$ rpki-client -vvf rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/CA2855CC2F0211EFB28E0271C4F9AE02.roa File: CA2855CC2F0211EFB28E0271C4F9AE02.roa (raw, json) Hash identifier: DUAmLb46NS5+SPzS5A3HqFl4Nie2fVO5tlFoQkTdtDE= Subject key identifier: 53:01:75:E2:0D:77:B8:0F:03:97:46:7B:59:C0:B1:DF:5B:1B:3F:B1 Certificate issuer: /CN=A9133239/serialNumber=6C9A122115791B8E15048017A9757E587AB56F80 Certificate serial: 02 Authority key identifier: 6C:9A:12:21:15:79:1B:8E:15:04:80:17:A9:75:7E:58:7A:B5:6F:80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJoSIRV5G44VBIAXqXV-WHq1b4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/CA2855CC2F0211EFB28E0271C4F9AE02.roa Signing time: Thu 20 Jun 2024 12:44:10 +0000 ROA not before: Thu 20 Jun 2024 12:44:10 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152924 IP address blocks: 160.22.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/bJoSIRV5G44VBIAXqXV-WHq1b4A.crl rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/bJoSIRV5G44VBIAXqXV-WHq1b4A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJoSIRV5G44VBIAXqXV-WHq1b4A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133239/serialNumber=6C9A122115791B8E15048017A9757E587AB56F80 Validity Not Before: Jun 20 12:44:10 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6674241a-67dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ae:87:e3:6e:65:48:57:da:66:fd:a9:a0:4f: f9:15:41:f4:f5:cb:f9:75:2b:cd:34:b8:ee:20:2b: e8:b3:bd:67:29:08:0c:99:a5:58:6b:cc:49:79:f4: 8e:3c:79:f9:50:10:f4:fe:8e:d9:37:c2:dd:07:a8: a8:25:d0:79:c8:b9:9c:ea:57:26:f7:2f:13:82:a5: 9f:c8:1d:14:b1:a3:8a:86:ef:1e:2e:c9:a6:3f:38: b2:94:68:35:fb:6f:d8:a8:c2:4b:6e:dd:4a:23:25: 8f:0b:98:07:51:88:db:a2:d1:e7:81:de:8b:9b:97: da:87:17:9f:34:51:9f:5b:45:5e:1a:98:22:90:6c: 26:8a:fc:2e:14:57:aa:d3:08:ee:81:ff:9c:7b:94: 2b:46:23:9d:05:27:df:a4:2e:48:aa:1e:f4:ac:0e: 38:e3:89:8a:40:2b:0d:ff:fd:47:ad:52:fd:1b:ee: 3d:b9:cb:af:15:2c:fc:e7:43:40:1b:fa:44:9d:51: 9b:54:44:df:bc:8d:16:ac:1c:52:bb:b3:49:b9:37: ba:7c:7f:89:a7:38:f4:cf:9f:75:08:72:43:ce:14: 40:32:59:1d:9c:23:70:d0:9c:70:50:5f:94:10:e5: 98:c1:a9:d8:78:97:e5:56:54:24:d1:26:db:10:4c: 20:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:01:75:E2:0D:77:B8:0F:03:97:46:7B:59:C0:B1:DF:5B:1B:3F:B1 X509v3 Authority Key Identifier: keyid:6C:9A:12:21:15:79:1B:8E:15:04:80:17:A9:75:7E:58:7A:B5:6F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/bJoSIRV5G44VBIAXqXV-WHq1b4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJoSIRV5G44VBIAXqXV-WHq1b4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/CA2855CC2F0211EFB28E0271C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.186.0/24 Signature Algorithm: sha256WithRSAEncryption 16:9d:0b:0c:df:4a:5d:13:d9:f9:3c:a8:a3:ce:5f:e9:d7:f4: d7:f6:18:4f:38:16:9c:79:1e:25:ae:be:14:33:7e:06:b5:27: 3d:97:43:19:0c:84:74:68:42:e1:35:42:53:ee:1e:55:76:2b: 63:87:1d:bc:32:5a:90:bd:89:56:cd:60:a8:be:eb:ac:ce:2d: 50:58:44:58:47:cb:39:39:ff:c9:a1:c8:71:96:29:e2:e6:b7: 0f:29:8d:6c:68:7f:e1:0a:15:79:41:be:5f:45:f2:5c:f7:29: 13:4a:74:37:be:0f:4b:56:b4:6b:73:50:bf:80:84:ce:7a:7c: b9:6c:e9:9a:c6:6e:26:90:5b:26:f5:c7:36:c6:f0:a0:ca:cb: 5b:77:e5:f3:59:df:09:7c:49:7a:06:d6:a7:b7:2b:55:2b:05: 39:9d:67:5f:23:44:96:3b:66:ae:ee:1b:ea:8e:a5:d2:9f:de: f6:4d:f6:fb:e3:2c:16:20:e5:07:98:38:ff:6f:57:fb:eb:f5: 7a:ba:73:79:53:e3:43:34:14:4b:67:53:0c:61:c2:08:af:a2: cb:2d:8d:87:52:30:ae:83:a9:91:05:ad:a1:bf:39:fa:db:d8: e5:6c:e1:3f:ed:b9:19:af:c6:be:a0:c3:ed:97:94:68:5d:e3: c6:49:c2:fe -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzIzOTExMC8GA1UEBRMoNkM5QTEyMjExNTc5MUI4RTE1MDQ4MDE3QTk3NTdFNTg3 QUI1NkY4MDAeFw0yNDA2MjAxMjQ0MTBaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzQyNDFhLTY3ZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwrofjbmVIV9pm/amgT/kVQfT1y/l1K800uO4gK+izvWcpCAyZpVhrzEl59I48 eflQEPT+jtk3wt0HqKgl0HnIuZzqVyb3LxOCpZ/IHRSxo4qG7x4uyaY/OLKUaDX7 b9iowktu3UojJY8LmAdRiNui0eeB3oubl9qHF580UZ9bRV4amCKQbCaK/C4UV6rT CO6B/5x7lCtGI50FJ9+kLkiqHvSsDjjjiYpAKw3//UetUv0b7j25y68VLPznQ0Ab +kSdUZtURN+8jRasHFK7s0m5N7p8f4mnOPTPn3UIckPOFEAyWR2cI3DQnHBQX5QQ 5ZjBqdh4l+VWVCTRJtsQTCCnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUwF14g13 uA8Dl0Z7WcCx31sbP7EwHwYDVR0jBBgwFoAUbJoSIRV5G44VBIAXqXV+WHq1b4Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzMjM5Lzc0N0FBNDRBMkYw MjExRUY4QzdBNTg3MEM0RjlBRTAyL2JKb1NJUlY1RzQ0VkJJQVhxWFYtV0hxMWI0 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYkpvU0lSVjVHNDRWQklBWHFYVi1XSHExYjRBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzIzOS83NDdBQTQ0QTJGMDIxMUVGOEM3QTU4NzBDNEY5QUUwMi9DQTI4NTVDQzJG MDIxMUVGQjI4RTAyNzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAWujANBgkqhkiG9w0BAQsFAAOCAQEAFp0LDN9KXRPZ+Tyo o85f6df01/YYTzgWnHkeJa6+FDN+BrUnPZdDGQyEdGhC4TVCU+4eVXYrY4cdvDJa kL2JVs1gqL7rrM4tUFhEWEfLOTn/yaHIcZYp4ua3DymNbGh/4QoVeUG+X0XyXPcp E0p0N74PS1a0a3NQv4CEznp8uWzpmsZuJpBbJvXHNsbwoMrLW3fl81nfCXxJegbW p7crVSsFOZ1nXyNEljtmru4b6o6l0p/e9k32++MsFiDlB5g4/29X++v1erpzeVPj QzQUS2dTDGHCCK+iyy2Nh1IwroOpkQWtob85+tvY5WzhP+25Ga/GvqDD7ZeUaF3j xknC/g== -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:05 2024 by rpki-client on console-ams.rpki-client.org