$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/666EE7025B7211EF8C1A8E4EC4F9AE02.roa File: 666EE7025B7211EF8C1A8E4EC4F9AE02.roa (raw, json) Hash identifier: jwyDhO2AKzS24hZPtz7MMlmo1w5QqA8KZe3aiJpN8lw= Subject key identifier: 47:40:A5:0A:EB:46:B6:3B:78:EB:0A:4B:7F:A1:55:FF:80:C5:A0:29 Certificate issuer: /CN=A9149F3E/serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F Certificate serial: 341B Authority key identifier: BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/666EE7025B7211EF8C1A8E4EC4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:14 +0000 ROA not before: Fri 16 Aug 2024 14:40:14 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 14618 IP address blocks: 160.30.106.0/24 maxlen: 24 160.30.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13339 (0x341b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F Validity Not Before: Aug 16 14:40:14 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64ce-0601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:29:a1:61:f0:c1:b2:08:be:c1:97:13:da:79: 00:96:7c:d6:fd:a6:11:65:15:42:8a:92:7e:cf:1a: 27:2b:c9:ef:c2:20:1d:b0:dd:45:99:23:b9:72:d8: e0:52:c6:39:a8:57:f6:47:22:a1:ea:b6:af:bf:7e: 88:fb:2c:10:09:24:b1:a6:76:34:67:ed:40:05:e1: 1e:40:d5:f3:b3:30:59:94:a8:98:f2:7b:80:d8:06: 02:64:72:10:1d:6d:17:77:ab:c4:31:59:28:b0:d4: 6b:4c:52:e6:24:bd:c4:41:e5:81:1c:7f:2b:fc:9a: 57:d3:91:fd:fc:19:d7:04:dd:1a:84:52:f0:9a:02: d9:23:51:82:cf:ef:f2:06:83:44:50:df:e1:4d:f5: 2a:1a:69:cf:61:72:72:6e:69:f3:fe:7f:fc:82:ff: e2:c0:9c:9f:1b:3f:e4:bf:fe:76:8b:d6:68:16:6e: ed:44:ab:dd:1f:00:08:52:b6:49:71:f3:a2:ea:70: 83:b1:41:fa:41:bc:11:60:44:7e:22:8c:33:b4:ba: 36:72:53:3b:c0:c8:da:86:4e:82:31:98:07:04:1d: 03:80:cf:72:49:03:9f:e7:49:8c:27:27:11:c3:b1: b1:61:ad:85:e6:c5:db:92:f2:11:60:b1:e5:94:86: 96:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:40:A5:0A:EB:46:B6:3B:78:EB:0A:4B:7F:A1:55:FF:80:C5:A0:29 X509v3 Authority Key Identifier: keyid:BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/666EE7025B7211EF8C1A8E4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.106.0/23 Signature Algorithm: sha256WithRSAEncryption 00:66:88:04:3a:e9:2b:d0:f0:8d:39:a1:8a:ee:96:a7:a4:95: 17:bc:fd:14:a1:7d:e9:e1:ee:4a:19:ea:d4:93:60:7f:b7:08: d9:5b:27:f9:ca:68:d2:59:75:10:b2:ff:e7:fb:dd:fe:68:f3: 28:3a:c8:82:31:c5:21:03:5f:55:2a:98:7d:1e:db:98:29:2c: 54:7e:5f:6e:1a:03:c2:d4:8f:71:7d:51:a4:4e:28:8c:e0:18: 1c:d0:09:5a:02:fd:57:a0:15:ad:a2:09:b9:cb:5d:ac:6c:4c: fe:82:da:8b:00:dc:2c:d1:65:a0:aa:96:5a:03:ca:f0:59:d0: c5:a4:36:d1:31:42:ae:c8:d2:b9:2e:ac:02:0f:af:73:c4:8f: c7:79:f6:21:f1:f9:08:f3:21:ee:0d:89:dd:4c:c5:f5:ce:f3: a9:37:7e:7f:1b:d7:62:4c:b2:ae:47:13:22:db:44:04:69:b8: 7c:a2:01:5c:2e:86:f1:dd:7f:cd:7e:e3:29:d6:d4:40:96:86: 7f:1f:b1:99:38:65:a3:2f:80:2f:d0:09:ca:8b:f5:07:05:27: 3b:1b:0a:eb:72:34:a7:c8:48:6b:68:2c:c7:d1:3f:02:17:78: 82:22:c4:b6:0c:6b:af:c2:50:00:25:3b:55:46:3b:df:da:53: 24:09:a9:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEJGMEU2RjRFRTBFMTdEREU4QzRBMjRCRjg5N0QxOUI4 N0FBNTc1OUYwHhcNMjQwODE2MTQ0MDE0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRjZS0wNjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2imhYfDBsgi+wZcT2nkAlnzW/aYRZRVCipJ+zxonK8nvwiAdsN1FmSO5ctjg UsY5qFf2RyKh6ravv36I+ywQCSSxpnY0Z+1ABeEeQNXzszBZlKiY8nuA2AYCZHIQ HW0Xd6vEMVkosNRrTFLmJL3EQeWBHH8r/JpX05H9/BnXBN0ahFLwmgLZI1GCz+/y BoNEUN/hTfUqGmnPYXJybmnz/n/8gv/iwJyfGz/kv/52i9ZoFm7tRKvdHwAIUrZJ cfOi6nCDsUH6QbwRYER+IowztLo2clM7wMjahk6CMZgHBB0DgM9ySQOf50mMJycR w7GxYa2F5sXbkvIRYLHllIaWWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEdApQrr RrY7eOsKS3+hVf+AxaApMB8GA1UdIwQYMBaAFL8Ob07g4X3ejEokv4l9Gbh6pXWf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS85QTg1QkI1MDFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi92dzV2VHVEaGZkNk1TaVNfaVgwWnVIcWxk WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Z3NXZUdURoZmQ2TVNpU19pWDBadUhxbGRaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvOUE4NUJCNTAxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNjY2RUU3MDI1 QjcyMTFFRjhDMUE4RTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHmowDQYJKoZIhvcNAQELBQADggEBAABmiAQ66SvQ8I05 oYrulqeklRe8/RShfenh7koZ6tSTYH+3CNlbJ/nKaNJZdRCy/+f73f5o8yg6yIIx xSEDX1UqmH0e25gpLFR+X24aA8LUj3F9UaROKIzgGBzQCVoC/VegFa2iCbnLXaxs TP6C2osA3CzRZaCqlloDyvBZ0MWkNtExQq7I0rkurAIPr3PEj8d59iHx+QjzIe4N id1MxfXO86k3fn8b12JMsq5HEyLbRARpuHyiAVwuhvHdf81+4ynW1ECWhn8fsZk4 ZaMvgC/QCcqL9QcFJzsbCutyNKfISGtoLMfRPwIXeIIixLYMa6/CUAAlO1VGO9/a UyQJqeE= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:08 2024 by rpki-client on console-ams.rpki-client.org