$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D951B66888411EF91274F84C4F9AE02.roa File: 1D951B66888411EF91274F84C4F9AE02.roa (raw, json) Hash identifier: rauaSLWqeIL62qJuF0bF2tolCwBxabUFUzm0730LVIw= Subject key identifier: 15:0D:5A:54:66:30:64:EC:5C:15:90:B1:FD:34:41:D0:62:8B:4C:43 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 040B Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D951B66888411EF91274F84C4F9AE02.roa Signing time: Sat 16 Nov 2024 14:43:34 +0000 ROA not before: Sat 16 Nov 2024 14:43:34 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153002 IP address blocks: 160.187.146.0/23 maxlen: 23 160.191.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1035 (0x40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Nov 16 14:43:34 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6738af96-2e2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7c:cc:cc:4b:b2:20:02:39:9b:02:b7:8c:27: 3e:4b:be:a0:88:b4:f1:6b:c7:9e:d1:79:71:9f:fe: 82:ed:0b:c4:bc:a9:16:9d:d6:97:c6:77:fd:54:6c: 1d:30:30:9b:47:68:b1:ce:61:35:30:57:cb:94:ce: ad:4a:7c:a2:3e:2c:f2:f0:d6:76:54:cd:c6:78:b9: 75:57:9a:23:ac:e2:ca:ef:4e:75:18:fc:68:5c:ab: 22:a3:09:99:c7:b2:fa:b1:59:6f:73:c0:48:ae:8b: 11:4a:d5:8f:48:13:a9:e1:9e:ae:17:bf:20:44:3e: 3e:20:04:a4:e9:d3:1b:03:af:81:85:2d:88:0f:46: f7:63:bc:a4:93:7b:89:29:d2:e7:42:bc:e0:de:9b: 79:c5:aa:8c:e5:f1:6e:14:1b:0b:0d:14:78:4d:99: f7:ee:49:35:30:96:69:6e:1f:25:5c:a4:82:40:a0: 7b:94:80:71:df:b4:36:ec:a5:49:39:c7:d1:4a:c3: 11:36:a6:80:e1:89:28:0a:d2:15:1b:1a:f6:b1:0b: 19:79:38:9b:c7:29:38:43:1a:b2:dd:ff:89:e6:5a: f9:3e:7f:5d:0b:7f:d6:72:63:00:43:ec:5c:cb:47: 72:22:f2:bc:d8:cb:a5:c8:55:c9:1f:c2:ce:f8:c3: b6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:0D:5A:54:66:30:64:EC:5C:15:90:B1:FD:34:41:D0:62:8B:4C:43 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D951B66888411EF91274F84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.146.0/23 160.191.88.0/23 Signature Algorithm: sha256WithRSAEncryption 73:be:e7:4d:36:dd:0f:bc:ec:d2:33:fa:09:8d:29:9c:71:05: ca:ae:ea:2d:07:ff:5c:98:ff:77:ce:c5:e7:0d:5e:d4:b1:77: 33:0f:6f:ba:38:56:1d:c7:20:1f:93:ce:4f:e3:d9:b9:cb:a1: d6:4f:2b:32:5d:59:4b:cc:3c:d7:70:7f:d0:e4:a2:99:19:61: 3d:e1:ba:0a:54:c3:49:60:48:bd:3b:7e:53:fe:14:ee:26:ae: 2a:0e:7a:e0:a0:f8:f5:80:de:45:bb:a1:fe:ca:43:87:19:da: 4a:36:75:44:3a:bc:5e:d7:b0:d7:98:09:46:03:78:ae:07:27: e9:f3:0a:29:a1:1d:4e:06:15:4e:cf:eb:e9:92:e9:1c:d5:27: df:52:77:7c:30:5e:6d:89:72:0a:b6:2b:7b:fb:47:cf:64:f3: 7f:4f:fc:27:e4:8d:5d:13:f6:45:d4:63:35:5c:67:48:b1:39: af:f4:04:e2:7e:5d:ef:12:53:e5:a6:28:5c:00:3e:bb:1f:51: c1:b6:af:16:cf:bb:6f:b4:38:e0:b6:31:ab:6a:a7:19:ef:aa: 71:90:9d:dd:d3:00:3e:9e:d4:e2:9a:e9:81:8c:9e:71:b4:ae: 72:5f:85:5c:5d:1f:63:e6:e0:0c:21:e0:ab:75:64:3f:71:c7: d2:31:44:af -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMTE2MTQ0MzM0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM4YWY5Ni0yZTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnzMzEuyIAI5mwK3jCc+S76giLTxa8ee0Xlxn/6C7QvEvKkWndaXxnf9VGwd MDCbR2ixzmE1MFfLlM6tSnyiPizy8NZ2VM3GeLl1V5ojrOLK7051GPxoXKsiowmZ x7L6sVlvc8BIrosRStWPSBOp4Z6uF78gRD4+IASk6dMbA6+BhS2ID0b3Y7ykk3uJ KdLnQrzg3pt5xaqM5fFuFBsLDRR4TZn37kk1MJZpbh8lXKSCQKB7lIBx37Q27KVJ OcfRSsMRNqaA4YkoCtIVGxr2sQsZeTibxyk4Qxqy3f+J5lr5Pn9dC3/WcmMAQ+xc y0dyIvK82MulyFXJH8LO+MO2+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBUNWlRm MGTsXBWQsf00QdBii0xDMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMUQ5NTFCNjY4 ODg0MTFFRjkxMjc0Rjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGgu5IDBAGgv1gwDQYJKoZIhvcNAQELBQADggEBAHO+5002 3Q+87NIz+gmNKZxxBcqu6i0H/1yY/3fOxecNXtSxdzMPb7o4Vh3HIB+Tzk/j2bnL odZPKzJdWUvMPNdwf9DkopkZYT3hugpUw0lgSL07flP+FO4mrioOeuCg+PWA3kW7 of7KQ4cZ2ko2dUQ6vF7XsNeYCUYDeK4HJ+nzCimhHU4GFU7P6+mS6RzVJ99Sd3ww Xm2Jcgq2K3v7R89k839P/CfkjV0T9kXUYzVcZ0ixOa/0BOJ+Xe8SU+WmKFwAPrsf UcG2rxbPu2+0OOC2MatqpxnvqnGQnd3TAD6e1OKa6YGMnnG0rnJfhVxdH2Pm4Awh 4Kt1ZD9xx9IxRK8= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org