$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/416C8840A25511EFB2CA782AC4F9AE02/A263DD4CA25511EF90E9CA2AC4F9AE02.roa File: A263DD4CA25511EF90E9CA2AC4F9AE02.roa (raw, json) Hash identifier: ecS+aDoIKoDnNRBWYgcdOS4F+XfGqAG3qfH10LoSK6g= Subject key identifier: 44:60:E1:A9:4E:B2:49:3A:9F:A0:1F:80:7F:8E:BA:82:7F:9E:15:A7 Certificate issuer: /CN=A91612FE/serialNumber=C2FBAEAFAFFBB40DAAA51C28AF11E89583B13F0A Certificate serial: 02 Authority key identifier: C2:FB:AE:AF:AF:FB:B4:0D:AA:A5:1C:28:AF:11:E8:95:83:B1:3F:0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wvuur6_7tA2qpRworxHolYOxPwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91612FE/416C8840A25511EFB2CA782AC4F9AE02/A263DD4CA25511EF90E9CA2AC4F9AE02.roa Signing time: Thu 14 Nov 2024 06:56:55 +0000 ROA not before: Thu 14 Nov 2024 06:56:55 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153395 IP address blocks: 160.191.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91612FE/416C8840A25511EFB2CA782AC4F9AE02/wvuur6_7tA2qpRworxHolYOxPwo.crl rsync://rpki.apnic.net/member_repository/A91612FE/416C8840A25511EFB2CA782AC4F9AE02/wvuur6_7tA2qpRworxHolYOxPwo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wvuur6_7tA2qpRworxHolYOxPwo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91612FE/serialNumber=C2FBAEAFAFFBB40DAAA51C28AF11E89583B13F0A Validity Not Before: Nov 14 06:56:55 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67359f37-5956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b4:ea:cd:49:24:ec:09:af:04:78:fb:c3:ac: c7:2c:bb:ea:02:13:61:57:bd:a9:7d:6a:2f:7a:a0: a0:e0:8d:f2:39:3a:f9:ff:f4:a1:2a:57:a0:c7:c0: 9a:bc:c8:07:3c:16:bc:3f:4b:5f:57:f1:2e:b6:63: d0:96:1f:92:1f:91:7d:77:b6:2c:ec:fa:50:95:58: 7c:34:d7:e1:95:42:44:93:98:1c:69:61:b2:bb:3c: b1:47:fe:c4:ff:c7:7b:e1:23:9d:00:86:a0:fc:cd: ae:f2:b1:62:f6:66:4b:01:dc:0e:4e:e9:03:de:44: ac:17:3c:27:09:18:0f:27:0e:84:c0:01:ed:1d:35: b3:15:33:fa:e8:59:60:4e:c7:e2:3e:f6:74:2b:03: c3:ac:38:41:38:b3:52:3e:75:a7:48:02:ad:99:68: f1:9b:ed:96:ab:ea:50:d8:79:07:8a:e4:e1:e9:84: a0:fa:0f:c3:48:71:e9:c4:c5:6b:23:da:29:39:f6: a2:82:f3:a4:30:e8:ea:c0:85:17:bb:0b:c4:99:77: 7a:73:24:17:83:1a:62:da:76:4f:bc:70:9d:00:74: f7:3b:7c:46:87:9d:5a:ff:f5:d0:23:d9:d8:db:d7: 10:43:c3:b7:22:4a:3b:f0:07:f4:8a:e1:59:fe:b6: 8a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:60:E1:A9:4E:B2:49:3A:9F:A0:1F:80:7F:8E:BA:82:7F:9E:15:A7 X509v3 Authority Key Identifier: keyid:C2:FB:AE:AF:AF:FB:B4:0D:AA:A5:1C:28:AF:11:E8:95:83:B1:3F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91612FE/416C8840A25511EFB2CA782AC4F9AE02/wvuur6_7tA2qpRworxHolYOxPwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wvuur6_7tA2qpRworxHolYOxPwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/416C8840A25511EFB2CA782AC4F9AE02/A263DD4CA25511EF90E9CA2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.200.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:b0:bd:42:eb:f2:18:79:a5:32:5c:90:28:03:3f:4c:b4:c5: 6b:c5:ea:21:88:f3:c8:33:16:cf:bb:a4:e1:70:49:a3:be:90: af:26:4f:2a:86:e8:34:b4:0f:0b:f7:cc:c6:3b:79:9f:6c:aa: c6:ab:6b:36:91:9c:99:16:84:51:ce:c2:31:8c:c5:d3:a5:16: 86:70:93:a7:43:25:27:b7:e1:e8:32:6f:d0:50:55:58:9c:a0: 02:e5:53:3a:ab:25:35:bd:f1:58:7e:ff:da:17:c5:c7:fe:e5: 3e:36:e3:2f:f5:19:79:96:d8:46:79:fd:4d:73:b5:c3:f1:6b: af:7d:a0:d7:6d:10:f0:c9:bc:df:2d:30:c0:74:a6:c1:17:70: 15:f5:c5:82:66:79:c4:ef:bf:64:e2:16:d9:80:46:b8:78:0e: 3f:40:c7:13:a2:87:4f:d7:39:1d:76:69:a4:61:c0:10:15:82: 6a:0b:69:a1:f1:3c:f9:ce:8d:1c:4a:07:18:dd:52:8a:09:49: b5:bd:f5:72:e3:50:51:99:e1:b0:3a:df:bf:54:3a:b9:d2:f4: 78:32:0b:66:86:27:e7:f6:ef:c5:1e:80:2a:c9:8e:7f:37:fd: b7:cc:91:89:e9:5f:e9:0f:4f:c7:aa:1a:b8:1d:f1:33:a9:ef: 16:9d:1a:c5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTJGRTExMC8GA1UEBRMoQzJGQkFFQUZBRkZCQjQwREFBQTUxQzI4QUYxMUU4OTU4 M0IxM0YwQTAeFw0yNDExMTQwNjU2NTVaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzU5ZjM3LTU5NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMtOrNSSTsCa8EePvDrMcsu+oCE2FXval9ai96oKDgjfI5Ovn/9KEqV6DHwJq8 yAc8Frw/S19X8S62Y9CWH5IfkX13tizs+lCVWHw01+GVQkSTmBxpYbK7PLFH/sT/ x3vhI50AhqD8za7ysWL2ZksB3A5O6QPeRKwXPCcJGA8nDoTAAe0dNbMVM/roWWBO x+I+9nQrA8OsOEE4s1I+dadIAq2ZaPGb7Zar6lDYeQeK5OHphKD6D8NIcenExWsj 2ik59qKC86Qw6OrAhRe7C8SZd3pzJBeDGmLadk+8cJ0AdPc7fEaHnVr/9dAj2djb 1xBDw7ciSjvwB/SK4Vn+topxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURGDhqU6y STqfoB+Af466gn+eFacwHwYDVR0jBBgwFoAUwvuur6/7tA2qpRworxHolYOxPwow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxMkZFLzQxNkM4ODQwQTI1 NTExRUZCMkNBNzgyQUM0RjlBRTAyL3d2dXVyNl83dEEycXBSd29yeEhvbFlPeFB3 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd3Z1dXI2Xzd0QTJxcFJ3b3J4SG9sWU94UHdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTJGRS80MTZDODg0MEEyNTUxMUVGQjJDQTc4MkFDNEY5QUUwMi9BMjYzREQ0Q0Ey NTUxMUVGOTBFOUNBMkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/yDANBgkqhkiG9w0BAQsFAAOCAQEAfbC9QuvyGHmlMlyQ KAM/TLTFa8XqIYjzyDMWz7uk4XBJo76QryZPKoboNLQPC/fMxjt5n2yqxqtrNpGc mRaEUc7CMYzF06UWhnCTp0MlJ7fh6DJv0FBVWJygAuVTOqslNb3xWH7/2hfFx/7l PjbjL/UZeZbYRnn9TXO1w/Frr32g120Q8Mm83y0wwHSmwRdwFfXFgmZ5xO+/ZOIW 2YBGuHgOP0DHE6KHT9c5HXZppGHAEBWCagtpofE8+c6NHEoHGN1SiglJtb31cuNQ UZnhsDrfv1Q6udL0eDILZoYn5/bvxR6AKsmOfzf9t8yRielf6Q9Px6oauB3xM6nv Fp0axQ== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:54 2024 by rpki-client on console-fra.rpki-client.org