$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/FF3D553675B711EF83FAAE42C4F9AE02.roa File: FF3D553675B711EF83FAAE42C4F9AE02.roa (raw, json) Hash identifier: /HTBqf5H3Uz657hsatlKZqGr2vioW9ZJotjtVpnDq5Y= Subject key identifier: 55:66:AD:05:D6:39:F1:53:00:7F:CE:AB:9F:51:98:20:C4:62:09:74 Certificate issuer: /CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Certificate serial: 05 Authority key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/FF3D553675B711EF83FAAE42C4F9AE02.roa Signing time: Wed 18 Sep 2024 12:20:12 +0000 ROA not before: Wed 18 Sep 2024 12:20:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153324 IP address blocks: 160.187.18.0/24 maxlen: 24 160.187.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Validity Not Before: Sep 18 12:20:12 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66eac57c-23f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ff:02:a9:d7:20:df:9f:37:9c:c2:01:df:41: 6e:71:8c:97:3e:14:20:5a:dd:5f:50:38:14:e1:f2: e0:ce:3a:93:76:85:98:1e:9c:03:e5:c7:ef:34:60: 11:d8:bf:ab:40:ea:71:a1:49:c3:00:c7:33:56:60: ac:c6:0d:9b:98:46:e2:a3:db:06:8b:4e:bc:99:65: 30:22:9a:e9:e5:cb:1c:b7:2e:fe:e9:62:e4:c7:60: 5c:6f:64:b1:3e:8c:65:3d:65:b2:9c:37:3f:8a:20: 78:75:28:26:28:db:12:c8:7e:31:e6:c2:a7:4b:7f: 4f:01:c7:c6:49:54:ba:2c:90:91:15:e1:0e:2c:c1: 82:e0:44:79:1c:b1:be:f4:4a:d1:d1:4e:ae:5b:ec: 11:c5:24:a4:6a:62:85:c8:10:d5:90:fa:cd:af:55: 43:03:95:d6:33:04:80:bf:20:c0:21:c7:ce:37:6b: 6e:b6:5c:5e:36:e4:bb:76:3a:8b:30:cd:5b:ab:50: e5:0b:80:da:35:4e:d4:67:b9:35:7d:c5:0d:87:02: f3:fb:04:a9:85:27:78:24:45:03:23:b4:b3:75:bb: 8c:f5:81:1e:25:3a:a7:4b:40:6d:16:66:d3:2f:13: 17:c4:d5:70:e2:06:fb:46:e5:ec:57:f3:33:b7:57: b5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:66:AD:05:D6:39:F1:53:00:7F:CE:AB:9F:51:98:20:C4:62:09:74 X509v3 Authority Key Identifier: keyid:8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/FF3D553675B711EF83FAAE42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.18.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:76:b1:ab:87:ef:2d:dd:8f:3a:41:b0:4f:8a:72:64:2f:dc: d5:40:16:b1:0e:4d:43:cb:93:67:a0:02:33:b6:2c:5d:68:28: db:4f:4b:6e:ba:03:f2:f1:20:4b:56:28:21:db:5c:88:ab:15: 41:16:81:8c:03:ef:62:62:d2:52:ad:b2:bf:72:cc:7e:ba:9e: c0:0d:4c:11:a0:ec:70:7b:44:4c:9c:4f:ee:a4:47:a2:97:5e: 53:d8:16:cd:df:6f:b2:9c:de:41:57:8f:59:34:43:d0:f3:0f: 51:12:3a:02:48:eb:9e:db:e3:38:fe:45:8c:3f:59:22:5b:c0: 92:42:cd:56:14:d9:4e:06:15:a6:fb:f8:6c:29:73:2a:91:85: f2:fa:48:cf:63:48:3b:68:a2:0b:ea:73:f6:0c:65:ed:5c:e6: fc:a1:13:14:b4:60:9c:0b:25:58:68:e6:a8:4c:da:1f:8c:a2: b1:94:c1:fb:10:74:38:5c:84:fa:9d:6d:cb:cc:f1:10:9b:7a: dd:eb:71:c6:82:68:8f:cf:b6:35:e8:ac:cb:8f:6c:1b:97:42: 5f:46:60:e9:58:58:cb:35:19:23:61:3a:0c:32:37:dd:1e:b8: 92:42:85:7b:5b:ee:19:59:ab:21:78:d1:fb:4f:c6:ff:97:a4: 9c:1b:45:ed -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzdCOTExMC8GA1UEBRMoOERENDE0NDg1OTE3Q0Q0QzgwMTY3QkRBMTlENzI0OTY0 NkIwNjcyNTAeFw0yNDA5MTgxMjIwMTJaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZWFjNTdjLTIzZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC//wKp1yDfnzecwgHfQW5xjJc+FCBa3V9QOBTh8uDOOpN2hZgenAPlx+80YBHY v6tA6nGhScMAxzNWYKzGDZuYRuKj2waLTryZZTAimunlyxy3Lv7pYuTHYFxvZLE+ jGU9ZbKcNz+KIHh1KCYo2xLIfjHmwqdLf08Bx8ZJVLoskJEV4Q4swYLgRHkcsb70 StHRTq5b7BHFJKRqYoXIENWQ+s2vVUMDldYzBIC/IMAhx843a262XF425Lt2Oosw zVurUOULgNo1TtRnuTV9xQ2HAvP7BKmFJ3gkRQMjtLN1u4z1gR4lOqdLQG0WZtMv ExfE1XDiBvtG5exX8zO3V7XVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVWatBdY5 8VMAf86rn1GYIMRiCXQwHwYDVR0jBBgwFoAUjdQUSFkXzUyAFnvaGdcklkawZyUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3N0I5L0QyN0M5MTVDNzVC NjExRUZCOEUyMTUxNEM0RjlBRTAyL2pkUVVTRmtYelV5QUZudmFHZGNrbGthd1p5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvamRRVVNGa1h6VXlBRm52YUdkY2tsa2F3WnlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EMjdDOTE1Qzc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9GRjNENTUzNjc1 QjcxMUVGODNGQUFFNDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7EjANBgkqhkiG9w0BAQsFAAOCAQEAW3axq4fvLd2POkGw T4pyZC/c1UAWsQ5NQ8uTZ6ACM7YsXWgo209LbroD8vEgS1YoIdtciKsVQRaBjAPv YmLSUq2yv3LMfrqewA1MEaDscHtETJxP7qRHopdeU9gWzd9vspzeQVePWTRD0PMP URI6AkjrntvjOP5FjD9ZIlvAkkLNVhTZTgYVpvv4bClzKpGF8vpIz2NIO2iiC+pz 9gxl7Vzm/KETFLRgnAslWGjmqEzaH4yisZTB+xB0OFyE+p1ty8zxEJt63etxxoJo j8+2Neisy49sG5dCX0Zg6VhYyzUZI2E6DDI33R64kkKFe1vuGVmrIXjR+0/G/5ek nBtF7Q== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:21 2024 by rpki-client on console-fra.rpki-client.org