$ rpki-client -vvf rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/AF9A0636B86B11EFA561215AC4F9AE02.roa File: AF9A0636B86B11EFA561215AC4F9AE02.roa (raw, json) Hash identifier: IQuVhRxEVEVGhjHjWm/5ZT8FALp9LUYdzNWsXFb85sc= Subject key identifier: 58:29:F1:F5:80:23:87:A8:3F:56:83:2B:25:94:8C:80:D1:D6:6C:FC Certificate issuer: /CN=A918CC02/serialNumber=7F067A22A4A9E096FD86A6BA355A59249067D80C Certificate serial: 02 Authority key identifier: 7F:06:7A:22:A4:A9:E0:96:FD:86:A6:BA:35:5A:59:24:90:67:D8:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/AF9A0636B86B11EFA561215AC4F9AE02.roa Signing time: Thu 12 Dec 2024 09:30:12 +0000 ROA not before: Thu 12 Dec 2024 09:30:12 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 10075 IP address blocks: 160.191.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.crl rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CC02 Validity Not Before: Dec 12 09:30:12 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675aad24-1c2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:32:96:54:cf:8f:1d:2b:a8:6a:f8:5d:ba:f1: 09:82:33:07:ce:0f:4d:ec:ca:9f:44:c7:f2:28:67: e5:8d:d3:71:dd:86:ed:08:99:c2:38:de:60:12:f1: 10:7b:f2:4e:e8:79:97:0f:22:68:1c:ba:38:88:c6: 4a:d8:39:29:bd:89:e6:a9:25:f8:63:a0:8c:9b:a9: 7f:fb:d1:55:fe:a9:d0:dc:ce:72:7d:9b:b0:97:28: db:47:e9:d1:9b:c2:e5:84:4f:cf:61:6d:f7:81:55: be:6c:52:b5:33:b6:ef:33:fc:48:95:e7:9d:44:bd: 72:44:4d:d8:ec:5d:10:4d:cb:39:76:7e:73:50:f5: 72:d6:25:dd:64:ee:01:d3:83:30:84:23:b7:39:80: c5:da:50:f5:56:47:e0:1f:a5:b6:40:e7:ec:b4:98: ec:71:4e:91:cf:f5:7a:20:d5:65:36:b2:a0:7b:e3: 9c:bb:c9:d4:d3:89:c8:ee:a2:92:1b:06:a0:b4:c2: 37:d7:e2:72:22:94:a1:64:bc:e6:ae:a2:c2:63:07: 0c:0c:43:f0:86:05:fd:92:b4:8b:4d:17:23:d6:d5: f1:41:0b:92:af:f9:ba:35:d3:55:3f:5b:48:36:92: 4a:b1:17:9c:ec:ce:e1:d3:dd:01:4c:a5:e6:e7:5d: 3f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:29:F1:F5:80:23:87:A8:3F:56:83:2B:25:94:8C:80:D1:D6:6C:FC X509v3 Authority Key Identifier: keyid:7F:06:7A:22:A4:A9:E0:96:FD:86:A6:BA:35:5A:59:24:90:67:D8:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fwZ6IqSp4Jb9hqa6NVpZJJBn2Aw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CC02/680C6246B86B11EF9A6A5058C4F9AE02/AF9A0636B86B11EFA561215AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.151.0/24 Signature Algorithm: sha256WithRSAEncryption 03:a6:95:bc:be:51:79:59:88:0d:47:73:ec:dd:8c:18:97:6c: 8f:f0:bb:49:7f:d0:7f:80:51:02:dc:4a:57:5a:13:62:93:46: 72:b9:c3:8f:c0:1a:07:83:90:a4:87:09:25:25:f6:25:a0:78: 33:48:23:bc:36:b6:94:fe:b0:ee:7b:f6:4a:d5:a2:7e:90:a3: f5:c7:67:b1:23:0b:45:1f:45:8c:55:67:c7:3a:83:ca:2a:b1: 47:86:01:b3:43:18:4f:3e:2a:1e:f9:46:0c:5e:43:8c:cc:3b: 35:ab:56:c0:2d:a3:88:71:fc:bb:6a:27:a1:90:17:7b:e3:4f: 23:72:d3:03:43:32:d9:75:79:30:dd:03:b1:25:a1:26:c3:ae: f8:8d:38:6b:c3:87:eb:09:ae:47:19:6f:9c:92:91:dd:30:9a: 45:e9:82:f9:00:80:84:dc:5c:6b:1f:de:be:58:23:1c:92:76: 6b:27:77:d1:5d:2f:4f:b0:f7:a3:03:90:86:08:e9:a5:25:09: 7b:bb:0b:66:b2:79:0a:22:99:94:fe:be:c1:65:ca:9b:fe:da: ee:8b:e5:71:1c:47:4c:c2:f5:f4:76:be:a7:d7:a0:31:c3:c3: 14:3e:b7:54:8c:75:41:f0:9e:b2:20:ce:81:a0:da:64:98:ce: 20:c1:c3:aa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 Q0MwMjExMC8GA1UEBRMoN0YwNjdBMjJBNEE5RTA5NkZEODZBNkJBMzU1QTU5MjQ5 MDY3RDgwQzAeFw0yNDEyMTIwOTMwMTJaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NWFhZDI0LTFjMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSMpZUz48dK6hq+F268QmCMwfOD03syp9Ex/IoZ+WN03Hdhu0ImcI43mAS8RB7 8k7oeZcPImgcujiIxkrYOSm9ieapJfhjoIybqX/70VX+qdDcznJ9m7CXKNtH6dGb wuWET89hbfeBVb5sUrUztu8z/EiV551EvXJETdjsXRBNyzl2fnNQ9XLWJd1k7gHT gzCEI7c5gMXaUPVWR+AfpbZA5+y0mOxxTpHP9Xog1WU2sqB745y7ydTTicjuopIb BqC0wjfX4nIilKFkvOauosJjBwwMQ/CGBf2StItNFyPW1fFBC5Kv+bo101U/W0g2 kkqxF5zszuHT3QFMpebnXT+lAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWCnx9YAj h6g/VoMrJZSMgNHWbPwwHwYDVR0jBBgwFoAUfwZ6IqSp4Jb9hqa6NVpZJJBn2Aww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDQzAyLzY4MEM2MjQ2Qjg2 QjExRUY5QTZBNTA1OEM0RjlBRTAyL2Z3WjZJcVNwNEpiOWhxYTZOVnBaSkpCbjJB dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZndaNklxU3A0SmI5aHFhNk5WcFpKSkJuMkF3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0MwMi82ODBDNjI0NkI4NkIxMUVGOUE2QTUwNThDNEY5QUUwMi9BRjlBMDYzNkI4 NkIxMUVGQTU2MTIxNUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/lzANBgkqhkiG9w0BAQsFAAOCAQEAA6aVvL5ReVmIDUdz 7N2MGJdsj/C7SX/Qf4BRAtxKV1oTYpNGcrnDj8AaB4OQpIcJJSX2JaB4M0gjvDa2 lP6w7nv2StWifpCj9cdnsSMLRR9FjFVnxzqDyiqxR4YBs0MYTz4qHvlGDF5DjMw7 NatWwC2jiHH8u2onoZAXe+NPI3LTA0My2XV5MN0DsSWhJsOu+I04a8OH6wmuRxlv nJKR3TCaRemC+QCAhNxcax/evlgjHJJ2ayd30V0vT7D3owOQhgjppSUJe7sLZrJ5 CiKZlP6+wWXKm/7a7ovlcRxHTML19Ha+p9egMcPDFD63VIx1QfCesiDOgaDaZJjO IMHDqg== -----END CERTIFICATE-----Generated at Wed Feb 5 22:54:21 2025 by rpki-client