$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/820BE5609CEE11EF9001717EC4F9AE02.roa File: 820BE5609CEE11EF9001717EC4F9AE02.roa (raw, json) Hash identifier: kIvT/50E2laNc1gLfjO5rKE/sWwcpe4nrifpeBT23BI= Subject key identifier: 4F:A1:D5:FD:8E:72:D3:A9:F4:A3:62:2B:B1:7D:56:C1:72:57:CE:61 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1624 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/820BE5609CEE11EF9001717EC4F9AE02.roa Signing time: Thu 07 Nov 2024 09:56:07 +0000 ROA not before: Thu 07 Nov 2024 09:56:07 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 134963 IP address blocks: 182.160.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5668 (0x1624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Nov 7 09:56:07 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=672c8eb7-4907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1d:b3:77:9b:04:90:ce:6d:a0:53:1c:06:49: 08:bb:5f:c0:1e:4a:2c:1e:c3:14:9b:86:48:03:17: 24:8c:c7:05:00:ed:40:f2:3e:78:66:47:30:7d:fe: 12:ca:d3:f5:fe:2a:7f:be:27:ed:d5:74:bd:76:7d: 3b:db:18:29:b7:24:1d:10:17:c2:0d:35:62:65:1d: 07:09:ae:bf:6b:61:17:8f:0a:a1:78:2a:e5:98:24: 0b:c3:c2:a4:11:82:57:5d:89:fb:a3:95:34:8a:8b: 31:96:35:17:2a:32:58:60:7e:84:ab:81:d4:f5:75: f8:68:8b:d0:b9:79:ff:c2:ee:a1:00:62:43:cc:20: 4a:1c:c7:28:22:57:3c:fc:88:23:7a:d3:ff:7b:90: 73:5f:19:2e:7a:3e:91:b1:29:09:f0:a7:36:4c:da: f0:89:a5:e1:6b:3f:4b:50:c8:55:8b:f5:5c:0a:b3: c9:07:2d:58:7f:05:e6:ca:da:13:a1:43:c1:b4:d1: f5:b8:4b:01:27:bf:d3:cc:25:9b:1c:98:33:ca:7b: 23:85:b2:c0:8f:dc:e9:1b:65:2a:ec:54:a6:bc:d7: 31:7c:7e:6f:68:0f:8e:08:94:b2:2d:11:d5:d6:01: 16:d7:4f:58:83:18:fb:f4:a3:fc:9e:e5:c1:be:aa: ac:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A1:D5:FD:8E:72:D3:A9:F4:A3:62:2B:B1:7D:56:C1:72:57:CE:61 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/820BE5609CEE11EF9001717EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.160.56.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:6e:da:2f:45:92:9e:35:f5:c4:3d:89:11:cd:51:60:e4:38: f4:f7:22:89:78:e4:2b:df:bf:d9:d9:31:b7:41:b2:ad:d6:32: cf:80:1e:44:76:10:95:0d:92:2a:18:d9:a6:b5:10:f3:e0:12: 50:10:61:8a:82:2a:d5:c8:74:32:45:31:28:57:21:73:d2:cd: 97:fb:8e:26:74:81:61:40:f4:b1:98:3a:a5:19:83:76:cb:d0: 25:32:74:f5:da:9a:8b:da:e0:34:0e:14:ee:9c:40:52:9a:55: aa:f4:08:15:80:ee:e4:33:56:07:38:a4:6e:f2:8d:75:3e:ed: 99:5d:62:e2:3d:0b:a9:ce:5d:d5:7b:f6:95:02:7f:1e:9d:37: 70:e8:b4:2f:28:a8:3b:e6:e0:d4:24:c1:b9:f5:1f:64:e4:f5: 09:51:f3:c7:e8:c4:c0:cc:83:55:fc:a1:65:1d:7b:ef:49:24: 12:d3:36:0e:5f:b6:15:2b:09:a3:18:d2:f6:83:2a:f2:f1:d2: 00:3d:36:1c:23:e3:43:a6:70:20:cb:c4:23:0e:76:cf:77:07: 4d:af:91:3e:f0:1c:4a:63:e9:f6:8c:3d:d6:93:3e:43:e7:f1: 4e:ac:fa:34:d1:21:38:a8:db:67:77:c0:b1:97:74:87:03:20: da:de:0c:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjQxMTA3MDk1NjA3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjOGViNy00OTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux2zd5sEkM5toFMcBkkIu1/AHkosHsMUm4ZIAxckjMcFAO1A8j54Zkcwff4S ytP1/ip/vift1XS9dn072xgptyQdEBfCDTViZR0HCa6/a2EXjwqheCrlmCQLw8Kk EYJXXYn7o5U0iosxljUXKjJYYH6Eq4HU9XX4aIvQuXn/wu6hAGJDzCBKHMcoIlc8 /IgjetP/e5BzXxkuej6RsSkJ8Kc2TNrwiaXhaz9LUMhVi/VcCrPJBy1YfwXmytoT oUPBtNH1uEsBJ7/TzCWbHJgzynsjhbLAj9zpG2Uq7FSmvNcxfH5vaA+OCJSyLRHV 1gEW109Ygxj79KP8nuXBvqqsZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE+h1f2O ctOp9KNiK7F9VsFyV85hMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvNzI1ODNBRkE2OTU3MTFFOEE0MkJFNjgwQzRGOUFFMDIvODIwQkU1NjA5 Q0VFMTFFRjkwMDE3MTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC2oDgwDQYJKoZIhvcNAQELBQADggEBAGxu2i9Fkp419cQ9 iRHNUWDkOPT3Iol45Cvfv9nZMbdBsq3WMs+AHkR2EJUNkioY2aa1EPPgElAQYYqC KtXIdDJFMShXIXPSzZf7jiZ0gWFA9LGYOqUZg3bL0CUydPXamova4DQOFO6cQFKa Var0CBWA7uQzVgc4pG7yjXU+7ZldYuI9C6nOXdV79pUCfx6dN3DotC8oqDvm4NQk wbn1H2Tk9QlR88foxMDMg1X8oWUde+9JJBLTNg5fthUrCaMY0vaDKvLx0gA9Nhwj 40OmcCDLxCMOds93B02vkT7wHEpj6faMPdaTPkPn8U6s+jTRITio22d3wLGXdIcD INreDPI= -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:12 2024 by rpki-client on console-ams.rpki-client.org