$ rpki-client -vvf rpki.apnic.net/member_repository/A919D88F/7BB6F210905D11EFA4F31D2EC4F9AE02/17613044905F11EF8B4BC46BC4F9AE02.roa File: 17613044905F11EF8B4BC46BC4F9AE02.roa (raw, json) Hash identifier: NvjP/LYwW9l6MqSSpH5THMx2WmCXtMYC8PmhjmLmzIg= Subject key identifier: E1:A1:57:FF:1F:17:B6:5D:F5:E5:08:2A:7B:37:E6:9F:8E:60:E9:8C Certificate issuer: /CN=A919D88F/serialNumber=B815CF8505368BA7F97674E9BB1A140095B4FF9B Certificate serial: 05 Authority key identifier: B8:15:CF:85:05:36:8B:A7:F9:76:74:E9:BB:1A:14:00:95:B4:FF:9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uBXPhQU2i6f5dnTpuxoUAJW0_5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D88F/7BB6F210905D11EFA4F31D2EC4F9AE02/17613044905F11EF8B4BC46BC4F9AE02.roa Signing time: Tue 22 Oct 2024 10:20:42 +0000 ROA not before: Tue 22 Oct 2024 10:20:42 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153359 IP address blocks: 160.187.220.0/24 maxlen: 24 160.187.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D88F/7BB6F210905D11EFA4F31D2EC4F9AE02/uBXPhQU2i6f5dnTpuxoUAJW0_5s.crl rsync://rpki.apnic.net/member_repository/A919D88F/7BB6F210905D11EFA4F31D2EC4F9AE02/uBXPhQU2i6f5dnTpuxoUAJW0_5s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uBXPhQU2i6f5dnTpuxoUAJW0_5s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D88F/serialNumber=B815CF8505368BA7F97674E9BB1A140095B4FF9B Validity Not Before: Oct 22 10:20:42 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67177c7a-64de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9e:23:32:ab:c0:0e:43:af:f2:b9:81:31:63: 2c:f8:a5:fe:b6:59:e2:c1:00:63:02:0f:1a:65:73: be:9d:52:0b:c6:35:59:7c:b4:32:f9:3c:18:87:ee: 44:af:99:70:6c:26:e8:35:f8:62:c5:0c:84:73:18: ea:92:06:45:53:79:64:37:ca:12:d6:30:7c:b2:72: 55:8e:7f:0f:2c:09:e8:04:7f:e3:a7:0b:1d:d9:f6: 5b:b8:ba:3e:4e:1e:9e:a3:cc:5c:bd:e8:03:ad:e6: fc:11:b5:b4:0f:63:ee:f8:5e:1d:90:e0:63:ff:66: 9d:6d:74:b4:aa:70:af:4a:91:f6:1b:20:23:c4:3a: b4:66:f3:92:3e:ce:24:ba:13:ba:9f:2d:59:36:1f: e6:e1:4a:31:d3:9b:0c:2b:ae:2a:b4:87:76:97:23: b1:37:a7:cf:8c:7d:05:4e:0b:01:d4:51:0e:41:1a: f3:5f:e0:e5:65:0c:a0:c4:c5:cd:c3:10:36:be:82: ac:d8:1e:9d:24:b2:ed:f9:ef:ef:db:46:7c:f1:c4: 8b:66:9e:a2:d0:e7:f2:19:5c:3d:90:6b:11:ae:13: fa:fb:60:5f:a9:63:65:3f:c4:20:83:8a:cc:73:38: ba:48:b6:2d:b9:21:c2:f4:c3:b4:18:16:41:f2:44: fc:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A1:57:FF:1F:17:B6:5D:F5:E5:08:2A:7B:37:E6:9F:8E:60:E9:8C X509v3 Authority Key Identifier: keyid:B8:15:CF:85:05:36:8B:A7:F9:76:74:E9:BB:1A:14:00:95:B4:FF:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D88F/7BB6F210905D11EFA4F31D2EC4F9AE02/uBXPhQU2i6f5dnTpuxoUAJW0_5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uBXPhQU2i6f5dnTpuxoUAJW0_5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D88F/7BB6F210905D11EFA4F31D2EC4F9AE02/17613044905F11EF8B4BC46BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.220.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:2d:39:3c:da:d5:f1:82:e1:c8:12:49:42:82:12:12:f4:b3: 60:8f:f5:43:52:a7:25:f0:6c:25:6a:66:fb:21:fd:83:2d:9b: 1c:63:c2:11:c6:34:43:0c:24:ef:d1:61:ff:66:c9:40:eb:d1: 1d:9f:e0:fc:d7:fb:f5:5b:b1:86:a9:69:01:68:4a:12:27:2c: 23:93:6f:fb:3a:5e:0d:5e:69:1b:fd:96:44:7f:af:5a:09:66: 13:d8:2c:5b:bb:04:f8:b0:01:89:61:35:70:17:fb:e5:7f:2a: 11:44:d9:2d:59:8c:56:40:87:10:fa:bc:13:e4:d5:4c:81:6b: 5c:03:87:44:73:bb:6e:01:c3:de:66:ac:94:18:65:8e:7a:28: 24:ae:05:2e:63:76:c1:98:23:48:c7:bc:20:85:76:fa:f4:b0: 3b:81:60:be:30:33:9f:0a:b8:7f:32:a0:af:b6:bc:2a:d7:df: c2:d7:d5:08:8a:ca:cb:87:bc:11:d9:f5:2e:87:04:56:f9:1f: ab:91:d9:ab:78:f8:d2:c5:2b:38:83:f5:56:fd:b4:0e:45:2e: 3f:78:10:25:09:af:95:b9:34:b1:78:8e:c0:28:85:89:37:2c: 3f:91:3c:0c:fe:9e:1f:e7:35:a6:51:14:72:59:ac:2f:7f:57: bb:72:5b:35 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDg4RjExMC8GA1UEBRMoQjgxNUNGODUwNTM2OEJBN0Y5NzY3NEU5QkIxQTE0MDA5 NUI0RkY5QjAeFw0yNDEwMjIxMDIwNDJaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTc3YzdhLTY0ZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwniMyq8AOQ6/yuYExYyz4pf62WeLBAGMCDxplc76dUgvGNVl8tDL5PBiH7kSv mXBsJug1+GLFDIRzGOqSBkVTeWQ3yhLWMHyyclWOfw8sCegEf+OnCx3Z9lu4uj5O Hp6jzFy96AOt5vwRtbQPY+74Xh2Q4GP/Zp1tdLSqcK9KkfYbICPEOrRm85I+ziS6 E7qfLVk2H+bhSjHTmwwrriq0h3aXI7E3p8+MfQVOCwHUUQ5BGvNf4OVlDKDExc3D EDa+gqzYHp0ksu357+/bRnzxxItmnqLQ5/IZXD2QaxGuE/r7YF+pY2U/xCCDisxz OLpIti25IcL0w7QYFkHyRPydAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4aFX/x8X tl315Qgqezfmn45g6YwwHwYDVR0jBBgwFoAUuBXPhQU2i6f5dnTpuxoUAJW0/5sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEODhGLzdCQjZGMjEwOTA1 RDExRUZBNEYzMUQyRUM0RjlBRTAyL3VCWFBoUVUyaTZmNWRuVHB1eG9VQUpXMF81 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdUJYUGhRVTJpNmY1ZG5UcHV4b1VBSlcwXzVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDg4Ri83QkI2RjIxMDkwNUQxMUVGQTRGMzFEMkVDNEY5QUUwMi8xNzYxMzA0NDkw NUYxMUVGOEI0QkM0NkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC73DANBgkqhkiG9w0BAQsFAAOCAQEAbi05PNrV8YLhyBJJ QoISEvSzYI/1Q1KnJfBsJWpm+yH9gy2bHGPCEcY0Qwwk79Fh/2bJQOvRHZ/g/Nf7 9VuxhqlpAWhKEicsI5Nv+zpeDV5pG/2WRH+vWglmE9gsW7sE+LABiWE1cBf75X8q EUTZLVmMVkCHEPq8E+TVTIFrXAOHRHO7bgHD3maslBhljnooJK4FLmN2wZgjSMe8 IIV2+vSwO4FgvjAznwq4fzKgr7a8KtffwtfVCIrKy4e8Edn1LocEVvkfq5HZq3j4 0sUrOIP1Vv20DkUuP3gQJQmvlbk0sXiOwCiFiTcsP5E8DP6eH+c1plEUclmsL39X u3JbNQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:47 2024 by rpki-client on console-fra.rpki-client.org