$ rpki-client -vvf rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/27995372566911EF9D53B517C4F9AE02.roa File: 27995372566911EF9D53B517C4F9AE02.roa (raw, json) Hash identifier: xq/tIHChRUQ/SVgEnorDvzsCIu9u4UcNJR+//ggbghs= Subject key identifier: 5A:CE:D2:21:55:6B:66:03:2B:6C:CB:22:94:B8:98:F1:10:0E:B1:D2 Certificate issuer: /CN=A9133BB0/serialNumber=B91A24CF04711117C8C3BA264A33395DA77F91B4 Certificate serial: 02 Authority key identifier: B9:1A:24:CF:04:71:11:17:C8:C3:BA:26:4A:33:39:5D:A7:7F:91:B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/27995372566911EF9D53B517C4F9AE02.roa Signing time: Fri 09 Aug 2024 16:05:11 +0000 ROA not before: Fri 09 Aug 2024 16:05:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136461 IP address blocks: 160.30.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.crl rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133BB0/serialNumber=B91A24CF04711117C8C3BA264A33395DA77F91B4 Validity Not Before: Aug 9 16:05:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b63e37-84ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:18:15:38:69:94:09:0b:42:9d:3f:be:3a:b1: f6:79:ec:a5:5c:71:40:4e:d0:21:58:cf:a1:f8:ea: b9:32:3e:a1:a9:2f:f5:bc:32:9e:22:3b:b3:44:4c: 71:4c:dc:10:09:e5:4f:b4:77:4b:06:35:1c:35:fa: 81:05:5c:5f:09:e0:1d:ee:d2:04:7a:52:85:4a:78: b4:82:c5:1b:3e:6f:78:5f:54:d0:3d:21:6b:5c:7a: df:68:8c:41:b9:a9:6f:ff:ac:a6:f5:a2:22:ab:c4: f3:15:0d:86:7b:21:eb:7f:48:2e:0d:65:a0:86:f3: 90:eb:6e:a9:c4:97:c9:86:ae:31:7d:82:03:51:e6: d0:5d:39:54:17:f5:ab:24:4f:0e:a8:79:f6:fd:3d: 6f:86:24:dd:ab:5f:44:77:85:79:f2:3a:e8:c3:ab: bb:fc:63:f7:b7:42:cf:73:28:ef:36:62:68:fd:08: f3:41:9d:a5:90:ed:9e:50:78:28:4c:e5:09:18:c2: 76:b1:74:6a:22:41:d3:81:94:b5:09:5a:01:2a:47: c8:bb:2d:b8:c0:77:89:10:23:33:d2:7b:02:57:5b: a4:40:15:06:b9:d9:3f:14:77:ae:c0:b4:20:8a:79: 98:c2:f4:89:0e:a7:9f:b3:56:ac:d3:ec:56:5a:e3: e6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CE:D2:21:55:6B:66:03:2B:6C:CB:22:94:B8:98:F1:10:0E:B1:D2 X509v3 Authority Key Identifier: keyid:B9:1A:24:CF:04:71:11:17:C8:C3:BA:26:4A:33:39:5D:A7:7F:91:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/27995372566911EF9D53B517C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.32.0/23 Signature Algorithm: sha256WithRSAEncryption aa:31:3e:a2:8d:c7:c4:f7:a6:13:b5:78:8b:ba:4c:45:4b:1b: cb:48:7a:08:3c:76:ec:ca:55:3d:c6:fa:e8:bb:e4:2e:14:89: 8d:f4:8b:ae:7f:2e:20:8a:96:ca:92:c7:26:cb:03:fb:7f:ef: 0d:32:e3:a8:ba:1a:fb:f1:88:43:a1:c5:cf:88:0c:4e:05:c8: e3:71:6f:47:e4:c0:7f:26:58:ae:7c:5b:4c:6d:ac:2d:e8:14: a7:16:ae:7e:dd:e7:03:5c:4d:f5:71:48:3f:15:38:88:1b:d4: 74:c4:85:d8:b9:8b:27:37:06:14:93:26:b3:de:a7:a9:62:10: 93:68:83:3a:5f:62:37:1b:4a:65:ef:87:c8:d8:4e:f9:2f:9c: ae:0f:3f:1a:36:78:98:35:5b:e3:c3:26:bf:a9:7c:83:32:17: 85:a4:e2:22:cd:e5:b5:81:fe:b9:54:98:2f:5d:a7:90:fd:63: 58:28:b7:a5:81:a1:56:a6:b7:8d:b5:92:7c:77:be:ac:3e:eb: 0f:64:0e:2c:0c:06:fd:31:31:31:5e:16:1f:c5:de:d6:ff:70: 26:02:83:fa:3f:e4:86:70:57:a3:30:44:fb:dc:76:b5:0c:2b: da:7a:6f:e6:2f:7c:04:50:83:38:8c:46:a0:cc:75:a5:ff:1b: 5e:59:26:dc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz M0JCMDExMC8GA1UEBRMoQjkxQTI0Q0YwNDcxMTExN0M4QzNCQTI2NEEzMzM5NURB NzdGOTFCNDAeFw0yNDA4MDkxNjA1MTFaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YjYzZTM3LTg0ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOGBU4aZQJC0KdP746sfZ57KVccUBO0CFYz6H46rkyPqGpL/W8Mp4iO7NETHFM 3BAJ5U+0d0sGNRw1+oEFXF8J4B3u0gR6UoVKeLSCxRs+b3hfVNA9IWtcet9ojEG5 qW//rKb1oiKrxPMVDYZ7Iet/SC4NZaCG85DrbqnEl8mGrjF9ggNR5tBdOVQX9ask Tw6oefb9PW+GJN2rX0R3hXnyOujDq7v8Y/e3Qs9zKO82Ymj9CPNBnaWQ7Z5QeChM 5QkYwnaxdGoiQdOBlLUJWgEqR8i7LbjAd4kQIzPSewJXW6RAFQa52T8Ud67AtCCK eZjC9IkOp5+zVqzT7FZa4+YNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWs7SIVVr ZgMrbMsilLiY8RAOsdIwHwYDVR0jBBgwFoAUuRokzwRxERfIw7omSjM5Xad/kbQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzQkIwL0I4NjVCMzdFNTY2 ODExRUY4RTZBNzc1REM0RjlBRTAyL3VSb2t6d1J4RVJmSXc3b21Tak01WGFkX2ti US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdVJva3p3UnhFUmZJdzdvbVNqTTVYYWRfa2JRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0JCMC9CODY1QjM3RTU2NjgxMUVGOEU2QTc3NURDNEY5QUUwMi8yNzk5NTM3MjU2 NjkxMUVGOUQ1M0I1MTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAeIDANBgkqhkiG9w0BAQsFAAOCAQEAqjE+oo3HxPemE7V4 i7pMRUsby0h6CDx27MpVPcb66LvkLhSJjfSLrn8uIIqWypLHJssD+3/vDTLjqLoa +/GIQ6HFz4gMTgXI43FvR+TAfyZYrnxbTG2sLegUpxauft3nA1xN9XFIPxU4iBvU dMSF2LmLJzcGFJMms96nqWIQk2iDOl9iNxtKZe+HyNhO+S+crg8/GjZ4mDVb48Mm v6l8gzIXhaTiIs3ltYH+uVSYL12nkP1jWCi3pYGhVqa3jbWSfHe+rD7rD2QOLAwG /TExMV4WH8Xe1v9wJgKD+j/khnBXozBE+9x2tQwr2npv5i98BFCDOIxGoMx1pf8b Xlkm3A== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:18 2024 by rpki-client on console-fra.rpki-client.org