$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4A5/BF50E862A23411EF978C8D6DC4F9AE02/FB01C0A4A24B11EFA8802F31C4F9AE02.roa File: FB01C0A4A24B11EFA8802F31C4F9AE02.roa (raw, json) Hash identifier: dlLY0c4zcx4nsoESDYqmPB7RubZLl/a17nHw+0+FjyA= Subject key identifier: C1:C2:33:7E:C5:2E:A9:C2:4C:21:63:73:96:27:03:CF:E9:CC:9F:AE Certificate issuer: /CN=A916C4A5/serialNumber=CFE071A972FD78A67F6D3ED56A6184340AB3E3A6 Certificate serial: 03 Authority key identifier: CF:E0:71:A9:72:FD:78:A6:7F:6D:3E:D5:6A:61:84:34:0A:B3:E3:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z-BxqXL9eKZ_bT7VamGENAqz46Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4A5/BF50E862A23411EF978C8D6DC4F9AE02/FB01C0A4A24B11EFA8802F31C4F9AE02.roa Signing time: Thu 14 Nov 2024 05:47:49 +0000 ROA not before: Thu 14 Nov 2024 05:47:49 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153355 IP address blocks: 160.187.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4A5/BF50E862A23411EF978C8D6DC4F9AE02/z-BxqXL9eKZ_bT7VamGENAqz46Y.crl rsync://rpki.apnic.net/member_repository/A916C4A5/BF50E862A23411EF978C8D6DC4F9AE02/z-BxqXL9eKZ_bT7VamGENAqz46Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z-BxqXL9eKZ_bT7VamGENAqz46Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4A5/serialNumber=CFE071A972FD78A67F6D3ED56A6184340AB3E3A6 Validity Not Before: Nov 14 05:47:49 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67358f05-88c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b9:a3:4e:e0:38:ac:35:1b:1b:7c:e5:5f:51: 4b:51:52:76:f4:45:17:3c:6b:01:e4:ab:d2:7a:92: 1b:51:bf:3a:db:7c:64:99:ba:ea:5c:ce:03:f7:84: bc:4a:6a:58:42:59:8a:79:aa:f1:ae:82:33:88:d4: 22:52:cb:cd:01:c7:23:7e:5c:05:bf:e9:b6:eb:74: 5a:0a:5e:f9:8d:01:11:ba:30:9f:e6:b1:53:85:84: 68:07:a1:2d:db:19:8e:f9:40:61:83:56:f1:cf:8f: b5:74:67:09:9b:c8:16:21:ca:67:8c:9d:4e:80:44: e5:89:46:19:5f:b1:91:79:f0:9f:e8:8a:43:cc:fe: 1a:45:73:50:31:18:dd:2c:1b:37:a7:d5:03:2d:1a: fe:83:1c:55:ff:a2:9b:d2:d4:45:aa:b3:fd:c5:43: 0b:7b:72:c8:04:11:bd:b0:ac:78:bc:8b:ef:74:b2: 97:ce:1d:ff:64:85:72:17:3e:2c:6e:b3:4a:13:1d: 18:e1:5e:fb:0b:af:b5:08:74:6a:b1:cc:16:d8:11: c2:3e:7e:55:a5:d2:36:b2:b9:cc:9b:d3:3c:84:d0: c0:2a:48:e9:5a:22:4b:1e:9a:ad:40:67:5b:0a:b6: 74:c4:32:87:22:b7:36:cc:69:f1:07:e5:71:c7:ca: 97:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C2:33:7E:C5:2E:A9:C2:4C:21:63:73:96:27:03:CF:E9:CC:9F:AE X509v3 Authority Key Identifier: keyid:CF:E0:71:A9:72:FD:78:A6:7F:6D:3E:D5:6A:61:84:34:0A:B3:E3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4A5/BF50E862A23411EF978C8D6DC4F9AE02/z-BxqXL9eKZ_bT7VamGENAqz46Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z-BxqXL9eKZ_bT7VamGENAqz46Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4A5/BF50E862A23411EF978C8D6DC4F9AE02/FB01C0A4A24B11EFA8802F31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.172.0/23 Signature Algorithm: sha256WithRSAEncryption 50:21:cd:e1:ef:71:a9:6f:1a:56:e8:33:a7:e9:f7:a9:74:d1: d1:72:50:5d:73:f8:72:53:c6:c8:81:86:65:92:22:ac:92:98: c8:ef:99:d4:62:c8:f2:ea:50:89:7a:a8:05:ea:9b:9a:83:8c: 9c:b9:b9:30:46:e2:45:f6:43:33:80:9f:6d:5b:74:e5:5b:5b: d9:32:80:4e:29:d5:82:8b:4a:4a:67:2f:71:e5:46:2c:67:cf: 27:3b:d9:4e:7b:28:df:ad:25:66:71:49:a9:b8:80:cf:0c:82: df:4b:5d:91:f6:f8:30:59:46:f0:ad:89:01:b0:93:e3:e5:9f: 0e:5e:f2:b5:0b:f9:4f:43:0d:b2:4a:96:36:cb:63:49:61:35: c4:eb:a4:59:a6:5c:5b:33:70:c0:19:27:5e:a6:e9:50:8f:bb: e3:d6:17:38:7f:79:14:1e:a2:1d:4e:63:d9:f3:08:6c:6f:4c: 6b:b4:68:0c:d5:e3:03:54:4b:71:d0:23:c1:4b:4e:3e:95:74: c0:e2:f1:4e:7f:da:a6:04:b6:85:d6:4d:f5:1d:8f:6d:61:fe: 66:60:80:d5:ae:4c:b4:9f:c1:2e:a0:e7:1c:1a:2e:a2:26:76: 80:f6:07:02:91:c9:d7:2a:e2:36:d7:b4:55:10:60:1f:eb:02: bd:da:83:3f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzRBNTExMC8GA1UEBRMoQ0ZFMDcxQTk3MkZENzhBNjdGNkQzRUQ1NkE2MTg0MzQw QUIzRTNBNjAeFw0yNDExMTQwNTQ3NDlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzU4ZjA1LTg4YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCuaNO4DisNRsbfOVfUUtRUnb0RRc8awHkq9J6khtRvzrbfGSZuupczgP3hLxK alhCWYp5qvGugjOI1CJSy80BxyN+XAW/6bbrdFoKXvmNARG6MJ/msVOFhGgHoS3b GY75QGGDVvHPj7V0ZwmbyBYhymeMnU6AROWJRhlfsZF58J/oikPM/hpFc1AxGN0s Gzen1QMtGv6DHFX/opvS1EWqs/3FQwt7csgEEb2wrHi8i+90spfOHf9khXIXPixu s0oTHRjhXvsLr7UIdGqxzBbYEcI+flWl0jayucyb0zyE0MAqSOlaIksemq1AZ1sK tnTEMocitzbMafEH5XHHypdXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUwcIzfsUu qcJMIWNzlicDz+nMn64wHwYDVR0jBBgwFoAUz+BxqXL9eKZ/bT7VamGENAqz46Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDNEE1L0JGNTBFODYyQTIz NDExRUY5NzhDOEQ2REM0RjlBRTAyL3otQnhxWEw5ZUtaX2JUN1ZhbUdFTkFxejQ2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvei1CeHFYTDllS1pfYlQ3VmFtR0VOQXF6NDZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRBNS9CRjUwRTg2MkEyMzQxMUVGOTc4QzhENkRDNEY5QUUwMi9GQjAxQzBBNEEy NEIxMUVGQTg4MDJGMzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7rDANBgkqhkiG9w0BAQsFAAOCAQEAUCHN4e9xqW8aVugz p+n3qXTR0XJQXXP4clPGyIGGZZIirJKYyO+Z1GLI8upQiXqoBeqbmoOMnLm5MEbi RfZDM4CfbVt05Vtb2TKATinVgotKSmcvceVGLGfPJzvZTnso360lZnFJqbiAzwyC 30tdkfb4MFlG8K2JAbCT4+WfDl7ytQv5T0MNskqWNstjSWE1xOukWaZcWzNwwBkn XqbpUI+749YXOH95FB6iHU5j2fMIbG9Ma7RoDNXjA1RLcdAjwUtOPpV0wOLxTn/a pgS2hdZN9R2PbWH+ZmCA1a5MtJ/BLqDnHBouoiZ2gPYHApHJ1yriNte0VRBgH+sC vdqDPw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org