$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/D5A3117E85DF11EFA2C33754C4F9AE02.roa File: D5A3117E85DF11EFA2C33754C4F9AE02.roa (raw, json) Hash identifier: DRt8K6jlAria6yTB9gWZIhOKN+7LEqAGx7rHUxgtPQs= Subject key identifier: 7B:16:8C:A5:6A:C7:24:72:87:45:0D:D4:98:E8:E7:4D:C5:D4:9D:46 Certificate issuer: /CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Certificate serial: 05 Authority key identifier: 8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/D5A3117E85DF11EFA2C33754C4F9AE02.roa Signing time: Wed 09 Oct 2024 01:43:08 +0000 ROA not before: Wed 09 Oct 2024 01:43:08 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153183 IP address blocks: 160.30.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Validity Not Before: Oct 9 01:43:08 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6705dfac-4480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1c:e7:e7:fc:a7:fa:ce:ff:cb:e1:80:7c:46: 89:ae:6a:0b:a4:32:d9:2d:b8:5d:28:88:85:bc:18: 15:15:78:75:06:8c:31:e8:c6:9b:b1:44:03:d9:14: b0:a0:af:92:95:45:8b:f4:b0:e5:56:5f:35:ba:a4: 19:c8:45:58:d7:03:97:c2:77:1e:7c:8f:4f:53:ec: 03:63:a1:c6:39:17:04:aa:82:0f:83:06:ff:c0:03: 6f:a1:65:74:00:e9:4e:15:70:fa:01:7d:77:d7:a4: c7:c6:cf:4d:54:80:98:c0:16:b0:a3:2d:16:db:86: a4:3a:0a:df:94:24:ee:95:98:20:57:6e:d7:8a:1e: 1c:11:e3:ed:4f:92:ed:64:00:56:b7:10:c5:45:a4: 56:85:8e:b8:af:82:59:69:49:30:54:46:e4:67:65: 86:06:ac:5c:69:5b:67:5c:b7:ac:f0:f5:9c:b9:bc: b8:4a:f4:25:7d:a1:b8:7d:99:42:ff:bf:1f:2f:ff: 72:ee:ba:e6:62:87:7f:0f:18:ba:29:51:aa:79:86: 7b:91:da:dd:df:e8:8d:32:51:bf:bb:5e:eb:f3:44: 8d:76:68:01:32:45:77:ff:26:9a:ea:57:58:69:4b: a9:d7:4e:6c:ab:af:9c:27:db:e2:bb:97:50:86:ed: 2e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:16:8C:A5:6A:C7:24:72:87:45:0D:D4:98:E8:E7:4D:C5:D4:9D:46 X509v3 Authority Key Identifier: keyid:8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/D5A3117E85DF11EFA2C33754C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.30.0/23 Signature Algorithm: sha256WithRSAEncryption 11:ce:a0:50:cc:0d:c5:07:ab:b9:ec:24:d6:8b:67:99:ab:e4: 1d:e3:fe:04:49:f7:4a:27:e3:07:fb:cd:f8:de:0f:c2:e8:98: a2:79:0c:78:c1:28:91:f4:fe:d1:c6:e7:77:e3:37:f7:56:3f: 2f:83:47:d4:f2:e2:e3:92:5c:43:57:7a:2a:0e:8f:aa:8e:5a: f2:77:2f:23:0d:9b:d3:d2:8a:cd:c1:ac:0b:ad:d5:1e:4a:2d: ce:e3:e5:d5:9a:1e:00:41:da:d8:19:a2:9c:92:0d:fc:9b:b7: 84:a9:aa:52:ee:f5:44:d1:21:04:dd:de:a1:34:0f:7b:e7:e5: 02:0b:3c:78:c8:22:f3:29:09:00:2e:1c:0b:d9:cf:39:6a:b5: 8b:7a:47:f8:cd:9e:ce:d8:2f:d0:4d:e3:34:aa:cc:58:f8:78: 80:41:a4:b3:6b:90:c4:1d:19:34:f9:65:ea:e7:46:78:0e:ba: 87:a5:ea:ed:26:ad:8d:92:27:54:e0:d7:63:34:fe:14:c5:00: fb:19:a5:e4:af:60:6e:c4:9f:f7:48:07:89:55:6f:d1:d4:30: 62:f9:67:87:d4:db:b0:25:54:96:ee:5e:d9:b4:21:8f:63:b1: 92:7c:a2:2a:ad:2d:4c:43:27:1e:40:e6:96:ef:b5:85:79:e5: 3d:bf:85:e5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzZERjExMC8GA1UEBRMoOEI1RThFQkFCRTA5QTFGNDkzRDEwMjUzQzFBM0I5Mzkz OUJGQ0E4QTAeFw0yNDEwMDkwMTQzMDhaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDVkZmFjLTQ0ODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjHOfn/Kf6zv/L4YB8RomuagukMtktuF0oiIW8GBUVeHUGjDHoxpuxRAPZFLCg r5KVRYv0sOVWXzW6pBnIRVjXA5fCdx58j09T7ANjocY5FwSqgg+DBv/AA2+hZXQA 6U4VcPoBfXfXpMfGz01UgJjAFrCjLRbbhqQ6Ct+UJO6VmCBXbteKHhwR4+1Pku1k AFa3EMVFpFaFjrivgllpSTBURuRnZYYGrFxpW2dct6zw9Zy5vLhK9CV9obh9mUL/ vx8v/3LuuuZih38PGLopUap5hnuR2t3f6I0yUb+7XuvzRI12aAEyRXf/JprqV1hp S6nXTmyrr5wn2+K7l1CG7S6NAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUexaMpWrH JHKHRQ3UmOjnTcXUnUYwHwYDVR0jBBgwFoAUi16Our4JofST0QJTwaO5OTm/yoow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzNkRGLzFBMzYyQTU2ODEz RjExRUY5Q0NFMUExQUM0RjlBRTAyL2kxNk91cjRKb2ZTVDBRSlR3YU81T1RtX3lv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaTE2T3VyNEpvZlNUMFFKVHdhTzVPVG1feW9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzZERi8xQTM2MkE1NjgxM0YxMUVGOUNDRTFBMUFDNEY5QUUwMi9ENUEzMTE3RTg1 REYxMUVGQTJDMzM3NTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAeHjANBgkqhkiG9w0BAQsFAAOCAQEAEc6gUMwNxQeruewk 1otnmavkHeP+BEn3SifjB/vN+N4PwuiYonkMeMEokfT+0cbnd+M391Y/L4NH1PLi 45JcQ1d6Kg6Pqo5a8ncvIw2b09KKzcGsC63VHkotzuPl1ZoeAEHa2BminJIN/Ju3 hKmqUu71RNEhBN3eoTQPe+flAgs8eMgi8ykJAC4cC9nPOWq1i3pH+M2eztgv0E3j NKrMWPh4gEGks2uQxB0ZNPll6udGeA66h6Xq7SatjZInVODXYzT+FMUA+xml5K9g bsSf90gHiVVv0dQwYvlnh9TbsCVUlu5e2bQhj2OxknyiKq0tTEMnHkDmlu+1hXnl Pb+F5Q== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:01 2024 by rpki-client on console-ams.rpki-client.org