$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/08476846D3EC11EFBFE6E864C4F9AE02.roa File: 08476846D3EC11EFBFE6E864C4F9AE02.roa (raw, json) Hash identifier: rxJJmD5OYbq6xF7owInMRKSqMF5l2EY96R9IaFA9M1E= Subject key identifier: 34:1C:C4:00:C0:57:41:CD:21:26:CB:75:6F:60:06:00:03:92:09:4E Certificate issuer: /CN=A913EF9C/serialNumber=B880B8DBD7082CD918B6217BDEA097584591DBDD Certificate serial: 04 Authority key identifier: B8:80:B8:DB:D7:08:2C:D9:18:B6:21:7B:DE:A0:97:58:45:91:DB:DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uIC429cILNkYtiF73qCXWEWR290.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/08476846D3EC11EFBFE6E864C4F9AE02.roa Signing time: Thu 16 Jan 2025 09:28:24 +0000 ROA not before: Thu 16 Jan 2025 09:28:24 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153390 IP address blocks: 160.191.158.0/23 maxlen: 23 160.191.158.0/24 maxlen: 24 160.191.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/uIC429cILNkYtiF73qCXWEWR290.crl rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/uIC429cILNkYtiF73qCXWEWR290.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uIC429cILNkYtiF73qCXWEWR290.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF9C Validity Not Before: Jan 16 09:28:24 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6788d138-f0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5a:ee:c6:71:2c:3d:2c:9c:d7:f2:9e:e1:19: 81:2b:35:89:ea:ec:3e:5f:3d:06:88:3e:d2:98:0e: 6c:6e:be:b4:b4:d9:be:e2:8b:55:dc:72:83:88:22: 3b:bb:0d:ab:91:b3:fd:fa:be:e9:7b:6a:3a:a9:56: 2f:cd:21:56:ae:ce:f0:f3:d1:5b:7f:8e:52:46:ec: a1:a0:4f:f0:65:06:0d:62:90:de:7c:f2:b4:c2:48: 34:c6:54:b2:32:82:a9:f0:8e:80:ae:92:18:51:74: 1f:76:b7:14:65:95:25:5d:be:e0:33:c4:79:65:31: e5:ce:a2:5c:58:02:b7:79:bb:69:15:d8:ad:9c:d2: 12:1c:9c:4d:10:5a:4b:f1:2b:52:73:3e:01:85:0d: c0:f1:9b:cd:a1:48:84:38:e1:2a:0f:19:35:6f:06: a9:f7:ab:b0:98:2f:ca:0f:5e:6d:11:0a:a2:5d:2b: 74:2f:18:58:3c:24:b9:68:e3:6f:f1:c0:0c:0f:e2: b6:45:13:d5:5d:cd:bd:8d:e1:a7:d7:3f:4d:b8:cc: 39:48:d3:fb:87:49:35:65:1a:af:68:48:bf:3b:9c: 42:e9:c6:db:5f:96:9a:23:71:e1:b5:88:7c:e9:42: ff:76:4e:2b:ab:71:e1:f8:83:ff:9f:7d:f5:98:48: 5b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1C:C4:00:C0:57:41:CD:21:26:CB:75:6F:60:06:00:03:92:09:4E X509v3 Authority Key Identifier: keyid:B8:80:B8:DB:D7:08:2C:D9:18:B6:21:7B:DE:A0:97:58:45:91:DB:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/uIC429cILNkYtiF73qCXWEWR290.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uIC429cILNkYtiF73qCXWEWR290.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/08476846D3EC11EFBFE6E864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.158.0/23 Signature Algorithm: sha256WithRSAEncryption 89:73:13:e0:ec:b6:55:f0:87:fd:93:ad:56:9e:43:2a:81:e4: 4d:28:ff:29:5b:42:52:80:f7:80:33:aa:8c:91:4d:28:f4:cc: d0:21:76:91:f9:bf:25:ef:3d:95:b8:72:67:1c:3c:78:33:6d: 7f:f2:53:e0:f6:af:d0:56:a2:17:a7:e8:2f:ce:d3:71:81:f5: 5f:8b:43:3e:48:48:db:6f:76:22:b0:7e:25:b7:ae:d0:71:24: 3e:21:39:ac:bc:3a:39:71:55:dc:18:2b:18:87:4e:09:07:6e: 07:af:9b:f9:68:43:2a:f1:3e:ce:38:a3:8b:fe:6c:b8:62:b4: e7:00:54:8a:70:01:64:b0:35:93:43:fe:70:07:cb:03:a5:3e: 54:31:b3:e9:65:bf:1c:c7:a5:a0:1d:09:5e:59:c1:2b:9e:4d: 4a:d3:0d:95:f9:2f:1e:73:04:3f:7a:04:75:71:13:9c:3a:8d: 51:0f:f7:a0:0b:07:11:9d:22:d6:c3:0a:67:21:e8:0d:37:69: dc:84:3c:29:d2:6e:aa:f6:7d:d6:f5:53:f9:94:dc:4b:35:62: 8f:f3:4e:ab:82:94:a3:f0:6d:1a:5d:9f:9e:3e:7c:14:7f:5d: 82:97:9b:df:f5:76:4d:ff:69:53:c5:ee:0f:2b:5e:f8:78:df: 24:2d:d2:9b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RUY5QzExMC8GA1UEBRMoQjg4MEI4REJENzA4MkNEOTE4QjYyMTdCREVBMDk3NTg0 NTkxREJERDAeFw0yNTAxMTYwOTI4MjRaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODhkMTM4LWYwZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYWu7GcSw9LJzX8p7hGYErNYnq7D5fPQaIPtKYDmxuvrS02b7ii1XccoOIIju7 DauRs/36vul7ajqpVi/NIVauzvDz0Vt/jlJG7KGgT/BlBg1ikN588rTCSDTGVLIy gqnwjoCukhhRdB92txRllSVdvuAzxHllMeXOolxYArd5u2kV2K2c0hIcnE0QWkvx K1JzPgGFDcDxm82hSIQ44SoPGTVvBqn3q7CYL8oPXm0RCqJdK3QvGFg8JLlo42/x wAwP4rZFE9Vdzb2N4afXP024zDlI0/uHSTVlGq9oSL87nELpxttflpojceG1iHzp Qv92TiurceH4g/+fffWYSFs7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNBzEAMBX Qc0hJst1b2AGAAOSCU4wHwYDVR0jBBgwFoAUuIC429cILNkYtiF73qCXWEWR290w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNFRjlDL0M0RkVDMjg4RDNF QTExRUZBNjZDNDc2MEM0RjlBRTAyL3VJQzQyOWNJTE5rWXRpRjczcUNYV0VXUjI5 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdUlDNDI5Y0lMTmtZdGlGNzNxQ1hXRVdSMjkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUY5Qy9DNEZFQzI4OEQzRUExMUVGQTY2QzQ3NjBDNEY5QUUwMi8wODQ3Njg0NkQz RUMxMUVGQkZFNkU4NjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/njANBgkqhkiG9w0BAQsFAAOCAQEAiXMT4Oy2VfCH/ZOt Vp5DKoHkTSj/KVtCUoD3gDOqjJFNKPTM0CF2kfm/Je89lbhyZxw8eDNtf/JT4Pav 0FaiF6foL87TcYH1X4tDPkhI2292IrB+Jbeu0HEkPiE5rLw6OXFV3BgrGIdOCQdu B6+b+WhDKvE+zjiji/5suGK05wBUinABZLA1k0P+cAfLA6U+VDGz6WW/HMeloB0J XlnBK55NStMNlfkvHnMEP3oEdXETnDqNUQ/3oAsHEZ0i1sMKZyHoDTdp3IQ8KdJu qvZ91vVT+ZTcSzVij/NOq4KUo/BtGl2fnj58FH9dgpeb3/V2Tf9pU8XuDyte+Hjf JC3Smw== -----END CERTIFICATE-----Generated at Wed Feb 5 22:47:18 2025 by rpki-client