$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B4C80DDE8ADE11EFBA7E1E44C4F9AE02.roa File: B4C80DDE8ADE11EFBA7E1E44C4F9AE02.roa (raw, json) Hash identifier: SflbjUufzjTPR6ZfEUuBWtHbWaCmS5Hv5LHUltpWI0w= Subject key identifier: 08:56:3A:F8:D3:99:84:B4:92:1C:3B:D0:D1:96:BE:D2:2A:FD:5B:4D Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1BA1 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B4C80DDE8ADE11EFBA7E1E44C4F9AE02.roa Signing time: Tue 15 Oct 2024 10:17:40 +0000 ROA not before: Tue 15 Oct 2024 10:17:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 153228 IP address blocks: 160.187.250.0/24 maxlen: 24 160.187.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7073 (0x1ba1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Oct 15 10:17:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=670e4143-010f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:33:b5:58:5f:eb:58:14:0a:a2:c9:b0:cb:1a: 51:63:34:c5:f3:5e:e9:7d:ba:32:d7:78:de:8a:6a: 32:7e:ad:f0:64:20:19:9c:c4:b3:79:d9:00:06:d0: 2f:0e:87:7e:74:72:b4:5e:40:e3:c3:cc:e5:4e:e9: 4f:74:a2:24:53:ee:d3:b7:67:d7:6d:a9:8f:3b:ea: 25:e0:a3:29:fa:90:21:a6:09:eb:b1:53:d4:e1:60: 6b:e8:05:a8:5f:52:c7:c9:1a:51:77:b7:63:79:fb: 20:8f:38:8a:07:f4:ec:2a:76:93:95:3e:56:5c:8e: 48:5c:b9:52:2b:52:e5:f5:ef:f8:57:a8:7f:10:ae: 0e:72:3f:67:55:8f:bf:93:5e:4b:77:7c:fa:39:62: 97:b0:5a:88:6c:8c:e4:b0:e4:5e:53:0f:a1:15:83: af:7e:46:1a:d0:c5:bd:95:20:1b:63:be:43:15:ea: 67:2b:cc:23:68:6d:ca:e2:9b:9f:45:5b:a3:e6:85: a4:4d:18:3e:c3:e0:3a:d5:9e:3b:dc:41:a6:ed:29: 75:e8:4c:b9:54:3e:34:79:38:96:1d:14:79:4b:45: 3e:5c:3f:8c:b3:a3:02:59:6d:1a:45:27:a7:af:dc: 9b:85:c0:74:9b:60:f6:8f:db:ae:82:83:58:6d:f6: 1f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:56:3A:F8:D3:99:84:B4:92:1C:3B:D0:D1:96:BE:D2:2A:FD:5B:4D X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B4C80DDE8ADE11EFBA7E1E44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.250.0/23 Signature Algorithm: sha256WithRSAEncryption 64:c9:4e:b0:80:cd:e9:1f:39:98:0b:5e:66:d1:7a:93:b1:cc: f5:a8:93:ad:44:c8:bc:13:db:fa:38:01:ed:b4:13:92:fc:98: 8e:7b:6d:6c:44:a7:18:3c:30:13:dc:8b:ba:11:cb:65:d2:28: 73:de:98:bc:98:c0:92:03:48:1a:bc:1b:b4:23:89:04:f5:11: 1d:30:d7:a0:75:87:29:87:e5:13:ad:e2:8e:eb:30:80:6f:01: 09:02:8f:10:c9:4b:4a:9c:57:08:44:22:8b:fa:1c:57:b1:25: 6d:1f:74:f7:64:b2:cc:07:28:75:bc:e7:c6:9f:06:18:91:2a: a3:ce:8e:88:4e:47:8d:44:88:ab:e6:9b:61:4f:9a:7e:5b:4c: 04:66:d8:40:0d:85:93:98:bc:32:82:20:dc:c0:56:09:36:31: 2b:30:19:c8:e8:c5:d8:6b:6d:4d:39:76:2d:4f:f7:46:ec:84: 22:74:27:2f:e9:6a:e9:80:59:65:17:fd:73:44:7b:e7:72:f5: e5:40:9c:88:ef:18:d9:42:42:c4:96:72:4d:b4:e0:18:91:20: 7e:57:06:05:be:6b:94:81:1b:aa:ff:68:32:fb:41:7b:e3:05: 51:08:2f:28:e1:9f:ee:50:25:96:72:0b:0f:d5:12:0e:01:fa: eb:d0:1e:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQxMDE1MTAxNzQwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBlNDE0My0wMTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jO1WF/rWBQKosmwyxpRYzTF817pfboy13jeimoyfq3wZCAZnMSzedkABtAv Dod+dHK0XkDjw8zlTulPdKIkU+7Tt2fXbamPO+ol4KMp+pAhpgnrsVPU4WBr6AWo X1LHyRpRd7djefsgjziKB/TsKnaTlT5WXI5IXLlSK1Ll9e/4V6h/EK4Ocj9nVY+/ k15Ld3z6OWKXsFqIbIzksOReUw+hFYOvfkYa0MW9lSAbY75DFepnK8wjaG3K4puf RVuj5oWkTRg+w+A61Z473EGm7Sl16Ey5VD40eTiWHRR5S0U+XD+Ms6MCWW0aRSen r9ybhcB0m2D2j9uugoNYbfYfFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAhWOvjT mYS0khw70NGWvtIq/VtNMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjRDODBEREU4 QURFMTFFRkJBN0UxRTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu/owDQYJKoZIhvcNAQELBQADggEBAGTJTrCAzekfOZgL XmbRepOxzPWok61EyLwT2/o4Ae20E5L8mI57bWxEpxg8MBPci7oRy2XSKHPemLyY wJIDSBq8G7QjiQT1ER0w16B1hymH5ROt4o7rMIBvAQkCjxDJS0qcVwhEIov6HFex JW0fdPdksswHKHW858afBhiRKqPOjohOR41EiKvmm2FPmn5bTARm2EANhZOYvDKC INzAVgk2MSswGcjoxdhrbU05di1P90bshCJ0Jy/paumAWWUX/XNEe+dy9eVAnIjv GNlCQsSWck204BiRIH5XBgW+a5SBG6r/aDL7QXvjBVEILyjhn+5QJZZyCw/VEg4B +uvQHus= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:53 2024 by rpki-client on console-fra.rpki-client.org