$ rpki-client -vvf rpki.apnic.net/member_repository/A91827C5/D065ABB48AD911EF981C8283C4F9AE02/4E9CBEBE8ADA11EFBC4C6E84C4F9AE02.roa File: 4E9CBEBE8ADA11EFBC4C6E84C4F9AE02.roa (raw, json) Hash identifier: 7STfeveEYSO1lwr+DsahUmbKcroTtvHSfv2dPo8RBAg= Subject key identifier: 60:A1:9C:D6:55:6F:A0:90:07:73:2D:21:63:04:F8:A9:75:E3:EF:2C Certificate issuer: /CN=A91827C5/serialNumber=575A6ED30C373AD434D15A665DDA2E764EC89ACA Certificate serial: 02 Authority key identifier: 57:5A:6E:D3:0C:37:3A:D4:34:D1:5A:66:5D:DA:2E:76:4E:C8:9A:CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V1pu0ww3OtQ00VpmXdoudk7Imso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91827C5/D065ABB48AD911EF981C8283C4F9AE02/4E9CBEBE8ADA11EFBC4C6E84C4F9AE02.roa Signing time: Tue 15 Oct 2024 09:46:10 +0000 ROA not before: Tue 15 Oct 2024 09:46:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 207388 IP address blocks: 160.30.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91827C5/D065ABB48AD911EF981C8283C4F9AE02/V1pu0ww3OtQ00VpmXdoudk7Imso.crl rsync://rpki.apnic.net/member_repository/A91827C5/D065ABB48AD911EF981C8283C4F9AE02/V1pu0ww3OtQ00VpmXdoudk7Imso.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V1pu0ww3OtQ00VpmXdoudk7Imso.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91827C5/serialNumber=575A6ED30C373AD434D15A665DDA2E764EC89ACA Validity Not Before: Oct 15 09:46:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=670e39e2-9d2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0c:96:6b:66:c6:fe:e9:94:bb:d0:d1:24:aa: 6d:84:26:3a:e0:33:2c:0a:36:03:70:ff:d4:82:c9: 05:06:fc:70:98:3a:69:6e:75:a9:88:3e:45:44:8b: eb:42:6c:b6:1e:2e:0e:cf:b6:00:44:72:21:aa:32: 5f:8d:7c:34:50:13:58:b3:83:2f:6b:12:d7:fb:a3: c5:a2:73:d0:93:25:b1:b5:9d:46:53:87:1e:6f:34: d4:39:de:3d:3e:55:c1:9d:af:f0:b6:c3:8e:49:50: f3:86:d8:15:e4:c6:ac:a0:d1:ea:85:6a:23:4c:c7: 2c:37:28:b9:ba:cc:20:e2:9e:b3:76:42:99:67:61: cf:d1:8d:22:ce:96:47:cc:ae:d2:21:52:34:cd:89: 28:1f:ad:e8:70:62:65:37:98:e1:c4:89:73:c0:55: 3b:15:31:98:bf:2a:b3:71:ad:6e:ed:ea:6d:0b:57: 92:93:b5:f9:31:7c:c1:9f:49:2c:c3:5c:4e:50:35: 57:a0:79:bc:6c:28:a7:58:bf:a6:2d:c6:f8:08:aa: 4c:6d:92:4c:88:db:e0:e8:f1:1a:8e:d4:fe:4a:2b: 0d:21:41:4d:c9:c3:54:c5:62:0a:d9:59:10:91:6f: 35:42:30:9b:4a:67:b4:27:de:9c:fc:79:57:03:14: f1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A1:9C:D6:55:6F:A0:90:07:73:2D:21:63:04:F8:A9:75:E3:EF:2C X509v3 Authority Key Identifier: keyid:57:5A:6E:D3:0C:37:3A:D4:34:D1:5A:66:5D:DA:2E:76:4E:C8:9A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91827C5/D065ABB48AD911EF981C8283C4F9AE02/V1pu0ww3OtQ00VpmXdoudk7Imso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V1pu0ww3OtQ00VpmXdoudk7Imso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91827C5/D065ABB48AD911EF981C8283C4F9AE02/4E9CBEBE8ADA11EFBC4C6E84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.104.0/23 Signature Algorithm: sha256WithRSAEncryption b6:dc:11:1b:57:53:f9:e4:0f:26:aa:49:28:22:a0:cb:9f:77: 49:fc:c8:98:32:90:2e:e4:d2:13:c1:dc:65:4d:41:3d:22:34: 72:6a:9a:5a:e5:cb:ef:24:f6:53:88:ab:93:01:5d:e8:bf:05: 1c:e9:08:54:c4:d6:42:80:6a:5f:27:e7:69:d9:f6:05:0b:e1: 48:af:2a:25:24:cd:58:47:cb:42:91:34:21:57:9a:fb:89:4c: b9:c7:59:28:45:fb:50:f2:be:d7:e3:80:95:0b:5e:39:0c:31: 96:5b:4c:83:bd:fe:bc:48:96:25:cb:4c:e7:59:39:b1:60:c1: 12:16:75:1b:ad:e5:bc:8b:54:42:65:50:e2:a9:31:02:21:6a: 25:8f:ca:42:f2:80:e3:ea:10:0a:27:a1:b2:ef:5d:50:5d:63: d5:de:03:76:69:b5:6a:42:be:4e:aa:35:11:d9:87:74:dd:9f: fd:e0:ad:8d:37:01:0b:da:08:fd:b0:1f:8d:3f:4f:6b:fe:a1: 41:3c:f3:ab:49:92:8f:a6:7e:6a:2a:33:8c:87:a9:1d:39:52: b3:71:0e:17:87:87:4b:69:9d:00:7d:f7:10:93:d6:47:df:cd: ea:b0:9b:29:34:cc:39:a2:fb:66:db:f5:47:e5:0e:cd:c3:6e: 97:ea:b6:fe -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjdDNTExMC8GA1UEBRMoNTc1QTZFRDMwQzM3M0FENDM0RDE1QTY2NUREQTJFNzY0 RUM4OUFDQTAeFw0yNDEwMTUwOTQ2MTBaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MGUzOWUyLTlkMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0DJZrZsb+6ZS70NEkqm2EJjrgMywKNgNw/9SCyQUG/HCYOmludamIPkVEi+tC bLYeLg7PtgBEciGqMl+NfDRQE1izgy9rEtf7o8Wic9CTJbG1nUZThx5vNNQ53j0+ VcGdr/C2w45JUPOG2BXkxqyg0eqFaiNMxyw3KLm6zCDinrN2QplnYc/RjSLOlkfM rtIhUjTNiSgfrehwYmU3mOHEiXPAVTsVMZi/KrNxrW7t6m0LV5KTtfkxfMGfSSzD XE5QNVegebxsKKdYv6YtxvgIqkxtkkyI2+Do8RqO1P5KKw0hQU3Jw1TFYgrZWRCR bzVCMJtKZ7Qn3pz8eVcDFPE5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYKGc1lVv oJAHcy0hYwT4qXXj7ywwHwYDVR0jBBgwFoAUV1pu0ww3OtQ00VpmXdoudk7Imsow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyN0M1L0QwNjVBQkI0OEFE OTExRUY5ODFDODI4M0M0RjlBRTAyL1YxcHUwd3czT3RRMDBWcG1YZG91ZGs3SW1z by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVjFwdTB3dzNPdFEwMFZwbVhkb3VkazdJbXNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjdDNS9EMDY1QUJCNDhBRDkxMUVGOTgxQzgyODNDNEY5QUUwMi80RTlDQkVCRThB REExMUVGQkM0QzZFODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAeaDANBgkqhkiG9w0BAQsFAAOCAQEAttwRG1dT+eQPJqpJ KCKgy593SfzImDKQLuTSE8HcZU1BPSI0cmqaWuXL7yT2U4irkwFd6L8FHOkIVMTW QoBqXyfnadn2BQvhSK8qJSTNWEfLQpE0IVea+4lMucdZKEX7UPK+1+OAlQteOQwx lltMg73+vEiWJctM51k5sWDBEhZ1G63lvItUQmVQ4qkxAiFqJY/KQvKA4+oQCieh su9dUF1j1d4Ddmm1akK+Tqo1EdmHdN2f/eCtjTcBC9oI/bAfjT9Pa/6hQTzzq0mS j6Z+aiozjIepHTlSs3EOF4eHS2mdAH33EJPWR9/N6rCbKTTMOaL7Ztv1R+UOzcNu l+q2/g== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:07 2024 by rpki-client on console-ams.rpki-client.org