$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/115BD35AA41611EFA0D7CD42C4F9AE02.roa File: 115BD35AA41611EFA0D7CD42C4F9AE02.roa (raw, json) Hash identifier: gEbj+lO4aYDwjrfL1QJi0wu8U7VQFh/BgCCzbNzGNWA= Subject key identifier: 27:83:42:C2:97:D0:C5:D4:63:E4:7A:A7:FD:C7:DF:08:F4:27:25:FF Certificate issuer: /CN=A9171BF0/serialNumber=21CFCE81D875D5CF8F596ADBFCC3601961C441E7 Certificate serial: 02 Authority key identifier: 21:CF:CE:81:D8:75:D5:CF:8F:59:6A:DB:FC:C3:60:19:61:C4:41:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ic_Ogdh11c-PWWrb_MNgGWHEQec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/115BD35AA41611EFA0D7CD42C4F9AE02.roa Signing time: Sat 16 Nov 2024 12:26:56 +0000 ROA not before: Sat 16 Nov 2024 12:26:56 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153399 IP address blocks: 160.191.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/Ic_Ogdh11c-PWWrb_MNgGWHEQec.crl rsync://rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/Ic_Ogdh11c-PWWrb_MNgGWHEQec.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ic_Ogdh11c-PWWrb_MNgGWHEQec.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0/serialNumber=21CFCE81D875D5CF8F596ADBFCC3601961C441E7 Validity Not Before: Nov 16 12:26:56 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67388f90-de5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0a:92:d6:71:d3:07:37:d3:67:aa:7a:f4:03: fa:d6:a3:d2:a4:61:cf:0a:40:25:f5:8a:8d:8a:e1: 34:1e:fe:c3:4e:7d:22:7f:81:7e:bb:5b:e2:26:df: 45:71:46:74:0b:06:7b:18:1f:54:cb:2a:9f:45:fa: ba:1b:fe:78:93:23:d0:20:b7:91:69:62:e2:ae:88: 0a:d2:d0:03:e1:f2:20:ae:d8:cd:9d:ff:90:22:e0: 99:34:15:53:80:4b:07:30:ae:64:36:76:17:d7:2e: 08:11:e5:42:a1:ee:41:f9:31:53:9c:61:d3:cf:0e: 53:7f:ee:a5:97:c9:0f:5c:ab:a3:03:20:83:cd:6f: 4f:7a:b9:a2:85:cf:98:f6:11:0c:84:7f:e7:54:bf: eb:d7:56:4b:1a:b8:d7:07:c9:22:2c:65:dc:3c:40: b7:e0:75:2b:b7:57:4e:cd:cb:a1:2b:a9:a1:76:84: a4:fb:ca:4e:4b:bb:a6:ef:c0:12:2a:7c:85:33:74: 0f:3d:4b:6c:69:79:9c:95:1a:09:d8:75:ac:8a:ce: a7:40:ca:8d:f3:bd:11:de:31:d1:eb:b4:d2:24:d8: 4f:d0:a3:be:1e:53:c1:b6:cd:2b:46:34:2a:54:fd: 75:cc:82:b8:fa:fa:c0:23:47:d6:db:65:59:02:28: 10:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:83:42:C2:97:D0:C5:D4:63:E4:7A:A7:FD:C7:DF:08:F4:27:25:FF X509v3 Authority Key Identifier: keyid:21:CF:CE:81:D8:75:D5:CF:8F:59:6A:DB:FC:C3:60:19:61:C4:41:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/Ic_Ogdh11c-PWWrb_MNgGWHEQec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ic_Ogdh11c-PWWrb_MNgGWHEQec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/115BD35AA41611EFA0D7CD42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.196.0/23 Signature Algorithm: sha256WithRSAEncryption aa:51:65:c7:3d:13:a0:e6:e2:98:5f:25:90:b3:ed:fe:1f:f5: fe:2b:fd:1a:61:81:08:13:63:ab:be:a7:10:5d:10:cd:9a:a5: a0:07:9e:62:ea:27:6b:8b:94:78:34:4c:e3:b5:99:e7:0e:e2: df:4b:3f:17:50:79:aa:34:fb:b0:b5:e8:72:db:78:5f:13:ee: 25:4d:ae:89:d1:b0:0e:aa:63:84:57:05:d1:79:2c:e6:69:58: 83:21:0d:94:d8:95:9a:e5:51:d2:07:ab:d2:28:98:e3:26:44: 1e:fb:cd:39:df:81:1b:bd:fa:f6:94:a1:4f:2b:5a:82:5c:08: 54:5b:c7:6c:57:b4:e9:43:c3:9e:8f:d6:74:9d:80:31:76:67: 41:3b:13:36:64:2c:75:f5:a6:ce:94:71:03:65:42:74:fa:8e: db:6f:c4:6f:f4:65:c9:69:ab:ed:b3:43:1e:c3:55:c0:d5:1d: db:9d:37:e2:89:27:45:97:e6:ac:d9:38:33:01:82:c4:3d:ee: 01:b6:7b:12:ba:c0:7f:6d:e3:f5:1e:c2:47:41:32:a1:ae:2f: 87:d4:00:bd:5f:5b:a1:81:60:96:ec:85:f8:ff:37:4c:36:fb: 4a:12:33:4b:8b:29:a7:8e:ab:13:48:f5:8d:71:47:8a:3f:c8: 56:f9:4d:96 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUJGMDExMC8GA1UEBRMoMjFDRkNFODFEODc1RDVDRjhGNTk2QURCRkNDMzYwMTk2 MUM0NDFFNzAeFw0yNDExMTYxMjI2NTZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Mzg4ZjkwLWRlNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJCpLWcdMHN9Nnqnr0A/rWo9KkYc8KQCX1io2K4TQe/sNOfSJ/gX67W+Im30Vx RnQLBnsYH1TLKp9F+rob/niTI9Agt5FpYuKuiArS0APh8iCu2M2d/5Ai4Jk0FVOA SwcwrmQ2dhfXLggR5UKh7kH5MVOcYdPPDlN/7qWXyQ9cq6MDIIPNb096uaKFz5j2 EQyEf+dUv+vXVksauNcHySIsZdw8QLfgdSu3V07Ny6ErqaF2hKT7yk5Lu6bvwBIq fIUzdA89S2xpeZyVGgnYdayKzqdAyo3zvRHeMdHrtNIk2E/Qo74eU8G2zStGNCpU /XXMgrj6+sAjR9bbZVkCKBBxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJ4NCwpfQ xdRj5Hqn/cffCPQnJf8wHwYDVR0jBBgwFoAUIc/Ogdh11c+PWWrb/MNgGWHEQecw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxQkYwLzlGNTkxRThFQTQx NTExRUZBMTRGQkQzRkM0RjlBRTAyL0ljX09nZGgxMWMtUFdXcmJfTU5nR1dIRVFl Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWNfT2dkaDExYy1QV1dyYl9NTmdHV0hFUWVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUJGMC85RjU5MUU4RUE0MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8xMTVCRDM1QUE0 MTYxMUVGQTBEN0NENDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/xDANBgkqhkiG9w0BAQsFAAOCAQEAqlFlxz0ToObimF8l kLPt/h/1/iv9GmGBCBNjq76nEF0QzZqloAeeYuona4uUeDRM47WZ5w7i30s/F1B5 qjT7sLXoctt4XxPuJU2uidGwDqpjhFcF0Xks5mlYgyENlNiVmuVR0ger0iiY4yZE HvvNOd+BG7369pShTytaglwIVFvHbFe06UPDno/WdJ2AMXZnQTsTNmQsdfWmzpRx A2VCdPqO22/Eb/RlyWmr7bNDHsNVwNUd25034oknRZfmrNk4MwGCxD3uAbZ7ErrA f23j9R7CR0Eyoa4vh9QAvV9boYFgluyF+P83TDb7ShIzS4spp46rE0j1jXFHij/I VvlNlg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org