$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/2CE10886A68511EFB0CF9981C4F9AE02.roa File: 2CE10886A68511EFB0CF9981C4F9AE02.roa (raw, json) Hash identifier: veK+ihHT7rgGehPtR5m7GK/hbNWI81sjRNiKcGQwWGg= Subject key identifier: A9:5E:4B:92:5D:E6:46:1E:0B:07:00:10:9F:88:1F:31:AD:DB:4C:FF Certificate issuer: /CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Certificate serial: 02 Authority key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/2CE10886A68511EFB0CF9981C4F9AE02.roa Signing time: Tue 19 Nov 2024 14:47:19 +0000 ROA not before: Tue 19 Nov 2024 14:47:19 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 141212 IP address blocks: 160.191.228.0/24 maxlen: 24 160.191.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Validity Not Before: Nov 19 14:47:19 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=673ca4f6-f9b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:77:e9:77:c0:5f:57:fa:09:41:ee:0d:1c:56: 34:d8:f6:56:de:f1:e6:74:60:9b:f0:64:d5:dd:4c: 23:37:68:c1:83:c6:dc:6b:98:78:f4:ab:a2:36:4d: c5:c5:6e:5f:68:4d:36:65:bb:21:7b:88:17:97:0c: 2c:0b:c5:fd:56:1e:75:df:c6:f2:2e:12:b4:57:1d: e4:97:46:44:b8:6f:0e:e6:e6:ba:3b:9e:b5:ff:9b: 96:ea:c5:54:0d:0b:cd:eb:66:dd:12:22:3f:a3:cd: b4:db:ab:ad:bc:f3:af:69:15:b9:12:58:de:6c:a9: 17:a7:67:fa:ba:af:cc:87:93:5b:47:93:84:30:36: 92:e7:2b:38:c0:da:bc:c0:35:a7:d8:ca:b8:88:79: e9:57:47:06:7b:17:3c:06:66:bb:4b:31:e8:ea:cb: da:a1:6f:9b:11:d4:b0:44:7a:25:ac:1a:05:36:da: b3:1b:28:bb:0e:47:72:36:ce:d1:3c:41:8b:a6:ed: 5e:f8:61:55:11:ca:43:0b:57:67:44:95:51:89:db: 0c:20:1f:2a:9c:64:0a:1d:c4:48:55:05:0d:a5:5f: cf:31:e8:7a:9d:c3:c8:c7:53:21:7f:1c:69:a3:ed: 07:a7:08:39:38:65:ca:f5:eb:e4:16:90:b2:91:8b: fa:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:5E:4B:92:5D:E6:46:1E:0B:07:00:10:9F:88:1F:31:AD:DB:4C:FF X509v3 Authority Key Identifier: keyid:17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/2CE10886A68511EFB0CF9981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.228.0/23 Signature Algorithm: sha256WithRSAEncryption 90:41:9c:5e:b6:47:55:ca:9e:4c:f9:4a:86:5b:90:c5:16:df: 6e:23:d2:92:e8:40:fd:da:d2:1b:8b:24:fb:f7:7b:4e:9c:46: c0:68:b8:e2:66:3f:8d:d7:6b:0a:7b:11:01:8e:c7:70:6a:fb: 5c:21:3d:3d:73:ef:63:15:6f:84:f1:c1:55:4b:50:a0:02:76: 79:12:e6:4e:a4:90:2b:1d:1d:be:29:5f:de:a4:cb:96:e5:23: 9a:4a:ed:99:40:e5:f2:4a:7f:94:8b:84:73:71:ac:79:d3:3c: be:52:43:24:6c:40:eb:20:17:f2:aa:96:2b:19:fa:06:8f:fd: 07:33:39:34:e2:d4:fa:7b:12:59:0d:ff:42:ed:26:e1:d6:e4: 47:1a:1b:62:3b:3f:61:8f:36:ad:bb:48:65:af:06:7f:75:f9: ec:37:89:41:23:0c:16:22:af:3f:81:3c:46:b7:5d:83:5f:96: d3:63:58:8b:23:47:55:d5:2d:62:ba:48:1a:d4:9e:b0:fd:a1: 2d:6b:27:8f:f1:63:f7:7b:9a:60:7d:c4:3a:51:1c:df:bb:55: 85:a2:47:4a:55:93:a2:2d:49:81:ab:76:f5:54:7d:50:a5:30: e8:de:9d:07:7f:80:75:ac:fd:aa:c2:0d:c2:5b:f9:82:26:12: cf:f5:8e:38 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDZFNDExMC8GA1UEBRMoMTc2QkNFMTVDODYyRDQ3QkE3NjBBMUY2NjUzOEY4MUQ1 QzQ5M0I4MTAeFw0yNDExMTkxNDQ3MTlaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3M2NhNGY2LWY5YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtd+l3wF9X+glB7g0cVjTY9lbe8eZ0YJvwZNXdTCM3aMGDxtxrmHj0q6I2TcXF bl9oTTZluyF7iBeXDCwLxf1WHnXfxvIuErRXHeSXRkS4bw7m5ro7nrX/m5bqxVQN C83rZt0SIj+jzbTbq628869pFbkSWN5sqRenZ/q6r8yHk1tHk4QwNpLnKzjA2rzA NafYyriIeelXRwZ7FzwGZrtLMejqy9qhb5sR1LBEeiWsGgU22rMbKLsOR3I2ztE8 QYum7V74YVURykMLV2dElVGJ2wwgHyqcZAodxEhVBQ2lX88x6Hqdw8jHUyF/HGmj 7QenCDk4Zcr16+QWkLKRi/qBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUqV5Lkl3m Rh4LBwAQn4gfMa3bTP8wHwYDVR0jBBgwFoAUF2vOFchi1HunYKH2ZTj4HVxJO4Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwNkU0LzMyRTk5M0MwQTY4 NDExRUY4RjVFRDM3RkM0RjlBRTAyL0Yydk9GY2hpMUh1bllLSDJaVGo0SFZ4Sk80 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRjJ2T0ZjaGkxSHVuWUtIMlpUajRIVnhKTzRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDZFNC8zMkU5OTNDMEE2ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi8yQ0UxMDg4NkE2 ODUxMUVGQjBDRjk5ODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/5DANBgkqhkiG9w0BAQsFAAOCAQEAkEGcXrZHVcqeTPlK hluQxRbfbiPSkuhA/drSG4sk+/d7TpxGwGi44mY/jddrCnsRAY7HcGr7XCE9PXPv YxVvhPHBVUtQoAJ2eRLmTqSQKx0dvilf3qTLluUjmkrtmUDl8kp/lIuEc3GsedM8 vlJDJGxA6yAX8qqWKxn6Bo/9BzM5NOLU+nsSWQ3/Qu0m4dbkRxobYjs/YY82rbtI Za8Gf3X57DeJQSMMFiKvP4E8Rrddg1+W02NYiyNHVdUtYrpIGtSesP2hLWsnj/Fj 93uaYH3EOlEc37tVhaJHSlWToi1Jgat29VR9UKUw6N6dB3+Adaz9qsINwlv5giYS z/WOOA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org