$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/7D7BEE5430B111EF94A59A7AC4F9AE02.roa File: 7D7BEE5430B111EF94A59A7AC4F9AE02.roa (raw, json) Hash identifier: 81k+yaGAd+6BZ2WpNR6UcAlDDXedgJXlylTiPkMD+do= Subject key identifier: B3:97:FA:45:DC:A1:C7:0E:28:BE:27:89:F1:F2:20:AB:41:6F:48:6D Certificate issuer: /CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Certificate serial: 04 Authority key identifier: 3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/7D7BEE5430B111EF94A59A7AC4F9AE02.roa Signing time: Sat 22 Jun 2024 16:07:14 +0000 ROA not before: Sat 22 Jun 2024 16:07:14 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 63150 IP address blocks: 160.22.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Validity Not Before: Jun 22 16:07:14 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6676f6b2-083b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:74:94:be:30:48:15:5f:7a:d8:48:b2:c8:f3: 3e:f9:24:dd:20:7a:7c:d5:11:57:0a:cf:49:a6:2a: 45:9d:c4:8c:94:97:9a:2e:cf:c4:76:35:dc:d0:1b: 60:5d:ac:01:99:59:bc:83:20:f8:fa:d8:6c:14:b0: ff:92:38:74:05:4d:d0:fc:d6:7f:e9:b5:34:84:d3: 02:df:b1:8a:2b:7f:ac:82:ac:c0:6f:2e:36:07:71: 2a:32:32:e0:72:d7:b0:1f:c3:30:f4:5e:0a:d6:c1: 9d:d8:77:e8:95:98:d9:94:dd:77:16:d3:52:3a:45: f8:de:3b:de:90:2d:b3:7b:03:f4:9f:d6:0f:00:69: eb:00:9a:1a:5f:a1:be:33:97:36:49:6b:44:64:c4: df:f3:d3:2b:56:97:86:52:67:28:9b:45:28:f1:52: ef:1f:3c:ac:b8:5a:5a:78:bf:96:57:a2:ae:60:1f: 90:45:b1:ab:1d:d8:8f:a9:70:c7:d7:57:59:0f:bb: 03:98:c0:1e:78:5a:94:2d:3a:8b:b7:5d:50:8a:84: 1c:fa:2b:b9:04:2a:73:6e:dc:5c:54:6f:c7:92:3d: 74:79:93:36:f6:06:70:36:c4:6f:6a:f3:cf:71:5d: f6:21:b9:4a:ee:50:82:3c:8d:93:0c:d6:ca:59:17: c8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:97:FA:45:DC:A1:C7:0E:28:BE:27:89:F1:F2:20:AB:41:6F:48:6D X509v3 Authority Key Identifier: keyid:3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/7D7BEE5430B111EF94A59A7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.142.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:e0:ec:de:6b:11:aa:c6:ee:71:21:e5:5e:f2:f5:c0:e2:05: b2:f7:12:bf:1f:e3:f1:6c:54:66:74:b8:9f:6c:32:96:8f:12: d6:3b:65:a0:a7:3f:45:b6:10:27:d4:27:fe:57:5e:02:e2:56: 97:99:21:02:e3:e3:08:6d:7c:b6:5b:0d:a1:fb:df:9f:7d:58: 60:0b:d5:8f:ea:a1:0a:1b:1d:bc:b7:d7:57:6d:cb:9e:c8:75: 6f:08:db:05:79:8d:2c:51:1d:2b:1a:ab:3f:cc:c4:24:8d:37: 75:9f:4c:0c:43:12:cf:d3:be:2f:aa:49:44:6e:3c:8b:a7:be: 88:6e:bd:df:1c:1c:98:61:f7:3c:e1:95:e1:78:7e:f9:6c:c4: 59:09:1b:ec:1c:79:0a:f3:11:19:0e:e3:50:61:7e:64:5b:ab: 6d:fd:ec:ec:1e:41:be:e3:ec:d4:53:75:2a:74:44:33:53:aa: 79:f3:1b:32:a6:0f:f3:6f:6e:06:3f:f3:17:e6:c6:34:0d:0a: 4d:c7:64:4b:0f:55:43:cd:88:cf:76:c5:f8:ea:d6:a5:62:3b: f4:2d:6f:b2:24:ec:ab:51:f1:90:fa:9a:c3:7e:84:8a:ee:29: c9:3f:4b:26:45:89:2b:b4:57:1b:7e:26:7f:d2:ff:ab:59:00: f5:9a:bb:17 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NEI0QTExMC8GA1UEBRMoM0MzNTg3REMzQUYyRTkzN0VDREI2NUE4Mzg5Mjc1OUE0 MUM4ODUwQjAeFw0yNDA2MjIxNjA3MTRaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzZmNmIyLTA4M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqdJS+MEgVX3rYSLLI8z75JN0genzVEVcKz0mmKkWdxIyUl5ouz8R2NdzQG2Bd rAGZWbyDIPj62GwUsP+SOHQFTdD81n/ptTSE0wLfsYorf6yCrMBvLjYHcSoyMuBy 17AfwzD0XgrWwZ3Yd+iVmNmU3XcW01I6RfjeO96QLbN7A/Sf1g8AaesAmhpfob4z lzZJa0RkxN/z0ytWl4ZSZyibRSjxUu8fPKy4Wlp4v5ZXoq5gH5BFsasd2I+pcMfX V1kPuwOYwB54WpQtOou3XVCKhBz6K7kEKnNu3FxUb8eSPXR5kzb2BnA2xG9q889x XfYhuUruUII8jZMM1spZF8hrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUs5f6Rdyh xw4ovieJ8fIgq0FvSG0wHwYDVR0jBBgwFoAUPDWH3Dry6Tfs22WoOJJ1mkHIhQsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0QjRBL0UyNjQ5OUEyMkY4 OTExRUZBM0QwNEE2QkM0RjlBRTAyL1BEV0gzRHJ5NlRmczIyV29PSkoxbWtISWhR cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUERXSDNEcnk2VGZzMjJXb09KSjFta0hJaFFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEI0QS9FMjY0OTlBMjJGODkxMUVGQTNEMDRBNkJDNEY5QUUwMi83RDdCRUU1NDMw QjExMUVGOTRBNTlBN0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAWjjANBgkqhkiG9w0BAQsFAAOCAQEATeDs3msRqsbucSHl XvL1wOIFsvcSvx/j8WxUZnS4n2wylo8S1jtloKc/RbYQJ9Qn/ldeAuJWl5khAuPj CG18tlsNofvfn31YYAvVj+qhChsdvLfXV23Lnsh1bwjbBXmNLFEdKxqrP8zEJI03 dZ9MDEMSz9O+L6pJRG48i6e+iG693xwcmGH3POGV4Xh++WzEWQkb7Bx5CvMRGQ7j UGF+ZFurbf3s7B5BvuPs1FN1KnREM1OqefMbMqYP829uBj/zF+bGNA0KTcdkSw9V Q82Iz3bF+OrWpWI79C1vsiTsq1HxkPqaw36Eiu4pyT9LJkWJK7RXG34mf9L/q1kA 9Zq7Fw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org