$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2990643AA0DE11EF9A38DA24C4F9AE02.roa File: 2990643AA0DE11EF9A38DA24C4F9AE02.roa (raw, json) Hash identifier: jn6RnstnuNF0jLe2K4ATSjRfhwWWP18f3m9frGtSvHk= Subject key identifier: 0C:02:7D:44:26:60:2E:BD:49:0F:84:E1:CF:CF:89:0D:DF:3E:93:42 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1BE0 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2990643AA0DE11EF9A38DA24C4F9AE02.roa Signing time: Tue 12 Nov 2024 10:09:11 +0000 ROA not before: Tue 12 Nov 2024 10:09:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141480 IP address blocks: 160.191.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7136 (0x1be0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Nov 12 10:09:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67332947-cd28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:eb:b9:68:00:f9:04:49:b4:d8:f5:20:14:21: d8:be:3d:e3:7c:8e:74:e0:76:88:f6:3e:6b:1e:ae: dc:ad:73:66:dc:3c:52:d1:9b:02:49:bc:f4:0f:87: 26:ad:9a:2e:b6:ff:95:38:a2:07:46:bb:c0:c8:0e: 9c:be:95:e0:59:15:de:76:30:de:9e:3a:2d:60:6c: 46:b8:cc:08:8f:6a:74:a4:b0:c2:21:2e:7a:8d:df: 07:67:55:44:92:c0:93:22:14:cd:d5:2c:0c:77:4a: 2d:da:05:9d:56:5d:b2:18:b3:9e:9c:5d:b5:51:3d: c1:f2:0f:69:2d:c3:5f:6f:65:1d:bb:df:78:ed:8a: 27:65:af:e6:d4:c3:ff:d8:8f:58:17:95:4d:86:a8: 2e:cf:a5:b8:fe:37:43:37:6c:6d:64:d9:f0:d4:d3: 8b:bd:e0:02:12:ea:f5:67:ff:ac:85:be:bd:6f:67: 6f:97:af:fa:3a:fa:5c:e0:d2:4e:6e:b2:b5:76:a4: f7:93:27:82:89:42:2e:77:fb:96:12:bc:d1:4b:46: 6e:97:da:4f:20:6c:5b:7e:6c:9e:6a:6d:06:40:7e: e7:30:a1:d3:bf:e9:45:f8:80:5f:81:7a:ae:f1:8e: a5:aa:5c:15:c7:78:bc:de:44:6a:04:06:04:56:f3: 27:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:02:7D:44:26:60:2E:BD:49:0F:84:E1:CF:CF:89:0D:DF:3E:93:42 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2990643AA0DE11EF9A38DA24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.125.0/24 Signature Algorithm: sha256WithRSAEncryption 46:8d:95:97:7a:cf:55:92:0f:08:b6:ff:20:b3:1f:5c:28:dd: 43:d6:ce:0b:46:73:b5:98:de:aa:3d:ce:30:0d:54:01:29:05: 57:be:3c:69:56:dc:c0:6d:1c:85:7e:44:ac:71:d3:49:f2:bf: a1:88:c5:99:6c:72:b2:e4:0c:7c:83:6b:ac:96:6b:44:5d:00: cd:77:46:6b:d2:12:6c:76:00:71:c1:80:a7:3d:5b:97:90:ba: a4:f1:94:b5:16:d3:44:ec:af:41:c6:63:01:62:45:c5:46:04: 22:9c:96:be:a2:07:6f:87:fc:ee:03:a6:73:f4:fd:52:e5:68: 63:9f:a3:c8:a4:9d:e2:57:cc:16:ab:c3:31:e3:c8:df:08:d3: a4:47:17:a9:77:bb:72:e4:a8:60:0f:26:be:15:77:05:22:dd: e8:d9:10:57:36:cd:fa:3c:47:93:96:06:58:bf:a1:04:a7:75: c9:0e:31:c6:48:0d:52:87:62:c1:d2:9c:e2:d6:dc:20:be:27: 54:af:4f:7f:20:92:e1:ae:15:1b:8b:68:1d:65:8d:5f:37:1b: 74:e2:33:9a:79:ff:31:74:04:41:b4:f2:f1:55:da:ec:77:ee: cb:86:02:40:75:1e:67:06:7f:01:f9:06:16:d0:d6:8a:3d:9e: 29:71:73:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQxMTEyMTAwOTExWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzMjk0Ny1jZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ou5aAD5BEm02PUgFCHYvj3jfI504HaI9j5rHq7crXNm3DxS0ZsCSbz0D4cm rZoutv+VOKIHRrvAyA6cvpXgWRXedjDenjotYGxGuMwIj2p0pLDCIS56jd8HZ1VE ksCTIhTN1SwMd0ot2gWdVl2yGLOenF21UT3B8g9pLcNfb2Udu9947YonZa/m1MP/ 2I9YF5VNhqguz6W4/jdDN2xtZNnw1NOLveACEur1Z/+shb69b2dvl6/6Ovpc4NJO brK1dqT3kyeCiUIud/uWErzRS0Zul9pPIGxbfmyeam0GQH7nMKHTv+lF+IBfgXqu 8Y6lqlwVx3i83kRqBAYEVvMnUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAwCfUQm YC69SQ+E4c/PiQ3fPpNCMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjk5MDY0M0FB MERFMTFFRjlBMzhEQTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgv30wDQYJKoZIhvcNAQELBQADggEBAEaNlZd6z1WSDwi2 /yCzH1wo3UPWzgtGc7WY3qo9zjANVAEpBVe+PGlW3MBtHIV+RKxx00nyv6GIxZls crLkDHyDa6yWa0RdAM13RmvSEmx2AHHBgKc9W5eQuqTxlLUW00Tsr0HGYwFiRcVG BCKclr6iB2+H/O4DpnP0/VLlaGOfo8ikneJXzBarwzHjyN8I06RHF6l3u3LkqGAP Jr4VdwUi3ejZEFc2zfo8R5OWBli/oQSndckOMcZIDVKHYsHSnOLW3CC+J1SvT38g kuGuFRuLaB1ljV83G3TiM5p5/zF0BEG08vFV2ux37suGAkB1HmcGfwH5BhbQ1oo9 nilxcyU= -----END CERTIFICATE-----Generated at Fri Nov 22 06:35:54 2024 by rpki-client on console-ams.rpki-client.org