$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/CE1E14AE64DC11EFBE5A023AC4F9AE02.roa File: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (raw, json) Hash identifier: TL1SnZ/gVu4gXR6fktiVjS67hjGfn2PQM4oWEdnN0mQ= Subject key identifier: D3:92:42:B1:D0:13:D9:1E:1F:31:74:CB:D9:37:97:E0:9D:59:24:49 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: 02 Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/CE1E14AE64DC11EFBE5A023AC4F9AE02.roa Signing time: Wed 28 Aug 2024 01:28:19 +0000 ROA not before: Wed 28 Aug 2024 01:28:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 965 IP address blocks: 160.30.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Aug 28 01:28:19 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66ce7d32-c806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:eb:36:c8:8c:7f:d0:74:49:40:0c:59:c2:19: 4b:ab:47:16:1a:c6:ae:20:75:63:25:27:50:f4:a9: b1:b5:f7:23:4a:aa:5d:f6:dd:4e:23:0e:e6:a6:b2: e6:f8:75:22:c4:0a:da:79:a1:4c:5c:2b:af:6b:9a: eb:95:ae:12:ba:02:c7:39:77:50:3a:f1:d4:07:57: 4e:37:36:21:26:eb:59:40:42:33:04:a4:67:95:39: 3e:88:6f:ca:98:58:67:f4:3a:bd:d1:53:6b:94:c5: cd:2c:37:84:b5:b3:9b:0b:e2:64:4e:64:e3:a6:45: 31:19:b3:3f:16:65:6b:ae:ac:51:a8:22:14:fd:f9: a0:a5:f2:e4:b5:2a:40:f3:14:90:bf:03:a1:5f:e3: 53:5d:39:47:69:69:d1:ff:1f:6b:6f:6d:6d:d8:24: 32:36:be:21:2d:a9:1e:85:8e:96:9b:9e:51:b3:e8: 4e:49:28:bc:ae:b6:b5:cf:7c:81:16:e8:7b:72:91: 84:c9:ed:c0:d8:e7:f6:b3:d4:5e:74:cb:5f:37:73: 1d:f1:07:e1:55:ba:7f:dd:ed:3f:ad:08:30:fa:60: f9:5a:de:e6:8c:10:f3:2d:98:74:f4:b3:81:b9:ff: 1d:ea:31:b0:a4:86:58:8c:03:49:e8:72:8e:9e:e9: c6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:92:42:B1:D0:13:D9:1E:1F:31:74:CB:D9:37:97:E0:9D:59:24:49 X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/CE1E14AE64DC11EFBE5A023AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.208.0/24 Signature Algorithm: sha256WithRSAEncryption 81:0d:55:87:d9:ac:ec:2e:bb:d7:1f:2e:d1:92:b0:b4:c4:a1: e0:eb:ca:46:1c:39:30:7d:02:f2:89:83:2d:fe:11:c6:13:3c: f0:a5:2e:27:aa:ea:34:ae:32:36:99:19:4c:b3:7d:dc:25:b3: 0f:74:b1:2b:78:76:85:04:7b:7d:33:df:df:28:ef:4d:f2:49: a2:03:6c:df:ec:54:36:ec:05:fb:86:51:f4:f6:7a:d7:50:bd: c4:04:f2:87:d9:47:ad:e6:76:e2:a0:f8:9e:70:54:00:4a:49: 27:85:5f:36:eb:25:ed:9b:47:ca:82:a4:fe:51:67:29:a9:d3: 98:9b:61:85:ee:ac:e0:fd:74:c8:0b:56:b5:ec:39:79:2c:16: 19:ec:65:d3:3e:d6:e4:84:fa:ae:aa:12:80:7b:0b:0b:a0:f6: 7d:92:8f:65:d0:b3:14:71:96:49:3b:65:eb:80:27:9e:b5:66: 3f:65:88:e0:df:d1:49:ec:bf:7a:27:25:63:c2:72:2d:3f:db: 8f:6b:22:ec:a4:66:ae:bb:2f:b9:bb:ba:6f:9c:44:c6:22:04: 36:5f:3b:59:5c:cf:66:a6:c8:4a:bf:21:d0:fd:01:69:d6:30: 2b:d1:28:c2:f8:61:ff:ba:e2:9a:02:d5:8d:8a:38:cb:7e:ed: ca:69:32:5f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 REI3RTExMC8GA1UEBRMoMDJEQTEzMjdGNTJDNDAyM0EzODIxQUM4Nzg1MEM5MTdE OEU4MzUyNzAeFw0yNDA4MjgwMTI4MTlaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2U3ZDMyLWM4MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP6zbIjH/QdElADFnCGUurRxYaxq4gdWMlJ1D0qbG19yNKql323U4jDuamsub4 dSLECtp5oUxcK69rmuuVrhK6Asc5d1A68dQHV043NiEm61lAQjMEpGeVOT6Ib8qY WGf0Or3RU2uUxc0sN4S1s5sL4mROZOOmRTEZsz8WZWuurFGoIhT9+aCl8uS1KkDz FJC/A6Ff41NdOUdpadH/H2tvbW3YJDI2viEtqR6FjpabnlGz6E5JKLyutrXPfIEW 6HtykYTJ7cDY5/az1F50y183cx3xB+FVun/d7T+tCDD6YPla3uaMEPMtmHT0s4G5 /x3qMbCkhliMA0noco6e6caxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU05JCsdAT 2R4fMXTL2TeX4J1ZJEkwHwYDVR0jBBgwFoAUAtoTJ/UsQCOjghrIeFDJF9joNScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEQjdFLzlDM0ZFQ0RDNjRE QzExRUZCMzFFQTgzOUM0RjlBRTAyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05T Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQXRvVEpfVXNRQ09qZ2hySWVGREpGOWpvTlNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REI3RS85QzNGRUNEQzY0REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9DRTFFMTRBRTY0 REMxMUVGQkU1QTAyM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAe0DANBgkqhkiG9w0BAQsFAAOCAQEAgQ1Vh9ms7C671x8u 0ZKwtMSh4OvKRhw5MH0C8omDLf4RxhM88KUuJ6rqNK4yNpkZTLN93CWzD3SxK3h2 hQR7fTPf3yjvTfJJogNs3+xUNuwF+4ZR9PZ611C9xATyh9lHreZ24qD4nnBUAEpJ J4VfNusl7ZtHyoKk/lFnKanTmJthhe6s4P10yAtWtew5eSwWGexl0z7W5IT6rqoS gHsLC6D2fZKPZdCzFHGWSTtl64AnnrVmP2WI4N/RSey/eiclY8JyLT/bj2si7KRm rrsvubu6b5xExiIENl87WVzPZqbISr8h0P0BadYwK9Eowvhh/7rimgLVjYo4y37t ymkyXw== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:19 2024 by rpki-client on console-fra.rpki-client.org