$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/160B219870BA11E99E0F6D2DC4F9AE02.roa File: 160B219870BA11E99E0F6D2DC4F9AE02.roa (raw, json) Hash identifier: l7mpSKPnJ6I/x2Ycg3w1AID9sdD9xgANWmQ8t5LXOCU= Subject key identifier: D1:7F:E1:9A:9C:3D:33:96:01:2E:A1:6C:30:2C:E6:3D:35:E9:96:34 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 34C6 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/160B219870BA11E99E0F6D2DC4F9AE02.roa Signing time: Wed 28 Feb 2024 14:50:25 +0000 ROA not before: Wed 28 Feb 2024 14:50:25 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137670 IP address blocks: 59.144.189.0/24 maxlen: 24 59.145.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13510 (0x34c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Feb 28 14:50:25 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65df4831-3b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:63:55:55:db:39:25:99:9e:c9:32:1d:e4:dd: 9e:3a:96:c1:5b:c4:e9:6e:4d:7c:77:30:0b:a7:5b: ee:8a:b5:8c:b7:58:46:f4:60:2c:64:4f:57:05:cf: 4a:56:93:c8:e4:ee:a5:78:15:0a:31:9a:70:bd:c8: a0:e9:19:5d:40:ab:1b:39:9c:75:3d:bb:74:24:0b: 13:df:af:24:79:c4:7f:0d:96:33:e8:c5:7b:e8:93: a7:76:33:65:72:b5:2f:42:45:d3:5b:f6:43:67:66: 2f:e4:3a:2d:a6:49:8a:e1:36:44:7b:38:38:84:a3: 99:0b:48:9f:51:b3:7c:6c:46:1e:0c:79:d7:2a:ae: 95:e3:2c:4b:fd:ef:be:2e:2b:7a:88:81:1c:61:29: d2:f3:de:a7:67:f4:7c:37:b8:2b:a5:f0:70:60:01: b5:02:3c:ec:d5:0d:a6:ac:8a:5e:94:1b:b9:9c:52: 11:0f:c2:81:ce:9b:d2:16:8a:c5:7c:41:65:b5:c3: 32:b5:64:f8:7a:95:8e:f3:63:06:f5:d7:28:8b:80: c3:19:d6:cb:65:7f:47:06:69:f8:1a:29:4a:d5:23: af:59:32:56:28:dc:87:a5:6d:09:1a:30:46:a6:3c: 5e:76:bc:4b:be:ac:df:c6:50:90:0d:6a:c3:ef:f9: e4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:7F:E1:9A:9C:3D:33:96:01:2E:A1:6C:30:2C:E6:3D:35:E9:96:34 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/160B219870BA11E99E0F6D2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.144.189.0/24 59.145.68.0/24 Signature Algorithm: sha256WithRSAEncryption a0:f3:9f:d0:66:a0:4c:1b:f7:98:a4:e0:b0:c5:30:84:75:81: 7a:7f:b8:70:99:19:ea:7d:cd:4e:17:7d:f1:fd:56:6f:be:c1: cb:be:e1:0e:c2:d5:99:23:99:e2:7b:37:ca:33:96:fe:51:1f: 1c:e2:fc:f1:67:d2:c3:d5:74:6b:76:09:2c:68:3e:9f:12:e2: ae:fa:d3:c5:5a:9f:30:b2:9c:5e:fc:1d:94:e9:61:e3:53:20: 2b:4e:de:d1:9f:fc:de:87:64:b5:ae:39:64:8c:b9:ac:5f:03: 6b:c5:2c:b9:2f:46:ba:08:e0:df:84:4f:9e:75:a8:d0:77:ff: 90:59:32:2a:86:39:ff:29:c6:40:5f:87:a9:be:a5:03:dd:c4: 1d:2b:8a:4d:08:99:4a:bb:9d:af:32:07:ad:76:96:91:86:f1: d1:70:9b:8d:8c:9d:e1:c0:35:c6:67:30:43:e9:cf:49:92:14: 83:2f:8c:b0:de:20:0d:67:f4:12:c6:6c:13:c2:80:94:de:8c: 31:82:84:6d:c8:c9:61:c4:94:d3:c9:0a:0c:5b:31:9c:19:a1: 29:80:1a:45:a3:05:a2:8a:24:0a:5f:db:77:dc:49:a9:1e:15: d0:04:1e:38:1f:85:04:46:ca:86:da:ee:66:06:4e:57:cb:89: cd:40:6b:1d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjQwMjI4MTQ1MDI1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmNDgzMS0zYjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GNVVds5JZmeyTId5N2eOpbBW8Tpbk18dzALp1vuirWMt1hG9GAsZE9XBc9K VpPI5O6leBUKMZpwvcig6RldQKsbOZx1Pbt0JAsT368kecR/DZYz6MV76JOndjNl crUvQkXTW/ZDZ2Yv5DotpkmK4TZEezg4hKOZC0ifUbN8bEYeDHnXKq6V4yxL/e++ Lit6iIEcYSnS896nZ/R8N7grpfBwYAG1Ajzs1Q2mrIpelBu5nFIRD8KBzpvSForF fEFltcMytWT4epWO82MG9dcoi4DDGdbLZX9HBmn4GilK1SOvWTJWKNyHpW0JGjBG pjxedrxLvqzfxlCQDWrD7/nkJQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNF/4Zqc PTOWAS6hbDAs5j016ZY0MB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvRTY1ODUxMTIxRDg0MTFFMkExQkEzMERCMDhCMDJDRDIvMTYwQjIxOTg3 MEJBMTFFOTlFMEY2RDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAA7kL0DBAA7kUQwDQYJKoZIhvcNAQELBQADggEBAKDzn9Bm oEwb95ik4LDFMIR1gXp/uHCZGep9zU4XffH9Vm++wcu+4Q7C1ZkjmeJ7N8ozlv5R Hxzi/PFn0sPVdGt2CSxoPp8S4q7608VanzCynF78HZTpYeNTICtO3tGf/N6HZLWu OWSMuaxfA2vFLLkvRroI4N+ET551qNB3/5BZMiqGOf8pxkBfh6m+pQPdxB0rik0I mUq7na8yB612lpGG8dFwm42MneHANcZnMEPpz0mSFIMvjLDeIA1n9BLGbBPCgJTe jDGChG3IyWHElNPJCgxbMZwZoSmAGkWjBaKKJApf23fcSakeFdAEHjgfhQRGyoba 7mYGTlfLic1Aax0= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:38 2024 by rpki-client on console-fra.rpki-client.org