$ rpki-client -vvf rpki.apnic.net/member_repository/A91774FB/7897F816343911EF9C3D213EC4F9AE02/24142938343C11EFA0165876C4F9AE02.roa File: 24142938343C11EFA0165876C4F9AE02.roa (raw, json) Hash identifier: IdxIHC09tqUl/qL5Re/ky1cTF3HFezxRLbNar6MjEZw= Subject key identifier: 49:01:E3:F8:AB:8F:9D:FB:B1:3E:20:F9:EF:55:99:D2:E7:4B:09:16 Certificate issuer: /CN=A91774FB/serialNumber=5296BC801402C73909F591E19095F22465414324 Certificate serial: 03 Authority key identifier: 52:96:BC:80:14:02:C7:39:09:F5:91:E1:90:95:F2:24:65:41:43:24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Upa8gBQCxzkJ9ZHhkJXyJGVBQyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91774FB/7897F816343911EF9C3D213EC4F9AE02/24142938343C11EFA0165876C4F9AE02.roa Signing time: Thu 27 Jun 2024 04:17:18 +0000 ROA not before: Thu 27 Jun 2024 04:17:18 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152916 IP address blocks: 160.22.162.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91774FB/7897F816343911EF9C3D213EC4F9AE02/Upa8gBQCxzkJ9ZHhkJXyJGVBQyQ.crl rsync://rpki.apnic.net/member_repository/A91774FB/7897F816343911EF9C3D213EC4F9AE02/Upa8gBQCxzkJ9ZHhkJXyJGVBQyQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Upa8gBQCxzkJ9ZHhkJXyJGVBQyQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91774FB/serialNumber=5296BC801402C73909F591E19095F22465414324 Validity Not Before: Jun 27 04:17:18 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667ce7ce-325c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0e:1c:96:f9:2f:2c:cf:20:7e:b3:22:bc:c0: d8:9e:61:77:4c:27:45:7e:fe:56:6b:41:3d:aa:72: 29:bc:63:bf:19:e1:29:0b:53:7c:a3:4d:19:ce:c7: a9:53:2b:d1:ec:d2:fe:7e:73:6f:57:3c:6d:39:79: 79:cc:bc:c5:f0:c9:9e:57:fd:b0:c2:bc:eb:9f:5e: 4a:3e:92:84:78:28:78:97:85:b5:d3:44:16:25:41: b9:55:52:24:35:46:0b:56:ba:f4:5f:16:d9:24:89: 08:9d:60:82:d9:46:bb:f5:92:dc:43:2a:98:49:a4: 5c:e7:75:97:eb:48:07:0e:3c:fd:67:92:2a:15:61: 94:62:4d:dd:ae:82:ce:2d:21:f6:01:0c:a0:c6:6c: dc:fa:9f:ee:23:94:76:d0:c4:e2:a5:c6:41:69:12: 4c:45:03:a0:a3:c4:d5:bc:68:4b:d4:c6:cd:c7:f0: 6d:b8:72:b0:cc:0e:f6:b0:4f:fd:0b:24:4c:51:f4: e8:33:f2:0b:96:7e:61:6c:8c:58:d8:b6:15:61:81: 5e:28:4a:b6:4d:d9:d9:15:0d:8d:f2:70:0d:fc:a9: 1c:1b:b3:e7:53:29:87:45:84:b8:8a:ee:76:6d:da: bc:5b:42:57:d1:c6:89:0d:cb:8d:97:f5:6c:9b:29: cb:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:01:E3:F8:AB:8F:9D:FB:B1:3E:20:F9:EF:55:99:D2:E7:4B:09:16 X509v3 Authority Key Identifier: keyid:52:96:BC:80:14:02:C7:39:09:F5:91:E1:90:95:F2:24:65:41:43:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91774FB/7897F816343911EF9C3D213EC4F9AE02/Upa8gBQCxzkJ9ZHhkJXyJGVBQyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Upa8gBQCxzkJ9ZHhkJXyJGVBQyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91774FB/7897F816343911EF9C3D213EC4F9AE02/24142938343C11EFA0165876C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.162.0/23 Signature Algorithm: sha256WithRSAEncryption b0:83:32:2a:65:ef:c7:55:75:10:0c:32:48:fc:e0:15:20:8c: 2f:93:8d:a3:dd:95:c5:71:8a:25:9f:a5:38:dd:10:ad:29:9d: 04:c4:55:f5:2c:b9:04:7c:78:35:17:06:d9:94:0f:f7:67:1b: 37:05:53:66:4e:ff:1f:44:2d:79:5c:4a:5e:28:a4:d9:1b:97: 71:63:0f:49:dd:86:db:3a:d3:b4:c5:7f:cf:77:81:80:eb:c6: 47:6c:36:2b:dc:e4:75:51:17:f6:9c:9f:7b:75:fb:19:6b:f6: e6:42:62:5f:dc:fa:98:97:f9:f8:b6:6f:ff:6c:f0:b5:c4:44: 15:82:0b:25:01:83:a5:17:8c:78:43:d4:36:e0:66:54:c8:d2: 42:89:cc:47:7e:79:ff:09:fd:fe:41:a5:5a:77:31:f0:9a:7c: 0f:f6:0f:e1:ba:a8:ff:91:b3:7b:0c:3e:e6:a2:6d:38:4d:10: ba:d8:bb:2e:92:39:31:42:2d:ad:9c:a4:75:9e:ec:b5:2b:dd: bc:3b:ef:dc:9b:bb:8b:d9:7a:0d:fa:fb:0c:6a:e3:9e:06:c8: 3e:1b:c3:45:96:40:1d:43:d4:1d:b8:4c:ad:fe:49:40:df:4d: 77:de:97:f2:c5:0f:88:da:a3:81:d3:70:58:41:5d:f2:77:78: fa:68:e3:33 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzRGQjExMC8GA1UEBRMoNTI5NkJDODAxNDAyQzczOTA5RjU5MUUxOTA5NUYyMjQ2 NTQxNDMyNDAeFw0yNDA2MjcwNDE3MThaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2N2NlN2NlLTMyNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeDhyW+S8szyB+syK8wNieYXdMJ0V+/lZrQT2qcim8Y78Z4SkLU3yjTRnOx6lT K9Hs0v5+c29XPG05eXnMvMXwyZ5X/bDCvOufXko+koR4KHiXhbXTRBYlQblVUiQ1 RgtWuvRfFtkkiQidYILZRrv1ktxDKphJpFzndZfrSAcOPP1nkioVYZRiTd2ugs4t IfYBDKDGbNz6n+4jlHbQxOKlxkFpEkxFA6CjxNW8aEvUxs3H8G24crDMDvawT/0L JExR9Ogz8guWfmFsjFjYthVhgV4oSrZN2dkVDY3ycA38qRwbs+dTKYdFhLiK7nZt 2rxbQlfRxokNy42X9WybKculAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSQHj+KuP nfuxPiD571WZ0udLCRYwHwYDVR0jBBgwFoAUUpa8gBQCxzkJ9ZHhkJXyJGVBQyQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3NEZCLzc4OTdGODE2MzQz OTExRUY5QzNEMjEzRUM0RjlBRTAyL1VwYThnQlFDeHprSjlaSGhrSlh5SkdWQlF5 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVXBhOGdCUUN4emtKOVpIaGtKWHlKR1ZCUXlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzRGQi83ODk3RjgxNjM0MzkxMUVGOUMzRDIxM0VDNEY5QUUwMi8yNDE0MjkzODM0 M0MxMUVGQTAxNjU4NzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAWojANBgkqhkiG9w0BAQsFAAOCAQEAsIMyKmXvx1V1EAwy SPzgFSCML5ONo92VxXGKJZ+lON0QrSmdBMRV9Sy5BHx4NRcG2ZQP92cbNwVTZk7/ H0QteVxKXiik2RuXcWMPSd2G2zrTtMV/z3eBgOvGR2w2K9zkdVEX9pyfe3X7GWv2 5kJiX9z6mJf5+LZv/2zwtcREFYILJQGDpReMeEPUNuBmVMjSQonMR355/wn9/kGl Wncx8Jp8D/YP4bqo/5Gzeww+5qJtOE0Quti7LpI5MUItrZykdZ7stSvdvDvv3Ju7 i9l6Dfr7DGrjngbIPhvDRZZAHUPUHbhMrf5JQN9Nd96X8sUPiNqjgdNwWEFd8nd4 +mjjMw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org