$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/329C17E6BCDA11EFA2D81814C4F9AE02.roa File: 329C17E6BCDA11EFA2D81814C4F9AE02.roa (raw, json) Hash identifier: oBdfX7J4SfTWAha0J5te4TT+MMNp1UK2JxnYA8w+Btw= Subject key identifier: FC:2E:96:DD:CC:0A:FA:07:09:41:B4:28:FD:73:A2:1B:58:7B:8A:27 Certificate issuer: /CN=A9193B94/serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E Certificate serial: 02 Authority key identifier: 2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/329C17E6BCDA11EFA2D81814C4F9AE02.roa Signing time: Wed 18 Dec 2024 00:51:21 +0000 ROA not before: Wed 18 Dec 2024 00:51:21 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140729 IP address blocks: 160.22.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193B94 Validity Not Before: Dec 18 00:51:21 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67621c89-bdd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:65:43:12:81:c2:0d:f4:12:55:43:40:b2:bd: 6a:81:e7:ec:bd:67:56:69:7e:d8:44:69:da:9c:08: 7d:2d:31:33:c8:9b:fe:24:ad:23:72:19:9b:64:05: 9c:bf:1f:a4:cb:cb:96:ba:68:66:f1:52:20:a1:4e: 1c:c2:db:b8:e6:33:59:f8:cf:e0:d8:4b:d1:42:6b: 87:50:c6:9c:95:95:81:bc:42:49:d2:0b:0c:bf:7c: 57:cb:ce:4b:c1:b0:bd:37:f0:f7:bb:3f:2d:22:4f: 77:25:c5:f3:37:97:d6:30:8b:51:8e:20:76:fe:b0: 25:4d:97:5a:18:3d:4e:9e:95:5a:a9:c6:61:0d:56: 9d:ab:74:f6:dd:0d:2a:1e:8e:e0:d8:19:04:73:5d: 41:e8:43:7d:3e:72:42:61:6b:7e:da:a9:75:c7:e7: b3:ca:21:51:c2:10:6a:13:68:3e:5e:00:bb:d8:31: 06:eb:d5:6e:20:ff:3e:1c:de:dc:76:14:fc:d8:66: 2f:64:ae:4d:cd:42:b7:bf:62:eb:c2:fc:d1:b2:98: 89:95:1e:8a:15:a0:88:dd:dd:72:00:42:2a:12:75: ba:c7:c8:f1:52:16:cd:a1:dd:72:ae:1d:66:22:fd: b2:7a:92:e9:0e:e2:4b:99:90:3e:1e:4d:0d:30:ef: f4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:2E:96:DD:CC:0A:FA:07:09:41:B4:28:FD:73:A2:1B:58:7B:8A:27 X509v3 Authority Key Identifier: keyid:2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/329C17E6BCDA11EFA2D81814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.176.0/24 Signature Algorithm: sha256WithRSAEncryption 35:1f:3b:0f:5c:22:e1:62:fe:d6:09:84:d3:cd:aa:eb:24:b2: 77:75:28:b6:2c:0f:c2:7a:40:7e:68:f8:60:fb:89:08:fe:55: 02:8a:76:fc:c7:a5:9b:66:ab:e1:46:c3:f5:7e:05:7a:83:5c: 07:1c:80:51:b0:47:d7:de:63:4a:2c:f7:0c:00:27:99:ab:23: 32:74:11:20:dd:ea:ad:1a:03:88:04:83:e2:7a:2f:6e:26:98: 9f:6c:b9:da:4e:36:5f:64:91:22:ff:4d:e1:8c:c7:5f:44:70: 49:72:59:2c:9c:fe:81:0b:67:00:7a:df:91:d5:9f:c6:bf:29: a6:04:36:1d:79:2d:f4:5b:9b:0f:ea:93:16:12:62:e4:6b:f5: d4:10:14:1a:44:d4:73:e3:9a:5f:ba:c9:13:f2:2f:2b:d4:8e: 50:75:fb:3d:b9:1b:55:14:ea:c1:69:31:27:57:17:fc:be:d1: 5b:c0:0c:23:5a:70:4d:98:d8:6a:83:9b:43:48:15:c7:75:fe: 76:23:15:d1:61:20:28:96:88:76:59:55:7b:dd:f6:b2:a0:09: e1:3c:eb:ca:76:68:08:29:95:4d:fa:a0:ee:96:64:2a:aa:a0: 87:9f:3b:a0:9b:41:d9:55:d0:64:7a:20:fb:59:d7:ed:a1:14: 50:06:e1:ca -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 M0I5NDExMC8GA1UEBRMoMkE1NzM5NkRDRTcwRUI1NkMwNzNERTFBNzYwQjYyQTcy MkIwNDc4RTAeFw0yNDEyMTgwMDUxMjFaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NjIxYzg5LWJkZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7ZUMSgcIN9BJVQ0CyvWqB5+y9Z1ZpfthEadqcCH0tMTPIm/4krSNyGZtkBZy/ H6TLy5a6aGbxUiChThzC27jmM1n4z+DYS9FCa4dQxpyVlYG8QknSCwy/fFfLzkvB sL038Pe7Py0iT3clxfM3l9Ywi1GOIHb+sCVNl1oYPU6elVqpxmENVp2rdPbdDSoe juDYGQRzXUHoQ30+ckJha37aqXXH57PKIVHCEGoTaD5eALvYMQbr1W4g/z4c3tx2 FPzYZi9krk3NQre/YuvC/NGymImVHooVoIjd3XIAQioSdbrHyPFSFs2h3XKuHWYi /bJ6kukO4kuZkD4eTQ0w7/RZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/C6W3cwK +gcJQbQo/XOiG1h7iicwHwYDVR0jBBgwFoAUKlc5bc5w61bAc94adgtipyKwR44w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzQjk0L0FGNDFCRDEwQkNE OTExRUY5MkFCMzMxM0M0RjlBRTAyL0tsYzViYzV3NjFiQWM5NGFkZ3RpcHlLd1I0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2xjNWJjNXc2MWJBYzk0YWRndGlweUt3UjQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0I5NC9BRjQxQkQxMEJDRDkxMUVGOTJBQjMzMTNDNEY5QUUwMi8zMjlDMTdFNkJD REExMUVGQTJEODE4MTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAWsDANBgkqhkiG9w0BAQsFAAOCAQEANR87D1wi4WL+1gmE 082q6ySyd3UotiwPwnpAfmj4YPuJCP5VAop2/Melm2ar4UbD9X4FeoNcBxyAUbBH 195jSiz3DAAnmasjMnQRIN3qrRoDiASD4novbiaYn2y52k42X2SRIv9N4YzHX0Rw SXJZLJz+gQtnAHrfkdWfxr8ppgQ2HXkt9FubD+qTFhJi5Gv11BAUGkTUc+OaX7rJ E/IvK9SOUHX7PbkbVRTqwWkxJ1cX/L7RW8AMI1pwTZjYaoObQ0gVx3X+diMV0WEg KJaIdllVe932sqAJ4TzrynZoCCmVTfqg7pZkKqqgh587oJtB2VXQZHog+1nX7aEU UAbhyg== -----END CERTIFICATE-----Generated at Wed Feb 5 23:04:31 2025 by rpki-client