$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/38BDA87E3D0A11EF9EEE4439C4F9AE02.roa File: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (raw, json) Hash identifier: KlwexvDGFQzb3abuiXQPF43ztld2Pg+xYp8Fr2ZD2ao= Subject key identifier: AB:51:1D:63:BA:A3:F2:AA:A1:79:4C:3A:20:BC:4D:4E:2B:D1:B3:8B Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: 02 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/38BDA87E3D0A11EF9EEE4439C4F9AE02.roa Signing time: Mon 08 Jul 2024 09:12:38 +0000 ROA not before: Mon 08 Jul 2024 09:12:38 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 141677 IP address blocks: 160.22.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73 Validity Not Before: Jul 8 09:12:38 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668bad86-885d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:41:27:30:43:31:82:cf:83:80:70:d9:d9:e8: 64:2e:3f:05:02:80:e3:87:08:d9:3b:aa:97:5b:97: b4:7b:4d:4c:75:2a:6f:97:05:73:be:8d:2d:81:8c: ef:6c:44:f4:a6:5f:4c:ad:9e:9d:7e:ed:43:fa:42: bc:9b:68:96:9a:b6:e0:1e:83:f4:f9:37:09:b9:ad: 4f:bb:79:0b:ab:bd:d7:b8:70:77:60:ff:6b:c6:cc: f1:50:50:47:d6:1b:58:be:27:57:e2:93:b9:24:fc: b8:98:65:a1:52:73:b6:0f:e4:7d:d3:7a:33:99:ba: 02:4e:9d:4e:63:fe:35:61:11:30:6e:12:86:89:5a: 8a:17:8a:b6:67:57:cf:00:d9:29:71:3d:58:bd:9c: 2a:b4:f3:39:91:4f:f1:d2:95:81:74:45:9e:7f:f0: ef:27:1f:da:d8:32:8f:31:c0:b8:19:22:a6:53:7b: 97:51:4c:50:65:e5:c4:13:d4:a3:a1:07:90:1d:25: ce:02:e3:0a:04:cd:cd:a6:3c:b2:b3:9d:49:e2:dd: f2:ff:91:68:4d:18:be:44:d9:0e:19:83:27:49:52: 96:80:19:cb:18:71:5d:87:80:fa:aa:cc:70:27:8a: 44:2c:9f:93:08:4d:9e:fc:15:d9:c5:e0:55:bf:af: 70:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:51:1D:63:BA:A3:F2:AA:A1:79:4C:3A:20:BC:4D:4E:2B:D1:B3:8B X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/38BDA87E3D0A11EF9EEE4439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.182.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:a0:1e:86:f7:d7:8b:b5:b5:ee:5e:a5:1c:8f:7d:52:8d:9a: e2:bd:47:99:e9:2e:cf:ac:1b:b4:d9:b2:34:54:49:b3:f7:4d: 33:f7:9b:81:db:c5:79:24:6c:c7:7f:d4:f5:6d:29:91:52:01: 13:71:7b:9a:46:b3:12:c1:cf:55:fa:30:5d:d7:3f:83:aa:de: 14:a7:70:e8:b9:b0:35:4a:c4:42:3a:1c:de:02:69:6b:b4:c3: df:98:15:99:d0:5e:46:b9:16:31:b2:fe:61:8d:a8:cb:af:c7: 11:26:a5:1e:d9:2e:31:8a:82:a9:a0:c5:89:55:c0:4f:38:d6: f7:c9:e5:07:d4:66:6d:8c:fb:15:08:97:b1:b1:4c:d4:47:88: 39:25:c0:a4:ad:32:7d:dc:34:01:9a:54:36:57:a2:24:53:c4: 4a:df:50:39:a0:8a:1c:fa:e0:be:4f:78:70:55:1a:74:43:49: 80:81:e4:b6:b4:fb:33:77:4c:40:65:c3:d3:80:cc:08:20:74: 2e:07:71:10:a9:6e:c4:f4:1b:bd:7e:48:d6:1b:fe:09:2e:89: 00:2d:eb:2d:81:69:f1:fa:bc:97:ee:35:d4:39:93:89:57:1a: b2:a1:66:75:76:71:ed:88:83:9c:8e:42:fd:76:26:f1:5f:c2: a1:5a:b5:90 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MUY3MzExMC8GA1UEBRMoQjQzQzRFM0QzMkY5NUI1MDU1RDA0RkRDMDFGODUxOTYz N0M4OUE2RjAeFw0yNDA3MDgwOTEyMzhaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OGJhZDg2LTg4NWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5QScwQzGCz4OAcNnZ6GQuPwUCgOOHCNk7qpdbl7R7TUx1Km+XBXO+jS2BjO9s RPSmX0ytnp1+7UP6QrybaJaatuAeg/T5Nwm5rU+7eQurvde4cHdg/2vGzPFQUEfW G1i+J1fik7kk/LiYZaFSc7YP5H3TejOZugJOnU5j/jVhETBuEoaJWooXirZnV88A 2SlxPVi9nCq08zmRT/HSlYF0RZ5/8O8nH9rYMo8xwLgZIqZTe5dRTFBl5cQT1KOh B5AdJc4C4woEzc2mPLKznUni3fL/kWhNGL5E2Q4ZgydJUpaAGcsYcV2HgPqqzHAn ikQsn5MITZ78FdnF4FW/r3DrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUq1EdY7qj 8qqheUw6ILxNTivRs4swHwYDVR0jBBgwFoAUtDxOPTL5W1BV0E/cAfhRljfImm8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxRjczLzZERjBFMTA4M0Qw NzExRUZCNUM5RUMyNEM0RjlBRTAyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1t OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdER4T1BUTDVXMUJWMEVfY0FmaFJsamZJbW04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi8zOEJEQTg3RTNE MEExMUVGOUVFRTQ0MzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAWtjANBgkqhkiG9w0BAQsFAAOCAQEAG6AehvfXi7W17l6l HI99Uo2a4r1Hmekuz6wbtNmyNFRJs/dNM/ebgdvFeSRsx3/U9W0pkVIBE3F7mkaz EsHPVfowXdc/g6reFKdw6LmwNUrEQjoc3gJpa7TD35gVmdBeRrkWMbL+YY2oy6/H ESalHtkuMYqCqaDFiVXATzjW98nlB9RmbYz7FQiXsbFM1EeIOSXApK0yfdw0AZpU NleiJFPESt9QOaCKHPrgvk94cFUadENJgIHktrT7M3dMQGXD04DMCCB0LgdxEKlu xPQbvX5I1hv+CS6JAC3rLYFp8fq8l+411DmTiVcasqFmdXZx7YiDnI5C/XYm8V/C oVq1kA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:54 2025 by rpki-client