$ rpki-client -vvf rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/ABF1FAF2860211EF8D8AD011C4F9AE02.roa File: ABF1FAF2860211EF8D8AD011C4F9AE02.roa (raw, json) Hash identifier: FjxvcClLpMvzDMGgYVpt3T25fLDEAyl8BO+4pScMyJU= Subject key identifier: 28:33:B1:81:A2:0D:C4:74:E5:65:14:58:BB:8C:24:AB:70:FA:E1:A5 Certificate issuer: /CN=A91566DC/serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Certificate serial: 03 Authority key identifier: DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/ABF1FAF2860211EF8D8AD011C4F9AE02.roa Signing time: Wed 09 Oct 2024 05:52:31 +0000 ROA not before: Wed 09 Oct 2024 05:52:31 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153357 IP address blocks: 160.187.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91566DC/serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Validity Not Before: Oct 9 05:52:31 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67061a1e-e2f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:54:72:a7:ee:41:53:e9:12:4b:38:4a:f5:a6: a4:6f:97:27:d1:11:74:89:c1:31:f9:25:c6:6e:a1: 1f:63:9a:46:d4:6e:54:d4:60:02:50:7c:7b:a3:13: c2:94:8c:63:7f:b7:de:2e:69:ad:99:9d:d1:f7:02: 06:f2:9a:0b:49:e6:77:85:1a:70:ac:a2:11:55:54: 2b:db:f5:db:1f:35:20:d3:50:d9:84:c5:82:b3:9d: 5e:ef:88:99:f6:10:74:50:45:5f:b9:cc:61:c8:9f: d5:fe:1f:f0:6f:c1:2e:50:78:11:18:68:97:20:4c: f1:27:fa:fe:3f:b9:b2:e7:70:51:a6:42:b8:eb:76: 92:3e:55:5f:46:59:b6:e0:3f:24:ee:ec:2e:31:d0: 66:c5:6e:ad:e4:0e:2e:9b:14:c0:5b:1a:52:db:cf: f7:4e:b9:13:35:7f:e0:a6:82:86:dd:bf:77:68:e8: f2:87:0a:40:80:e3:3d:5f:99:59:ff:ad:f8:31:25: d6:49:66:83:fa:55:34:08:9c:f1:83:52:dc:21:cc: 03:36:30:3b:36:5b:84:7c:3c:a6:a2:ac:1f:1b:47: 2a:ac:1a:8f:ff:82:d2:15:ae:74:33:08:78:43:58: d3:1d:a5:3c:d3:52:87:72:31:cf:56:b5:0f:96:49: 58:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:33:B1:81:A2:0D:C4:74:E5:65:14:58:BB:8C:24:AB:70:FA:E1:A5 X509v3 Authority Key Identifier: keyid:DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/ABF1FAF2860211EF8D8AD011C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.192.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:b0:ab:d3:81:b6:9e:58:ab:1c:dc:9f:b9:b9:17:8e:ca:d1: e4:1a:48:ac:62:f1:f1:b9:ee:7f:ce:28:cc:80:b4:ca:63:2b: e7:79:c8:64:e2:d5:47:98:a5:1c:1e:39:82:d1:b6:21:bb:ba: c2:37:e9:98:74:1b:40:27:52:11:28:f0:57:17:8d:dc:9e:90: 4f:4f:1c:b6:85:54:63:be:23:4c:38:48:b8:b6:08:69:16:da: db:7b:da:db:2a:8b:df:7e:d1:af:dc:49:9a:31:5e:c9:42:c3: ea:2e:a6:1d:7f:c6:1b:f1:04:04:fe:03:34:b2:c4:94:c6:8b: a0:74:cb:38:89:3f:e8:74:b4:f4:78:a9:6c:95:d1:46:b2:96: d0:6b:71:6c:a7:fa:af:f7:8a:43:0a:91:25:ee:e1:c7:f8:d9: 81:ac:05:e9:19:3b:44:e2:0b:98:56:74:48:8a:3f:29:b3:e3: 8c:44:c6:92:99:f1:03:45:3f:3e:02:76:f4:18:77:44:5f:9c: 12:a8:23:4c:bd:54:be:f9:a6:cf:c1:b0:a1:25:02:8f:51:ce: 8f:f1:1d:e6:0a:bb:e1:d2:54:09:8d:f2:20:7f:88:03:78:00: 1b:70:0f:90:ee:f4:1c:5f:21:5b:4a:f4:47:5c:32:c3:d1:da: c3:45:dc:e2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjZEQzExMC8GA1UEBRMoREQ1NzQ2MEYwQzEyQkUwNTQ2MTNBMkY0Mjk2N0IwN0RB NTY4N0JGMDAeFw0yNDEwMDkwNTUyMzFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYxYTFlLWUyZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1VHKn7kFT6RJLOEr1pqRvlyfREXSJwTH5JcZuoR9jmkbUblTUYAJQfHujE8KU jGN/t94uaa2ZndH3AgbymgtJ5neFGnCsohFVVCvb9dsfNSDTUNmExYKznV7viJn2 EHRQRV+5zGHIn9X+H/BvwS5QeBEYaJcgTPEn+v4/ubLncFGmQrjrdpI+VV9GWbbg PyTu7C4x0GbFbq3kDi6bFMBbGlLbz/dOuRM1f+Cmgobdv3do6PKHCkCA4z1fmVn/ rfgxJdZJZoP6VTQInPGDUtwhzAM2MDs2W4R8PKairB8bRyqsGo//gtIVrnQzCHhD WNMdpTzTUodyMc9WtQ+WSVhBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKDOxgaIN xHTlZRRYu4wkq3D64aUwHwYDVR0jBBgwFoAU3VdGDwwSvgVGE6L0KWewfaVoe/Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2NkRDLzVBMTgyQzdDODUy MzExRUY5QjQ4RkY0MUM0RjlBRTAyLzNWZEdEd3dTdmdWR0U2TDBLV2V3ZmFWb2Vf QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM1ZkR0R3d1N2Z1ZHRTZMMEtXZXdmYVZvZV9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjZEQy81QTE4MkM3Qzg1MjMxMUVGOUI0OEZGNDFDNEY5QUUwMi9BQkYxRkFGMjg2 MDIxMUVGOEQ4QUQwMTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7wDANBgkqhkiG9w0BAQsFAAOCAQEAnbCr04G2nlirHNyf ubkXjsrR5BpIrGLx8bnuf84ozIC0ymMr53nIZOLVR5ilHB45gtG2Ibu6wjfpmHQb QCdSESjwVxeN3J6QT08ctoVUY74jTDhIuLYIaRba23va2yqL337Rr9xJmjFeyULD 6i6mHX/GG/EEBP4DNLLElMaLoHTLOIk/6HS09HipbJXRRrKW0GtxbKf6r/eKQwqR Je7hx/jZgawF6Rk7ROILmFZ0SIo/KbPjjETGkpnxA0U/PgJ29Bh3RF+cEqgjTL1U vvmmz8GwoSUCj1HOj/Ed5gq74dJUCY3yIH+IA3gAG3APkO70HF8hW0r0R1wyw9Ha w0Xc4g== -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:53 2024 by rpki-client on console-ams.rpki-client.org