$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa File: 1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa (raw, json) Hash identifier: +H1m/Hcww0KzXqci6XQ0FqY5p03sefPYus4nltMB768= Subject key identifier: 83:41:9A:16:2E:05:4D:71:1E:9B:BB:A9:E2:DB:47:02:B2:24:9C:20 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 03B7 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa Signing time: Tue 05 Nov 2024 07:36:49 +0000 ROA not before: Tue 05 Nov 2024 07:36:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45899 IP address blocks: 157.66.13.0/24 maxlen: 24 160.19.78.0/23 maxlen: 23 160.22.2.0/23 maxlen: 24 160.25.74.0/23 maxlen: 24 160.30.54.0/23 maxlen: 24 160.191.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 951 (0x3b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Nov 5 07:36:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6729cb11-3374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d9:03:3e:76:2b:f3:0e:90:9e:ab:fd:a6:47: 7a:e3:b2:aa:4a:6a:86:4c:5d:f6:50:ba:ad:bd:dc: 57:a0:39:cb:2f:b4:04:be:3f:d8:d3:b9:20:9f:f4: 75:1c:87:d9:bb:29:ae:d9:e9:13:d5:98:39:22:3d: 64:2b:d2:21:f3:95:0f:4f:a7:31:95:e1:67:9e:06: 9b:8b:86:43:f3:f4:fe:f0:75:3b:e1:31:56:90:81: 6e:80:92:4e:21:75:40:eb:4f:c1:68:7e:53:c2:90: da:ca:e7:ab:26:99:fc:c0:50:a7:20:16:c3:fd:94: cb:34:3b:40:ae:94:bc:ef:51:20:31:91:92:69:89: 4b:52:7e:6f:16:90:ee:80:10:07:9c:b6:f6:a6:21: 68:22:8b:81:57:d6:a0:5b:3d:4e:62:1d:ad:cd:10: 64:74:25:27:29:e1:73:57:47:10:c1:a5:b1:42:d1: dc:8a:39:b9:54:b5:e6:43:74:7e:28:a5:4c:bd:94: c3:10:fa:5b:03:18:68:70:1c:96:1e:13:67:2f:69: d9:ba:a3:9c:e6:61:ec:72:84:fc:f7:f9:a1:fe:cc: b6:08:fc:ba:7c:51:8b:79:88:e2:66:4a:c9:02:77: b2:41:dd:cf:6e:97:cd:5a:ea:f6:b7:36:d8:8b:ac: 65:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:41:9A:16:2E:05:4D:71:1E:9B:BB:A9:E2:DB:47:02:B2:24:9C:20 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.13.0/24 160.19.78.0/23 160.22.2.0/23 160.25.74.0/23 160.30.54.0/23 160.191.52.0/23 Signature Algorithm: sha256WithRSAEncryption a5:09:dc:19:ab:8e:31:33:49:41:fe:17:61:13:55:8b:24:67: e6:81:67:02:49:30:92:48:a4:42:48:71:5c:14:60:98:40:5b: 44:c1:af:b4:97:b3:e1:2c:88:0d:cb:b7:8f:9e:02:67:9d:56: 47:a5:0a:b0:7c:3e:2f:b9:d9:d3:a3:db:34:79:8d:38:41:60: d2:ff:9e:e1:2f:f5:c5:6c:ab:30:cc:2e:a3:bd:50:89:70:cb: 01:20:a6:15:10:d7:25:4b:69:29:9d:33:09:82:5d:02:0b:df: 6a:7c:ca:2f:41:13:ae:d4:8e:31:8a:84:a1:49:b9:cf:44:49: fb:0c:c0:79:de:ca:a4:ce:5a:78:ae:9f:75:0e:cc:dc:fa:9a: dd:d0:14:99:96:90:ed:fe:a7:f8:22:6b:2a:fe:a3:00:54:fd: 50:ad:36:ab:3a:f3:09:35:0a:f8:0b:41:71:39:d8:4b:25:29: 2d:08:8d:7f:05:fe:2f:2f:c1:c2:a4:b3:52:0c:34:ad:39:a2: b0:7d:91:80:3d:b1:b0:24:a9:9e:0c:d9:11:56:35:3c:d2:2b: 4b:70:9b:e2:ed:c0:c7:76:4e:00:f2:66:ab:d1:5e:58:6a:b9: 55:3c:36:28:b8:c3:3f:7a:f2:1b:91:f1:47:df:70:f0:a6:09: 37:90:77:26 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICA7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMTA1MDczNjQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5Y2IxMS0zMzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9kDPnYr8w6Qnqv9pkd647KqSmqGTF32ULqtvdxXoDnLL7QEvj/Y07kgn/R1 HIfZuymu2ekT1Zg5Ij1kK9Ih85UPT6cxleFnngabi4ZD8/T+8HU74TFWkIFugJJO IXVA60/BaH5TwpDayuerJpn8wFCnIBbD/ZTLNDtArpS871EgMZGSaYlLUn5vFpDu gBAHnLb2piFoIouBV9agWz1OYh2tzRBkdCUnKeFzV0cQwaWxQtHcijm5VLXmQ3R+ KKVMvZTDEPpbAxhocByWHhNnL2nZuqOc5mHscoT89/mh/sy2CPy6fFGLeYjiZkrJ AneyQd3PbpfNWur2tzbYi6xlcQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFINBmhYu BU1xHpu7qeLbRwKyJJwgMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMUQxQzkzM0VG QjlBMTFFRUJGNUMzQzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBACdQg0DBAGgE04DBAGgFgIDBAGgGUoDBAGgHjYDBAGgvzQw DQYJKoZIhvcNAQELBQADggEBAKUJ3BmrjjEzSUH+F2ETVYskZ+aBZwJJMJJIpEJI cVwUYJhAW0TBr7SXs+EsiA3Lt4+eAmedVkelCrB8Pi+52dOj2zR5jThBYNL/nuEv 9cVsqzDMLqO9UIlwywEgphUQ1yVLaSmdMwmCXQIL32p8yi9BE67UjjGKhKFJuc9E SfsMwHneyqTOWniun3UOzNz6mt3QFJmWkO3+p/giayr+owBU/VCtNqs68wk1CvgL QXE52EslKS0IjX8F/i8vwcKks1IMNK05orB9kYA9sbAkqZ4M2RFWNTzSK0twm+Lt wMd2TgDyZqvRXlhquVU8Nii4wz968huR8UffcPCmCTeQdyY= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org