$ rpki-client -vvf rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/37DEC83C9DEC11EFB004850FC4F9AE02.roa File: 37DEC83C9DEC11EFB004850FC4F9AE02.roa (raw, json) Hash identifier: jr9vx75wImzVvS1O5vgJ2g8SKtBstUtq8KhejvazWbo= Subject key identifier: D4:50:2B:1C:E3:93:26:91:E5:F9:2B:20:28:E5:AE:57:07:B7:5D:03 Certificate issuer: /CN=A915D8F3/serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Certificate serial: 05 Authority key identifier: 32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/37DEC83C9DEC11EFB004850FC4F9AE02.roa Signing time: Fri 08 Nov 2024 16:12:15 +0000 ROA not before: Fri 08 Nov 2024 16:12:15 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152165 IP address blocks: 160.191.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D8F3/serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Validity Not Before: Nov 8 16:12:15 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=672e385e-a0cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b8:a8:b3:a4:54:72:91:e8:4f:d5:70:67:6a: d8:f3:f6:67:55:48:9c:68:0e:04:fa:f1:b1:35:29: e5:26:43:18:a6:32:af:b9:a8:50:38:03:95:74:c8: 8b:8e:4b:c8:b1:17:69:69:be:a8:9b:73:14:67:a6: 9b:a6:92:c2:e8:ef:40:98:84:ec:fe:11:c4:1d:07: 62:8a:ce:03:69:ab:73:2b:d9:04:8d:12:21:a8:2c: 81:a7:50:dc:17:f7:a3:a6:ad:98:09:a9:a3:47:b5: 70:d7:20:e8:60:ae:8b:c4:0c:40:bb:f6:94:8e:3b: 4f:01:6e:f2:c9:57:30:ef:ad:ad:10:98:e9:ce:72: 38:8b:90:5a:4a:e9:f6:3c:ce:51:52:83:4f:a1:bb: e7:8e:97:8d:72:3b:9a:96:57:8a:a8:4e:cd:a1:02: b9:9a:00:05:bb:ea:d5:dd:4f:a8:92:f6:5c:77:ab: 14:74:fb:fe:6b:fa:d6:90:fa:70:a9:1e:f7:0c:f5: c0:83:7b:25:da:c3:d6:6c:98:aa:82:87:cc:54:5b: bd:ea:a0:af:34:e7:dc:f4:67:2f:04:ee:11:66:5b: fa:8f:d6:01:a3:a5:f2:79:ae:af:40:79:73:99:b1: bb:49:f6:cf:95:1b:ef:97:aa:7f:ae:3f:d4:11:b6: 17:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:50:2B:1C:E3:93:26:91:E5:F9:2B:20:28:E5:AE:57:07:B7:5D:03 X509v3 Authority Key Identifier: keyid:32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/37DEC83C9DEC11EFB004850FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.145.0/24 Signature Algorithm: sha256WithRSAEncryption a4:70:dc:d1:57:81:29:ca:42:c3:59:82:a9:9f:62:3a:5f:a0: 82:84:11:cb:ef:58:f6:1e:4a:05:bc:65:92:1d:0b:7a:b2:ae: 4e:27:69:20:14:c5:47:14:37:dd:fc:a7:1c:6d:88:4e:81:75: 9c:fb:ed:43:c2:bb:26:ee:ad:7b:d0:ab:f2:82:ee:6e:d1:b7: e6:41:9d:20:e3:6f:38:dc:30:a5:01:60:80:bb:37:c0:32:78: e7:55:aa:a5:c4:d4:ba:a6:ea:a1:69:68:b1:ec:a7:e2:6b:0d: 9f:e8:cc:10:c9:e8:01:be:ba:cc:1a:85:b8:d7:55:75:a4:68: b2:53:0a:6b:80:0f:51:bb:ba:10:6e:df:ec:88:29:8f:a0:10: 47:d2:2a:fa:73:7b:72:12:63:78:b1:ad:8f:29:3c:e9:fd:56: 72:eb:5b:8b:bc:8c:16:53:26:a1:ea:fb:bf:0b:eb:4a:dd:15: 42:ce:04:01:4f:9b:8b:5a:61:c6:d9:a1:79:99:5b:09:84:37: 86:a3:70:d6:b5:6a:df:6f:45:05:2e:31:b7:85:9d:43:e4:c4: f4:55:e6:00:ee:38:be:cf:0d:09:17:2c:32:02:f4:3b:55:b8: 3f:98:d5:5b:80:ed:ee:52:cf:6c:72:52:f4:d4:ee:af:06:2d: 1c:88:87:04 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RDhGMzExMC8GA1UEBRMoMzJDMDIxMzExQjYyRkU0NTAwQkM4RTRFMEY0ODUyQzY0 QkM1REFDQjAeFw0yNDExMDgxNjEyMTVaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MmUzODVlLWEwY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeuKizpFRykehP1XBnatjz9mdVSJxoDgT68bE1KeUmQximMq+5qFA4A5V0yIuO S8ixF2lpvqibcxRnppumksLo70CYhOz+EcQdB2KKzgNpq3Mr2QSNEiGoLIGnUNwX 96OmrZgJqaNHtXDXIOhgrovEDEC79pSOO08BbvLJVzDvra0QmOnOcjiLkFpK6fY8 zlFSg0+hu+eOl41yO5qWV4qoTs2hArmaAAW76tXdT6iS9lx3qxR0+/5r+taQ+nCp HvcM9cCDeyXaw9ZsmKqCh8xUW73qoK8059z0Zy8E7hFmW/qP1gGjpfJ5rq9AeXOZ sbtJ9s+VG++Xqn+uP9QRthd/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1FArHOOT JpHl+SsgKOWuVwe3XQMwHwYDVR0jBBgwFoAUMsAhMRti/kUAvI5OD0hSxkvF2ssw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVEOEYzL0M1N0YyM0FFOUIw NzExRUY4MzdFQTAxMkM0RjlBRTAyL01zQWhNUnRpX2tVQXZJNU9EMGhTeGt2RjJz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTXNBaE1SdGlfa1VBdkk1T0QwaFN4a3ZGMnNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDhGMy9DNTdGMjNBRTlCMDcxMUVGODM3RUEwMTJDNEY5QUUwMi8zN0RFQzgzQzlE RUMxMUVGQjAwNDg1MEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/kTANBgkqhkiG9w0BAQsFAAOCAQEApHDc0VeBKcpCw1mC qZ9iOl+ggoQRy+9Y9h5KBbxlkh0LerKuTidpIBTFRxQ33fynHG2IToF1nPvtQ8K7 Ju6te9Cr8oLubtG35kGdIONvONwwpQFggLs3wDJ451WqpcTUuqbqoWloseyn4msN n+jMEMnoAb66zBqFuNdVdaRoslMKa4APUbu6EG7f7Igpj6AQR9Iq+nN7chJjeLGt jyk86f1Wcutbi7yMFlMmoer7vwvrSt0VQs4EAU+bi1phxtmheZlbCYQ3hqNw1rVq 329FBS4xt4WdQ+TE9FXmAO44vs8NCRcsMgL0O1W4P5jVW4Dt7lLPbHJS9NTurwYt HIiHBA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:07 2024 by rpki-client on console-ams.rpki-client.org