$ rpki-client -vvf rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/9B22AC1269F611EFA7665A51C4F9AE02.roa File: 9B22AC1269F611EFA7665A51C4F9AE02.roa (raw, json) Hash identifier: Fnj7JWgwdsaeofMVq5UcxcqhmE7c7PXdT8GOJ7pFYSI= Subject key identifier: 8B:F2:09:01:BC:0E:30:D3:3D:40:17:39:57:B3:75:00:AA:5B:10:8E Certificate issuer: /CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Certificate serial: 02 Authority key identifier: CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/9B22AC1269F611EFA7665A51C4F9AE02.roa Signing time: Tue 03 Sep 2024 13:15:36 +0000 ROA not before: Tue 03 Sep 2024 13:15:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147302 IP address blocks: 160.30.236.0/24 maxlen: 24 160.30.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Validity Not Before: Sep 3 13:15:36 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66d70bf7-de70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:54:6a:a6:ab:06:90:58:bb:bc:0d:c8:be:2e: 4e:15:bd:f8:d0:0e:05:ed:3a:28:f7:9d:43:94:bb: ae:d3:dd:63:74:20:e4:c6:89:dc:33:06:b1:d9:4a: 42:59:70:65:b5:70:72:55:03:62:68:a6:5a:44:52: a0:47:91:b2:c1:8f:d4:fd:43:ad:8d:aa:2a:c9:27: 7b:2e:da:89:a4:06:fd:c1:32:f4:8a:1e:f0:49:f6: 82:79:b2:2d:87:25:15:44:eb:9b:56:94:c6:b7:f1: 4e:9c:c3:10:d5:02:39:9c:5b:f8:8f:5c:9d:cb:2b: f0:8e:3e:b9:8b:0f:d8:7d:59:4f:36:d1:3d:ca:13: 45:a5:70:cf:7f:ba:aa:56:77:07:95:19:ea:67:8b: 4d:ac:a5:f2:f8:89:08:44:b4:f0:48:d0:d6:c7:ef: 2c:a5:f7:33:cd:3f:8a:34:66:a7:8e:f3:9d:6c:62: b0:2a:e4:4d:2c:07:32:a2:84:d7:07:41:20:25:b0: c6:fe:cf:94:5e:a4:8d:5b:56:45:2e:dd:08:dc:b4: 1a:76:e5:11:88:d7:e6:3a:b3:af:8b:80:39:7a:5f: c3:04:27:f6:05:27:da:36:73:3d:48:ef:f2:cf:44: 69:19:66:cd:c0:e4:d6:3d:16:29:b4:4b:d6:12:91: 2f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F2:09:01:BC:0E:30:D3:3D:40:17:39:57:B3:75:00:AA:5B:10:8E X509v3 Authority Key Identifier: keyid:CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/9B22AC1269F611EFA7665A51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.236.0/23 Signature Algorithm: sha256WithRSAEncryption 79:53:87:95:01:e0:6a:aa:96:1c:1c:c3:05:8d:eb:c2:e5:84: 05:33:3d:f6:7b:32:c0:4d:23:ca:da:ae:8a:c8:8c:d2:dc:98: a5:e3:ca:c4:0d:38:0b:88:88:c4:a5:79:bb:1c:9f:93:54:cc: 56:56:d6:b2:ee:d9:25:92:c6:83:0e:75:2d:f1:4f:9d:72:82: 36:1b:16:a3:64:64:1c:61:6c:40:65:9e:a0:36:e7:ee:c5:42: ad:e3:5f:dc:fa:6e:57:f2:9b:26:1d:f9:f1:82:fd:60:c9:6e: 8d:7d:89:95:52:68:28:37:e5:7a:e6:6a:64:7b:5c:3e:2b:37: 51:b2:6a:e6:a7:fa:c2:d4:65:14:e1:01:69:a5:de:79:c0:09: 53:cc:f3:cb:57:37:98:a7:ad:31:0c:9e:1d:99:78:60:0a:d7: 38:b9:45:a2:e9:dc:59:e7:21:f4:4e:24:7d:02:3c:5c:d1:34: 0d:4d:5a:a5:fc:df:fe:81:52:89:ba:04:0a:23:a4:14:26:cf: df:29:fa:cc:3a:11:28:30:53:d1:42:0d:cb:f0:ce:21:81:54: f7:a1:92:e8:4c:fa:6d:45:18:67:ef:99:a7:e0:09:37:b0:ea: f9:d8:16:1f:85:aa:9a:94:fb:64:65:e8:a1:04:79:69:0b:81: 20:8d:be:ba -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTRBRjExMC8GA1UEBRMoQ0VFNDg3NjRBQTJDMTZGNzVBMDY3MjQ0RUJBNTg2Njk3 NEUxQ0VENjAeFw0yNDA5MDMxMzE1MzZaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDcwYmY3LWRlNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrVGqmqwaQWLu8Dci+Lk4VvfjQDgXtOij3nUOUu67T3WN0IOTGidwzBrHZSkJZ cGW1cHJVA2JoplpEUqBHkbLBj9T9Q62NqirJJ3su2omkBv3BMvSKHvBJ9oJ5si2H JRVE65tWlMa38U6cwxDVAjmcW/iPXJ3LK/COPrmLD9h9WU820T3KE0WlcM9/uqpW dweVGepni02spfL4iQhEtPBI0NbH7yyl9zPNP4o0ZqeO851sYrAq5E0sBzKihNcH QSAlsMb+z5RepI1bVkUu3QjctBp25RGI1+Y6s6+LgDl6X8MEJ/YFJ9o2cz1I7/LP RGkZZs3A5NY9Fim0S9YSkS9JAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUi/IJAbwO MNM9QBc5V7N1AKpbEI4wHwYDVR0jBBgwFoAUzuSHZKosFvdaBnJE66WGaXThztYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBNEFGLzQ2NjQ2NkNBNjlG NjExRUZCMkI4QUY1MEM0RjlBRTAyL3p1U0haS29zRnZkYUJuSkU2NldHYVhUaHp0 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvenVTSFpLb3NGdmRhQm5KRTY2V0dhWFRoenRZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTRBRi80NjY0NjZDQTY5RjYxMUVGQjJCOEFGNTBDNEY5QUUwMi85QjIyQUMxMjY5 RjYxMUVGQTc2NjVBNTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAe7DANBgkqhkiG9w0BAQsFAAOCAQEAeVOHlQHgaqqWHBzD BY3rwuWEBTM99nsywE0jytquisiM0tyYpePKxA04C4iIxKV5uxyfk1TMVlbWsu7Z JZLGgw51LfFPnXKCNhsWo2RkHGFsQGWeoDbn7sVCreNf3PpuV/KbJh358YL9YMlu jX2JlVJoKDfleuZqZHtcPis3UbJq5qf6wtRlFOEBaaXeecAJU8zzy1c3mKetMQye HZl4YArXOLlFouncWech9E4kfQI8XNE0DU1apfzf/oFSiboECiOkFCbP3yn6zDoR KDBT0UINy/DOIYFU96GS6Ez6bUUYZ++Zp+AJN7Dq+dgWH4WqmpT7ZGXooQR5aQuB II2+ug== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:20 2024 by rpki-client on console-fra.rpki-client.org