$ rpki-client -vvf rpki.apnic.net/member_repository/A913854D/DF3898DEC36B11EFBCBC5B16C4F9AE02/A90D181AC36C11EFAF838D35C4F9AE02.roa File: A90D181AC36C11EFAF838D35C4F9AE02.roa (raw, json) Hash identifier: qIXjoMWJqdmpLdtv27bH3BBsHVxShzn3gjUvaayskJM= Subject key identifier: E3:28:08:CE:20:40:21:BF:F1:6E:37:93:28:9E:BB:B6:72:C5:84:D5 Certificate issuer: /CN=A913854D/serialNumber=1535CA7909AE7A48C0BB38C0827AED766E30F82A Certificate serial: 02 Authority key identifier: 15:35:CA:79:09:AE:7A:48:C0:BB:38:C0:82:7A:ED:76:6E:30:F8:2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FTXKeQmuekjAuzjAgnrtdm4w-Co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913854D/DF3898DEC36B11EFBCBC5B16C4F9AE02/A90D181AC36C11EFAF838D35C4F9AE02.roa Signing time: Thu 26 Dec 2024 09:34:53 +0000 ROA not before: Thu 26 Dec 2024 09:34:53 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152903 IP address blocks: 160.20.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913854D/DF3898DEC36B11EFBCBC5B16C4F9AE02/FTXKeQmuekjAuzjAgnrtdm4w-Co.crl rsync://rpki.apnic.net/member_repository/A913854D/DF3898DEC36B11EFBCBC5B16C4F9AE02/FTXKeQmuekjAuzjAgnrtdm4w-Co.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FTXKeQmuekjAuzjAgnrtdm4w-Co.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913854D Validity Not Before: Dec 26 09:34:53 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=676d233d-0cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:62:dd:48:69:31:15:d9:45:90:22:f0:94:9b: 63:a5:9c:7b:1b:32:13:a5:9e:d5:49:cf:ec:78:58: 43:16:25:b7:2c:6f:b0:5f:64:a1:b4:5b:72:40:b8: 32:9f:a7:55:37:53:90:ec:99:cc:d2:5a:89:81:f8: 25:0c:7b:ea:00:03:42:6a:7a:79:30:6a:16:98:12: 51:60:09:ca:1f:00:59:9d:b7:6c:42:8b:25:ec:4b: ce:88:3f:2e:52:68:5a:13:e0:49:b7:31:ae:1d:e7: 45:e3:63:04:00:c3:4d:14:87:87:ec:2b:40:ba:46: 05:6a:18:22:c9:c4:4d:0b:06:c2:5a:72:b0:e2:bb: e1:6f:9c:f3:95:a2:f2:bf:4e:58:28:66:be:3e:6a: ac:dc:17:c3:a4:b9:ec:ca:fe:c6:83:e6:f8:5a:a9: 19:ba:fa:f8:bf:ef:be:49:fa:32:84:22:40:9d:4d: ab:75:8a:58:62:e6:4e:3f:b6:63:6f:c5:df:6d:e1: 6a:8a:48:58:2e:05:92:e2:73:bd:7b:7d:1b:30:86: 0f:08:c8:57:16:1d:dd:3e:b6:c9:b3:55:be:f0:c2: aa:8e:d5:6e:2b:0e:76:0b:23:6f:6f:ad:87:22:1e: 24:81:4b:a5:ea:53:1e:47:0c:5c:7f:52:04:8d:37: 5d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:28:08:CE:20:40:21:BF:F1:6E:37:93:28:9E:BB:B6:72:C5:84:D5 X509v3 Authority Key Identifier: keyid:15:35:CA:79:09:AE:7A:48:C0:BB:38:C0:82:7A:ED:76:6E:30:F8:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913854D/DF3898DEC36B11EFBCBC5B16C4F9AE02/FTXKeQmuekjAuzjAgnrtdm4w-Co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FTXKeQmuekjAuzjAgnrtdm4w-Co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913854D/DF3898DEC36B11EFBCBC5B16C4F9AE02/A90D181AC36C11EFAF838D35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.122.0/24 Signature Algorithm: sha256WithRSAEncryption bd:e4:f4:b5:9c:b5:24:66:2e:bc:c1:e3:5b:14:cf:8e:17:99: 1c:1b:35:08:d3:75:6e:71:06:dc:3b:55:76:0e:b5:0c:ff:91: 50:a1:82:fa:88:fa:cb:b6:e8:2f:c4:e5:0a:54:e6:3c:9b:30: 1e:51:af:1c:da:dc:fe:14:9c:ab:be:33:4a:c7:38:15:ff:ad: 02:7e:e8:0a:a7:83:02:69:02:a4:0a:e6:33:66:0f:2b:2c:fb: 84:11:31:86:dd:f6:0a:d9:9e:e6:58:52:94:10:96:1e:01:08: a6:62:3f:18:bd:32:f8:97:83:04:63:22:de:0c:b5:14:55:b4: 52:f1:85:91:81:b9:ed:03:7e:83:bb:c3:5c:80:e7:51:2b:26: cb:69:4b:94:89:b1:db:84:f5:b7:c6:2f:de:6e:ab:0e:d1:6d: 4d:30:0e:71:7f:f9:34:39:06:7e:f3:7e:87:21:6b:7d:66:63: 2f:ea:e6:d1:3a:0b:7f:9b:7c:c2:49:02:de:6e:e5:be:e8:76: bc:42:c9:de:e8:5b:28:19:d3:eb:9d:b8:3a:af:0e:9b:67:f2: b4:45:90:ee:c3:31:49:95:52:35:e6:b0:f8:75:a4:be:ac:38: 2a:37:d3:f7:a3:35:4b:29:f2:1f:8f:cc:01:2d:d7:11:e7:f4: 98:5a:3a:84 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODU0RDExMC8GA1UEBRMoMTUzNUNBNzkwOUFFN0E0OEMwQkIzOEMwODI3QUVENzY2 RTMwRjgyQTAeFw0yNDEyMjYwOTM0NTNaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NmQyMzNkLTBjYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6Yt1IaTEV2UWQIvCUm2OlnHsbMhOlntVJz+x4WEMWJbcsb7BfZKG0W3JAuDKf p1U3U5DsmczSWomB+CUMe+oAA0JqenkwahaYElFgCcofAFmdt2xCiyXsS86IPy5S aFoT4Em3Ma4d50XjYwQAw00Uh4fsK0C6RgVqGCLJxE0LBsJacrDiu+FvnPOVovK/ TlgoZr4+aqzcF8OkuezK/saD5vhaqRm6+vi/775J+jKEIkCdTat1ilhi5k4/tmNv xd9t4WqKSFguBZLic717fRswhg8IyFcWHd0+tsmzVb7wwqqO1W4rDnYLI29vrYci HiSBS6XqUx5HDFx/UgSNN105AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4ygIziBA Ib/xbjeTKJ67tnLFhNUwHwYDVR0jBBgwFoAUFTXKeQmuekjAuzjAgnrtdm4w+Cow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4NTREL0RGMzg5OERFQzM2 QjExRUZCQ0JDNUIxNkM0RjlBRTAyL0ZUWEtlUW11ZWtqQXV6akFnbnJ0ZG00dy1D by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRlRYS2VRbXVla2pBdXpqQWducnRkbTR3LUNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODU0RC9ERjM4OThERUMzNkIxMUVGQkNCQzVCMTZDNEY5QUUwMi9BOTBEMTgxQUMz NkMxMUVGQUY4MzhEMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAUejANBgkqhkiG9w0BAQsFAAOCAQEAveT0tZy1JGYuvMHj WxTPjheZHBs1CNN1bnEG3DtVdg61DP+RUKGC+oj6y7boL8TlClTmPJswHlGvHNrc /hScq74zSsc4Ff+tAn7oCqeDAmkCpArmM2YPKyz7hBExht32Ctme5lhSlBCWHgEI pmI/GL0y+JeDBGMi3gy1FFW0UvGFkYG57QN+g7vDXIDnUSsmy2lLlImx24T1t8Yv 3m6rDtFtTTAOcX/5NDkGfvN+hyFrfWZjL+rm0ToLf5t8wkkC3m7lvuh2vELJ3uhb KBnT6524Oq8Om2fytEWQ7sMxSZVSNeaw+HWkvqw4KjfT96M1SynyH4/MAS3XEef0 mFo6hA== -----END CERTIFICATE-----Generated at Wed Feb 5 23:09:27 2025 by rpki-client