$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C3FA344E86EC11EF969C0A6DC4F9AE02.roa File: C3FA344E86EC11EF969C0A6DC4F9AE02.roa (raw, json) Hash identifier: Kj/F0FoUf6bKBsiSKu40ctoaxLsUXKLqpzR+LbtFs6k= Subject key identifier: EC:7B:51:BD:17:7C:BC:65:28:35:D3:D4:18:90:A9:88:35:9B:E1:79 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1B94 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C3FA344E86EC11EF969C0A6DC4F9AE02.roa Signing time: Thu 10 Oct 2024 09:48:13 +0000 ROA not before: Thu 10 Oct 2024 09:48:13 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135802 IP address blocks: 160.187.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7060 (0x1b94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Oct 10 09:48:13 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6707a2dd-4af4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:80:12:cb:42:c7:7a:13:19:b9:88:4c:53:41: ea:29:88:88:9b:72:34:7a:bd:85:a2:bb:21:18:db: 12:2d:68:df:b3:c6:48:ea:aa:6e:ab:9a:e0:52:a0: 2c:e0:bc:1a:ef:84:bd:ee:09:95:24:b2:b7:c4:92: 09:81:ef:59:db:31:d9:6d:5d:da:8f:16:35:99:cf: be:1b:b7:f2:a3:5a:65:10:79:90:37:33:4c:39:2f: 97:78:e0:46:bf:d2:b2:37:3a:5e:c5:fa:69:75:cd: 2e:81:5b:95:35:39:b0:bd:a9:fe:5c:a7:74:29:1f: 11:af:e5:35:51:3f:4c:9a:72:ee:ab:12:91:43:53: ca:29:6a:a3:fc:84:cb:75:ef:b8:a3:30:85:df:6c: 1b:3c:75:5c:a1:37:87:70:8f:d5:8a:47:a4:ba:52: 00:84:51:95:b0:97:ee:8e:9c:9c:cb:a7:01:cd:1b: fa:de:d8:1b:4d:c8:7d:d3:83:53:fd:3a:c1:1f:db: b0:6d:4b:15:61:08:eb:b1:c7:34:e7:a5:17:1e:79: 1e:55:e2:4d:29:7e:1c:b2:db:45:72:a1:4e:1f:66: 1e:d2:82:00:aa:32:76:7d:89:cc:45:f5:cb:45:02: 70:46:fb:ad:2d:b9:ea:75:27:11:43:27:ff:43:99: 43:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7B:51:BD:17:7C:BC:65:28:35:D3:D4:18:90:A9:88:35:9B:E1:79 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C3FA344E86EC11EF969C0A6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.206.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:4a:e5:b9:1c:9e:37:a8:5e:d8:79:53:30:81:9a:ff:47:5f: e5:f0:3d:bb:f9:42:9b:a2:02:77:6f:2f:eb:3e:a8:75:29:48: c3:61:65:7c:3d:a2:b8:62:04:5f:8b:9d:a3:dc:ff:c6:ad:57: b7:3c:8b:4b:28:94:80:b5:34:8b:e3:18:62:4c:1f:de:4b:41: 9d:be:60:b1:98:9d:66:5e:d3:49:84:b0:18:12:8c:87:9a:43: bb:01:eb:f4:c5:d5:4f:3f:1b:ac:79:9a:00:36:38:94:1c:50: 19:4d:a8:d3:66:8d:a6:45:00:30:13:1a:29:ff:ba:86:c8:73: 51:af:29:03:14:48:b9:61:9c:59:b4:f6:4d:da:eb:5a:00:55: 1f:34:32:ef:7b:8e:d8:8a:08:44:6b:a2:f6:dc:4a:17:10:d9: 5b:73:fd:15:c7:d1:e1:55:f8:b3:bd:c0:07:72:22:88:0a:03: 4e:e0:31:e3:2a:0b:09:2d:46:f3:e7:17:b2:79:a7:8a:6b:f6: 08:38:16:e4:5e:d1:87:b7:01:6e:65:d5:34:54:51:fd:c9:fc: f5:d5:0e:73:ab:66:72:bc:3c:b7:d5:eb:c5:5b:28:ad:ce:c5: d3:79:be:d0:54:25:95:4f:b9:a2:fb:09:43:42:63:d4:2c:ed: 40:a2:06:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQxMDEwMDk0ODEzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3YTJkZC00YWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoASy0LHehMZuYhMU0HqKYiIm3I0er2ForshGNsSLWjfs8ZI6qpuq5rgUqAs 4Lwa74S97gmVJLK3xJIJge9Z2zHZbV3ajxY1mc++G7fyo1plEHmQNzNMOS+XeOBG v9KyNzpexfppdc0ugVuVNTmwvan+XKd0KR8Rr+U1UT9MmnLuqxKRQ1PKKWqj/ITL de+4ozCF32wbPHVcoTeHcI/VikekulIAhFGVsJfujpycy6cBzRv63tgbTch904NT /TrBH9uwbUsVYQjrscc056UXHnkeVeJNKX4csttFcqFOH2Ye0oIAqjJ2fYnMRfXL RQJwRvutLbnqdScRQyf/Q5lDmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOx7Ub0X fLxlKDXT1BiQqYg1m+F5MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzNGQTM0NEU4 NkVDMTFFRjk2OUMwQTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu84wDQYJKoZIhvcNAQELBQADggEBAFxK5bkcnjeoXth5 UzCBmv9HX+XwPbv5QpuiAndvL+s+qHUpSMNhZXw9orhiBF+LnaPc/8atV7c8i0so lIC1NIvjGGJMH95LQZ2+YLGYnWZe00mEsBgSjIeaQ7sB6/TF1U8/G6x5mgA2OJQc UBlNqNNmjaZFADATGin/uobIc1GvKQMUSLlhnFm09k3a61oAVR80Mu97jtiKCERr ovbcShcQ2Vtz/RXH0eFV+LO9wAdyIogKA07gMeMqCwktRvPnF7J5p4pr9gg4FuRe 0Ye3AW5l1TRUUf3J/PXVDnOrZnK8PLfV68VbKK3OxdN5vtBUJZVPuaL7CUNCY9Qs 7UCiBpU= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:53 2024 by rpki-client on console-fra.rpki-client.org