$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/206DB948214F11EFAB245D49C4F9AE02.roa File: 206DB948214F11EFAB245D49C4F9AE02.roa (raw, json) Hash identifier: gxFq4TGudmApxCmCB48V39AuCdBYRdeV/qO3X4yaetA= Subject key identifier: 88:72:68:56:49:6B:21:34:99:28:95:A1:18:B1:C7:FD:6F:78:50:22 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: 03 Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/206DB948214F11EFAB245D49C4F9AE02.roa Signing time: Mon 03 Jun 2024 02:15:20 +0000 ROA not before: Mon 03 Jun 2024 02:15:20 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152894 IP address blocks: 160.22.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Jun 3 02:15:20 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665d2738-f943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bb:7e:68:27:88:47:12:95:98:60:d1:6f:16: dc:7e:70:36:50:19:ad:f3:15:62:b0:4b:36:5d:fd: 74:b8:e1:aa:76:a8:65:3e:14:fb:5d:fb:bd:09:85: 7c:99:05:4a:58:7d:58:98:29:6c:dd:82:3b:76:da: 3a:db:27:fe:b3:64:1e:1f:57:7a:56:f7:d2:7e:6e: e6:59:bf:b7:cd:66:d5:24:35:eb:d5:86:2a:e5:e8: 10:0c:16:6e:2b:25:0f:99:60:4f:24:8b:5b:34:d4: 87:fe:36:51:c6:c8:ec:5f:cf:42:a7:e8:5b:53:4c: 20:37:7f:b8:fa:e8:3b:7b:22:3d:e4:c3:13:5c:3f: b8:7f:b9:42:e6:8d:11:22:02:ec:5a:3e:e9:cd:c6: 71:33:91:72:61:99:75:9a:ad:95:6a:18:74:67:3b: ee:8d:9e:28:1f:54:2a:8a:b7:37:8b:32:62:c3:e4: e1:18:4f:fd:c8:89:25:fe:7f:9b:bb:9d:3a:8b:4d: e9:9c:a5:5a:e8:c1:8e:9f:7d:b0:75:3c:0f:29:09: 51:c5:3b:4f:d9:c2:a7:55:72:13:9d:69:19:cf:5a: 1a:16:44:79:b5:b7:aa:f2:a7:d2:a2:f2:cf:53:cb: 80:a5:41:9b:fe:b0:0a:61:8e:32:ab:20:b6:4e:a9: 53:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:72:68:56:49:6B:21:34:99:28:95:A1:18:B1:C7:FD:6F:78:50:22 X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/206DB948214F11EFAB245D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.43.0/24 Signature Algorithm: sha256WithRSAEncryption 15:ea:4e:d4:8e:c6:45:ef:d8:8b:6c:64:95:09:35:1a:bb:66: cb:ee:c0:4d:96:81:21:3d:5b:8d:67:fd:ff:b8:3b:29:aa:de: ce:51:69:01:bf:a9:89:f2:a4:c8:8c:7a:fa:d0:07:28:fd:26: 01:a6:05:10:65:a6:6a:e6:2a:af:49:e1:2d:91:5f:44:c5:2c: ec:56:f8:28:4c:4c:ac:a3:c9:5d:40:58:58:8d:a9:e7:43:70: 23:58:cf:ee:93:a8:4e:99:11:4b:58:03:c0:e1:2d:71:20:b9: 35:ce:13:00:ea:6c:31:77:17:54:e9:c8:c3:8e:c6:52:26:65: 24:09:32:a1:d5:19:32:06:f7:28:19:16:9b:4e:74:d6:1e:e7: 74:d0:6a:8f:87:3d:97:0a:be:a0:da:29:0e:79:bc:c1:fa:4c: bf:1e:6c:ef:02:4d:8a:ec:22:39:75:21:ea:05:7c:2d:31:76: 99:b7:6e:2d:2a:ef:1b:2a:4f:89:40:6d:36:87:0f:a0:e3:d2: b6:4c:ea:35:66:99:32:56:05:e0:ab:e4:42:01:a4:f2:b5:a9: e3:85:a6:ac:43:6f:06:d2:a4:62:28:35:04:3f:38:97:69:aa: b5:57:cd:d7:b4:ce:32:b1:8d:30:6b:5f:5b:34:05:aa:db:ba: 73:e3:03:da -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OThFQzExMC8GA1UEBRMoNERCM0IyRTM1OTlCNjQ2RTlGMzBBRjc0QTU4QzY2NzhG QUYxRDJCNzAeFw0yNDA2MDMwMjE1MjBaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWQyNzM4LWY5NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDau35oJ4hHEpWYYNFvFtx+cDZQGa3zFWKwSzZd/XS44ap2qGU+FPtd+70JhXyZ BUpYfViYKWzdgjt22jrbJ/6zZB4fV3pW99J+buZZv7fNZtUkNevVhirl6BAMFm4r JQ+ZYE8ki1s01If+NlHGyOxfz0Kn6FtTTCA3f7j66Dt7Ij3kwxNcP7h/uULmjREi AuxaPunNxnEzkXJhmXWarZVqGHRnO+6NnigfVCqKtzeLMmLD5OEYT/3IiSX+f5u7 nTqLTemcpVrowY6ffbB1PA8pCVHFO0/ZwqdVchOdaRnPWhoWRHm1t6ryp9Ki8s9T y4ClQZv+sAphjjKrILZOqVPhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUiHJoVklr ITSZKJWhGLHH/W94UCIwHwYDVR0jBBgwFoAUTbOy41mbZG6fMK90pYxmePrx0rcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5OEVDLzNBOEY4NDEwMjE0 OTExRUZCRTg4Q0YyOUM0RjlBRTAyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDBy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVGJPeTQxbWJaRzZmTUs5MHBZeG1lUHJ4MHJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OThFQy8zQThGODQxMDIxNDkxMUVGQkU4OENGMjlDNEY5QUUwMi8yMDZEQjk0ODIx NEYxMUVGQUIyNDVENDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAWKzANBgkqhkiG9w0BAQsFAAOCAQEAFepO1I7GRe/Yi2xk lQk1Grtmy+7ATZaBIT1bjWf9/7g7KarezlFpAb+pifKkyIx6+tAHKP0mAaYFEGWm auYqr0nhLZFfRMUs7Fb4KExMrKPJXUBYWI2p50NwI1jP7pOoTpkRS1gDwOEtcSC5 Nc4TAOpsMXcXVOnIw47GUiZlJAkyodUZMgb3KBkWm0501h7ndNBqj4c9lwq+oNop Dnm8wfpMvx5s7wJNiuwiOXUh6gV8LTF2mbduLSrvGypPiUBtNocPoOPStkzqNWaZ MlYF4KvkQgGk8rWp44WmrENvBtKkYig1BD84l2mqtVfN17TOMrGNMGtfWzQFqtu6 c+MD2g== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:28 2024 by rpki-client on console-fra.rpki-client.org