$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/710957A8559411EFA07E1C5AC4F9AE02.roa File: 710957A8559411EFA07E1C5AC4F9AE02.roa (raw, json) Hash identifier: Mlxt5emszaeJ3fsjQmXEkAwHWwex3p02yZAD82J2nVs= Subject key identifier: F0:B4:0E:66:CB:FA:B5:BB:CC:55:51:23:AD:C3:CB:34:FE:C0:E3:B7 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: 03 Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/710957A8559411EFA07E1C5AC4F9AE02.roa Signing time: Thu 08 Aug 2024 14:42:31 +0000 ROA not before: Thu 08 Aug 2024 14:42:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136451 IP address blocks: 160.30.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Aug 8 14:42:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66b4d957-41b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e8:88:d4:a8:6e:9e:34:8b:87:8c:f2:f0:5c: fa:93:b6:5d:42:e4:ad:ec:1a:1f:c4:c3:c2:bb:63: 0c:9c:c9:7d:29:4a:ad:37:59:7b:e5:26:29:61:2f: 3c:12:8f:07:25:a1:a6:99:70:73:e2:4f:68:22:fc: f8:c2:c1:0b:43:23:9f:33:fa:10:1f:b0:17:b4:09: 1e:99:cf:25:fd:9f:0a:85:b5:f0:c9:df:04:7f:75: 06:77:09:3b:d4:0c:82:e3:77:82:30:fb:e9:dc:a9: a9:61:79:1b:c9:05:c2:86:82:40:c6:f4:1f:0b:bd: ed:49:bc:28:ac:6d:0d:b9:ae:50:fe:df:28:56:87: ee:9c:f0:45:77:2f:42:83:50:9a:c9:fe:9d:76:22: 93:a3:09:ee:27:ff:fc:12:45:b7:fc:12:f4:83:12: 56:9f:59:73:04:d1:a6:97:5b:13:94:69:1b:ad:11: 0f:76:37:6f:36:04:61:ed:f2:bf:59:e7:f5:72:e8: 6d:f5:44:56:ed:53:06:8f:bc:50:27:e1:11:73:4e: 4d:a4:ef:45:89:2b:77:cc:24:9a:e1:12:4b:96:fd: 08:74:55:cb:17:ac:d7:b0:9a:e8:f2:d5:04:a8:ef: 99:0b:7a:12:c3:1e:10:37:0e:7c:1a:4e:63:dd:75: f0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B4:0E:66:CB:FA:B5:BB:CC:55:51:23:AD:C3:CB:34:FE:C0:E3:B7 X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/710957A8559411EFA07E1C5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.70.0/24 Signature Algorithm: sha256WithRSAEncryption 75:17:68:04:e9:ab:72:6e:01:fc:82:2a:ea:22:28:be:c8:e9: 03:9a:c6:94:56:1e:8c:c6:bd:c0:97:bd:54:0c:4d:6c:2c:fe: 8f:48:48:ca:ce:5c:ab:3d:ed:47:85:f7:39:f0:a5:ae:e4:e4: 82:0e:6f:4c:62:9e:ed:96:5e:31:e2:aa:14:53:e6:0d:75:56: 17:9e:19:79:ca:e3:7f:2d:ab:b2:4c:48:c2:10:d0:3e:7b:95: 42:4f:e7:ec:e7:3c:0a:36:15:29:64:62:ed:9c:d8:06:62:bc: 4a:dd:a6:c7:ad:33:2c:f8:68:18:c1:7b:ef:7e:1e:e4:b5:78: 7d:fd:b8:42:78:e9:d7:6e:70:b5:85:fb:81:6e:ad:fe:97:8b: 86:a8:3c:72:03:9a:ba:4b:d3:9a:38:76:d1:d3:52:c7:ea:e1: ec:39:32:71:50:2d:7d:ab:1a:f9:be:fb:94:d2:af:2f:f7:f5: 38:bc:83:9f:8d:30:d2:ea:ce:e0:d8:86:cb:16:45:46:36:f4: 63:f1:80:31:f2:d0:47:4b:de:54:28:3b:77:62:25:b7:34:7c: 79:f7:ad:20:03:51:b2:1e:4d:8f:25:7b:3c:67:b7:1f:c1:a5: e6:1b:5b:54:ec:d9:06:f7:bf:ee:60:ac:3c:fb:f0:dc:ed:d0: 99:18:4f:62 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 REM3QzExMC8GA1UEBRMoMDhBQjU0NzlBQUYwQzg0OEE1MTQyRDZGRTREQzk5MTYy QjQ1QzMzNzAeFw0yNDA4MDgxNDQyMzFaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YjRkOTU3LTQxYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC6IjUqG6eNIuHjPLwXPqTtl1C5K3sGh/Ew8K7YwycyX0pSq03WXvlJilhLzwS jwcloaaZcHPiT2gi/PjCwQtDI58z+hAfsBe0CR6ZzyX9nwqFtfDJ3wR/dQZ3CTvU DILjd4Iw++ncqalheRvJBcKGgkDG9B8Lve1JvCisbQ25rlD+3yhWh+6c8EV3L0KD UJrJ/p12IpOjCe4n//wSRbf8EvSDElafWXME0aaXWxOUaRutEQ92N282BGHt8r9Z 5/Vy6G31RFbtUwaPvFAn4RFzTk2k70WJK3fMJJrhEkuW/Qh0VcsXrNewmujy1QSo 75kLehLDHhA3DnwaTmPddfBPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8LQOZsv6 tbvMVVEjrcPLNP7A47cwHwYDVR0jBBgwFoAUCKtUearwyEilFC1v5NyZFitFwzcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZEQzdDL0E0QzE0NjI4NTU0 OTExRUY4MkI1RDM2RkM0RjlBRTAyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0t0VWVhcnd5RWlsRkMxdjVOeVpGaXRGd3pjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM3Qy9BNEMxNDYyODU1NDkxMUVGODJCNUQzNkZDNEY5QUUwMi83MTA5NTdBODU1 OTQxMUVGQTA3RTFDNUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAeRjANBgkqhkiG9w0BAQsFAAOCAQEAdRdoBOmrcm4B/IIq 6iIovsjpA5rGlFYejMa9wJe9VAxNbCz+j0hIys5cqz3tR4X3OfClruTkgg5vTGKe 7ZZeMeKqFFPmDXVWF54Zecrjfy2rskxIwhDQPnuVQk/n7Oc8CjYVKWRi7ZzYBmK8 St2mx60zLPhoGMF7734e5LV4ff24Qnjp125wtYX7gW6t/peLhqg8cgOaukvTmjh2 0dNSx+rh7DkycVAtfasa+b77lNKvL/f1OLyDn40w0urO4NiGyxZFRjb0Y/GAMfLQ R0veVCg7d2IltzR8efetIANRsh5NjyV7PGe3H8Gl5htbVOzZBve/7mCsPPvw3O3Q mRhPYg== -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:39 2024 by rpki-client on console-ams.rpki-client.org