$ rpki-client -vvf rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/84FBDFD219ED11ECB996CC4FC4F9AE02.roa File: 84FBDFD219ED11ECB996CC4FC4F9AE02.roa (raw, json) Hash identifier: gwgFiEpnmvWDubyXGZfYc9G6qjC4Kh/nDliGbejgryA= Subject key identifier: 69:31:80:DD:3F:E6:62:E8:D1:A8:3F:68:A2:76:B3:46:99:CE:B4:C3 Certificate issuer: /CN=A9186B80/serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762 Certificate serial: 0487 Authority key identifier: BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/84FBDFD219ED11ECB996CC4FC4F9AE02.roa Signing time: Sat 05 Oct 2024 00:34:45 +0000 ROA not before: Sat 05 Oct 2024 00:34:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14537 IP address blocks: 160.32.240.0/21 maxlen: 22 160.32.240.0/23 maxlen: 23 160.32.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.crl rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186B80/serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762 Validity Not Before: Oct 5 00:34:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670089a5-3ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:78:d9:b0:14:fe:7f:67:c8:3b:27:fb:88: b5:31:b0:0c:60:71:88:f1:ca:9f:2d:6e:bb:b0:9b: 5a:7f:88:39:ab:f7:cc:c8:41:a5:1c:60:36:76:d4: 47:31:be:91:9d:28:71:6d:76:a9:1c:fb:6d:8d:16: 1a:61:92:0c:15:0c:4a:4f:0a:a1:73:19:24:d7:8c: 3c:5a:53:22:6f:ce:92:7e:36:e2:f8:cb:a5:df:74: dc:50:d7:d1:09:10:41:2e:46:d1:25:cf:29:63:dd: f0:9d:1b:4a:42:37:42:08:be:d9:00:34:4a:10:d8: 69:37:7d:68:fd:03:cf:9c:10:7c:bb:f0:c5:f8:0f: a9:f3:5c:d0:16:73:b0:2e:3e:16:5f:07:a2:7e:d3: 36:ef:0f:96:14:4e:2e:c3:ba:5b:e7:04:67:9e:d5: e0:0a:94:e4:26:b4:73:61:da:a7:2d:b3:2e:6e:67: c9:e4:56:36:db:77:22:97:c1:95:c4:0b:5a:f0:b9: fd:a6:44:24:c2:3f:32:1e:06:18:88:93:29:ba:be: d5:f4:f3:ee:77:67:28:20:ae:5f:63:3d:19:a5:ed: f7:ce:2e:8f:71:e6:ba:83:bc:73:52:32:6f:7b:3f: 5e:3f:b4:ff:c3:1e:32:56:5a:5e:b3:7a:72:55:3f: 35:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:31:80:DD:3F:E6:62:E8:D1:A8:3F:68:A2:76:B3:46:99:CE:B4:C3 X509v3 Authority Key Identifier: keyid:BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/84FBDFD219ED11ECB996CC4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.32.240.0/21 Signature Algorithm: sha256WithRSAEncryption 64:33:4c:37:49:38:da:5f:db:a4:db:d4:1d:01:a5:ab:75:0f: fe:c0:61:13:22:21:62:5e:1e:69:af:63:74:ad:19:94:f5:34: df:92:b5:79:cc:68:8c:3d:6e:d8:8d:6d:39:b0:93:81:80:fe: ff:a0:ff:d2:bc:ec:34:72:76:51:96:d9:d7:1c:04:d4:7b:26: 02:9d:37:8f:10:d7:6d:e3:e4:9b:b2:fb:4a:05:30:b6:fc:c8: 7a:03:17:0d:01:52:03:5c:b4:43:6f:47:e7:e6:b5:d1:8f:13: 09:44:3a:9f:6f:53:c9:d5:ef:1b:fd:bc:66:b1:30:a0:5a:e9: 47:cf:65:3b:dd:70:8a:55:bf:f1:2b:49:37:56:31:7c:77:dd: 53:50:57:d4:54:9b:84:eb:be:48:0b:07:96:d1:12:9e:85:2c: cb:bb:3c:86:39:55:a3:98:e9:cf:38:a9:84:5d:6b:1f:ee:41: 0b:bb:b3:6c:94:23:42:2f:73:5e:49:58:a6:c4:43:2d:d8:5d: 82:a9:d7:10:5d:33:7b:ca:51:9b:8b:55:67:d8:9b:e6:16:7b: ee:6e:71:54:0f:d2:38:0c:7c:99:23:7a:45:1b:32:75:9b:1a: 40:21:6c:ec:79:ab:af:d5:dd:08:13:8f:39:cf:17:64:49:02: b9:20:23:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZCODAxMTAvBgNVBAUTKEJEMUU3RTY0MUZGRDk2RDU3NDYxNTVGQzQyMUIxN0RE QzFBQTc3NjIwHhcNMjQxMDA1MDAzNDQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwODlhNS0zYWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNd42bAU/n9nyDsn+4i1MbAMYHGI8cqfLW67sJtaf4g5q/fMyEGlHGA2dtRH Mb6RnShxbXapHPttjRYaYZIMFQxKTwqhcxkk14w8WlMib86Sfjbi+Mul33TcUNfR CRBBLkbRJc8pY93wnRtKQjdCCL7ZADRKENhpN31o/QPPnBB8u/DF+A+p81zQFnOw Lj4WXweiftM27w+WFE4uw7pb5wRnntXgCpTkJrRzYdqnLbMubmfJ5FY223cil8GV xAta8Ln9pkQkwj8yHgYYiJMpur7V9PPud2coIK5fYz0Zpe33zi6Pcea6g7xzUjJv ez9eP7T/wx4yVlpes3pyVT818wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGkxgN0/ 5mLo0ag/aKJ2s0aZzrTDMB8GA1UdIwQYMBaAFL0efmQf/ZbVdGFV/EIbF93Bqndi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkI4MC9BRTZBQTFCNDEy M0IxMUVDOEExMzVGNDJDNEY5QUUwMi92UjUtWkJfOWx0VjBZVlg4UWhzWDNjR3Fk MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZSNS1aQl85bHRWMFlWWDhRaHNYM2NHcWQySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZCODAvQUU2QUExQjQxMjNCMTFFQzhBMTM1RjQyQzRGOUFFMDIvODRGQkRGRDIx OUVEMTFFQ0I5OTZDQzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOgIPAwDQYJKoZIhvcNAQELBQADggEBAGQzTDdJONpf26Tb 1B0Bpat1D/7AYRMiIWJeHmmvY3StGZT1NN+StXnMaIw9btiNbTmwk4GA/v+g/9K8 7DRydlGW2dccBNR7JgKdN48Q123j5Juy+0oFMLb8yHoDFw0BUgNctENvR+fmtdGP EwlEOp9vU8nV7xv9vGaxMKBa6UfPZTvdcIpVv/ErSTdWMXx33VNQV9RUm4TrvkgL B5bREp6FLMu7PIY5VaOY6c84qYRdax/uQQu7s2yUI0Ivc15JWKbEQy3YXYKp1xBd M3vKUZuLVWfYm+YWe+5ucVQP0jgMfJkjekUbMnWbGkAhbOx5q6/V3QgTjznPF2RJ ArkgI10= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:29 2024 by rpki-client on console-ams.rpki-client.org