$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/88A6DB9086E211EF82ACA725C4F9AE02.roa File: 88A6DB9086E211EF82ACA725C4F9AE02.roa (raw, json) Hash identifier: Yh+9ZtLGM0yeId0yqsUGDk1PUuIX4Mo5I7LLnDotARk= Subject key identifier: 27:8C:C7:29:E9:49:BE:32:F2:5D:BF:98:42:6C:7F:F6:DE:B0:44:12 Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: 03 Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/88A6DB9086E211EF82ACA725C4F9AE02.roa Signing time: Thu 10 Oct 2024 08:34:58 +0000 ROA not before: Thu 10 Oct 2024 08:34:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133453 IP address blocks: 160.22.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Oct 10 08:34:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=670791b2-99a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ad:66:da:2d:3e:7d:96:9e:d7:55:a4:72:55: 05:2b:74:c1:49:32:7d:51:08:01:93:a1:bb:6d:67: 5f:18:f3:2b:d3:c1:a5:b5:5a:7a:4a:b0:07:e7:21: fb:33:b9:d4:04:0d:0a:31:c9:9d:9f:c9:50:6e:c4: 62:1b:53:71:7e:22:9b:76:71:3d:d5:3f:45:0b:8e: a6:57:68:7f:9d:b6:c8:02:82:e1:02:5b:7b:d8:8c: 0d:bd:9f:7a:1d:bb:9d:f8:80:68:3b:a6:68:df:98: 65:06:10:9a:ad:a3:a4:bf:85:86:fc:62:87:8d:6f: 52:8d:f2:1c:8c:e1:a4:46:24:18:81:33:83:a6:ff: 1d:07:c0:89:87:dd:e2:e9:95:51:66:14:76:33:b4: 12:af:5b:5b:f7:36:a6:1f:df:37:bf:22:14:17:fe: 10:02:6a:d5:79:ac:5e:80:7a:ad:0e:cc:53:0e:7e: 2a:a4:f1:37:81:c7:bd:a9:1b:d0:c5:bf:12:4d:48: ec:40:76:49:95:5c:a9:fc:42:f0:e6:3f:29:a8:b2: 9f:f8:03:3c:9c:19:2a:77:7d:a2:e4:9a:ae:96:dc: 47:75:30:3f:2b:e4:4a:dc:1c:22:ba:fb:85:62:93: 71:f2:04:d9:62:b6:82:bd:9f:99:e9:5e:73:9c:07: 01:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:8C:C7:29:E9:49:BE:32:F2:5D:BF:98:42:6C:7F:F6:DE:B0:44:12 X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/88A6DB9086E211EF82ACA725C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.210.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:8f:06:44:b4:e1:7e:57:12:ce:4c:0c:da:e0:e9:81:aa:25: 9a:87:1a:1f:7f:cd:2f:18:e2:24:cb:a2:0f:73:12:3a:79:b9: bf:02:5d:67:10:4b:ac:21:26:ad:72:a5:a1:1f:7f:73:6e:ad: 89:e3:24:6e:5a:d2:d6:0f:d5:5b:c2:94:d4:38:b0:3e:26:fc: bb:f1:97:b3:8b:9d:c8:b3:53:7d:d9:57:33:84:5a:c2:f6:c2: a1:b5:00:e6:37:4d:a5:43:2a:9a:5d:e0:c0:73:5a:80:09:49: f1:ff:af:95:79:58:e0:03:32:5d:ad:f9:b4:19:d4:c6:0f:33: 10:05:39:65:e2:b2:18:bb:82:38:fd:20:aa:d7:8e:c9:b9:8f: ca:1f:1b:49:ce:a9:b4:15:9e:43:39:21:2c:d7:3e:e7:d8:0b: e5:67:49:10:bc:d6:50:12:47:1b:26:a5:87:cb:17:f8:2d:a1: 13:16:e6:61:f3:3e:89:6d:1e:87:6b:16:39:8c:a7:a3:80:8d: 4d:85:26:12:fb:40:40:29:48:42:6f:6d:a8:f8:57:e3:21:07: 30:30:78:c2:34:62:11:87:f6:db:90:01:53:5a:f5:6b:12:74: 2e:26:4d:9e:91:91:67:d4:db:cb:88:7b:0d:58:b7:78:a2:53: 19:c9:65:73 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjQ3RjExMC8GA1UEBRMoNDY0MTkwN0ZFNUY0NzNGMTg5MDZENDZBQTIwMzA3RURF REExOUM5RDAeFw0yNDEwMTAwODM0NThaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDc5MWIyLTk5YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+rWbaLT59lp7XVaRyVQUrdMFJMn1RCAGTobttZ18Y8yvTwaW1WnpKsAfnIfsz udQEDQoxyZ2fyVBuxGIbU3F+Ipt2cT3VP0ULjqZXaH+dtsgCguECW3vYjA29n3od u534gGg7pmjfmGUGEJqto6S/hYb8YoeNb1KN8hyM4aRGJBiBM4Om/x0HwImH3eLp lVFmFHYztBKvW1v3NqYf3ze/IhQX/hACatV5rF6Aeq0OzFMOfiqk8TeBx72pG9DF vxJNSOxAdkmVXKn8QvDmPymosp/4AzycGSp3faLkmq6W3Ed1MD8r5ErcHCK6+4Vi k3HyBNlitoK9n5npXnOcBwHtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJ4zHKelJ vjLyXb+YQmx/9t6wRBIwHwYDVR0jBBgwFoAURkGQf+X0c/GJBtRqogMH7e2hnJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2NDdGL0I5MUFBQTc0ODZE QjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5K MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUmtHUWYtWDBjX0dKQnRScW9nTUg3ZTJobkowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi84OEE2REI5MDg2 RTIxMUVGODJBQ0E3MjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAW0jANBgkqhkiG9w0BAQsFAAOCAQEAPI8GRLThflcSzkwM 2uDpgaolmocaH3/NLxjiJMuiD3MSOnm5vwJdZxBLrCEmrXKloR9/c26tieMkblrS 1g/VW8KU1DiwPib8u/GXs4udyLNTfdlXM4RawvbCobUA5jdNpUMqml3gwHNagAlJ 8f+vlXlY4AMyXa35tBnUxg8zEAU5ZeKyGLuCOP0gqteOybmPyh8bSc6ptBWeQzkh LNc+59gL5WdJELzWUBJHGyalh8sX+C2hExbmYfM+iW0eh2sWOYyno4CNTYUmEvtA QClIQm9tqPhX4yEHMDB4wjRiEYf225ABU1r1axJ0LiZNnpGRZ9Tby4h7DVi3eKJT Gcllcw== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:14 2024 by rpki-client on console-fra.rpki-client.org