$ rpki-client -vvf rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/A1CF550A912511EF8FF0813AC4F9AE02.roa File: A1CF550A912511EF8FF0813AC4F9AE02.roa (raw, json) Hash identifier: 5nFCTmC5xU4JIe+ocqPzYmN20Z681T2Mb6LU4xxafNQ= Subject key identifier: 4E:F9:78:93:91:A7:96:E5:BA:28:1F:21:D8:74:B4:5C:99:0D:6D:32 Certificate issuer: /CN=A91396E7/serialNumber=1247081E9BA97C13C7DD3D68E443D1F5479B2AFF Certificate serial: 06 Authority key identifier: 12:47:08:1E:9B:A9:7C:13:C7:DD:3D:68:E4:43:D1:F5:47:9B:2A:FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EkcIHpupfBPH3T1o5EPR9UebKv8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/A1CF550A912511EF8FF0813AC4F9AE02.roa Signing time: Wed 23 Oct 2024 10:01:42 +0000 ROA not before: Wed 23 Oct 2024 10:01:42 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132855 IP address blocks: 160.191.58.0/23 maxlen: 23 160.191.58.0/24 maxlen: 24 160.191.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/EkcIHpupfBPH3T1o5EPR9UebKv8.crl rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/EkcIHpupfBPH3T1o5EPR9UebKv8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EkcIHpupfBPH3T1o5EPR9UebKv8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 09:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91396E7/serialNumber=1247081E9BA97C13C7DD3D68E443D1F5479B2AFF Validity Not Before: Oct 23 10:01:42 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6718c986-4751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:97:a4:2f:6e:d7:2d:e0:88:cb:cf:a0:5b:d7: cc:8f:6f:64:28:d8:d1:62:46:f6:06:c3:41:96:a3: a8:ed:dc:05:11:0d:78:ee:13:8d:be:f5:16:9b:e8: 17:4f:11:04:4a:12:90:de:41:9b:e3:d5:c4:33:82: db:03:86:ea:41:12:10:a7:1e:2a:50:d7:c7:b2:ef: 0a:6d:1f:40:32:47:3c:14:b6:9f:70:15:ea:98:a6: f4:63:2e:d2:96:60:31:91:4f:05:c2:e1:68:76:4f: 50:95:09:c0:70:2c:b1:31:4a:be:fd:ab:2b:55:75: c4:aa:69:5c:a9:a0:65:4d:61:9d:87:bd:35:93:6d: d7:ee:9a:91:1c:4c:54:5e:43:6b:ce:bf:62:2a:c5: 57:74:f2:dd:81:c7:bd:e7:e1:6e:20:20:0a:21:47: 61:36:99:03:f7:e9:0a:26:d2:dc:fa:d5:8c:ac:3f: 7e:b5:58:c0:0a:d9:86:03:85:fa:14:95:b0:2d:05: bb:28:0d:46:59:d0:0e:b9:a0:bb:36:81:7a:7f:52: b0:c3:19:62:ab:72:59:88:8b:5b:78:c0:80:5f:e9: 3b:f0:b5:ec:f1:84:83:9f:23:27:2f:00:e0:a8:ed: 53:3f:54:fc:67:06:ef:7d:73:bb:57:cb:dc:26:f7: 55:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F9:78:93:91:A7:96:E5:BA:28:1F:21:D8:74:B4:5C:99:0D:6D:32 X509v3 Authority Key Identifier: keyid:12:47:08:1E:9B:A9:7C:13:C7:DD:3D:68:E4:43:D1:F5:47:9B:2A:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/EkcIHpupfBPH3T1o5EPR9UebKv8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EkcIHpupfBPH3T1o5EPR9UebKv8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/A1CF550A912511EF8FF0813AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.58.0/23 Signature Algorithm: sha256WithRSAEncryption 49:3b:41:de:09:e8:7d:74:ed:a4:ec:3b:7a:51:67:f9:6b:44: cc:1d:aa:11:c0:b7:bb:b6:26:09:ec:39:33:2b:f7:3a:74:e7: 32:76:c0:da:af:0b:f4:b4:fd:0f:ff:e9:93:9f:38:7b:ec:ff: ed:2a:50:6d:6a:4b:5e:fb:4c:10:83:71:8c:87:09:ea:37:c9: f8:a0:2a:38:0e:07:a3:a1:f1:59:62:b7:21:40:ee:bf:01:aa: de:77:f5:1e:c7:3c:f1:78:47:a3:e6:a1:ce:6d:d2:75:51:02: 30:c8:48:10:a0:e2:5e:0f:47:8f:f0:54:9f:ab:be:25:28:1a: 33:65:a7:58:e0:58:64:a2:ad:91:2a:54:ab:dc:2a:f3:cf:2c: 9c:73:d1:75:6f:52:64:0e:5a:e8:c4:f7:38:46:bb:53:8d:0b: e7:5a:b3:37:b1:be:65:44:d6:a2:63:c5:14:a2:91:7c:30:30: 2e:08:44:c0:4c:2d:05:62:06:3c:28:ba:ca:11:8c:d1:9f:3b: 16:76:e7:0c:48:63:01:3e:64:cd:b3:c4:59:f0:ca:f5:f3:3c: 19:0a:f2:a6:54:41:3e:02:06:d9:7d:bd:dc:c1:31:f3:b2:5b: ef:f5:d8:f3:a2:07:8b:3c:aa:5a:66:0b:c1:8a:69:73:11:08: a5:02:82:81 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTZFNzExMC8GA1UEBRMoMTI0NzA4MUU5QkE5N0MxM0M3REQzRDY4RTQ0M0QxRjU0 NzlCMkFGRjAeFw0yNDEwMjMxMDAxNDJaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MThjOTg2LTQ3NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIl6Qvbtct4IjLz6Bb18yPb2Qo2NFiRvYGw0GWo6jt3AURDXjuE42+9Rab6BdP EQRKEpDeQZvj1cQzgtsDhupBEhCnHipQ18ey7wptH0AyRzwUtp9wFeqYpvRjLtKW YDGRTwXC4Wh2T1CVCcBwLLExSr79qytVdcSqaVypoGVNYZ2HvTWTbdfumpEcTFRe Q2vOv2IqxVd08t2Bx73n4W4gIAohR2E2mQP36Qom0tz61YysP361WMAK2YYDhfoU lbAtBbsoDUZZ0A65oLs2gXp/UrDDGWKrclmIi1t4wIBf6TvwtezxhIOfIycvAOCo 7VM/VPxnBu99c7tXy9wm91VZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUTvl4k5Gn luW6KB8h2HS0XJkNbTIwHwYDVR0jBBgwFoAUEkcIHpupfBPH3T1o5EPR9UebKv8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NkU3LzA2NzlBQ0Y0OTEy NTExRUY5NDJBMkIyOEM0RjlBRTAyL0VrY0lIcHVwZkJQSDNUMW81RVBSOVVlYkt2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRWtjSUhwdXBmQlBIM1QxbzVFUFI5VWViS3Y4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTZFNy8wNjc5QUNGNDkxMjUxMUVGOTQyQTJCMjhDNEY5QUUwMi9BMUNGNTUwQTkx MjUxMUVGOEZGMDgxM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/OjANBgkqhkiG9w0BAQsFAAOCAQEASTtB3gnofXTtpOw7 elFn+WtEzB2qEcC3u7YmCew5Myv3OnTnMnbA2q8L9LT9D//pk584e+z/7SpQbWpL XvtMEINxjIcJ6jfJ+KAqOA4Ho6HxWWK3IUDuvwGq3nf1Hsc88XhHo+ahzm3SdVEC MMhIEKDiXg9Hj/BUn6u+JSgaM2WnWOBYZKKtkSpUq9wq888snHPRdW9SZA5a6MT3 OEa7U40L51qzN7G+ZUTWomPFFKKRfDAwLghEwEwtBWIGPCi6yhGM0Z87FnbnDEhj AT5kzbPEWfDK9fM8GQryplRBPgIG2X293MEx87Jb7/XY86IHizyqWmYLwYppcxEI pQKCgQ== -----END CERTIFICATE-----Generated at Wed Oct 23 13:03:50 2024 by rpki-client on console-fra.rpki-client.org