$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa File: 9580A702548211EFAADB996FC4F9AE02.roa (raw, json) Hash identifier: wCgEqyS6Zy8DoSXHIrNsGB8yREYXO+lRQfUh3eYmLj0= Subject key identifier: 9C:EE:E9:34:C5:C7:CC:87:95:F4:B9:FE:F0:7D:99:AA:71:24:4A:79 Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 1D Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa Signing time: Wed 07 Aug 2024 06:02:11 +0000 ROA not before: Wed 07 Aug 2024 06:02:11 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 150436 IP address blocks: 207.166.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 17:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Aug 7 06:02:11 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66b30de2-17be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4d:c4:b7:63:6f:ec:c9:f7:94:34:d9:ec:a8: 92:85:57:51:0c:21:06:bb:e9:57:0f:6b:27:8d:55: dc:0a:6b:12:71:9f:c6:ff:22:c2:52:db:7f:8e:e6: 98:e7:28:36:48:c5:d9:a5:94:7c:e1:8e:59:25:c9: 5d:c0:e1:16:df:18:2f:08:e4:4c:9d:02:48:c6:00: c0:d4:bc:54:59:bb:47:9f:76:4b:ea:ad:23:c2:a8: 3e:c9:ff:c6:48:30:2e:a1:76:a8:3f:dd:38:49:6d: 40:12:b1:db:5d:91:de:4f:c3:ff:a8:9e:f1:d5:33: 87:eb:8c:07:c2:39:3a:68:b1:69:45:de:ef:5b:e9: 1f:fc:2b:82:52:dc:8d:3d:e8:9e:7a:b8:e5:43:8a: f5:bd:4b:87:30:09:3e:51:42:66:1b:6e:b8:f0:41: 45:ab:8b:cc:6f:dd:c8:2b:95:81:7a:eb:6d:75:84: 80:f5:06:78:28:68:bd:66:1c:52:bc:da:5d:16:13: e5:00:fc:76:6b:be:b3:b6:c2:34:a0:45:4a:17:07: ff:6b:85:9e:f5:d9:68:86:80:12:7a:91:f0:1c:a0: c9:ef:f6:dc:47:7f:37:d6:ff:28:27:67:6d:fb:c2: 01:5e:d0:a6:36:b0:e4:a0:76:31:34:51:ee:f4:b9: a1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:EE:E9:34:C5:C7:CC:87:95:F4:B9:FE:F0:7D:99:AA:71:24:4A:79 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 207.166.160.0/19 Signature Algorithm: sha256WithRSAEncryption 32:c3:3e:a6:fa:68:b1:af:d1:84:92:c1:6c:33:a4:2e:89:2b: bf:f6:7b:31:b4:61:39:6c:39:4d:02:7c:18:50:04:87:42:b8: 04:70:61:68:4e:e7:69:ee:bf:f0:4e:5a:da:c8:bd:5c:c6:2f: 1c:8e:31:f5:14:aa:fc:a0:78:4e:92:be:8a:47:3d:47:1f:80: 45:b6:b1:2f:ac:3d:75:bf:ff:80:6a:5f:56:b4:e3:96:25:33: 31:e7:bf:87:64:b3:4b:c0:96:b3:53:8c:c4:5c:09:5f:64:60: 95:d3:7f:f3:1b:63:b9:07:2b:97:7e:f1:20:1e:4b:0c:3d:9a: e0:20:ba:46:63:25:3e:45:0b:cb:47:61:5a:ee:4c:ac:e9:47: ed:9d:a2:eb:d2:dc:98:2f:a1:c5:09:87:57:42:b5:de:92:0a: 5f:07:9b:d7:ee:cd:69:4b:d9:97:98:fa:aa:8e:33:8c:c3:8a: e3:91:9d:64:94:9b:82:06:a0:c0:3a:3d:55:c6:36:af:32:89: c5:f0:ad:f2:dc:bd:54:a1:e9:21:e8:ad:4f:fd:cb:90:94:0e: 96:ea:a8:a2:40:63:88:97:cb:cc:75:d1:b2:d4:72:03:4b:85: 4d:72:57:08:e0:ff:02:43:37:81:43:a4:87:dd:d8:7f:c3:b1: 8f:c2:f4:64 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzgwQ0Q2QkNDOUUxQzExRkVDNEVFMjdEQTg5MzgyNERB REI1MjEyQTAeFw0yNDA4MDcwNjAyMTFaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YjMwZGUyLTE3YmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8TcS3Y2/syfeUNNnsqJKFV1EMIQa76VcPayeNVdwKaxJxn8b/IsJS23+O5pjn KDZIxdmllHzhjlklyV3A4RbfGC8I5EydAkjGAMDUvFRZu0efdkvqrSPCqD7J/8ZI MC6hdqg/3ThJbUASsdtdkd5Pw/+onvHVM4frjAfCOTposWlF3u9b6R/8K4JS3I09 6J56uOVDivW9S4cwCT5RQmYbbrjwQUWri8xv3cgrlYF66211hID1BngoaL1mHFK8 2l0WE+UA/HZrvrO2wjSgRUoXB/9rhZ712WiGgBJ6kfAcoMnv9txHfzfW/ygnZ237 wgFe0KY2sOSgdjE0Ue70uaH1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUnO7pNMXH zIeV9Ln+8H2ZqnEkSnkwHwYDVR0jBBgwFoAUOAzWvMnhwR/sTuJ9qJOCTa21ISow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzhGOTA5MUQ0MzJC MDExRUZBNENCRjk2QUM0RjlBRTAyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlT by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT0F6V3ZNbmh3Ul9zVHVKOXFKT0NUYTIxSVNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi85NTgwQTcwMjU0 ODIxMUVGQUFEQjk5NkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBc+moDANBgkqhkiG9w0BAQsFAAOCAQEAMsM+pvposa/RhJLB bDOkLokrv/Z7MbRhOWw5TQJ8GFAEh0K4BHBhaE7nae6/8E5a2si9XMYvHI4x9RSq /KB4TpK+ikc9Rx+ARbaxL6w9db//gGpfVrTjliUzMee/h2SzS8CWs1OMxFwJX2Rg ldN/8xtjuQcrl37xIB5LDD2a4CC6RmMlPkULy0dhWu5MrOlH7Z2i69LcmC+hxQmH V0K13pIKXweb1+7NaUvZl5j6qo4zjMOK45GdZJSbggagwDo9VcY2rzKJxfCt8ty9 VKHpIeitT/3LkJQOluqookBjiJfLzHXRstRyA0uFTXJXCOD/AkM3gUOkh93Yf8Ox j8L0ZA== -----END CERTIFICATE-----Generated at Thu Oct 24 01:53:59 2024 by rpki-client on console-ams.rpki-client.org