$ rpki-client -vvf rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/8FDE887E870311EF9138602FC4F9AE02.roa File: 8FDE887E870311EF9138602FC4F9AE02.roa (raw, json) Hash identifier: W0l9fs0T4x84rNQMrO5Y6xdjZAeEJaqMpnS2kjtsEjE= Subject key identifier: DC:F6:89:4C:B2:6E:65:C4:3D:0B:1B:83:F7:4E:D3:C3:0B:34:36:12 Certificate issuer: /CN=A913120A/serialNumber=6C2C7C14289E6BB5B7275B1AA6BFDFA0227B9086 Certificate serial: 17 Authority key identifier: 6C:2C:7C:14:28:9E:6B:B5:B7:27:5B:1A:A6:BF:DF:A0:22:7B:90:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bCx8FCiea7W3J1sapr_foCJ7kIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/8FDE887E870311EF9138602FC4F9AE02.roa Signing time: Fri 11 Oct 2024 10:15:39 +0000 ROA not before: Fri 11 Oct 2024 10:15:39 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153362 IP address blocks: 160.187.238.0/23 maxlen: 23 160.187.238.0/24 maxlen: 24 160.187.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/bCx8FCiea7W3J1sapr_foCJ7kIY.crl rsync://rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/bCx8FCiea7W3J1sapr_foCJ7kIY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bCx8FCiea7W3J1sapr_foCJ7kIY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913120A/serialNumber=6C2C7C14289E6BB5B7275B1AA6BFDFA0227B9086 Validity Not Before: Oct 11 10:15:39 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6708facb-e35c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e7:5a:42:74:1a:f1:85:86:bd:22:96:c2:24: 72:fc:15:c7:4d:77:ec:be:98:cf:11:37:1f:f7:91: fa:49:d2:e1:c3:e3:49:aa:c2:e4:f1:23:02:0b:23: 2a:96:c7:dd:3e:cb:5a:6c:d4:a1:87:ac:a3:fb:f0: 90:e9:76:5c:d8:11:04:98:da:f1:77:02:17:24:c4: c1:00:19:6c:e9:ac:05:00:b3:1b:96:bb:a9:d5:b3: f8:3d:80:75:98:52:81:e2:ba:d7:72:5d:f3:a9:42: a3:89:39:9d:de:cb:67:df:ad:ec:14:1e:a5:f7:b5: ee:a3:50:f7:2c:e0:42:c0:77:8b:40:11:0b:18:d6: 6e:b8:79:d9:ed:16:4b:84:9c:c6:f1:10:eb:fc:b6: af:ba:40:10:a7:8c:1f:78:ad:37:90:fc:c4:c1:b2: de:13:74:be:6d:a4:5c:fe:0e:8d:39:99:83:e4:aa: 24:47:fb:f7:19:ea:8c:19:ae:57:24:9c:b1:77:a4: 59:65:e5:69:50:6d:a5:c8:d7:21:1c:14:23:81:6d: 01:20:08:87:2c:d3:5d:e1:f8:d1:3c:c1:59:f9:d3: 61:b6:79:68:2f:72:4a:10:cf:07:b7:d5:80:22:2a: c3:39:dd:5a:21:af:2e:79:f5:6b:74:1b:8e:53:fe: 7d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F6:89:4C:B2:6E:65:C4:3D:0B:1B:83:F7:4E:D3:C3:0B:34:36:12 X509v3 Authority Key Identifier: keyid:6C:2C:7C:14:28:9E:6B:B5:B7:27:5B:1A:A6:BF:DF:A0:22:7B:90:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/bCx8FCiea7W3J1sapr_foCJ7kIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bCx8FCiea7W3J1sapr_foCJ7kIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/8FDE887E870311EF9138602FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.238.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:88:da:c7:e8:50:fa:bb:85:db:78:42:2e:8b:23:b2:ee:51: a2:b6:89:da:ba:3f:dc:80:14:19:46:12:dc:db:a6:01:c6:a3: 9a:c8:a0:1c:bc:32:32:7e:5c:fa:f2:a9:49:dc:18:72:d6:3c: a8:cf:63:af:05:a0:a4:96:f0:d5:96:12:a3:9a:d4:75:59:58: 03:69:80:fd:1c:17:f0:3e:c2:9b:d4:c7:19:29:47:3d:09:98: 01:96:12:19:47:24:ba:40:da:d5:02:8e:3d:cb:3c:7d:80:bf: a2:c5:d5:e7:ad:2a:af:af:83:de:d1:fe:68:1a:fa:f4:84:36: 55:f1:4c:25:e4:cf:d2:4a:e0:7c:f7:23:2d:8f:01:fe:ea:95: fd:92:bd:3e:3f:3d:67:4d:ad:00:91:10:d0:38:7c:1c:a1:04: a0:59:a1:f8:af:e7:e2:3b:1b:b1:58:7a:08:1e:84:b9:91:2c: d6:e9:f8:fd:84:20:e7:a2:41:22:0e:94:46:1b:a3:6b:b0:5e: 3b:4d:cf:30:e1:e1:ea:b2:ab:e9:21:12:66:25:67:c1:23:20: 46:9f:ce:cd:76:10:d5:42:d7:15:a5:b3:2b:c6:77:e2:b3:7a: 30:7d:f4:9e:41:78:41:ac:b8:7b:a1:2a:e1:83:a9:e5:d5:be: 22:92:b1:34 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTIwQTExMC8GA1UEBRMoNkMyQzdDMTQyODlFNkJCNUI3Mjc1QjFBQTZCRkRGQTAy MjdCOTA4NjAeFw0yNDEwMTExMDE1MzlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDhmYWNiLWUzNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv51pCdBrxhYa9IpbCJHL8FcdNd+y+mM8RNx/3kfpJ0uHD40mqwuTxIwILIyqW x90+y1ps1KGHrKP78JDpdlzYEQSY2vF3AhckxMEAGWzprAUAsxuWu6nVs/g9gHWY UoHiutdyXfOpQqOJOZ3ey2ffrewUHqX3te6jUPcs4ELAd4tAEQsY1m64edntFkuE nMbxEOv8tq+6QBCnjB94rTeQ/MTBst4TdL5tpFz+Do05mYPkqiRH+/cZ6owZrlck nLF3pFll5WlQbaXI1yEcFCOBbQEgCIcs013h+NE8wVn502G2eWgvckoQzwe31YAi KsM53Vohry559Wt0G45T/n1XAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3PaJTLJu ZcQ9CxuD907Twws0NhIwHwYDVR0jBBgwFoAUbCx8FCiea7W3J1sapr/foCJ7kIYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMjBBL0RBRjgxQzQ0ODZG OTExRUZCMDk2NTEwQ0M0RjlBRTAyL2JDeDhGQ2llYTdXM0oxc2Fwcl9mb0NKN2tJ WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYkN4OEZDaWVhN1czSjFzYXByX2ZvQ0o3a0lZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTIwQS9EQUY4MUM0NDg2RjkxMUVGQjA5NjUxMENDNEY5QUUwMi84RkRFODg3RTg3 MDMxMUVGOTEzODYwMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC77jANBgkqhkiG9w0BAQsFAAOCAQEAbYjax+hQ+ruF23hC Losjsu5RoraJ2ro/3IAUGUYS3NumAcajmsigHLwyMn5c+vKpSdwYctY8qM9jrwWg pJbw1ZYSo5rUdVlYA2mA/RwX8D7Cm9THGSlHPQmYAZYSGUckukDa1QKOPcs8fYC/ osXV560qr6+D3tH+aBr69IQ2VfFMJeTP0krgfPcjLY8B/uqV/ZK9Pj89Z02tAJEQ 0Dh8HKEEoFmh+K/n4jsbsVh6CB6EuZEs1un4/YQg56JBIg6URhuja7BeO03PMOHh 6rKr6SESZiVnwSMgRp/OzXYQ1ULXFaWzK8Z34rN6MH30nkF4Qay4e6Eq4YOp5dW+ IpKxNA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:13 2024 by rpki-client on console-fra.rpki-client.org