$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/4DD6D628C8D211EF9F1BE312C4F9AE02.roa File: 4DD6D628C8D211EF9F1BE312C4F9AE02.roa (raw, json) Hash identifier: sUWfAuRTWaVVgcAthywuFU4ZlijXzthACuza893doh4= Subject key identifier: 08:D9:B3:44:24:DD:2D:1B:31:4F:96:B1:C6:47:CF:63:65:5E:FE:3E Certificate issuer: /CN=A91218BB/serialNumber=31AC9647C7F870A66BA2DE788544CD8C326BDFF9 Certificate serial: 03 Authority key identifier: 31:AC:96:47:C7:F8:70:A6:6B:A2:DE:78:85:44:CD:8C:32:6B:DF:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MayWR8f4cKZrot54hUTNjDJr3_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/4DD6D628C8D211EF9F1BE312C4F9AE02.roa Signing time: Thu 02 Jan 2025 06:25:05 +0000 ROA not before: Thu 02 Jan 2025 06:25:05 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137552 IP address blocks: 160.30.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.crl rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MayWR8f4cKZrot54hUTNjDJr3_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91218BB Validity Not Before: Jan 2 06:25:05 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67763140-9715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a2:37:4c:1d:1b:ee:49:95:d8:86:39:3b:75: 0d:53:98:6b:fa:e8:c7:15:95:05:16:c7:f1:c2:fd: 19:2a:59:64:97:14:96:18:e4:86:e2:f5:60:ee:c3: 82:48:9e:00:77:92:c0:ec:17:8f:f6:6b:c8:cb:9d: 50:d2:db:71:86:cb:c4:9f:eb:94:64:6e:c9:36:22: 10:91:fa:1b:f9:2f:31:cc:99:a1:0b:52:0f:40:71: 0e:41:59:75:8a:20:d2:1c:09:8a:e0:2e:8b:f6:fa: 46:69:19:7e:f3:86:46:01:40:44:e6:5b:86:be:53: 39:11:41:8c:75:20:1e:be:e5:3f:ae:71:e0:97:6e: b3:9e:4e:bf:65:69:cf:23:26:c3:1b:11:94:41:81: 57:3e:a9:60:c1:b3:f2:d2:97:a6:72:83:12:90:eb: c8:c3:fc:0f:33:0f:20:dd:6f:82:3d:91:e0:9b:fe: 43:66:94:0f:8b:1e:42:e2:5e:88:28:64:6a:08:e1: 5e:2c:bd:83:dc:00:8f:a7:39:c7:c0:3c:d8:46:e4: 7c:7d:b8:f1:2b:b6:45:3c:77:8a:2c:f3:b4:97:77: 99:76:1c:c2:81:d0:9a:dc:af:44:23:b5:af:30:9e: 7f:0b:e9:39:a9:f3:53:d4:33:1a:58:56:58:71:b6: d3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D9:B3:44:24:DD:2D:1B:31:4F:96:B1:C6:47:CF:63:65:5E:FE:3E X509v3 Authority Key Identifier: keyid:31:AC:96:47:C7:F8:70:A6:6B:A2:DE:78:85:44:CD:8C:32:6B:DF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MayWR8f4cKZrot54hUTNjDJr3_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/4DD6D628C8D211EF9F1BE312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.209.0/24 Signature Algorithm: sha256WithRSAEncryption 67:26:64:6c:06:3e:a1:78:ff:96:97:99:f3:86:ac:e0:20:af: d6:79:f9:ea:23:56:2a:3c:29:e7:f7:58:a4:10:f3:cd:8c:cb: 67:e5:33:29:f0:ec:7a:53:20:3c:3c:bf:07:67:ab:ef:76:ac: c7:2d:f6:77:97:63:a3:c0:ef:d1:ea:90:ff:a0:2f:ce:14:fe: a1:6e:6e:b9:c6:46:e2:8a:79:87:72:1f:43:94:65:a6:f2:8c: f4:8b:d9:6b:a7:ac:bd:b5:ae:1f:d3:5e:d3:41:5d:a6:1c:2d: 1c:09:d2:99:f5:09:d8:3c:13:5e:b1:e9:e4:4e:e9:ff:83:4e: aa:b4:a4:31:31:69:ff:27:8f:32:78:a7:20:0c:03:3c:4d:19: 67:c8:a0:6f:f7:71:42:56:17:8a:6c:15:9f:95:eb:b3:7a:0e: 47:bd:3d:f8:99:1e:4d:dd:9a:33:bf:22:af:8c:81:b9:03:7c: 10:d6:7f:75:02:05:fb:60:ed:6f:fd:be:d4:34:bb:e2:72:f7: 37:f4:88:86:1b:38:24:e9:cb:e4:b2:c9:65:3d:e4:ee:5c:3a: ef:ab:15:11:00:e2:f9:ca:da:45:0d:89:2d:14:48:c6:75:e2: 8d:28:05:48:87:d3:c1:4a:33:6a:cf:01:d1:b5:d3:08:06:a7: d2:e5:e5:3d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MThCQjExMC8GA1UEBRMoMzFBQzk2NDdDN0Y4NzBBNjZCQTJERTc4ODU0NENEOEMz MjZCREZGOTAeFw0yNTAxMDIwNjI1MDVaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzYzMTQwLTk3MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtojdMHRvuSZXYhjk7dQ1TmGv66McVlQUWx/HC/RkqWWSXFJYY5Ibi9WDuw4JI ngB3ksDsF4/2a8jLnVDS23GGy8Sf65Rkbsk2IhCR+hv5LzHMmaELUg9AcQ5BWXWK INIcCYrgLov2+kZpGX7zhkYBQETmW4a+UzkRQYx1IB6+5T+uceCXbrOeTr9lac8j JsMbEZRBgVc+qWDBs/LSl6ZygxKQ68jD/A8zDyDdb4I9keCb/kNmlA+LHkLiXogo ZGoI4V4svYPcAI+nOcfAPNhG5Hx9uPErtkU8d4os87SXd5l2HMKB0Jrcr0Qjta8w nn8L6Tmp81PUMxpYVlhxttMZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCNmzRCTd LRsxT5axxkfPY2Ve/j4wHwYDVR0jBBgwFoAUMayWR8f4cKZrot54hUTNjDJr3/kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxOEJCLzZBMEIyMDU0QzhD NTExRUY4RUM1NTU2NUM0RjlBRTAyL01heVdSOGY0Y0tacm90NTRoVVROakRKcjNf ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTWF5V1I4ZjRjS1pyb3Q1NGhVVE5qREpyM19rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MThCQi82QTBCMjA1NEM4QzUxMUVGOEVDNTU1NjVDNEY5QUUwMi80REQ2RDYyOEM4 RDIxMUVGOUYxQkUzMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAe0TANBgkqhkiG9w0BAQsFAAOCAQEAZyZkbAY+oXj/lpeZ 84as4CCv1nn56iNWKjwp5/dYpBDzzYzLZ+UzKfDselMgPDy/B2er73asxy32d5dj o8Dv0eqQ/6AvzhT+oW5uucZG4op5h3IfQ5RlpvKM9IvZa6esvbWuH9Ne00Fdphwt HAnSmfUJ2DwTXrHp5E7p/4NOqrSkMTFp/yePMninIAwDPE0ZZ8igb/dxQlYXimwV n5Xrs3oOR709+JkeTd2aM78ir4yBuQN8ENZ/dQIF+2Dtb/2+1DS74nL3N/SIhhs4 JOnL5LLJZT3k7lw676sVEQDi+craRQ2JLRRIxnXijSgFSIfTwUozas8B0bXTCAan 0uXlPQ== -----END CERTIFICATE-----Generated at Wed Feb 5 22:42:18 2025 by rpki-client