$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA46/D43711129C1111EF92FBA97CC4F9AE02/3A748F0E9C1211EF80DB437DC4F9AE02.roa File: 3A748F0E9C1211EF80DB437DC4F9AE02.roa (raw, json) Hash identifier: kNpNFTcyc7YR9nCZJjdQr+QDyHg/gCpaRE2tLnVIVt8= Subject key identifier: F7:02:E0:16:0D:0B:A4:70:C6:51:8A:E1:79:7C:1D:D8:EC:95:2E:93 Certificate issuer: /CN=A915EA46/serialNumber=8B15440AE226C990FC9E55915FE8C9509BCB6676 Certificate serial: 06 Authority key identifier: 8B:15:44:0A:E2:26:C9:90:FC:9E:55:91:5F:E8:C9:50:9B:CB:66:76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixVECuImyZD8nlWRX-jJUJvLZnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA46/D43711129C1111EF92FBA97CC4F9AE02/3A748F0E9C1211EF80DB437DC4F9AE02.roa Signing time: Wed 06 Nov 2024 07:40:50 +0000 ROA not before: Wed 06 Nov 2024 07:40:50 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153392 IP address blocks: 160.191.188.0/23 maxlen: 23 160.191.188.0/24 maxlen: 24 160.191.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA46/D43711129C1111EF92FBA97CC4F9AE02/ixVECuImyZD8nlWRX-jJUJvLZnY.crl rsync://rpki.apnic.net/member_repository/A915EA46/D43711129C1111EF92FBA97CC4F9AE02/ixVECuImyZD8nlWRX-jJUJvLZnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixVECuImyZD8nlWRX-jJUJvLZnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA46/serialNumber=8B15440AE226C990FC9E55915FE8C9509BCB6676 Validity Not Before: Nov 6 07:40:50 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=672b1d82-3463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:aa:f0:82:b9:2e:76:37:37:f9:5e:1c:5d:fb: 52:9c:27:7a:f4:78:41:be:25:5c:48:aa:18:0c:21: 12:32:ef:63:03:8c:da:42:f5:75:04:a9:bc:5e:03: 35:41:a1:23:9a:6c:b4:82:01:f2:72:c9:53:60:f7: c5:7c:a7:48:84:10:e4:c7:69:5e:6a:98:ca:2d:3f: bd:3e:4b:3f:84:de:30:8d:a9:90:b1:2d:85:0b:48: af:15:b0:9f:a6:e0:38:c2:60:90:b6:43:65:f7:60: 16:d5:7c:45:0b:65:62:88:83:8e:64:56:73:c2:73: 1b:50:ed:9e:53:93:8e:45:f5:6d:26:4e:d8:30:04: c2:1b:25:8f:c3:60:e6:30:c6:f1:7d:c1:83:04:a4: 1c:d3:83:da:42:53:f2:9e:a9:50:68:11:3e:c0:45: e0:ba:c4:64:15:b5:d2:41:3f:d8:43:6a:48:d2:71: a1:b3:72:26:22:59:9f:d1:68:54:02:64:fb:d8:ce: 6e:38:b5:fc:5e:6e:7f:75:2e:1f:52:c8:99:30:a3: cf:36:94:96:e5:48:39:06:5d:91:ea:7e:ae:f9:af: cc:29:60:a1:f5:7e:c2:81:a9:7b:cb:2e:2e:32:bc: 4e:38:2d:65:81:91:8e:b0:a3:7f:dd:e1:4f:46:65: 42:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:02:E0:16:0D:0B:A4:70:C6:51:8A:E1:79:7C:1D:D8:EC:95:2E:93 X509v3 Authority Key Identifier: keyid:8B:15:44:0A:E2:26:C9:90:FC:9E:55:91:5F:E8:C9:50:9B:CB:66:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA46/D43711129C1111EF92FBA97CC4F9AE02/ixVECuImyZD8nlWRX-jJUJvLZnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixVECuImyZD8nlWRX-jJUJvLZnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA46/D43711129C1111EF92FBA97CC4F9AE02/3A748F0E9C1211EF80DB437DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.188.0/23 Signature Algorithm: sha256WithRSAEncryption 97:4e:fa:67:bf:29:6a:36:57:e6:7f:9d:bf:6d:0b:db:40:c2: 45:0d:c4:0a:4b:3e:1f:a9:00:e8:a9:f3:83:bf:a8:91:92:da: 69:68:e6:94:13:f9:70:15:49:09:49:45:06:1d:83:dd:df:95: 7c:79:ee:8e:c8:f5:9c:07:5e:e8:bf:74:c9:4c:9f:92:64:37: a8:a6:99:1a:e8:94:5c:9b:78:e0:fa:7c:12:39:59:35:34:e5: 73:06:1b:19:3e:1f:91:36:05:9d:7c:b5:f9:a8:81:b0:3c:43: a5:2b:bb:50:7e:80:db:b0:6e:14:b1:e3:b0:8c:f5:d0:1f:72: 0f:06:06:63:ec:4b:ad:c6:1d:ab:85:23:15:b6:1a:0d:06:a2: 96:3d:68:d8:f2:8c:fd:99:f4:3e:2d:7e:54:c8:a7:61:f6:f8: c1:be:0f:c9:b8:c4:ab:ce:66:9b:e2:a4:12:4f:8f:37:83:53: c9:2f:cc:14:29:94:17:75:3d:03:26:c7:fe:99:1e:33:b6:1c: 7f:a3:66:0f:e8:92:fb:0f:66:e3:30:ab:ae:3d:ff:d0:5a:d8: 22:12:77:d9:7c:d3:60:d5:09:32:c4:59:ad:cf:43:d7:c3:6f: 7a:1a:33:ca:ae:92:48:73:00:6e:54:61:a3:b0:4d:7f:7f:84: f0:dc:b5:28 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RUE0NjExMC8GA1UEBRMoOEIxNTQ0MEFFMjI2Qzk5MEZDOUU1NTkxNUZFOEM5NTA5 QkNCNjY3NjAeFw0yNDExMDYwNzQwNTBaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MmIxZDgyLTM0NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIqvCCuS52Nzf5Xhxd+1KcJ3r0eEG+JVxIqhgMIRIy72MDjNpC9XUEqbxeAzVB oSOabLSCAfJyyVNg98V8p0iEEOTHaV5qmMotP70+Sz+E3jCNqZCxLYULSK8VsJ+m 4DjCYJC2Q2X3YBbVfEULZWKIg45kVnPCcxtQ7Z5Tk45F9W0mTtgwBMIbJY/DYOYw xvF9wYMEpBzTg9pCU/KeqVBoET7AReC6xGQVtdJBP9hDakjScaGzciYiWZ/RaFQC ZPvYzm44tfxebn91Lh9SyJkwo882lJblSDkGXZHqfq75r8wpYKH1fsKBqXvLLi4y vE44LWWBkY6wo3/d4U9GZUIDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9wLgFg0L pHDGUYrheXwd2OyVLpMwHwYDVR0jBBgwFoAUixVECuImyZD8nlWRX+jJUJvLZnYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFQTQ2L0Q0MzcxMTEyOUMx MTExRUY5MkZCQTk3Q0M0RjlBRTAyL2l4VkVDdUlteVpEOG5sV1JYLWpKVUp2TFpu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaXhWRUN1SW15WkQ4bmxXUlgtakpVSnZMWm5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE0Ni9ENDM3MTExMjlDMTExMUVGOTJGQkE5N0NDNEY5QUUwMi8zQTc0OEYwRTlD MTIxMUVGODBEQjQzN0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/vDANBgkqhkiG9w0BAQsFAAOCAQEAl076Z78pajZX5n+d v20L20DCRQ3ECks+H6kA6Knzg7+okZLaaWjmlBP5cBVJCUlFBh2D3d+VfHnujsj1 nAde6L90yUyfkmQ3qKaZGuiUXJt44Pp8EjlZNTTlcwYbGT4fkTYFnXy1+aiBsDxD pSu7UH6A27BuFLHjsIz10B9yDwYGY+xLrcYdq4UjFbYaDQailj1o2PKM/Zn0Pi1+ VMinYfb4wb4PybjEq85mm+KkEk+PN4NTyS/MFCmUF3U9AybH/pkeM7Ycf6NmD+iS +w9m4zCrrj3/0FrYIhJ32XzTYNUJMsRZrc9D18Nvehozyq6SSHMAblRho7BNf3+E 8Ny1KA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org