$ rpki-client -vvf rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/10435EE8740511EF93658977C4F9AE02.roa File: 10435EE8740511EF93658977C4F9AE02.roa (raw, json) Hash identifier: xmMmx42YHDQ1ahK54oeYt43Mx+x7gEXdRkvJnhnT9V4= Subject key identifier: 38:98:88:C9:5E:F4:C7:69:E7:D1:2F:2A:A9:BE:0F:93:8F:FF:14:04 Certificate issuer: /CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Certificate serial: 0B Authority key identifier: 88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/10435EE8740511EF93658977C4F9AE02.roa Signing time: Mon 16 Sep 2024 08:26:28 +0000 ROA not before: Mon 16 Sep 2024 08:26:28 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153323 IP address blocks: 160.187.20.0/24 maxlen: 24 160.187.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Validity Not Before: Sep 16 08:26:28 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66e7ebb4-e830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:97:a3:d0:ce:a2:f9:37:e8:f3:1b:fd:a1:56: a8:f2:bf:96:ab:f2:4b:4e:69:1e:f1:24:83:7d:74: 94:a5:c1:9b:41:15:b4:3e:67:17:d5:1c:39:fa:a1: 7a:f9:92:c4:68:b5:06:33:70:68:fa:ab:04:4a:61: 04:fd:36:fc:84:85:5b:28:2c:8a:64:82:0c:73:e9: d7:25:11:22:cc:37:10:08:81:f7:f7:ef:11:d9:91: d7:b8:d0:42:18:47:b2:f8:49:43:ac:48:38:d3:b5: cd:4a:18:83:aa:87:f4:8b:7a:90:51:c4:89:82:0d: f0:2f:4f:54:b7:35:62:96:8e:e1:46:c5:8e:a7:13: 7e:f0:40:f6:74:ff:6f:3d:53:c7:7a:ee:e7:e8:0b: 5c:eb:d9:19:c2:02:16:3a:a5:d6:56:0d:5b:76:11: 48:4f:0f:69:09:5e:c2:7c:4d:a7:7b:fe:fa:73:9c: 7a:d6:eb:86:69:b7:af:a8:4c:11:1f:d6:94:42:1d: fc:8b:86:8a:21:bf:0e:f0:5b:bc:1e:7d:87:bc:6c: 28:bf:e6:b9:d5:c8:d2:0b:db:0d:fa:4e:bf:35:db: ac:0a:67:57:02:73:a5:df:e8:8a:13:c5:dd:65:40: a5:98:83:fd:3a:18:6b:c2:8f:6a:f6:5b:c7:be:63: 91:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:98:88:C9:5E:F4:C7:69:E7:D1:2F:2A:A9:BE:0F:93:8F:FF:14:04 X509v3 Authority Key Identifier: keyid:88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/10435EE8740511EF93658977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.20.0/23 Signature Algorithm: sha256WithRSAEncryption 47:78:a6:09:bf:89:50:e8:60:85:39:70:26:fc:51:97:d0:2a: e6:5c:9b:45:8c:24:47:b8:fe:b0:94:de:89:95:71:4e:c1:b2: 59:b4:fe:d1:36:9e:59:9f:17:b6:fe:b8:c0:85:8a:26:5a:76: 70:6b:ed:a4:ff:8b:14:90:f1:41:12:82:3a:0b:47:7e:86:09: d7:d5:b4:df:52:72:33:96:58:88:6f:ec:1a:a9:07:5d:4b:1c: a7:fa:c0:c9:fb:1a:26:a3:c4:a1:70:95:0e:c2:ee:78:00:3c: 5c:3c:3a:26:62:e8:40:6a:f7:11:7f:a0:27:52:9d:3d:75:b4: 84:3b:88:7c:56:c0:8c:4a:2d:51:84:cf:bd:74:28:4d:e8:1f: 60:44:5a:32:15:ee:4d:2e:ef:cd:41:bf:bb:e5:85:ad:81:52: 08:1c:cc:67:70:5d:d1:ae:a0:1d:2b:5d:b5:f8:fc:19:1e:cb: 27:64:d6:b2:01:db:43:a3:82:b5:24:6d:ca:b6:11:fd:e2:f6: 9e:fe:7f:10:28:fd:e7:50:eb:a8:a5:68:1f:59:52:e9:b7:93: e3:0b:df:de:03:a9:f9:7c:82:a5:58:7e:5a:5d:d0:15:c3:01: f5:c3:e9:0a:80:81:82:88:9f:f2:f7:40:52:ef:d1:95:39:57: 9d:5a:2d:23 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTgwNjExMC8GA1UEBRMoODg3RTExMDdBODNGMTE3NEZGN0UzRTc4MDg4OERCNTcy M0I3OTI1QjAeFw0yNDA5MTYwODI2MjhaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTdlYmI0LWU4MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfl6PQzqL5N+jzG/2hVqjyv5ar8ktOaR7xJIN9dJSlwZtBFbQ+ZxfVHDn6oXr5 ksRotQYzcGj6qwRKYQT9NvyEhVsoLIpkggxz6dclESLMNxAIgff37xHZkde40EIY R7L4SUOsSDjTtc1KGIOqh/SLepBRxImCDfAvT1S3NWKWjuFGxY6nE37wQPZ0/289 U8d67ufoC1zr2RnCAhY6pdZWDVt2EUhPD2kJXsJ8Tad7/vpznHrW64Zpt6+oTBEf 1pRCHfyLhoohvw7wW7wefYe8bCi/5rnVyNIL2w36Tr8126wKZ1cCc6Xf6IoTxd1l QKWYg/06GGvCj2r2W8e+Y5H3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOJiIyV70 x2nn0S8qqb4Pk4//FAQwHwYDVR0jBBgwFoAUiH4RB6g/EXT/fj54CIjbVyO3klsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1ODA2L0M3MzlCQUVFNkU5 MTExRUZBNjJCNEMzRkM0RjlBRTAyL2lINFJCNmdfRVhUX2ZqNTRDSWpiVnlPM2ts cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUg0UkI2Z19FWFRfZmo1NENJamJWeU8za2xzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTgwNi9DNzM5QkFFRTZFOTExMUVGQTYyQjRDM0ZDNEY5QUUwMi8xMDQzNUVFODc0 MDUxMUVGOTM2NTg5NzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7FDANBgkqhkiG9w0BAQsFAAOCAQEAR3imCb+JUOhghTlw JvxRl9Aq5lybRYwkR7j+sJTeiZVxTsGyWbT+0TaeWZ8Xtv64wIWKJlp2cGvtpP+L FJDxQRKCOgtHfoYJ19W031JyM5ZYiG/sGqkHXUscp/rAyfsaJqPEoXCVDsLueAA8 XDw6JmLoQGr3EX+gJ1KdPXW0hDuIfFbAjEotUYTPvXQoTegfYERaMhXuTS7vzUG/ u+WFrYFSCBzMZ3Bd0a6gHStdtfj8GR7LJ2TWsgHbQ6OCtSRtyrYR/eL2nv5/ECj9 51DrqKVoH1lS6beT4wvf3gOp+XyCpVh+Wl3QFcMB9cPpCoCBgoif8vdAUu/RlTlX nVotIw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:04 2024 by rpki-client on console-ams.rpki-client.org