$ rpki-client -vvf rpki.apnic.net/member_repository/A913D756/623C65B6B06711EF8214D469C4F9AE02/A90B2F28B1F611EF86337B54C4F9AE02.roa File: A90B2F28B1F611EF86337B54C4F9AE02.roa (raw, json) Hash identifier: oosdej6NCKw9+AFZHUWJ0H2pXTiyHE7ZIsFdjEUcWdo= Subject key identifier: 74:0F:F1:0F:DA:D6:D0:DC:C5:7E:40:47:DF:D3:80:D1:09:64:A0:DA Certificate issuer: /CN=A913D756/serialNumber=6EDA0A47CEAC5F94901546EE89A3F5E22E19A762 Certificate serial: 04 Authority key identifier: 6E:DA:0A:47:CE:AC:5F:94:90:15:46:EE:89:A3:F5:E2:2E:19:A7:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/btoKR86sX5SQFUbuiaP14i4Zp2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D756/623C65B6B06711EF8214D469C4F9AE02/A90B2F28B1F611EF86337B54C4F9AE02.roa Signing time: Wed 04 Dec 2024 04:17:23 +0000 ROA not before: Wed 04 Dec 2024 04:17:23 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134801 IP address blocks: 160.250.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D756/623C65B6B06711EF8214D469C4F9AE02/btoKR86sX5SQFUbuiaP14i4Zp2I.crl rsync://rpki.apnic.net/member_repository/A913D756/623C65B6B06711EF8214D469C4F9AE02/btoKR86sX5SQFUbuiaP14i4Zp2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/btoKR86sX5SQFUbuiaP14i4Zp2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D756/serialNumber=6EDA0A47CEAC5F94901546EE89A3F5E22E19A762 Validity Not Before: Dec 4 04:17:23 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674fd7d3-3388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:01:69:8a:54:7b:35:c9:36:4f:a8:23:81:a7: a3:3f:59:be:b1:64:95:fe:e4:28:55:11:42:af:12: 2c:da:a7:16:4c:ec:59:d6:f9:8d:67:0b:09:fd:6d: 75:1e:94:d6:fa:53:41:de:0f:ee:f8:b5:ee:3f:82: ff:e1:e4:ce:37:de:41:68:6a:f0:43:64:63:17:43: f1:e5:b1:06:b3:6e:5d:4e:7a:d5:5e:d8:82:15:12: d7:96:d7:93:3c:00:41:dc:2d:f0:f6:bb:01:58:25: 10:e7:3c:e4:54:b9:16:d5:ac:b8:b3:9f:40:4a:b3: 45:70:bd:7c:40:84:d7:e5:6e:ec:eb:44:52:f2:63: b3:43:e8:68:dc:00:9d:67:50:9a:1a:53:0d:42:a1: 41:c8:6f:74:ad:f5:4b:52:5a:b1:39:96:6c:63:2d: 2c:c8:1d:bf:11:b8:a9:0f:2e:95:9c:11:ac:9b:78: d9:e8:fa:3e:d4:26:c6:b4:2c:8a:e0:0e:1b:3c:62: b9:0b:28:cc:9b:06:c4:3e:99:b2:b5:d7:99:0e:fc: 72:32:16:5f:18:c7:74:51:04:48:db:5d:65:2d:d7: 5f:3f:16:90:d9:40:e2:8b:e7:63:1e:78:bb:d3:d3: fd:26:b8:7f:6a:74:14:99:fb:47:b9:3c:a3:49:1c: bb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:0F:F1:0F:DA:D6:D0:DC:C5:7E:40:47:DF:D3:80:D1:09:64:A0:DA X509v3 Authority Key Identifier: keyid:6E:DA:0A:47:CE:AC:5F:94:90:15:46:EE:89:A3:F5:E2:2E:19:A7:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D756/623C65B6B06711EF8214D469C4F9AE02/btoKR86sX5SQFUbuiaP14i4Zp2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/btoKR86sX5SQFUbuiaP14i4Zp2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D756/623C65B6B06711EF8214D469C4F9AE02/A90B2F28B1F611EF86337B54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.68.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:a9:81:4f:61:d2:a9:2e:a2:7e:09:27:d0:fd:ad:12:26:14: 81:d6:8f:23:97:be:ba:ad:4a:37:9a:ab:6e:c9:8f:cd:3a:3f: 0f:3e:96:66:33:4d:60:78:b1:fc:be:bf:52:d3:97:31:5a:7d: cb:83:4c:09:2d:cd:16:1d:db:9c:1b:d4:11:bd:07:0b:5e:dd: 3a:bb:76:fa:e5:ac:bd:cb:dd:39:62:8c:13:e0:46:6e:3c:9a: fb:f7:3e:29:ee:4d:15:c8:bc:0d:b3:73:58:d0:58:9a:f7:64: d4:0e:10:bb:cd:38:fa:da:c1:54:08:11:05:19:71:04:6c:a3: 6a:86:98:1c:c3:6c:0f:45:10:7f:e8:d3:92:ce:ad:b6:6c:b7: 10:4e:81:6a:d8:58:98:33:29:c9:a2:e1:5c:16:dd:5b:4c:48: 9b:55:3d:c7:5c:a9:db:8e:0e:67:81:1a:58:0a:38:09:05:ca: 74:0b:50:91:db:31:99:16:34:51:92:6b:04:1a:b7:1d:36:4e: 86:ca:2a:24:85:d5:48:9e:f1:71:50:fb:9a:8e:5c:8c:2d:1c: d4:52:41:a7:8e:3e:d9:45:b2:ed:88:5b:92:33:93:6e:75:6a: 45:29:a9:0d:de:fb:c4:0a:a8:41:81:a2:06:52:f7:70:2e:25: 7d:dc:25:d8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDc1NjExMC8GA1UEBRMoNkVEQTBBNDdDRUFDNUY5NDkwMTU0NkVFODlBM0Y1RTIy RTE5QTc2MjAeFw0yNDEyMDQwNDE3MjNaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGZkN2QzLTMzODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2AWmKVHs1yTZPqCOBp6M/Wb6xZJX+5ChVEUKvEizapxZM7FnW+Y1nCwn9bXUe lNb6U0HeD+74te4/gv/h5M433kFoavBDZGMXQ/HlsQazbl1OetVe2IIVEteW15M8 AEHcLfD2uwFYJRDnPORUuRbVrLizn0BKs0VwvXxAhNflbuzrRFLyY7ND6GjcAJ1n UJoaUw1CoUHIb3St9UtSWrE5lmxjLSzIHb8RuKkPLpWcEaybeNno+j7UJsa0LIrg Dhs8YrkLKMybBsQ+mbK115kO/HIyFl8Yx3RRBEjbXWUt118/FpDZQOKL52MeeLvT 0/0muH9qdBSZ+0e5PKNJHLtFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUdA/xD9rW 0NzFfkBH39OA0QlkoNowHwYDVR0jBBgwFoAUbtoKR86sX5SQFUbuiaP14i4Zp2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNENzU2LzYyM0M2NUI2QjA2 NzExRUY4MjE0RDQ2OUM0RjlBRTAyL2J0b0tSODZzWDVTUUZVYnVpYVAxNGk0WnAy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYnRvS1I4NnNYNVNRRlVidWlhUDE0aTRacDJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDc1Ni82MjNDNjVCNkIwNjcxMUVGODIxNEQ0NjlDNEY5QUUwMi9BOTBCMkYyOEIx RjYxMUVGODYzMzdCNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6RDANBgkqhkiG9w0BAQsFAAOCAQEAbamBT2HSqS6ifgkn 0P2tEiYUgdaPI5e+uq1KN5qrbsmPzTo/Dz6WZjNNYHix/L6/UtOXMVp9y4NMCS3N Fh3bnBvUEb0HC17dOrt2+uWsvcvdOWKME+BGbjya+/c+Ke5NFci8DbNzWNBYmvdk 1A4Qu804+trBVAgRBRlxBGyjaoaYHMNsD0UQf+jTks6ttmy3EE6BathYmDMpyaLh XBbdW0xIm1U9x1yp244OZ4EaWAo4CQXKdAtQkdsxmRY0UZJrBBq3HTZOhsoqJIXV SJ7xcVD7mo5cjC0c1FJBp44+2UWy7YhbkjOTbnVqRSmpDd77xAqoQYGiBlL3cC4l fdwl2A== -----END CERTIFICATE-----Generated at Fri Dec 27 07:43:20 2024 by rpki-client on console-ams.rpki-client.org