$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCBB/54D23F46530F11EF99C88D0FC4F9AE02/8F80C48E531211EFAB0B8726C4F9AE02.roa File: 8F80C48E531211EFAB0B8726C4F9AE02.roa (raw, json) Hash identifier: kqqxAXnrRR7qW3plZHXyG8tkzcmd2G3d0enNBzRXcMc= Subject key identifier: 8B:0C:2B:2E:5C:E7:2A:D8:EC:C7:89:C8:BC:04:98:FE:D3:9F:DA:20 Certificate issuer: /CN=A912FCBB/serialNumber=BE91C05E218C7E66EA6F94F9D24577704191BDE2 Certificate serial: 1C Authority key identifier: BE:91:C0:5E:21:8C:7E:66:EA:6F:94:F9:D2:45:77:70:41:91:BD:E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vpHAXiGMfmbqb5T50kV3cEGRveI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCBB/54D23F46530F11EF99C88D0FC4F9AE02/8F80C48E531211EFAB0B8726C4F9AE02.roa Signing time: Thu 19 Sep 2024 06:20:23 +0000 ROA not before: Thu 19 Sep 2024 06:20:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133051 IP address blocks: 160.30.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCBB/54D23F46530F11EF99C88D0FC4F9AE02/vpHAXiGMfmbqb5T50kV3cEGRveI.crl rsync://rpki.apnic.net/member_repository/A912FCBB/54D23F46530F11EF99C88D0FC4F9AE02/vpHAXiGMfmbqb5T50kV3cEGRveI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vpHAXiGMfmbqb5T50kV3cEGRveI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCBB/serialNumber=BE91C05E218C7E66EA6F94F9D24577704191BDE2 Validity Not Before: Sep 19 06:20:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66ebc2a7-0695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b9:19:20:1e:c4:c7:89:0f:80:74:29:62:91: e7:47:c5:8c:71:50:5c:e1:ad:b4:cc:91:54:c8:63: 28:aa:a1:a0:e2:f6:1f:c0:04:f7:f9:77:27:ca:8c: 29:ca:e2:c5:62:f2:0f:88:49:7e:75:d6:7e:e9:dd: 4d:85:e3:c6:51:f8:67:0d:ff:de:50:2d:38:50:e1: 3b:33:60:04:85:c3:0f:b7:3a:a7:f3:c1:56:5f:8c: bf:c8:41:b3:bd:a7:f8:16:77:31:d9:4a:5f:66:99: a8:26:03:af:bc:0d:63:93:6c:25:a3:02:67:49:78: ee:d2:74:79:e9:7f:84:4a:5c:e7:7e:a2:a2:8a:59: 0c:63:fb:2a:95:44:d8:88:97:0b:69:5e:78:20:1f: 5c:58:23:4c:ee:ba:a0:cc:45:d0:f0:b6:88:8f:8e: 18:ca:25:ac:2e:e7:45:f6:2a:47:fd:91:5e:41:e1: ef:69:3d:c5:9a:ec:39:ab:0b:28:a0:e8:0e:62:54: e4:a4:cb:53:12:70:7d:15:5f:f4:39:40:7f:92:9c: 93:03:24:8c:c7:ee:15:4c:43:e9:c7:49:de:cf:14: c9:f6:c7:eb:6e:bb:7b:d3:e2:75:39:35:b7:ad:9b: 74:f4:f4:37:a8:4f:0d:13:28:b1:bc:e9:c7:fa:36: 30:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0C:2B:2E:5C:E7:2A:D8:EC:C7:89:C8:BC:04:98:FE:D3:9F:DA:20 X509v3 Authority Key Identifier: keyid:BE:91:C0:5E:21:8C:7E:66:EA:6F:94:F9:D2:45:77:70:41:91:BD:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCBB/54D23F46530F11EF99C88D0FC4F9AE02/vpHAXiGMfmbqb5T50kV3cEGRveI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vpHAXiGMfmbqb5T50kV3cEGRveI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCBB/54D23F46530F11EF99C88D0FC4F9AE02/8F80C48E531211EFAB0B8726C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.6.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:7f:53:f9:88:e9:3b:4c:a8:ad:de:c6:04:9a:02:4d:26:64: c0:5b:0a:13:fd:7b:ff:57:1e:1a:82:fd:36:69:83:76:0c:74: c9:07:57:91:c9:c7:cb:b5:e3:59:57:e4:73:cd:57:4c:ce:01: 9d:1f:e5:be:fc:5b:3c:61:69:13:95:4a:e1:73:bf:fa:ff:1d: 62:50:8b:36:0c:60:25:0f:5c:2f:10:41:c9:5f:e8:f8:61:b4: 29:9c:1a:2e:f4:3d:50:ec:72:19:b1:0b:f2:b3:b6:89:62:d4: 86:c1:d0:9f:57:48:48:e0:57:9a:ae:a1:29:f0:5d:12:43:b5: f3:e7:b2:cd:11:b3:9e:c6:2a:e5:38:63:aa:ac:f7:1a:c1:3c: 93:2c:8c:15:54:cb:f5:89:ba:f6:54:ec:27:94:c4:1c:7c:54: e8:66:61:eb:ee:64:38:bb:80:57:1b:e3:94:41:c6:4c:cf:44: d5:40:20:d2:ea:61:fc:f7:5b:1c:be:7e:fa:a9:61:47:dd:fe: 1c:a3:cc:9a:d3:08:c8:ba:de:b1:02:3a:23:27:bc:05:83:cb: aa:58:52:92:86:27:ec:e7:27:8a:9b:f4:bb:ef:d0:94:4a:c2: a8:c5:57:15:02:cc:9f:06:d8:44:99:cd:6d:7b:44:ee:af:12: 09:e2:75:d2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RkNCQjExMC8GA1UEBRMoQkU5MUMwNUUyMThDN0U2NkVBNkY5NEY5RDI0NTc3NzA0 MTkxQkRFMjAeFw0yNDA5MTkwNjIwMjNaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZWJjMmE3LTA2OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVuRkgHsTHiQ+AdClikedHxYxxUFzhrbTMkVTIYyiqoaDi9h/ABPf5dyfKjCnK 4sVi8g+ISX511n7p3U2F48ZR+GcN/95QLThQ4TszYASFww+3OqfzwVZfjL/IQbO9 p/gWdzHZSl9mmagmA6+8DWOTbCWjAmdJeO7SdHnpf4RKXOd+oqKKWQxj+yqVRNiI lwtpXnggH1xYI0zuuqDMRdDwtoiPjhjKJawu50X2Kkf9kV5B4e9pPcWa7DmrCyig 6A5iVOSky1MScH0VX/Q5QH+SnJMDJIzH7hVMQ+nHSd7PFMn2x+tuu3vT4nU5Nbet m3T09DeoTw0TKLG86cf6NjATAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUiwwrLlzn Ktjsx4nIvASY/tOf2iAwHwYDVR0jBBgwFoAUvpHAXiGMfmbqb5T50kV3cEGRveIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGQ0JCLzU0RDIzRjQ2NTMw RjExRUY5OUM4OEQwRkM0RjlBRTAyL3ZwSEFYaUdNZm1icWI1VDUwa1YzY0VHUnZl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdnBIQVhpR01mbWJxYjVUNTBrVjNjRUdSdmVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkNCQi81NEQyM0Y0NjUzMEYxMUVGOTlDODhEMEZDNEY5QUUwMi84RjgwQzQ4RTUz MTIxMUVGQUIwQjg3MjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAeBjANBgkqhkiG9w0BAQsFAAOCAQEAO39T+YjpO0yord7G BJoCTSZkwFsKE/17/1ceGoL9NmmDdgx0yQdXkcnHy7XjWVfkc81XTM4BnR/lvvxb PGFpE5VK4XO/+v8dYlCLNgxgJQ9cLxBByV/o+GG0KZwaLvQ9UOxyGbEL8rO2iWLU hsHQn1dISOBXmq6hKfBdEkO18+eyzRGznsYq5Thjqqz3GsE8kyyMFVTL9Ym69lTs J5TEHHxU6GZh6+5kOLuAVxvjlEHGTM9E1UAg0uph/PdbHL5++qlhR93+HKPMmtMI yLresQI6Iye8BYPLqlhSkoYn7Ocnipv0u+/QlErCqMVXFQLMnwbYRJnNbXtE7q8S CeJ10g== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:18 2024 by rpki-client on console-fra.rpki-client.org