FC4F9AE02.roa (raw, json) Hash identifier: H6cM4D6HiFEzXOD3BJphw2tquQW1HD/n9sWWwx2nQbg= Subject key identifier: 6E:E6:86:5A:A5:34:F4:8F:94:30:4B:4F:12:AD:8C:63:F4:DC:86:6B Certificate issuer: /CN=A911A4F7/serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Certificate serial: 02 Authority key identifier: B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/F17DA0FE85FC11EFBD7A485FC4F9AE02.roa Signing time: Wed 09 Oct 2024 05:11:30 +0000 ROA not before: Wed 09 Oct 2024 05:11:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 153200 IP address blocks: 160.30.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A4F7/serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Validity Not Before: Oct 9 05:11:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67061082-6afa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:67:ce:32:fe:c2:4a:55:0a:be:87:15:86:48: 72:cd:0c:95:f8:59:2d:31:64:53:81:5f:13:71:a5: d2:d5:3d:33:5e:df:60:6c:e8:59:03:08:7f:67:14: 97:9c:1e:2b:3c:3c:32:8c:f5:96:41:b9:1c:03:32: 50:f0:fb:7a:bf:cb:36:2d:8a:24:17:d2:da:ce:6e: b0:50:0e:a3:10:5f:aa:7c:59:50:57:e0:68:eb:08: 87:47:03:e2:30:38:5a:f2:a6:56:fc:48:82:52:fa: 9a:8b:19:b8:fc:d2:a7:ad:55:f0:2b:53:c2:5e:02: 1b:af:7a:7e:bc:78:4f:b5:d5:18:de:82:b3:b5:0f: 79:39:2a:68:be:d7:a7:c2:b2:41:c8:b3:90:54:8c: 64:ce:44:e2:d4:6f:33:0c:0e:98:c8:da:45:fe:e9: 96:f7:1c:42:a7:68:8b:bd:88:33:64:13:06:86:e2: d4:0d:2c:bd:d5:41:f1:6f:77:6e:c3:6b:94:30:12: 82:42:59:cb:9a:5b:72:de:8e:1a:0c:8b:1d:76:d4: 08:e9:f7:d1:94:cb:54:3d:ff:8d:b1:0b:1e:7c:43: 36:c4:39:1b:01:b1:a5:ef:15:81:7e:48:06:b6:5f: fb:cc:59:5a:98:a8:49:51:46:7d:e3:a9:d3:4f:b6: 0d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E6:86:5A:A5:34:F4:8F:94:30:4B:4F:12:AD:8C:63:F4:DC:86:6B X509v3 Authority Key Identifier: keyid:B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/F17DA0FE85FC11EFBD7A485FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.110.0/24 Signature Algorithm: sha256WithRSAEncryption a3:4a:91:c2:b5:da:1e:dc:d7:84:c9:54:12:d5:4b:6c:84:1c: 07:48:68:29:fe:ba:1c:58:00:30:ce:21:7d:25:21:61:27:ed: 23:dc:6b:c2:bd:2d:28:9e:c7:67:12:cf:95:9c:5c:1c:b3:fd: 45:90:62:df:c5:bb:4c:06:f2:cf:4b:b5:cd:a0:d7:87:5c:01: 28:22:85:3f:6d:33:a1:27:05:74:c3:b5:42:40:49:a9:9c:10: 6a:25:5d:3b:38:97:ee:aa:64:cd:0f:6a:9d:d5:70:91:78:48: 7e:9c:0f:bf:d1:fe:21:d6:f5:63:fe:95:c4:28:ae:06:dc:75: 1a:d3:ad:31:ed:ab:bb:fa:08:e7:93:c7:f7:f2:f7:1b:eb:4b: 0f:39:14:2d:ed:32:87:bd:71:3c:79:72:34:01:0b:dd:b2:ec: a6:18:1a:95:3d:e3:64:51:c5:1b:9e:31:73:f1:4c:bc:71:41: 09:ad:1e:99:c6:86:f1:12:fa:75:2d:f5:23:14:62:a3:79:5e: c9:6f:78:10:84:7f:d0:90:19:f7:08:bf:8b:8f:f2:00:52:20: 19:e7:c0:9e:ee:97:5b:ee:6b:98:1c:7e:61:23:8c:a3:c7:c2: 52:68:7e:3f:52:a6:97:61:e7:af:2f:e0:07:e6:ff:2d:a3:37: cd:17:50:3e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QTRGNzExMC8GA1UEBRMoQjVEOTU1OTc3QURBNDY4M0FDNUI1OUMyNTgxOEI0NDM4 MUMyNEZFNjAeFw0yNDEwMDkwNTExMzBaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYxMDgyLTZhZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHZ84y/sJKVQq+hxWGSHLNDJX4WS0xZFOBXxNxpdLVPTNe32Bs6FkDCH9nFJec His8PDKM9ZZBuRwDMlDw+3q/yzYtiiQX0trObrBQDqMQX6p8WVBX4GjrCIdHA+Iw OFryplb8SIJS+pqLGbj80qetVfArU8JeAhuven68eE+11RjegrO1D3k5Kmi+16fC skHIs5BUjGTOROLUbzMMDpjI2kX+6Zb3HEKnaIu9iDNkEwaG4tQNLL3VQfFvd27D a5QwEoJCWcuaW3LejhoMix121Ajp99GUy1Q9/42xCx58QzbEORsBsaXvFYF+SAa2 X/vMWVqYqElRRn3jqdNPtg03AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbuaGWqU0 9I+UMEtPEq2MY/TchmswHwYDVR0jBBgwFoAUtdlVl3raRoOsW1nCWBi0Q4HCT+Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBNEY3LzlBNThDMzhBODVG QzExRUZCQzIxMEY1RUM0RjlBRTAyL3RkbFZsM3JhUm9Pc1cxbkNXQmkwUTRIQ1Qt WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdGRsVmwzcmFSb09zVzFuQ1dCaTBRNEhDVC1ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTRGNy85QTU4QzM4QTg1RkMxMUVGQkMyMTBGNUVDNEY5QUUwMi9GMTdEQTBGRTg1 RkMxMUVGQkQ3QTQ4NUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAebjANBgkqhkiG9w0BAQsFAAOCAQEAo0qRwrXaHtzXhMlU EtVLbIQcB0hoKf66HFgAMM4hfSUhYSftI9xrwr0tKJ7HZxLPlZxcHLP9RZBi38W7 TAbyz0u1zaDXh1wBKCKFP20zoScFdMO1QkBJqZwQaiVdOziX7qpkzQ9qndVwkXhI fpwPv9H+Idb1Y/6VxCiuBtx1GtOtMe2ru/oI55PH9/L3G+tLDzkULe0yh71xPHly NAEL3bLsphgalT3jZFHFG54xc/FMvHFBCa0emcaG8RL6dS31IxRio3leyW94EIR/ 0JAZ9wi/i4/yAFIgGefAnu6XW+5rmBx+YSOMo8fCUmh+P1Kml2Hnry/gB+b/LaM3 zRdQPg== -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:48 2024 by rpki-client on console-ams.rpki-client.org