$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0095C4A6795811EF9834565CC4F9AE02.roa File: 0095C4A6795811EF9834565CC4F9AE02.roa (raw, json) Hash identifier: GyNj1eYqk8iLpE5F3Ud43GLO/YSOisaajnGSKRSV8SM= Subject key identifier: 5A:20:72:AF:DD:29:87:2E:1F:55:DD:92:AB:39:45:87:33:56:07:F3 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0305 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0095C4A6795811EF9834565CC4F9AE02.roa Signing time: Mon 23 Sep 2024 03:00:35 +0000 ROA not before: Mon 23 Sep 2024 03:00:35 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152976 IP address blocks: 160.30.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 773 (0x305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 23 03:00:35 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66f0d9d2-1466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:63:6b:7b:ab:ab:47:80:ac:62:4d:bf:4d:9d: 06:c0:36:1b:6a:c1:c6:a8:aa:44:2b:c4:b2:a0:94: ac:1b:bc:4b:2a:aa:8d:57:4c:9d:9c:53:36:3d:eb: b4:86:1e:91:72:9f:cc:4c:40:ea:e6:16:36:00:32: af:64:2b:20:47:3f:77:f1:ae:98:c5:92:33:9e:98: bd:bc:ab:df:6a:46:f4:7d:c0:89:61:fb:74:1b:4a: 0c:db:79:9f:2f:63:08:4a:b1:75:7c:e0:4f:76:a4: 58:e1:50:b1:e2:9a:df:72:6b:98:3a:f1:bb:de:06: 1f:a2:ca:fe:4d:c7:e5:03:61:e5:5e:32:6e:33:0f: 1e:5a:be:31:9a:16:5f:b2:1b:62:86:38:1a:65:e6: 5d:e7:c9:c2:8e:6e:2f:26:a1:6c:ee:d4:32:30:a1: e1:cc:0d:58:61:35:6d:7f:26:a8:a3:24:62:8a:ce: 17:be:c7:11:7d:77:3b:93:88:e9:45:b3:b1:26:04: 4d:c6:51:31:62:0b:8d:84:ad:0c:b1:e2:1c:8b:b5: 1c:ef:fb:86:ec:fc:c0:0d:70:40:f4:62:e9:a0:7d: 54:cc:45:14:9e:2d:64:ba:35:ca:50:59:ac:d5:af: 5a:76:df:7a:3f:b1:06:1f:16:ab:14:4e:3e:91:65: 3c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:20:72:AF:DD:29:87:2E:1F:55:DD:92:AB:39:45:87:33:56:07:F3 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0095C4A6795811EF9834565CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.154.0/23 Signature Algorithm: sha256WithRSAEncryption 34:04:ea:62:67:a4:f6:f9:8a:09:ad:16:88:2d:d6:8c:df:29: ef:a5:a4:4d:01:91:e7:ed:7d:60:1b:65:e3:37:73:42:30:2d: 73:52:a1:36:16:1b:49:09:0c:3a:f5:74:ae:0c:78:10:00:b4: f3:90:a8:62:02:4a:76:9c:bf:d3:a6:27:cc:99:e2:f5:9e:c8: 66:dd:2e:dc:ac:cc:f2:d6:43:6e:e6:b9:1e:2b:fe:a0:33:50: 14:84:ee:ea:2c:e1:92:ea:7a:d5:91:7a:0d:2d:5c:08:02:96: 7c:20:2a:d2:52:6c:8e:fc:d3:68:e4:e8:23:0d:cd:93:00:0b: e6:b9:d4:e0:de:4c:34:ce:8d:ad:03:0c:32:db:fa:c2:17:ff: 84:b8:cf:74:7f:ae:f1:6b:63:57:76:b3:9f:fd:95:17:44:bc: 08:d7:95:80:46:39:cc:30:cc:b5:cb:7c:d1:a6:7a:c2:9e:47: 8d:a7:21:5c:10:b1:0f:e0:56:ea:5c:24:4d:f5:44:c3:a9:79: 90:e5:3d:33:23:e5:5d:b2:6a:56:9f:29:bf:37:e1:14:32:63: 2c:74:7d:cc:af:d6:49:a6:54:92:2a:33:26:40:b0:9f:bc:2d: 72:cd:5c:2e:fb:2a:a9:4e:fe:af:fd:77:e6:de:7d:2a:b5:47: 3f:0a:cf:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTIzMDMwMDM1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYwZDlkMi0xNDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGNre6urR4CsYk2/TZ0GwDYbasHGqKpEK8SyoJSsG7xLKqqNV0ydnFM2Peu0 hh6Rcp/MTEDq5hY2ADKvZCsgRz938a6YxZIznpi9vKvfakb0fcCJYft0G0oM23mf L2MISrF1fOBPdqRY4VCx4prfcmuYOvG73gYfosr+TcflA2HlXjJuMw8eWr4xmhZf shtihjgaZeZd58nCjm4vJqFs7tQyMKHhzA1YYTVtfyaooyRiis4XvscRfXc7k4jp RbOxJgRNxlExYguNhK0MseIci7Uc7/uG7PzADXBA9GLpoH1UzEUUni1kujXKUFms 1a9adt96P7EGHxarFE4+kWU8+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFogcq/d KYcuH1Xdkqs5RYczVgfzMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMDA5NUM0QTY3 OTU4MTFFRjk4MzQ1NjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHpowDQYJKoZIhvcNAQELBQADggEBADQE6mJnpPb5igmt Fogt1ozfKe+lpE0BkeftfWAbZeM3c0IwLXNSoTYWG0kJDDr1dK4MeBAAtPOQqGIC Snacv9OmJ8yZ4vWeyGbdLtyszPLWQ27muR4r/qAzUBSE7uos4ZLqetWReg0tXAgC lnwgKtJSbI7802jk6CMNzZMAC+a51ODeTDTOja0DDDLb+sIX/4S4z3R/rvFrY1d2 s5/9lRdEvAjXlYBGOcwwzLXLfNGmesKeR42nIVwQsQ/gVupcJE31RMOpeZDlPTMj 5V2yalafKb834RQyYyx0fcyv1kmmVJIqMyZAsJ+8LXLNXC77KqlO/q/9d+befSq1 Rz8Kz4Y= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org