$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/055E28204B3111EFA73EC24AC4F9AE02.roa File: 055E28204B3111EFA73EC24AC4F9AE02.roa (raw, json) Hash identifier: sJIFyNY80Yv4yLcR7ErSpsXl+h3sUGD9STxpwSwo9bU= Subject key identifier: B4:55:D6:03:C4:67:C4:EF:48:F5:40:05:2E:2A:E3:8E:93:F9:E1:0C Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 02A4 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/055E28204B3111EFA73EC24AC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:21 +0000 ROA not before: Thu 05 Sep 2024 03:31:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152952 IP address blocks: 160.22.54.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 676 (0x2a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:21 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92609-59bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1e:65:c8:36:f9:9b:49:eb:68:c6:50:27:8d: 70:a6:90:08:ed:8a:73:07:6e:0a:4e:95:09:75:07: f2:af:b5:81:43:05:36:db:8f:01:49:6a:16:ad:ca: c0:6e:a9:af:85:96:d3:42:40:ab:fb:57:d6:ac:33: e3:29:44:6e:ff:14:e2:57:99:21:39:ec:4c:cf:f8: d2:7f:d8:c3:5f:39:8c:99:7d:17:a4:4d:f5:7c:a8: 90:5e:35:ef:32:3b:ef:53:de:a0:3e:a0:7b:71:cb: 0b:be:19:52:3b:8f:c5:e0:44:99:d2:74:95:d0:e5: 85:18:c3:57:1c:43:23:ff:da:b8:a3:04:51:77:47: 65:e6:c4:50:1e:50:57:92:da:94:0f:4b:43:f3:88: 54:30:76:0f:c3:55:33:57:22:f7:86:f7:92:7f:98: 3b:87:7a:08:45:37:db:57:93:00:67:d2:b8:69:d0: dc:32:07:b5:c9:5a:55:01:a9:be:27:24:84:b2:94: b7:d5:b3:2e:e8:73:48:07:9c:94:1e:98:b5:a5:2f: 6e:f0:cc:df:1c:0a:35:a9:50:ab:c7:fd:17:d8:c1: 60:df:0d:14:c1:4c:f9:13:60:36:d0:3e:af:24:98: 71:17:59:70:b7:87:e1:76:f8:2e:df:64:a9:d8:85: b8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:55:D6:03:C4:67:C4:EF:48:F5:40:05:2E:2A:E3:8E:93:F9:E1:0C X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/055E28204B3111EFA73EC24AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.54.0/23 Signature Algorithm: sha256WithRSAEncryption 97:51:0a:6f:59:95:6a:0c:21:4a:52:97:6f:8e:57:27:f3:34: 6c:48:79:a3:2a:dd:c6:5d:0e:f2:eb:b5:7e:7e:f2:2d:66:2b: 09:8d:3d:e8:d9:b7:c8:7c:18:6f:52:18:48:3b:cc:a1:d6:35: e7:70:e7:82:c0:f1:94:6b:fb:30:02:ea:94:b5:3c:e5:2f:c6: e3:b8:38:4d:78:e5:fa:cf:14:75:91:b4:3f:b0:ea:59:62:8e: 18:59:54:73:5f:f6:d9:0a:aa:9f:ad:fb:a9:82:99:b0:84:47: e8:ea:51:6f:4c:a8:89:02:f6:c5:fe:8e:4a:ff:1f:e7:b8:45: 39:3b:a7:39:33:7a:03:0c:25:b9:5f:d9:1d:98:03:59:e2:bc: e0:58:78:61:d1:59:04:f1:ea:82:18:3e:4b:27:27:79:f3:90: 27:79:af:12:bf:c8:3d:a1:98:a3:74:19:b7:59:a8:00:cb:68: 72:bf:cb:dd:85:0a:65:23:68:f7:50:79:49:86:6a:b2:ed:3b: 78:e4:48:58:a1:21:ca:36:dd:81:5b:3d:fb:b9:10:2e:96:5d: e1:d5:4c:18:ad:79:f5:15:a2:37:89:4b:c6:32:f5:17:81:5b: 46:ff:76:cc:77:2e:a8:5f:f0:2e:e3:4e:21:d1:ee:ff:3e:26: 5a:24:2e:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYwOS01OWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxh5lyDb5m0nraMZQJ41wppAI7YpzB24KTpUJdQfyr7WBQwU2248BSWoWrcrA bqmvhZbTQkCr+1fWrDPjKURu/xTiV5khOexMz/jSf9jDXzmMmX0XpE31fKiQXjXv MjvvU96gPqB7ccsLvhlSO4/F4ESZ0nSV0OWFGMNXHEMj/9q4owRRd0dl5sRQHlBX ktqUD0tD84hUMHYPw1UzVyL3hveSf5g7h3oIRTfbV5MAZ9K4adDcMge1yVpVAam+ JySEspS31bMu6HNIB5yUHpi1pS9u8MzfHAo1qVCrx/0X2MFg3w0UwUz5E2A20D6v JJhxF1lwt4fhdvgu32Sp2IW4sQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLRV1gPE Z8TvSPVABS4q446T+eEMMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMDU1RTI4MjA0 QjMxMTFFRkE3M0VDMjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgFjYwDQYJKoZIhvcNAQELBQADggEBAJdRCm9ZlWoMIUpS l2+OVyfzNGxIeaMq3cZdDvLrtX5+8i1mKwmNPejZt8h8GG9SGEg7zKHWNedw54LA 8ZRr+zAC6pS1POUvxuO4OE145frPFHWRtD+w6llijhhZVHNf9tkKqp+t+6mCmbCE R+jqUW9MqIkC9sX+jkr/H+e4RTk7pzkzegMMJblf2R2YA1nivOBYeGHRWQTx6oIY PksnJ3nzkCd5rxK/yD2hmKN0GbdZqADLaHK/y92FCmUjaPdQeUmGarLtO3jkSFih Ico23YFbPfu5EC6WXeHVTBitefUVojeJS8Yy9ReBW0b/dsx3Lqhf8C7jTiHR7v8+ JlokLqM= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org