$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/0CBF3110D59011EFB76D6824C4F9AE02.roa File: 0CBF3110D59011EFB76D6824C4F9AE02.roa (raw, json) Hash identifier: wO5XBFfOCrDOLzTAwG2c8QWB5MqE2ajRI+6xibW2aso= Subject key identifier: 1A:D2:82:C6:BD:CF:C1:E9:93:A9:8E:66:E1:70:1E:BC:5D:95:2C:D8 Certificate issuer: /CN=A917BB9A/serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241 Certificate serial: 0F Authority key identifier: 83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/0CBF3110D59011EFB76D6824C4F9AE02.roa Signing time: Sat 18 Jan 2025 11:34:29 +0000 ROA not before: Sat 18 Jan 2025 11:34:29 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 56209 IP address blocks: 160.22.46.0/23 maxlen: 23 160.22.46.0/24 maxlen: 24 160.22.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB9A Validity Not Before: Jan 18 11:34:29 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=678b91c5-7faf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f3:14:75:0d:62:68:fe:a0:0a:e8:aa:f6:c6: b6:96:48:f2:6d:01:1b:b7:b0:83:e4:67:34:fd:40: 0d:75:b4:46:c1:3d:a0:79:29:87:e2:1e:57:49:f3: 9b:c6:29:fe:35:f7:73:d5:cc:4f:bd:0a:58:4f:a1: eb:7b:87:e5:8b:6b:5f:ed:f5:cd:00:73:c1:f6:88: 23:37:00:6c:4f:13:ec:6c:b0:41:4f:9a:92:62:54: ec:c0:13:3f:a5:33:a9:91:fa:fb:23:96:ac:36:94: 3a:a7:39:45:0d:28:a5:28:76:8a:26:af:ed:a7:18: f9:31:2f:e6:a5:e0:87:9e:05:86:d7:0b:ec:1f:f3: 03:3e:d0:ea:78:bf:9f:79:52:4f:d4:82:b7:4b:7d: c6:92:d1:22:d3:42:35:f1:05:15:6e:af:18:a8:fc: cc:09:0c:a1:ab:38:ed:f9:21:39:3d:ae:6b:65:5a: 11:d6:18:4a:e6:f3:c3:77:22:2e:3c:e2:57:11:6c: ba:75:09:6a:7d:c4:bc:4c:cb:95:cc:bb:cd:06:2c: 0c:43:8b:fd:73:0e:8c:d1:33:06:76:d6:05:2e:a9: 91:f1:4d:ff:cd:42:5a:62:d3:7d:41:92:40:69:47: ef:b3:74:7a:83:0a:e7:aa:5e:d0:ea:fc:cd:ba:e4: 47:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D2:82:C6:BD:CF:C1:E9:93:A9:8E:66:E1:70:1E:BC:5D:95:2C:D8 X509v3 Authority Key Identifier: keyid:83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/0CBF3110D59011EFB76D6824C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.46.0/23 Signature Algorithm: sha256WithRSAEncryption 34:1e:7d:95:f3:4f:b2:9e:7f:42:8a:d8:07:5b:81:b9:96:d6: 17:f3:57:46:0e:da:4c:fe:2c:00:94:90:74:20:07:99:e9:fa: 11:5d:d1:3b:4e:90:7c:6b:00:96:2b:d1:1b:6b:52:8e:a2:a4: 91:2a:f0:c1:43:ba:75:27:b3:45:4a:ea:f7:5a:3f:9b:18:d0: 7d:f7:ce:0c:0b:41:f1:b4:a3:5f:11:2a:24:21:92:7d:a7:a0: 0d:b3:f2:9a:36:9c:a0:4d:48:c6:dc:1d:39:d6:e6:7e:53:f8: a7:93:ea:fc:08:83:0f:27:57:7f:76:0b:18:3b:14:2b:f3:b0: e0:22:1c:0a:c9:8a:12:fa:9e:42:a2:11:5f:b7:c3:19:a4:d7: cb:58:26:4a:b0:25:45:14:d9:e4:10:6c:80:c4:09:f5:31:c3: 49:68:4d:93:a4:fc:75:56:39:97:ee:8b:f3:9c:b3:21:7c:21: 65:95:20:43:ee:83:c4:59:50:bd:fd:ad:13:6d:01:12:ff:6f: 7e:27:03:a5:91:7a:fa:19:f3:03:68:78:db:d3:37:e3:c3:fe: 99:c3:03:94:8d:c0:5c:59:b4:45:f5:50:2a:d2:1d:6f:d7:f2: 48:ab:b4:b8:95:25:ef:ba:ad:a1:f7:b0:e4:bc:7b:a0:20:03: 73:41:36:63 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QkI5QTExMC8GA1UEBRMoODM4RkJEMEIzOTVFQTkwNzA2QzZDMjg5QUMyNkIwRDcz OEEwNDI0MTAeFw0yNTAxMTgxMTM0MjlaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OGI5MWM1LTdmYWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy8xR1DWJo/qAK6Kr2xraWSPJtARu3sIPkZzT9QA11tEbBPaB5KYfiHldJ85vG Kf4193PVzE+9ClhPoet7h+WLa1/t9c0Ac8H2iCM3AGxPE+xssEFPmpJiVOzAEz+l M6mR+vsjlqw2lDqnOUUNKKUodoomr+2nGPkxL+al4IeeBYbXC+wf8wM+0Op4v595 Uk/UgrdLfcaS0SLTQjXxBRVurxio/MwJDKGrOO35ITk9rmtlWhHWGErm88N3Ii48 4lcRbLp1CWp9xLxMy5XMu80GLAxDi/1zDozRMwZ21gUuqZHxTf/NQlpi031BkkBp R++zdHqDCueqXtDq/M265EfvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGtKCxr3P wemTqY5m4XAevF2VLNgwHwYDVR0jBBgwFoAUg4+9CzleqQcGxsKJrCaw1zigQkEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCQjlBLzQxMzkwQkNBQ0ZG MzExRUY5MDYyRTUyMUM0RjlBRTAyL2c0LTlDemxlcVFjR3hzS0pyQ2F3MXppZ1Fr RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZzQtOUN6bGVxUWNHeHNLSnJDYXcxemlnUWtFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI5QS80MTM5MEJDQUNGRjMxMUVGOTA2MkU1MjFDNEY5QUUwMi8wQ0JGMzExMEQ1 OTAxMUVGQjc2RDY4MjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAWLjANBgkqhkiG9w0BAQsFAAOCAQEANB59lfNPsp5/QorY B1uBuZbWF/NXRg7aTP4sAJSQdCAHmen6EV3RO06QfGsAlivRG2tSjqKkkSrwwUO6 dSezRUrq91o/mxjQfffODAtB8bSjXxEqJCGSfaegDbPymjacoE1IxtwdOdbmflP4 p5Pq/AiDDydXf3YLGDsUK/Ow4CIcCsmKEvqeQqIRX7fDGaTXy1gmSrAlRRTZ5BBs gMQJ9THDSWhNk6T8dVY5l+6L85yzIXwhZZUgQ+6DxFlQvf2tE20BEv9vficDpZF6 +hnzA2h429M348P+mcMDlI3AXFm0RfVQKtIdb9fySKu0uJUl77qtofew5Lx7oCAD c0E2Yw== -----END CERTIFICATE-----Generated at Wed Feb 5 23:00:20 2025 by rpki-client