$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0F3C9F928A0711EFB933C33AC4F9AE02.roa File: 0F3C9F928A0711EFB933C33AC4F9AE02.roa (raw, json) Hash identifier: xFX8oQQdHEHggnE/JBOrN+dOVPMUP2/sT3hHQn4DN2U= Subject key identifier: 6C:22:97:FE:A1:CF:ED:3A:F2:D2:7A:0B:E1:6F:E9:46:8E:C7:C5:60 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0352 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0F3C9F928A0711EFB933C33AC4F9AE02.roa Signing time: Mon 14 Oct 2024 08:34:00 +0000 ROA not before: Mon 14 Oct 2024 08:34:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152993 IP address blocks: 160.187.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 850 (0x352) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Oct 14 08:34:00 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=670cd777-89a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:34:e4:9c:10:c5:9a:f2:ad:ab:c7:73:88:e7: 71:1a:3d:29:90:56:8d:b4:c9:25:42:e5:15:f7:5f: 24:46:0b:ef:d1:17:7b:13:60:d0:1a:d9:59:a6:a7: 2a:c2:55:0a:c5:57:eb:22:ed:7b:32:2d:2b:22:59: 8f:36:ce:6b:35:a1:93:13:2f:0a:b2:a8:60:2c:68: a5:42:ec:9b:9e:37:2e:be:9f:2b:65:b0:dc:02:3e: 88:07:76:4f:d3:b2:08:9c:fe:e3:13:d9:90:a8:c7: 14:d7:78:af:05:f4:9c:0c:d6:41:d0:68:ed:a0:f0: 5d:43:6f:10:9f:18:04:4c:7f:cd:4b:23:f3:d7:f4: 60:62:d9:a6:d9:a5:39:28:cd:f7:93:48:1a:67:5d: 43:3b:18:c5:9b:59:a7:1c:81:aa:08:a5:15:6b:7e: 62:8f:6a:94:0b:b1:3a:09:19:f6:38:5f:fd:0a:2f: df:25:81:5f:54:7c:cf:2b:b2:9d:4b:a9:cb:b7:75: 14:42:3c:6a:4a:90:35:13:ce:9d:ed:45:c7:3d:ca: 31:0a:c5:23:49:5f:59:13:ab:a5:03:2d:15:ad:21: cf:06:33:4e:a2:7e:2e:e0:21:96:ee:35:a3:96:76: 2f:6b:c9:2e:58:a7:0e:02:df:a0:84:ab:00:f1:b3: 60:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:22:97:FE:A1:CF:ED:3A:F2:D2:7A:0B:E1:6F:E9:46:8E:C7:C5:60 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0F3C9F928A0711EFB933C33AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.2.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:48:a1:db:9a:15:c9:a4:30:c6:cb:15:b2:17:71:d8:3c:f5: 45:ad:56:24:ed:50:b0:5a:06:13:21:d0:dc:ef:15:f5:1c:eb: 94:8f:fc:df:ec:d7:1d:f2:23:b1:bc:78:74:34:ae:c2:ff:28: eb:57:3b:63:7b:7f:e4:c1:be:93:5c:0a:84:ac:1e:0f:eb:a7: fd:eb:43:e0:b4:61:ab:a2:ff:85:7f:6e:2e:80:f8:da:99:c4: 10:97:91:07:e2:69:27:ae:7b:b1:cb:27:72:92:e7:16:53:c1: ee:d1:be:72:5c:f6:eb:ba:e1:8c:52:bd:1f:9b:05:2d:37:44: 41:a8:ba:6c:34:12:68:5b:68:19:52:aa:ca:d2:c4:ca:59:9d: c3:7e:78:ae:70:3f:80:f9:89:b7:97:e1:ff:e1:a4:a2:3d:0a: 29:14:3e:22:94:9f:dc:43:66:8e:2d:2d:e4:7b:24:dd:79:32: 7d:2c:56:3b:c7:0b:1d:2a:89:29:d9:19:bd:a6:74:82:18:22: 1a:3d:16:43:ec:24:13:b6:f7:78:73:c5:20:e0:51:4b:f9:17: da:90:78:29:fa:d5:f0:4a:d3:0c:7a:70:c1:38:6c:30:cf:4f: 1b:6f:e3:43:87:57:f3:a0:55:58:f0:3d:57:29:95:1e:3e:27: 5e:38:1e:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMDE0MDgzNDAwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBjZDc3Ny04OWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jTknBDFmvKtq8dziOdxGj0pkFaNtMklQuUV918kRgvv0Rd7E2DQGtlZpqcq wlUKxVfrIu17Mi0rIlmPNs5rNaGTEy8KsqhgLGilQuybnjcuvp8rZbDcAj6IB3ZP 07IInP7jE9mQqMcU13ivBfScDNZB0GjtoPBdQ28QnxgETH/NSyPz1/RgYtmm2aU5 KM33k0gaZ11DOxjFm1mnHIGqCKUVa35ij2qUC7E6CRn2OF/9Ci/fJYFfVHzPK7Kd S6nLt3UUQjxqSpA1E86d7UXHPcoxCsUjSV9ZE6ulAy0VrSHPBjNOon4u4CGW7jWj lnYva8kuWKcOAt+ghKsA8bNg6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGwil/6h z+068tJ6C+Fv6UaOx8VgMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMEYzQzlGOTI4 QTA3MTFFRkI5MzNDMzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGguwIwDQYJKoZIhvcNAQELBQADggEBAD5IoduaFcmkMMbL FbIXcdg89UWtViTtULBaBhMh0NzvFfUc65SP/N/s1x3yI7G8eHQ0rsL/KOtXO2N7 f+TBvpNcCoSsHg/rp/3rQ+C0Yaui/4V/bi6A+NqZxBCXkQfiaSeue7HLJ3KS5xZT we7RvnJc9uu64YxSvR+bBS03REGoumw0EmhbaBlSqsrSxMpZncN+eK5wP4D5ibeX 4f/hpKI9CikUPiKUn9xDZo4tLeR7JN15Mn0sVjvHCx0qiSnZGb2mdIIYIho9FkPs JBO293hzxSDgUUv5F9qQeCn61fBK0wx6cME4bDDPTxtv40OHV/OgVVjwPVcplR4+ J144Hg0= -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:18 2024 by rpki-client on console-ams.rpki-client.org