$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa File: 0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa (raw, json) Hash identifier: oV9dv3enUEk5QI7ZEWYNcHlwdjoeFV6bdPfVFfihoSE= Subject key identifier: 26:78:69:01:2C:51:A8:84:6F:6C:3D:E6:36:BA:E5:73:51:38:0B:E5 Certificate issuer: /CN=A917D958/serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Certificate serial: 05 Authority key identifier: 9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa Signing time: Mon 09 Dec 2024 03:59:52 +0000 ROA not before: Mon 09 Dec 2024 03:59:52 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 4764 IP address blocks: 160.250.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958 Validity Not Before: Dec 9 03:59:52 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67566b38-c9af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:60:8e:11:f2:c8:d1:13:82:ed:97:eb:23:62: 15:25:a3:bf:35:f4:dd:5c:c3:6c:65:f1:a5:2e:cd: 60:5f:a8:17:dd:78:66:e5:b3:d9:e7:ca:9f:b0:36: c1:16:b3:a3:78:2d:b9:a1:48:c6:79:89:18:a9:33: 28:05:92:c0:2e:7f:8e:15:84:95:eb:34:d6:9d:09: 1f:df:d7:8b:05:00:35:4c:a0:1d:14:64:9f:0f:c6: 15:53:09:c7:4f:1c:ff:70:85:07:28:cb:c0:26:7e: 06:12:2f:4b:fc:5c:75:cd:d8:d8:2c:85:a3:85:94: d4:eb:99:bd:20:78:5c:ee:06:d2:20:1c:cf:39:85: aa:1c:ef:0c:e6:76:2f:85:81:d6:f8:80:ad:67:6b: 72:5a:d3:40:36:73:5c:59:ba:da:0d:32:09:2a:66: da:4e:ee:8f:8d:18:0b:8c:e7:0f:91:b7:90:cc:a7: 43:84:b4:09:9f:36:12:94:a9:35:4c:f8:04:0d:b5: 4d:aa:af:f4:5b:7f:12:4a:4d:2b:5f:75:c5:50:04: 9f:db:38:15:03:3e:df:6c:ec:0c:dc:71:0a:21:02: 02:d0:1e:db:6c:be:20:67:33:12:64:e2:c0:d7:73: 85:b2:23:dc:37:09:37:2e:66:f8:be:66:f8:fa:74: ea:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:78:69:01:2C:51:A8:84:6F:6C:3D:E6:36:BA:E5:73:51:38:0B:E5 X509v3 Authority Key Identifier: keyid:9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.176.0/24 Signature Algorithm: sha256WithRSAEncryption 54:c3:dc:24:59:66:04:bc:39:23:66:02:9f:83:f9:e1:d2:f7: b1:ab:cf:2d:0a:26:37:1e:72:4f:1c:c8:90:b3:d6:e0:d9:9e: f0:e7:f0:c4:04:3d:e1:14:81:fa:6c:17:71:8c:c1:25:3b:ae: 70:3e:67:66:e4:aa:72:3f:91:92:cb:a0:bc:5d:b1:ed:f0:45: a3:e4:bf:d5:18:5f:f9:5e:ae:79:92:34:c7:e1:9b:da:57:3e: 79:ba:ac:4f:b1:6d:0f:9e:3d:74:bc:c0:e3:3a:2f:eb:49:9b: 33:96:88:98:ce:41:d4:38:75:29:e6:49:e4:df:52:7a:cd:5c: 41:eb:48:ae:7d:6c:92:40:4e:23:31:7b:52:c9:32:55:f1:ad: 47:b6:9a:e0:95:e3:21:23:d4:ea:86:0c:af:ff:96:a9:ba:5b: 91:6b:4f:43:51:18:1f:d7:99:b7:bc:9c:db:d6:42:61:d3:06: ff:84:df:2e:da:9a:a0:b4:f2:e6:ba:c4:86:ab:77:b3:0d:6c: db:03:12:aa:d6:05:30:0f:72:44:a7:6f:49:49:9f:48:fa:74: 3d:57:59:e4:70:4d:b4:d6:26:fc:0f:8d:6a:aa:7d:da:3f:98: 48:de:34:81:91:f7:a3:92:11:2d:e0:76:93:a4:ed:f4:94:0f: f0:11:56:94 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoOUY0OTA2QzBENENDOTY0NUQ5QkZEOTMzNjRBMjNBNUEz M0VGNThEQjAeFw0yNDEyMDkwMzU5NTJaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTY2YjM4LWM5YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1YI4R8sjRE4Ltl+sjYhUlo7819N1cw2xl8aUuzWBfqBfdeGbls9nnyp+wNsEW s6N4LbmhSMZ5iRipMygFksAuf44VhJXrNNadCR/f14sFADVMoB0UZJ8PxhVTCcdP HP9whQcoy8AmfgYSL0v8XHXN2NgshaOFlNTrmb0geFzuBtIgHM85haoc7wzmdi+F gdb4gK1na3Ja00A2c1xZutoNMgkqZtpO7o+NGAuM5w+Rt5DMp0OEtAmfNhKUqTVM +AQNtU2qr/RbfxJKTStfdcVQBJ/bOBUDPt9s7AzccQohAgLQHttsviBnMxJk4sDX c4WyI9w3CTcuZvi+Zvj6dOrrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJnhpASxR qIRvbD3mNrrlc1E4C+UwHwYDVR0jBBgwFoAUn0kGwNTMlkXZv9kzZKI6WjPvWNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzY3MkRCMDQ4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL24wa0d3TlRNbGtYWnY5a3paS0k2V2pQdldO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbjBrR3dOVE1sa1hadjlrelpLSTZXalB2V05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82NzJEQjA0OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi8wQUM4QkI3NEI1 RTIxMUVGQkVGNEJDNUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6sDANBgkqhkiG9w0BAQsFAAOCAQEAVMPcJFlmBLw5I2YC n4P54dL3savPLQomNx5yTxzIkLPW4Nme8OfwxAQ94RSB+mwXcYzBJTuucD5nZuSq cj+RksugvF2x7fBFo+S/1Rhf+V6ueZI0x+Gb2lc+ebqsT7FtD549dLzA4zov60mb M5aImM5B1Dh1KeZJ5N9Ses1cQetIrn1skkBOIzF7UskyVfGtR7aa4JXjISPU6oYM r/+WqbpbkWtPQ1EYH9eZt7yc29ZCYdMG/4TfLtqaoLTy5rrEhqt3sw1s2wMSqtYF MA9yRKdvSUmfSPp0PVdZ5HBNtNYm/A+Naqp92j+YSN40gZH3o5IRLeB2k6Tt9JQP 8BFWlA== -----END CERTIFICATE-----Generated at Wed Feb 5 22:40:51 2025 by rpki-client