$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/C1BC5C5E7BFF11EFA2FCE774C4F9AE02.roa File: C1BC5C5E7BFF11EFA2FCE774C4F9AE02.roa (raw, json) Hash identifier: XBKKNWAXn91g8U8p9IncnaKYMksmwYcj3BAK92xQbrY= Subject key identifier: 13:FF:7E:A7:E5:FD:2B:50:EF:2D:20:A9:80:1E:96:3D:F5:35:BB:17 Certificate issuer: /CN=A9165A58/serialNumber=F247AEBD075FC8CBF3D9B805569EABBEE7975B0B Certificate serial: 07 Authority key identifier: F2:47:AE:BD:07:5F:C8:CB:F3:D9:B8:05:56:9E:AB:BE:E7:97:5B:0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8keuvQdfyMvz2bgFVp6rvueXWws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/C1BC5C5E7BFF11EFA2FCE774C4F9AE02.roa Signing time: Thu 26 Sep 2024 12:06:27 +0000 ROA not before: Thu 26 Sep 2024 12:06:27 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132372 IP address blocks: 160.187.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/8keuvQdfyMvz2bgFVp6rvueXWws.crl rsync://rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/8keuvQdfyMvz2bgFVp6rvueXWws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8keuvQdfyMvz2bgFVp6rvueXWws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A58/serialNumber=F247AEBD075FC8CBF3D9B805569EABBEE7975B0B Validity Not Before: Sep 26 12:06:27 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f54e43-5d4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:13:e3:f4:d3:27:28:58:ef:25:12:a9:df:9d: a4:84:87:9a:90:4b:07:11:94:5b:d7:9b:ad:6c:3c: 34:e2:f1:b3:55:4a:ee:c1:f4:49:cb:2f:e5:e8:8a: 4f:99:20:08:a5:78:f5:ed:ba:2c:57:30:7d:69:29: 88:77:8f:c3:5f:ba:b7:50:ae:9d:fe:2a:8e:66:57: 2f:42:e5:a5:2a:91:6c:85:0b:68:d3:8a:a1:b5:26: f2:0c:70:6b:22:0b:95:c0:20:dc:87:4f:c5:f5:00: 4b:1a:d2:37:14:46:f0:5a:35:15:09:8a:2d:d7:6d: 09:d1:02:fc:c1:d4:8a:c3:de:06:39:ec:62:ac:cb: ac:8c:68:33:21:27:52:01:11:22:6b:44:1d:10:07: 6b:cc:88:89:df:23:ee:25:34:fc:45:10:a1:9f:7d: ec:1b:35:67:dd:a4:74:9d:57:3c:d6:64:b7:4d:8d: 0e:16:78:0a:37:46:0f:2d:8a:2b:d7:a1:a7:2e:2e: cb:9a:81:69:a4:a6:6e:d0:31:7a:26:60:53:b5:91: 64:81:1a:95:91:f0:f2:76:ce:6f:59:21:2c:31:14: 77:9c:96:0a:88:34:77:9f:b7:a4:a3:d5:71:db:41: 62:73:1a:9f:ef:cf:f4:6a:de:0b:ca:55:ad:f3:d4: a7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:FF:7E:A7:E5:FD:2B:50:EF:2D:20:A9:80:1E:96:3D:F5:35:BB:17 X509v3 Authority Key Identifier: keyid:F2:47:AE:BD:07:5F:C8:CB:F3:D9:B8:05:56:9E:AB:BE:E7:97:5B:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/8keuvQdfyMvz2bgFVp6rvueXWws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8keuvQdfyMvz2bgFVp6rvueXWws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/C1BC5C5E7BFF11EFA2FCE774C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.97.0/24 Signature Algorithm: sha256WithRSAEncryption 12:62:06:87:52:34:97:b9:45:3c:f1:f9:3e:58:3f:56:2b:9e: d9:a8:a1:95:4b:88:35:83:98:d1:e0:98:5a:d3:2f:05:0f:13: 6e:82:4c:f7:62:e4:8d:86:8e:9c:e7:ed:d7:5d:61:14:aa:d1: 34:f9:8a:0d:4a:a2:d9:1e:3e:8c:b3:9e:c6:e2:58:55:40:61: 95:f3:6c:5b:87:8a:44:60:ac:68:1d:87:36:02:46:f7:c2:c3: 16:dc:8d:ce:52:eb:3c:fd:50:88:31:a5:0a:33:6c:f3:53:3f: da:32:f9:5b:0f:ca:10:fd:15:1c:f3:b0:eb:d7:b5:8e:6e:f4: 42:0c:5f:3f:3c:24:b0:1c:48:38:a0:12:cb:32:d5:0a:a8:2d: 28:f0:20:89:14:b1:1d:e5:30:01:3e:1f:6c:ed:d4:1a:8b:24: 26:81:5c:bc:15:a3:c0:d7:4b:2e:b7:e2:8b:0d:0c:6d:9c:46: 1a:f0:c7:5d:13:23:c2:46:08:e0:db:e6:a5:b4:72:af:8c:16: 7d:3d:96:7e:68:81:2c:45:2a:27:96:c0:1a:57:25:fd:8f:39: 7f:bc:22:ae:c0:0f:93:81:4a:00:b2:de:dd:d0:84:91:cd:7f: 8a:fe:af:c9:f3:ab:5f:2c:bd:d8:36:ef:71:d6:79:ce:0e:56: 08:04:69:fe -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NUE1ODExMC8GA1UEBRMoRjI0N0FFQkQwNzVGQzhDQkYzRDlCODA1NTY5RUFCQkVF Nzk3NUIwQjAeFw0yNDA5MjYxMjA2MjdaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjU0ZTQzLTVkNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlE+P00ycoWO8lEqnfnaSEh5qQSwcRlFvXm61sPDTi8bNVSu7B9EnLL+Xoik+Z IAilePXtuixXMH1pKYh3j8NfurdQrp3+Ko5mVy9C5aUqkWyFC2jTiqG1JvIMcGsi C5XAINyHT8X1AEsa0jcURvBaNRUJii3XbQnRAvzB1IrD3gY57GKsy6yMaDMhJ1IB ESJrRB0QB2vMiInfI+4lNPxFEKGffewbNWfdpHSdVzzWZLdNjQ4WeAo3Rg8tiivX oacuLsuagWmkpm7QMXomYFO1kWSBGpWR8PJ2zm9ZISwxFHeclgqINHeft6Sj1XHb QWJzGp/vz/Rq3gvKVa3z1KffAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUE/9+p+X9 K1DvLSCpgB6WPfU1uxcwHwYDVR0jBBgwFoAU8keuvQdfyMvz2bgFVp6rvueXWwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1QTU4L0Q2RjEwNTIyN0JG RDExRUZBN0I4RUI1Q0M0RjlBRTAyLzhrZXV2UWRmeU12ejJiZ0ZWcDZydnVlWFd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOGtldXZRZGZ5TXZ6MmJnRlZwNnJ2dWVYV3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUE1OC9ENkYxMDUyMjdCRkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9DMUJDNUM1RTdC RkYxMUVGQTJGQ0U3NzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7YTANBgkqhkiG9w0BAQsFAAOCAQEAEmIGh1I0l7lFPPH5 Plg/Viue2aihlUuINYOY0eCYWtMvBQ8TboJM92LkjYaOnOft111hFKrRNPmKDUqi 2R4+jLOexuJYVUBhlfNsW4eKRGCsaB2HNgJG98LDFtyNzlLrPP1QiDGlCjNs81M/ 2jL5Ww/KEP0VHPOw69e1jm70QgxfPzwksBxIOKASyzLVCqgtKPAgiRSxHeUwAT4f bO3UGoskJoFcvBWjwNdLLrfiiw0MbZxGGvDHXRMjwkYI4NvmpbRyr4wWfT2WfmiB LEUqJ5bAGlcl/Y85f7wirsAPk4FKALLe3dCEkc1/iv6vyfOrXyy92DbvcdZ5zg5W CARp/g== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:20 2024 by rpki-client on console-fra.rpki-client.org