$ rpki-client -vvf rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/5D117282A7F911EF8E7B1773C4F9AE02.roa File: 5D117282A7F911EF8E7B1773C4F9AE02.roa (raw, json) Hash identifier: J45sLiwW4UVC5sdSS+IxX3cBMgJ0HE+7WdnowtCp0yk= Subject key identifier: 5A:B4:CB:4B:E4:5F:B1:31:76:56:A6:99:38:50:1B:B3:A1:6E:15:5F Certificate issuer: /CN=A91380F7/serialNumber=00B72AD5333CEAAE1A585C828089C445599963F2 Certificate serial: 06 Authority key identifier: 00:B7:2A:D5:33:3C:EA:AE:1A:58:5C:82:80:89:C4:45:59:99:63:F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ALcq1TM86q4aWFyCgInERVmZY_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/5D117282A7F911EF8E7B1773C4F9AE02.roa Signing time: Thu 21 Nov 2024 11:13:23 +0000 ROA not before: Thu 21 Nov 2024 11:13:23 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139326 IP address blocks: 160.250.48.0/23 maxlen: 23 160.250.48.0/24 maxlen: 24 160.250.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/ALcq1TM86q4aWFyCgInERVmZY_I.crl rsync://rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/ALcq1TM86q4aWFyCgInERVmZY_I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ALcq1TM86q4aWFyCgInERVmZY_I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380F7/serialNumber=00B72AD5333CEAAE1A585C828089C445599963F2 Validity Not Before: Nov 21 11:13:23 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=673f15d2-d8a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:94:7c:ac:80:03:fb:7a:d6:82:bc:55:8f:0e: 82:3f:4d:83:94:3f:71:2c:93:ef:bb:60:ce:03:d7: 99:69:5e:2d:b4:53:1a:8b:2c:ff:6b:30:44:79:01: 31:52:9d:cd:fd:7e:76:a0:f9:bd:84:46:94:ed:d3: 19:f9:9d:d7:02:6d:e7:99:7e:ba:93:40:58:2d:ba: d3:76:3b:0e:c3:a3:35:5f:da:9f:be:64:00:29:73: ef:20:ac:d6:64:1e:53:4f:11:fb:bf:46:9e:43:ed: e4:97:27:2b:ff:f1:70:af:d3:3b:6e:bb:4d:81:1f: 8a:fd:36:a3:5f:49:c2:47:e6:ca:b2:8b:43:a3:a1: 6c:b6:37:32:9e:ad:d8:35:9f:d1:5e:5c:45:c3:0a: 1d:47:11:76:e6:bd:d1:21:58:6e:3e:79:29:26:08: 5c:72:7d:f9:da:ab:d0:0b:2c:66:c3:cb:6f:a7:3b: 4d:f6:3c:b2:e5:e8:ba:f2:f7:45:05:09:2c:fb:b5: 5a:e6:b8:5d:13:e6:96:08:54:24:94:c5:7b:c5:24: 79:86:52:fa:9e:f4:80:2c:b9:cc:22:e9:77:65:72: 1e:f1:f1:4f:61:18:c4:01:f5:e5:99:67:7e:e4:f3: 59:ba:8b:ba:9c:7a:2d:7d:55:9b:7b:17:e3:bb:7d: 05:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B4:CB:4B:E4:5F:B1:31:76:56:A6:99:38:50:1B:B3:A1:6E:15:5F X509v3 Authority Key Identifier: keyid:00:B7:2A:D5:33:3C:EA:AE:1A:58:5C:82:80:89:C4:45:59:99:63:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/ALcq1TM86q4aWFyCgInERVmZY_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ALcq1TM86q4aWFyCgInERVmZY_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/5D117282A7F911EF8E7B1773C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.48.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:36:f2:7f:88:76:59:39:fb:c3:b0:f1:b8:0a:b2:da:1d:e3: bd:aa:8e:af:13:fb:30:c1:ce:e2:85:1a:dc:26:68:76:f4:5d: a1:34:d4:06:6f:1c:29:69:87:59:98:85:ed:fe:b7:56:c4:73: e9:bb:1f:61:da:a9:9e:83:aa:c7:00:03:72:54:5c:b4:4f:1a: d4:6e:5a:eb:e1:7f:9b:4b:ef:39:5f:74:cc:3b:a3:2e:3b:35: 23:28:2b:df:16:57:fe:7c:90:03:c9:bd:04:aa:7a:04:14:80: 22:89:89:ba:ed:54:01:9c:80:0e:4d:b0:eb:2b:0c:70:75:92: a2:06:b5:d0:7c:01:03:15:ac:b6:46:54:2d:5b:26:26:ec:99: 8b:37:19:85:65:ed:93:a9:09:30:db:f8:8d:3f:78:6e:8b:e1: d2:28:f7:91:09:52:41:d8:6f:b8:fa:d9:f5:cf:90:15:53:2b: 4a:52:b1:cd:f6:09:09:58:4f:c9:c7:af:a0:f9:22:9c:e9:d9: ec:04:82:0d:af:d5:f9:38:65:59:f6:70:13:88:9c:9c:fa:58: 52:53:be:a7:fa:3c:ef:39:c2:ba:51:32:bf:a9:be:d3:b6:b1: 2c:86:28:6c:06:0d:7c:0d:42:3c:9b:33:f5:37:18:5a:7c:dd: ec:25:04:09 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODBGNzExMC8GA1UEBRMoMDBCNzJBRDUzMzNDRUFBRTFBNTg1QzgyODA4OUM0NDU1 OTk5NjNGMjAeFw0yNDExMjExMTEzMjNaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3M2YxNWQyLWQ4YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKlHysgAP7etaCvFWPDoI/TYOUP3Esk++7YM4D15lpXi20UxqLLP9rMER5ATFS nc39fnag+b2ERpTt0xn5ndcCbeeZfrqTQFgtutN2Ow7DozVf2p++ZAApc+8grNZk HlNPEfu/Rp5D7eSXJyv/8XCv0ztuu02BH4r9NqNfScJH5sqyi0OjoWy2NzKerdg1 n9FeXEXDCh1HEXbmvdEhWG4+eSkmCFxyffnaq9ALLGbDy2+nO032PLLl6Lry90UF CSz7tVrmuF0T5pYIVCSUxXvFJHmGUvqe9IAsucwi6Xdlch7x8U9hGMQB9eWZZ37k 81m6i7qcei19VZt7F+O7fQXDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWrTLS+Rf sTF2VqaZOFAbs6FuFV8wHwYDVR0jBBgwFoAUALcq1TM86q4aWFyCgInERVmZY/Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4MEY3LzlGNzY4QUZBQTdG ODExRUZCQjQ0RjM3MUM0RjlBRTAyL0FMY3ExVE04NnE0YVdGeUNnSW5FUlZtWllf SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQUxjcTFUTTg2cTRhV0Z5Q2dJbkVSVm1aWV9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODBGNy85Rjc2OEFGQUE3RjgxMUVGQkI0NEYzNzFDNEY5QUUwMi81RDExNzI4MkE3 RjkxMUVGOEU3QjE3NzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6MDANBgkqhkiG9w0BAQsFAAOCAQEAfDbyf4h2WTn7w7Dx uAqy2h3jvaqOrxP7MMHO4oUa3CZodvRdoTTUBm8cKWmHWZiF7f63VsRz6bsfYdqp noOqxwADclRctE8a1G5a6+F/m0vvOV90zDujLjs1Iygr3xZX/nyQA8m9BKp6BBSA IomJuu1UAZyADk2w6ysMcHWSoga10HwBAxWstkZULVsmJuyZizcZhWXtk6kJMNv4 jT94bovh0ij3kQlSQdhvuPrZ9c+QFVMrSlKxzfYJCVhPycevoPkinOnZ7ASCDa/V +ThlWfZwE4icnPpYUlO+p/o87znCulEyv6m+07axLIYobAYNfA1CPJsz9TcYWnzd 7CUECQ== -----END CERTIFICATE-----Generated at Thu Nov 21 13:39:45 2024 by rpki-client on console-ams.rpki-client.org