$ rpki-client -vvf rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/5C8F0D505ECB11EFA4D8E07CC4F9AE02.roa File: 5C8F0D505ECB11EFA4D8E07CC4F9AE02.roa (raw, json) Hash identifier: atTdCHE/dOxVB22J8uOVRUHo7cPd4x9PndNRWzZINF4= Subject key identifier: 66:87:84:57:5E:F8:DA:E2:49:2C:29:F7:C2:B3:3D:E7:74:0C:DD:65 Certificate issuer: /CN=A911C7CD/serialNumber=C3372DE1FE9E53C18B30516D964C436722EB3ECB Certificate serial: 03 Authority key identifier: C3:37:2D:E1:FE:9E:53:C1:8B:30:51:6D:96:4C:43:67:22:EB:3E:CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wzct4f6eU8GLMFFtlkxDZyLrPss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/5C8F0D505ECB11EFA4D8E07CC4F9AE02.roa Signing time: Tue 20 Aug 2024 08:08:19 +0000 ROA not before: Tue 20 Aug 2024 08:08:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138580 IP address blocks: 160.30.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/wzct4f6eU8GLMFFtlkxDZyLrPss.crl rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/wzct4f6eU8GLMFFtlkxDZyLrPss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wzct4f6eU8GLMFFtlkxDZyLrPss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C7CD/serialNumber=C3372DE1FE9E53C18B30516D964C436722EB3ECB Validity Not Before: Aug 20 08:08:19 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c44ef3-dee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ba:37:d8:df:ff:78:94:8d:84:43:b6:48:aa: 88:06:2e:40:34:59:f7:f7:27:0d:1a:5e:bf:9e:eb: 13:fe:88:c6:0d:c0:5a:b4:d7:ed:90:ca:a9:83:93: 00:14:08:91:dd:8f:d1:40:e0:61:a2:7a:c7:10:bf: 2e:6c:d9:11:70:63:cf:55:ec:96:2a:a5:48:75:65: d4:a3:c2:ef:5a:f3:57:30:af:9c:55:13:a5:da:37: d8:44:3b:ef:d3:9b:48:f1:ac:9d:41:aa:1e:fe:10: 93:cb:0a:56:25:14:49:fb:c5:39:60:e2:ed:71:e3: b1:bf:a7:4f:5c:15:c9:06:fd:99:2b:ee:bb:b4:2b: f2:fa:20:e0:5f:3a:ec:74:cf:92:26:9c:10:b7:c6: bc:2e:95:94:81:e4:1a:bf:26:d5:db:fd:d2:9e:6f: d8:a0:e0:fa:09:45:fd:78:ac:50:77:c5:29:cb:1e: e3:8d:25:1d:2c:06:00:36:a1:28:11:54:07:7c:44: 3e:e6:0a:da:2b:40:e3:69:54:18:91:0a:3b:26:49: ff:a3:bf:3b:8a:07:03:1c:b2:96:f6:05:43:e4:3c: 78:2d:0f:21:d6:94:5f:d8:e0:8e:a9:a3:14:59:3a: 42:3f:b9:2b:85:6a:d8:13:d0:56:1f:c8:36:f0:7b: 5e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:87:84:57:5E:F8:DA:E2:49:2C:29:F7:C2:B3:3D:E7:74:0C:DD:65 X509v3 Authority Key Identifier: keyid:C3:37:2D:E1:FE:9E:53:C1:8B:30:51:6D:96:4C:43:67:22:EB:3E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/wzct4f6eU8GLMFFtlkxDZyLrPss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wzct4f6eU8GLMFFtlkxDZyLrPss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/5C8F0D505ECB11EFA4D8E07CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.9.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:b8:20:3d:50:ca:10:18:c5:10:0e:d2:73:40:1e:96:3b:cd: 51:a2:db:c0:e4:c9:ca:ad:af:4c:b7:9c:f7:dd:3f:f8:51:0e: 3a:9f:e2:3c:03:ae:28:00:60:8d:17:81:e9:40:bf:ee:da:f0: 6d:a6:ad:0e:df:9e:9d:0b:5b:80:3c:82:e6:c5:a8:4c:84:8f: 0a:63:d8:d3:d8:f9:f6:8b:40:b8:60:e8:58:36:52:fc:72:42: f7:8c:63:37:5b:c0:ce:23:66:c7:da:d2:7c:9b:d5:e6:8a:9d: 13:87:f4:30:15:5b:30:4b:92:23:56:65:9f:60:a0:96:38:79: 9d:12:d2:4f:51:54:cb:1f:75:4a:14:b5:24:de:ba:d9:28:49: 4f:d7:ca:09:94:ba:41:1d:d6:74:bf:cf:ba:7b:ec:d2:f2:a5: 52:b3:73:ab:0f:36:4f:06:73:d5:73:3b:9a:4f:63:c5:11:2c: 55:7f:99:bd:30:bc:b4:8a:11:1f:f1:7c:ce:b2:25:31:77:b8: 85:43:e4:33:c8:ca:35:b3:08:99:7f:ac:28:26:63:21:e7:32: 76:47:72:0d:44:e1:1b:7b:96:b8:e6:0d:a8:f8:3a:30:d5:3e: 09:a2:56:55:ee:98:64:f6:85:fe:66:9a:53:ae:61:39:2f:75: 70:54:45:f5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QzdDRDExMC8GA1UEBRMoQzMzNzJERTFGRTlFNTNDMThCMzA1MTZEOTY0QzQzNjcy MkVCM0VDQjAeFw0yNDA4MjAwODA4MTlaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzQ0ZWYzLWRlZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmujfY3/94lI2EQ7ZIqogGLkA0Wff3Jw0aXr+e6xP+iMYNwFq01+2QyqmDkwAU CJHdj9FA4GGiescQvy5s2RFwY89V7JYqpUh1ZdSjwu9a81cwr5xVE6XaN9hEO+/T m0jxrJ1Bqh7+EJPLClYlFEn7xTlg4u1x47G/p09cFckG/Zkr7ru0K/L6IOBfOux0 z5ImnBC3xrwulZSB5Bq/JtXb/dKeb9ig4PoJRf14rFB3xSnLHuONJR0sBgA2oSgR VAd8RD7mCtorQONpVBiRCjsmSf+jvzuKBwMcspb2BUPkPHgtDyHWlF/Y4I6poxRZ OkI/uSuFatgT0FYfyDbwe173AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZoeEV174 2uJJLCn3wrM953QM3WUwHwYDVR0jBBgwFoAUwzct4f6eU8GLMFFtlkxDZyLrPssw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDN0NEL0Q2NEExRkI0NUVB MjExRUZCMTY3NzI0M0M0RjlBRTAyL3d6Y3Q0ZjZlVThHTE1GRnRsa3hEWnlMclBz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd3pjdDRmNmVVOEdMTUZGdGxreERaeUxyUHNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzdDRC9ENjRBMUZCNDVFQTIxMUVGQjE2NzcyNDNDNEY5QUUwMi81QzhGMEQ1MDVF Q0IxMUVGQTREOEUwN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAeCTANBgkqhkiG9w0BAQsFAAOCAQEAW7ggPVDKEBjFEA7S c0AeljvNUaLbwOTJyq2vTLec990/+FEOOp/iPAOuKABgjReB6UC/7trwbaatDt+e nQtbgDyC5sWoTISPCmPY09j59otAuGDoWDZS/HJC94xjN1vAziNmx9rSfJvV5oqd E4f0MBVbMEuSI1Zln2Cgljh5nRLST1FUyx91ShS1JN662ShJT9fKCZS6QR3WdL/P unvs0vKlUrNzqw82TwZz1XM7mk9jxREsVX+ZvTC8tIoRH/F8zrIlMXe4hUPkM8jK NbMImX+sKCZjIecydkdyDUThG3uWuOYNqPg6MNU+CaJWVe6YZPaF/maaU65hOS91 cFRF9Q== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:00 2024 by rpki-client on console-ams.rpki-client.org