$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/EE6978B848BF11EF96563826C4F9AE02.roa File: EE6978B848BF11EF96563826C4F9AE02.roa (raw, json) Hash identifier: vPFNAIDsuKtBdm7XMgC4C0kVb/82/EVVFxSUZiO8ExQ= Subject key identifier: 0F:B0:DF:13:4E:D2:55:46:10:4D:C5:33:9B:04:1D:03:3E:61:15:56 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1AC0 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/EE6978B848BF11EF96563826C4F9AE02.roa Signing time: Tue 23 Jul 2024 06:51:05 +0000 ROA not before: Tue 23 Jul 2024 06:51:05 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9829 IP address blocks: 160.30.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6848 (0x1ac0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jul 23 06:51:05 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=669f52d9-c7ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d5:85:31:73:87:e0:a4:03:3a:39:71:d0:bf: c8:1d:27:88:14:c2:48:3d:e2:06:5c:17:1a:10:2e: 87:06:a1:e9:14:10:f1:6b:c4:7c:69:5e:a6:91:a7: 92:d9:82:e2:46:07:01:4f:1d:f0:13:5a:52:25:18: df:6c:16:89:85:ac:57:dd:b6:8e:71:9c:df:58:c0: 33:52:41:83:53:42:fc:bd:a8:89:7f:58:23:e4:d1: 44:02:3e:6e:e9:71:94:1f:a8:ad:15:fc:8c:1e:b5: c0:da:9b:bb:04:e3:6f:0e:41:95:6f:56:bc:91:b4: 28:ae:d0:7e:a8:e1:52:29:22:e4:be:d0:d9:8e:0f: 57:88:b6:bd:1e:d9:d6:cd:b0:fe:91:c3:d6:f1:74: f6:01:10:44:35:e1:93:45:af:e1:63:42:94:5d:ad: c6:d5:75:a5:1b:ea:fc:f9:34:09:a6:bb:45:fa:6d: f4:99:c5:3d:a8:30:65:e8:80:af:c7:61:d0:30:9c: 7a:30:ad:6f:87:0a:56:5a:e9:db:0c:b3:6f:f7:d9: 85:8d:ba:07:1c:6f:f5:57:d3:83:96:a0:47:b6:b6: 01:98:d3:6d:f4:07:4b:e0:e1:c7:d9:13:a3:97:82: 28:ba:4b:b1:c8:a9:0d:d5:64:27:f8:6a:aa:04:03: d4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B0:DF:13:4E:D2:55:46:10:4D:C5:33:9B:04:1D:03:3E:61:15:56 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/EE6978B848BF11EF96563826C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.8.0/24 Signature Algorithm: sha256WithRSAEncryption 17:07:9f:fe:28:cf:7c:78:49:d8:ab:ca:23:29:f9:98:81:38: c2:ea:f5:95:9f:84:59:0e:16:3d:e1:6f:56:23:1e:30:85:0f: c1:09:03:fe:33:33:90:18:3e:6a:72:0f:f8:e4:54:08:50:57: c1:1c:4c:89:3b:48:e6:25:d6:f9:9d:9f:38:b7:cc:71:5a:c5: 77:e0:9f:c1:7c:f8:fa:9d:9f:af:2a:a0:ff:d0:1f:61:87:b2: f4:d7:94:1f:3e:32:00:58:b3:cd:38:a9:ac:6a:cb:91:fa:b8: 91:e3:03:25:8c:7d:11:59:0b:c7:93:50:dd:30:1a:0c:44:cc: 3e:9a:31:82:5c:ac:b6:90:dd:19:0b:98:ec:88:8b:dc:23:96: b8:ef:8a:72:3b:51:cd:61:b5:b1:44:79:c3:db:be:27:75:45: 1c:d9:1a:cf:cb:5f:0a:fd:96:c9:fb:53:af:f7:fa:98:a7:0b: d3:52:f7:b9:ad:d2:b6:ec:4e:28:97:48:32:8a:23:b5:ab:bd: 6e:df:da:f5:68:aa:32:3e:db:0c:36:13:d8:93:cd:c8:01:bb: 98:27:a8:ab:cc:0c:c8:f8:df:de:82:b7:c9:c4:b3:e7:26:f7: 7d:f0:28:03:ac:54:c0:ca:2e:fb:f4:30:aa:71:13:cc:1c:d3: 55:91:5d:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNzIzMDY1MTA1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjlmNTJkOS1jN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9WFMXOH4KQDOjlx0L/IHSeIFMJIPeIGXBcaEC6HBqHpFBDxa8R8aV6mkaeS 2YLiRgcBTx3wE1pSJRjfbBaJhaxX3baOcZzfWMAzUkGDU0L8vaiJf1gj5NFEAj5u 6XGUH6itFfyMHrXA2pu7BONvDkGVb1a8kbQortB+qOFSKSLkvtDZjg9XiLa9HtnW zbD+kcPW8XT2ARBENeGTRa/hY0KUXa3G1XWlG+r8+TQJprtF+m30mcU9qDBl6ICv x2HQMJx6MK1vhwpWWunbDLNv99mFjboHHG/1V9ODlqBHtrYBmNNt9AdL4OHH2ROj l4IoukuxyKkN1WQn+GqqBAPUYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA+w3xNO 0lVGEE3FM5sEHQM+YRVWMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRUU2OTc4Qjg0 OEJGMTFFRjk2NTYzODI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgHggwDQYJKoZIhvcNAQELBQADggEBABcHn/4oz3x4Sdir yiMp+ZiBOMLq9ZWfhFkOFj3hb1YjHjCFD8EJA/4zM5AYPmpyD/jkVAhQV8EcTIk7 SOYl1vmdnzi3zHFaxXfgn8F8+Pqdn68qoP/QH2GHsvTXlB8+MgBYs804qaxqy5H6 uJHjAyWMfRFZC8eTUN0wGgxEzD6aMYJcrLaQ3RkLmOyIi9wjlrjvinI7Uc1htbFE ecPbvid1RRzZGs/LXwr9lsn7U6/3+pinC9NS97mt0rbsTiiXSDKKI7WrvW7f2vVo qjI+2ww2E9iTzcgBu5gnqKvMDMj4396Ct8nEs+cm933wKAOsVMDKLvv0MKpxE8wc 01WRXTk= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:53 2024 by rpki-client on console-fra.rpki-client.org