$ rpki-client -vvf rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/34B9DBFAC5C011EF88F56A0AC4F9AE02.roa File: 34B9DBFAC5C011EF88F56A0AC4F9AE02.roa (raw, json) Hash identifier: Q0xEzY7OClm7DHfEFVGlhio77iseRkYBQy+gJxQGWpg= Subject key identifier: 10:93:B0:0E:1E:D4:81:43:B4:0B:B7:6A:60:8C:56:DF:53:FE:64:7B Certificate issuer: /CN=A918CC02/serialNumber=7F067A22A4A9E096FD86A6BA355A59249067D80C Certificate serial: 0D Authority key identifier: 7F:06:7A:22:A4:A9:E0:96:FD:86:A6:BA:35:5A:59:24:90:67:D8:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/34B9DBFAC5C011EF88F56A0AC4F9AE02.roa Signing time: Sun 29 Dec 2024 08:37:58 +0000 ROA not before: Sun 29 Dec 2024 08:37:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153385 IP address blocks: 160.191.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.crl rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CC02 Validity Not Before: Dec 29 08:37:58 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67710a66-3bda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f2:69:08:8e:fd:59:d5:d8:b5:f5:99:08:2b: 08:2c:d3:e1:34:f9:2f:15:c3:ca:e4:8b:90:6b:05: 44:8b:39:70:45:19:6b:f0:32:a8:b7:96:67:40:71: 81:ae:33:d3:9b:94:33:3b:8d:b6:bd:32:3d:25:1e: 6a:48:ad:42:ec:7e:dd:74:18:ea:c4:d9:9f:08:b8: 01:60:23:7b:01:df:8d:41:89:5d:63:e0:44:af:2e: f3:d5:df:12:fc:09:20:55:99:5a:36:4a:ae:e3:ba: 66:07:64:6d:8b:80:18:5b:14:f8:94:d8:7c:02:a6: 5a:39:56:4b:a1:68:79:19:63:7d:54:33:b0:47:1b: fb:e9:20:a1:30:db:09:dc:5a:43:a8:48:73:93:cd: 5c:41:6a:21:ef:1a:5a:cb:fa:a9:2d:0e:7b:90:d9: d4:17:8f:9b:88:b8:67:f7:8d:f7:78:4d:f7:67:c0: 27:b6:2f:6e:11:5f:d6:6d:c9:f6:ec:74:d1:0f:87: af:aa:80:c9:80:5d:b1:89:79:ca:5e:a3:78:d0:c1: 16:03:e0:de:d5:91:1d:48:7d:8a:62:c5:6c:96:8f: c8:7b:69:21:dd:79:63:34:c0:8b:45:5f:cd:a0:f7: bd:8e:a9:89:c7:49:7a:35:47:82:1c:dc:c8:bb:6d: 79:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:93:B0:0E:1E:D4:81:43:B4:0B:B7:6A:60:8C:56:DF:53:FE:64:7B X509v3 Authority Key Identifier: keyid:7F:06:7A:22:A4:A9:E0:96:FD:86:A6:BA:35:5A:59:24:90:67:D8:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/34B9DBFAC5C011EF88F56A0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.150.0/24 Signature Algorithm: sha256WithRSAEncryption 01:29:e8:6f:97:a4:23:4e:76:b9:f4:20:46:bb:0a:03:ae:f0: 09:04:22:80:51:ca:a0:ef:ed:c9:0f:48:b9:74:47:74:ea:cf: e8:a8:14:24:7d:97:01:18:81:d2:cc:ef:df:67:d1:05:a3:83: c8:d7:35:30:6f:fe:49:46:f4:3e:d7:b8:03:60:1f:59:df:56: 31:ad:fe:bf:d1:d3:8e:ed:64:c7:57:88:b6:fd:86:89:73:01: 41:11:ce:04:29:35:1e:b8:d8:bb:02:fc:5c:de:aa:4a:09:df: 42:0b:d2:0b:36:7b:5e:30:84:ed:06:78:d9:5b:16:f6:df:46: b3:7e:ab:28:4e:cc:e8:5c:0b:33:d9:5b:62:ef:c5:86:a4:2c: 79:85:6d:d4:82:07:5f:2c:7e:b5:de:4e:8e:8d:75:70:ca:a3: 67:a2:23:18:f8:61:a7:4d:ae:be:19:6c:a9:93:e3:92:aa:7a: c4:57:29:08:1d:d8:ae:46:83:fc:a5:f6:c0:06:9a:c6:b8:ac: 45:e5:61:66:e7:fa:de:22:91:24:27:3c:12:70:86:9d:ef:d9: bd:94:ae:c5:94:65:6f:05:3c:7d:13:c6:31:c1:8d:66:1e:a0: 69:29:22:51:33:a6:41:e5:a5:a4:9f:2e:88:9a:6e:96:77:26: 37:d3:74:38 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 Q0MwMjExMC8GA1UEBRMoN0YwNjdBMjJBNEE5RTA5NkZEODZBNkJBMzU1QTU5MjQ5 MDY3RDgwQzAeFw0yNDEyMjkwODM3NThaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzEwYTY2LTNiZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR8mkIjv1Z1di19ZkIKwgs0+E0+S8Vw8rki5BrBUSLOXBFGWvwMqi3lmdAcYGu M9OblDM7jba9Mj0lHmpIrULsft10GOrE2Z8IuAFgI3sB341BiV1j4ESvLvPV3xL8 CSBVmVo2Sq7jumYHZG2LgBhbFPiU2HwCplo5VkuhaHkZY31UM7BHG/vpIKEw2wnc WkOoSHOTzVxBaiHvGlrL+qktDnuQ2dQXj5uIuGf3jfd4TfdnwCe2L24RX9Ztyfbs dNEPh6+qgMmAXbGJecpeo3jQwRYD4N7VkR1IfYpixWyWj8h7aSHdeWM0wItFX82g 972OqYnHSXo1R4Ic3Mi7bXk3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEJOwDh7U gUO0C7dqYIxW31P+ZHswHwYDVR0jBBgwFoAUfwZ6IqSp4Jb9hqa6NVpZJJBn2Aww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDQzAyLzY4MEM2MjQ2Qjg2 QjExRUY5QTZBNTA1OEM0RjlBRTAyL2Z3WjZJcVNwNEpiOWhxYTZOVnBaSkpCbjJB dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZndaNklxU3A0SmI5aHFhNk5WcFpKSkJuMkF3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0MwMi82ODBDNjI0NkI4NkIxMUVGOUE2QTUwNThDNEY5QUUwMi8zNEI5REJGQUM1 QzAxMUVGODhGNTZBMEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/ljANBgkqhkiG9w0BAQsFAAOCAQEAASnob5ekI052ufQg RrsKA67wCQQigFHKoO/tyQ9IuXRHdOrP6KgUJH2XARiB0szv32fRBaODyNc1MG/+ SUb0Pte4A2AfWd9WMa3+v9HTju1kx1eItv2GiXMBQRHOBCk1HrjYuwL8XN6qSgnf QgvSCzZ7XjCE7QZ42VsW9t9Gs36rKE7M6FwLM9lbYu/FhqQseYVt1IIHXyx+td5O jo11cMqjZ6IjGPhhp02uvhlsqZPjkqp6xFcpCB3YrkaD/KX2wAaaxrisReVhZuf6 3iKRJCc8EnCGne/ZvZSuxZRlbwU8fRPGMcGNZh6gaSkiUTOmQeWlpJ8uiJpulncm N9N0OA== -----END CERTIFICATE-----Generated at Wed Feb 5 23:11:29 2025 by rpki-client