$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/858870583D0A11EF829DCE39C4F9AE02.roa File: 858870583D0A11EF829DCE39C4F9AE02.roa (raw, json) Hash identifier: LrQNetWX/kWMMJz247yWUJ25L5V6W9haJZqldtz3j0Y= Subject key identifier: 09:43:A3:53:75:AF:12:2E:CA:D3:58:A4:BB:6B:E7:AB:9A:3F:42:EC Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: 04 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/858870583D0A11EF829DCE39C4F9AE02.roa Signing time: Mon 08 Jul 2024 09:14:48 +0000 ROA not before: Mon 08 Jul 2024 09:14:48 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140619 IP address blocks: 160.22.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Jul 8 09:14:48 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668bae07-dd14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:83:6e:a2:80:1b:b9:20:9e:39:43:35:81:c9: 33:80:82:2c:3a:6b:15:48:53:b4:3b:8f:f0:cf:3e: 36:c3:48:cd:54:15:f0:77:b3:9f:f1:f9:2e:b6:08: bd:e5:19:82:19:62:09:d5:96:a5:2a:64:66:62:66: 0b:53:b6:ed:82:58:d5:c3:d3:3f:ec:df:5a:59:a8: d8:39:80:fd:b8:55:8e:cf:b9:ee:1d:8e:f0:ca:d7: 1b:d7:d3:7d:e8:6e:e1:d0:54:1b:a3:ca:5c:67:7c: 90:dd:70:8a:85:aa:fb:b9:9a:e5:71:78:ab:44:f4: d2:6e:3d:62:d9:91:97:1d:c6:bb:59:ee:f1:fc:98: 1f:ca:f4:48:63:54:61:3a:5c:6a:9d:ec:0b:74:03: 5f:b3:3d:54:44:54:75:64:29:ef:4c:a9:54:88:83: 77:5f:d7:2f:7c:8a:04:24:7f:2e:c6:7e:15:40:79: 09:34:e4:eb:78:06:2f:f5:5d:f4:8d:14:d5:ae:99: 23:11:a0:3f:d0:9f:9a:ad:6a:67:e6:da:77:14:b3: df:3d:cc:73:34:6f:3e:1a:1e:4f:90:4c:8f:36:41: 60:52:a5:78:45:0c:a1:8b:a6:b9:31:57:6d:30:ab: 39:18:f9:a4:c1:dc:f3:48:2b:82:c0:2c:d4:cd:98: 20:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:43:A3:53:75:AF:12:2E:CA:D3:58:A4:BB:6B:E7:AB:9A:3F:42:EC X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/858870583D0A11EF829DCE39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.182.0/23 Signature Algorithm: sha256WithRSAEncryption 89:9b:13:11:d6:c6:e8:a2:10:73:11:40:dc:d2:51:d8:d8:c2: 2c:15:31:37:f6:c3:40:2d:3f:d9:f1:2e:f6:ee:b3:18:37:04: 87:f6:4e:f1:da:b6:d1:94:6c:34:8e:3e:fa:73:7a:e2:84:d0: 6e:0d:1d:39:06:e0:79:92:59:42:a2:94:81:43:d6:73:e2:5a: 2b:67:85:d1:33:da:c5:bc:12:61:87:cd:30:40:e4:8e:4a:75: 09:ae:90:a7:32:55:39:e2:4c:51:c9:90:65:93:c7:b2:71:17: b0:d8:f9:9c:a6:b0:f4:fb:70:6c:35:cd:f1:12:7e:a0:e5:8c: 9a:d9:1d:2c:54:f5:a8:50:df:2b:b5:27:e5:16:b4:7b:42:3d: cd:60:df:15:04:f8:c7:8f:81:eb:33:8e:e7:f3:0a:17:fd:52: ae:ed:cd:f5:13:30:3e:f8:1e:d0:60:89:19:08:15:69:a9:b9: bf:fc:5d:70:98:3d:e7:f6:cc:dc:5a:38:a2:3a:f4:cf:ad:f8: eb:46:7d:7c:67:fc:39:6a:20:16:46:1d:46:aa:b7:69:7e:99: 30:86:91:bb:40:1b:dc:7a:2b:ad:56:81:a4:fb:bb:04:2c:f1: 92:62:a1:62:f8:91:e1:b3:bc:b6:07:68:1a:69:85:f3:bf:47: 4e:5c:d2:33 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MUY3MzExMC8GA1UEBRMoQjQzQzRFM0QzMkY5NUI1MDU1RDA0RkRDMDFGODUxOTYz N0M4OUE2RjAeFw0yNDA3MDgwOTE0NDhaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OGJhZTA3LWRkMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgg26igBu5IJ45QzWByTOAgiw6axVIU7Q7j/DPPjbDSM1UFfB3s5/x+S62CL3l GYIZYgnVlqUqZGZiZgtTtu2CWNXD0z/s31pZqNg5gP24VY7Pue4djvDK1xvX033o buHQVBujylxnfJDdcIqFqvu5muVxeKtE9NJuPWLZkZcdxrtZ7vH8mB/K9EhjVGE6 XGqd7At0A1+zPVREVHVkKe9MqVSIg3df1y98igQkfy7GfhVAeQk05Ot4Bi/1XfSN FNWumSMRoD/Qn5qtamfm2ncUs989zHM0bz4aHk+QTI82QWBSpXhFDKGLprkxV20w qzkY+aTB3PNIK4LALNTNmCDtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCUOjU3Wv Ei7K01iku2vnq5o/QuwwHwYDVR0jBBgwFoAUtDxOPTL5W1BV0E/cAfhRljfImm8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxRjczLzZERjBFMTA4M0Qw NzExRUZCNUM5RUMyNEM0RjlBRTAyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1t OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdER4T1BUTDVXMUJWMEVfY0FmaFJsamZJbW04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi84NTg4NzA1ODNE MEExMUVGODI5RENFMzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAWtjANBgkqhkiG9w0BAQsFAAOCAQEAiZsTEdbG6KIQcxFA 3NJR2NjCLBUxN/bDQC0/2fEu9u6zGDcEh/ZO8dq20ZRsNI4++nN64oTQbg0dOQbg eZJZQqKUgUPWc+JaK2eF0TPaxbwSYYfNMEDkjkp1Ca6QpzJVOeJMUcmQZZPHsnEX sNj5nKaw9PtwbDXN8RJ+oOWMmtkdLFT1qFDfK7Un5Ra0e0I9zWDfFQT4x4+B6zOO 5/MKF/1Sru3N9RMwPvge0GCJGQgVaam5v/xdcJg95/bM3Fo4ojr0z63460Z9fGf8 OWogFkYdRqq3aX6ZMIaRu0Ab3HorrVaBpPu7BCzxkmKhYviR4bO8tgdoGmmF879H TlzSMw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org