$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/66EFC4305B7211EF8C1A8E4EC4F9AE02.roa File: 66EFC4305B7211EF8C1A8E4EC4F9AE02.roa (raw, json) Hash identifier: N+3adJFbEo0riTp5e2KIvLZDqSsoREj9ZabeHIbeUYU= Subject key identifier: F6:23:CE:A2:D7:1E:F3:79:D3:68:03:D9:A0:11:CA:00:49:A0:BC:24 Certificate issuer: /CN=A9149F3E/serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F Certificate serial: 341D Authority key identifier: BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/66EFC4305B7211EF8C1A8E4EC4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:16 +0000 ROA not before: Fri 16 Aug 2024 14:40:16 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 16509 IP address blocks: 160.30.106.0/24 maxlen: 24 160.30.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13341 (0x341d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E Validity Not Before: Aug 16 14:40:16 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64cf-0bcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6e:47:84:ba:c7:95:91:0a:ee:78:c2:7c:00: e8:47:bc:7e:56:50:88:01:89:e5:59:c5:c1:c5:d2: 33:3c:05:55:01:50:74:5e:8a:2e:98:02:9f:91:59: 01:14:43:90:b9:46:f1:a1:87:d6:ce:f6:49:8c:0e: c3:61:23:84:e9:5f:eb:57:dd:c3:75:6c:2e:55:f4: 0d:4e:5e:c0:d9:33:60:9f:90:c7:54:88:e5:43:43: 27:dc:76:0d:16:67:76:34:0e:14:ec:dd:1d:7c:13: b4:53:67:98:96:79:6e:ad:21:21:d2:06:67:74:d3: 9e:95:9a:a9:ab:5d:a1:1b:0a:b2:94:7e:4a:2c:e5: 22:bb:ec:91:49:ce:f7:fc:75:96:35:b2:8d:06:27: 13:02:25:34:fc:87:91:f0:c7:97:c3:07:45:81:a2: b7:4f:18:34:15:33:47:69:ef:91:eb:8f:5e:e8:28: fa:ca:ab:83:e5:58:6d:28:86:b3:1a:e3:43:ad:20: 89:dd:f3:49:2d:0e:3a:18:d2:28:85:f4:19:c8:fb: 14:55:81:16:39:fb:35:45:9c:35:8f:9c:ef:38:9b: ca:5d:46:1c:fb:5d:06:5c:29:d7:79:ca:c7:79:60: e2:2b:5b:07:58:6a:55:b6:45:72:8c:ac:ff:ba:88: 71:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:23:CE:A2:D7:1E:F3:79:D3:68:03:D9:A0:11:CA:00:49:A0:BC:24 X509v3 Authority Key Identifier: keyid:BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/66EFC4305B7211EF8C1A8E4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.106.0/23 Signature Algorithm: sha256WithRSAEncryption a1:7c:0c:76:c5:7e:3b:5c:41:36:31:ed:c2:5d:42:7e:fe:83: 9a:fb:2f:0b:5e:82:37:9e:2e:8e:19:3a:eb:ef:92:1b:23:4c: 3c:7b:2e:eb:2d:9a:f9:ad:4a:95:8f:a8:8b:65:b5:a5:2d:1d: 03:5a:39:ba:65:29:dc:e8:16:3a:98:74:28:c5:22:ae:85:36: d4:2b:3d:f1:f0:10:35:64:b7:ef:ab:2c:87:fe:e9:57:0f:ee: 4b:f8:dd:51:62:20:0a:af:a1:d6:b6:cf:84:75:68:a9:99:12: db:38:d0:8b:fd:2b:55:0d:63:27:61:02:80:22:5a:c6:b4:63: 39:c8:22:68:82:58:66:d8:df:c4:a1:dd:a8:7c:d5:8e:e5:e9: ac:8e:d6:73:d5:cf:b9:0e:23:93:1d:8f:3b:b5:9e:db:06:7d: e6:ac:11:68:6f:5a:d7:60:04:3c:5e:bf:32:7a:d9:ea:7c:e1: 00:e1:9b:dd:a0:41:cb:da:7b:20:14:f0:7b:c4:3c:28:4f:37: 1d:f9:61:e7:18:79:32:bb:0a:90:fe:1d:be:04:6e:46:c5:39: e7:df:37:47:9c:57:e6:98:84:5d:9e:3d:9b:e0:14:80:a3:f1: 36:2d:ee:04:e1:3f:a7:e9:8b:42:44:95:09:96:e5:06:e2:be: 1e:c9:b2:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEJGMEU2RjRFRTBFMTdEREU4QzRBMjRCRjg5N0QxOUI4 N0FBNTc1OUYwHhcNMjQwODE2MTQ0MDE2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRjZi0wYmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwm5HhLrHlZEK7njCfADoR7x+VlCIAYnlWcXBxdIzPAVVAVB0XooumAKfkVkB FEOQuUbxoYfWzvZJjA7DYSOE6V/rV93DdWwuVfQNTl7A2TNgn5DHVIjlQ0Mn3HYN Fmd2NA4U7N0dfBO0U2eYlnlurSEh0gZndNOelZqpq12hGwqylH5KLOUiu+yRSc73 /HWWNbKNBicTAiU0/IeR8MeXwwdFgaK3Txg0FTNHae+R649e6Cj6yquD5VhtKIaz GuNDrSCJ3fNJLQ46GNIohfQZyPsUVYEWOfs1RZw1j5zvOJvKXUYc+10GXCnXecrH eWDiK1sHWGpVtkVyjKz/uohxgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPYjzqLX HvN502gD2aARygBJoLwkMB8GA1UdIwQYMBaAFL8Ob07g4X3ejEokv4l9Gbh6pXWf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS85QTg1QkI1MDFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi92dzV2VHVEaGZkNk1TaVNfaVgwWnVIcWxk WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Z3NXZUdURoZmQ2TVNpU19pWDBadUhxbGRaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvOUE4NUJCNTAxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNjZFRkM0MzA1 QjcyMTFFRjhDMUE4RTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHmowDQYJKoZIhvcNAQELBQADggEBAKF8DHbFfjtcQTYx 7cJdQn7+g5r7LwtegjeeLo4ZOuvvkhsjTDx7LustmvmtSpWPqItltaUtHQNaObpl KdzoFjqYdCjFIq6FNtQrPfHwEDVkt++rLIf+6VcP7kv43VFiIAqvoda2z4R1aKmZ Ets40Iv9K1UNYydhAoAiWsa0YznIImiCWGbY38Sh3ah81Y7l6ayO1nPVz7kOI5Md jzu1ntsGfeasEWhvWtdgBDxevzJ62ep84QDhm92gQcvaeyAU8HvEPChPNx35YecY eTK7CpD+Hb4EbkbFOeffN0ecV+aYhF2ePZvgFICj8TYt7gThP6fpi0JElQmW5Qbi vh7JsmA= -----END CERTIFICATE-----Generated at Sun Feb 16 15:36:51 2025 by rpki-client