$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/4FE43908C8E911EFB3652D2BC4F9AE02.roa File: 4FE43908C8E911EFB3652D2BC4F9AE02.roa (raw, json) Hash identifier: QdK0vZDOgHppgm4z7Swu7bgDMn2RNghYcIQnlABGWx8= Subject key identifier: B2:8D:6A:31:88:27:26:2D:9F:71:2F:C0:0A:BB:31:66:F7:EA:5E:1E Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: 57 Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/4FE43908C8E911EFB3652D2BC4F9AE02.roa Signing time: Thu 02 Jan 2025 09:09:47 +0000 ROA not before: Thu 02 Jan 2025 09:09:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138346 IP address blocks: 160.30.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64 Validity Not Before: Jan 2 09:09:46 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=677657da-0267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:24:67:a9:82:8a:b0:aa:47:41:45:5a:40:d7: 08:21:8f:c6:2d:8a:d7:e8:b0:82:45:9b:09:14:c1: bf:af:95:de:02:51:3c:09:57:9c:56:ab:8d:0b:73: 34:e2:cc:33:ac:90:75:de:b5:97:bc:2b:88:1c:54: 05:4b:6d:1f:f4:01:ec:3c:ee:f8:94:66:f6:8e:27: f9:ee:25:55:74:d8:76:32:f9:0a:df:6f:b9:3f:66: cc:d3:3c:41:11:6d:7e:6b:3d:56:2c:1d:e3:8b:25: 78:e6:11:2c:12:12:03:df:a6:1c:22:9d:af:d5:c3: 1e:02:26:83:c0:86:0e:be:30:e1:7d:e1:4c:10:d9: 85:46:07:3f:19:ed:cd:03:79:b0:b4:88:b4:2c:5e: 3a:26:a5:9f:c2:34:18:71:0c:c4:97:a8:90:c7:f1: 3b:62:63:c0:c6:d6:83:aa:04:d7:50:f9:d7:00:94: 75:0b:4d:a3:4e:0a:56:af:15:e3:78:b1:fe:d9:c8: 66:e4:27:67:31:2b:ea:f5:2e:68:9f:34:de:0d:c8: c4:87:19:50:0f:75:0e:b3:bc:38:f9:e6:78:70:73: 4c:86:37:62:1e:b7:e1:bc:33:b8:8f:08:0f:c3:1a: 55:c9:cc:cf:03:81:0e:0a:b5:63:f8:fc:ef:60:24: 04:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8D:6A:31:88:27:26:2D:9F:71:2F:C0:0A:BB:31:66:F7:EA:5E:1E X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/4FE43908C8E911EFB3652D2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.178.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:45:bb:e7:04:6e:4a:3e:c7:7a:73:79:3a:e2:43:ec:e5:ff: b3:89:c7:e5:bb:7f:7c:81:0c:f6:4e:ff:3a:57:2d:fb:13:9f: 09:25:6c:ad:d7:8a:de:51:e6:ec:3f:12:48:92:b1:cd:af:8c: c0:56:ef:01:1e:56:f4:8f:41:42:03:3f:0f:cb:c7:57:f4:9f: 18:d5:2f:73:de:61:0c:81:f8:fb:8e:62:8f:5e:af:a4:28:62: 76:eb:0f:d1:d5:26:9b:14:8d:bb:d3:8e:14:21:6f:2f:93:25: 1d:03:1d:d5:97:bc:73:08:4c:12:3d:8b:a3:c2:38:d7:2e:02: 8e:4d:4a:8f:f4:e3:37:61:3d:2a:2e:a9:16:f9:e6:81:74:55: 90:99:5e:d2:cd:6c:d9:54:5d:36:77:3c:ce:1c:43:17:fd:ae: 50:3d:cb:05:fc:1c:8e:26:6e:3f:c9:16:95:af:ac:81:8f:bf: cd:08:fe:ca:af:df:3e:df:2d:b0:4f:27:02:eb:fc:06:fe:cc: 2b:2d:c0:43:cb:0e:8c:31:6d:c8:cf:7c:0f:14:9c:7f:3b:a3: 89:0b:43:a1:d2:d2:d2:d3:be:74:0d:e2:ed:dd:76:a0:5c:22: 1f:27:f9:70:e9:3b:af:4b:43:ea:16:08:33:63:dc:8f:a3:a1: 68:b7:2d:7d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OUY2NDExMC8GA1UEBRMoMzJEMzUzNzQzQzhGRTJGMDhFOTdCMjJFNUI2MDlBQkMx NENDRkUzQjAeFw0yNTAxMDIwOTA5NDZaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzY1N2RhLTAyNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoJGepgoqwqkdBRVpA1wghj8YtitfosIJFmwkUwb+vld4CUTwJV5xWq40LczTi zDOskHXetZe8K4gcVAVLbR/0Aew87viUZvaOJ/nuJVV02HYy+Qrfb7k/ZszTPEER bX5rPVYsHeOLJXjmESwSEgPfphwina/Vwx4CJoPAhg6+MOF94UwQ2YVGBz8Z7c0D ebC0iLQsXjompZ/CNBhxDMSXqJDH8TtiY8DG1oOqBNdQ+dcAlHULTaNOClavFeN4 sf7ZyGbkJ2cxK+r1LmifNN4NyMSHGVAPdQ6zvDj55nhwc0yGN2Iet+G8M7iPCA/D GlXJzM8DgQ4KtWP4/O9gJARzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUso1qMYgn Ji2fcS/ACrsxZvfqXh4wHwYDVR0jBBgwFoAUMtNTdDyP4vCOl7IuW2CavBTM/jsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5RjY0Lzc3QkYwMTkyNjI0 QjExRUZBQjEyMEY0RkM0RjlBRTAyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9q cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTXROVGREeVA0dkNPbDdJdVcyQ2F2QlRNX2pzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi80RkU0MzkwOEM4 RTkxMUVGQjM2NTJEMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAesjANBgkqhkiG9w0BAQsFAAOCAQEAa0W75wRuSj7HenN5 OuJD7OX/s4nH5bt/fIEM9k7/Olct+xOfCSVsrdeK3lHm7D8SSJKxza+MwFbvAR5W 9I9BQgM/D8vHV/SfGNUvc95hDIH4+45ij16vpChidusP0dUmmxSNu9OOFCFvL5Ml HQMd1Ze8cwhMEj2Lo8I41y4Cjk1Kj/TjN2E9Ki6pFvnmgXRVkJle0s1s2VRdNnc8 zhxDF/2uUD3LBfwcjiZuP8kWla+sgY+/zQj+yq/fPt8tsE8nAuv8Bv7MKy3AQ8sO jDFtyM98DxScfzujiQtDodLS0tO+dA3i7d12oFwiHyf5cOk7r0tD6hYIM2Pcj6Oh aLctfQ== -----END CERTIFICATE-----Generated at Wed Feb 19 20:33:12 2025 by rpki-client