$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/CD1FB5C2643611EFA2C41948C4F9AE02.roa File: CD1FB5C2643611EFA2C41948C4F9AE02.roa (raw, json) Hash identifier: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc= Subject key identifier: F0:74:F5:E1:54:4B:28:C2:E6:F2:51:2A:32:B0:AB:FE:7F:AB:76:B9 Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 02 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/CD1FB5C2643611EFA2C41948C4F9AE02.roa Signing time: Tue 27 Aug 2024 05:40:00 +0000 ROA not before: Tue 27 Aug 2024 05:40:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139058 IP address blocks: 160.30.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Aug 27 05:40:00 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66cd66b0-e6a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:24:ff:7a:93:db:14:e2:1a:8e:a6:e0:a1:ec: 5a:f9:13:c5:94:56:69:9d:f9:b7:16:b9:a3:28:ba: 8f:5e:fa:88:8c:85:79:0f:1f:55:57:91:8e:48:0b: cf:0f:13:f0:bb:35:16:6c:24:aa:5a:f8:37:97:c1: a9:9f:6f:8f:73:48:f7:5c:50:0f:ac:ee:6a:09:e8: 5a:e1:5e:30:5e:ec:0f:dc:6a:ad:c5:d1:bc:ac:8d: b0:39:60:18:8a:d3:63:19:19:6a:e0:8c:1c:2a:bf: 7e:f8:32:61:5b:d0:05:27:76:ae:45:c5:14:90:19: 5c:f6:f1:f1:c5:30:ae:eb:c9:8f:81:95:f5:1d:d8: 28:ab:0d:16:92:ad:c8:f0:7a:df:c5:36:d6:37:b9: f2:62:43:68:03:f8:c0:d7:09:17:ed:4f:72:2a:55: ed:81:1c:54:77:81:c3:9f:d4:bc:5d:f2:03:ad:8f: 70:f9:36:8a:8e:7d:0a:ac:84:6e:6f:b1:b4:9b:60: c3:ad:c7:c7:12:9b:e9:20:93:90:b8:c5:4e:7a:a3: a5:f1:bf:5e:8a:c3:37:ed:17:0a:94:a0:86:18:b7: be:f9:c0:7e:e5:57:d0:00:b1:63:d4:69:fd:dd:73: d6:8d:b0:67:ab:c6:7c:c5:9b:7f:de:da:e3:17:bf: 3b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:74:F5:E1:54:4B:28:C2:E6:F2:51:2A:32:B0:AB:FE:7F:AB:76:B9 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/CD1FB5C2643611EFA2C41948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.186.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:c8:30:0d:8a:8d:16:f2:53:a2:2e:01:a9:1b:39:66:79:9d: 4e:20:5f:6a:18:b5:a7:f1:89:52:03:60:d0:56:97:aa:a2:70: 1a:27:7d:50:6c:9e:dc:52:47:49:1f:23:f8:0f:0b:5d:7c:ed: b3:06:74:4e:31:c9:cc:28:ef:23:bc:6c:13:52:5f:b2:63:91: 9c:35:17:48:6b:02:04:ad:b5:9b:ed:35:e9:86:01:ab:61:41: 65:9e:d3:be:61:a1:09:67:e3:3c:b5:27:47:d4:f4:88:36:95: ca:6e:06:a7:44:15:a5:14:47:df:8f:1a:18:6b:06:a5:6c:49: 18:77:b8:cc:c4:bb:dc:3e:53:90:6f:63:e2:8b:3e:f5:a5:78: 63:26:e6:0b:52:a7:81:67:c9:86:9d:1b:fa:b1:f6:a5:69:cb: 83:7b:d0:4e:54:d6:1f:7f:ff:20:f0:4e:29:88:66:06:02:ae: be:e6:6e:82:9b:41:1d:ea:a5:e9:4e:85:05:12:d4:e2:f4:53: 47:83:d9:a1:0e:16:77:7e:9a:1d:d8:92:02:70:3c:08:55:76: 39:e1:12:83:ad:38:1c:c2:21:71:33:ab:7a:08:3d:ad:0d:2c: 38:bb:f9:43:7d:5f:23:78:c8:ed:3e:d9:a5:1a:6a:bc:0a:4c: 82:7c:bc:53 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NTBBRDExMC8GA1UEBRMoMEY2QjQ3MjBCMEEzNTcyMkQ4NUYzNDQ2RUZENDc0MEJE MzQxODM0RTAeFw0yNDA4MjcwNTQwMDBaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2Q2NmIwLWU2YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFJP96k9sU4hqOpuCh7Fr5E8WUVmmd+bcWuaMouo9e+oiMhXkPH1VXkY5IC88P E/C7NRZsJKpa+DeXwamfb49zSPdcUA+s7moJ6FrhXjBe7A/caq3F0bysjbA5YBiK 02MZGWrgjBwqv374MmFb0AUndq5FxRSQGVz28fHFMK7ryY+BlfUd2CirDRaSrcjw et/FNtY3ufJiQ2gD+MDXCRftT3IqVe2BHFR3gcOf1Lxd8gOtj3D5NoqOfQqshG5v sbSbYMOtx8cSm+kgk5C4xU56o6Xxv16KwzftFwqUoIYYt775wH7lV9AAsWPUaf3d c9aNsGerxnzFm3/e2uMXvzuFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8HT14VRL KMLm8lEqMrCr/n+rdrkwHwYDVR0jBBgwFoAUD2tHILCjVyLYXzRG79R0C9NBg04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1MEFELzYwRUJFMUFDNjQz NDExRUY4NDJGQzYyMEM0RjlBRTAyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDJ0SElMQ2pWeUxZWHpSRzc5UjBDOU5CZzA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9DRDFGQjVDMjY0 MzYxMUVGQTJDNDE5NDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAeujANBgkqhkiG9w0BAQsFAAOCAQEAK8gwDYqNFvJToi4B qRs5ZnmdTiBfahi1p/GJUgNg0FaXqqJwGid9UGye3FJHSR8j+A8LXXztswZ0TjHJ zCjvI7xsE1JfsmORnDUXSGsCBK21m+016YYBq2FBZZ7TvmGhCWfjPLUnR9T0iDaV ym4Gp0QVpRRH348aGGsGpWxJGHe4zMS73D5TkG9j4os+9aV4YybmC1KngWfJhp0b +rH2pWnLg3vQTlTWH3//IPBOKYhmBgKuvuZugptBHeql6U6FBRLU4vRTR4PZoQ4W d36aHdiSAnA8CFV2OeESg604HMIhcTOregg9rQ0sOLv5Q31fI3jI7T7ZpRpqvApM gny8Uw== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:22 2024 by rpki-client on console-fra.rpki-client.org