$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/796FB7725BA511EF8123E687C4F9AE02.roa File: 796FB7725BA511EF8123E687C4F9AE02.roa (raw, json) Hash identifier: twx34FgbshgQDxP6MLOLKeMZIBPDUTwGU3LlwwS0yGA= Subject key identifier: AF:31:4E:48:E7:95:4B:A2:9D:34:86:6A:D0:C3:88:80:15:41:DF:9A Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0284 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/796FB7725BA511EF8123E687C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:30:51 +0000 ROA not before: Thu 05 Sep 2024 03:30:51 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149078 IP address blocks: 160.30.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 644 (0x284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:30:51 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925eb-c8ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:54:7a:11:3b:96:8a:80:20:f5:15:e4:e2:71: 1c:dc:74:94:76:ee:23:3f:00:41:9a:2a:1a:b3:64: 42:f1:45:a2:03:f3:cd:ec:a2:c4:c3:3e:fb:df:5f: 22:e1:88:b7:0b:3c:49:52:94:43:6b:d5:45:99:73: b4:a8:87:bb:84:aa:a2:81:6e:69:42:26:0f:8d:e6: 80:72:ba:e6:b8:b9:75:0f:61:4b:79:99:ca:7d:14: a6:63:f1:a5:04:42:88:ee:46:a1:c0:ec:97:83:06: 72:26:d6:e3:e1:25:d8:73:86:16:22:73:8f:fa:7e: c4:93:75:34:c3:cf:7f:a4:f0:44:1a:27:01:f2:b3: ca:e0:f6:59:90:78:b8:60:0b:22:d1:88:af:a4:38: 06:a3:16:46:b5:c5:69:4a:ce:a7:5e:db:9a:cd:04: a1:81:d3:d2:b8:f4:bd:79:55:bc:e4:38:cf:8e:21: cf:d7:31:85:2a:d6:28:00:2e:c7:f3:99:5f:06:5c: b0:fa:ff:2f:ba:2a:6a:32:4f:fb:1c:d3:17:83:6f: 1b:3f:4b:49:02:53:a0:e8:29:60:df:b2:3e:fd:ef: 2a:a3:bf:72:20:5f:52:cd:2f:22:6c:0b:f7:9c:73: fb:ef:7b:27:96:8e:30:ed:6b:ac:bc:36:a1:d7:8c: 58:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:31:4E:48:E7:95:4B:A2:9D:34:86:6A:D0:C3:88:80:15:41:DF:9A X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/796FB7725BA511EF8123E687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.90.0/23 Signature Algorithm: sha256WithRSAEncryption 61:52:3e:ea:c3:d2:c8:7e:3d:17:5f:81:59:4c:96:7a:49:4f: 82:d8:d2:c9:82:ac:7e:50:1a:95:71:6c:da:6d:44:51:2e:d3: 25:73:88:78:15:89:83:61:aa:96:33:5d:41:c2:c7:03:80:bf: 0f:73:88:cb:5b:21:d9:a2:2c:77:20:cf:cc:9f:7c:dc:7a:ea: 46:57:7d:59:93:75:a7:c4:91:0d:38:0d:71:09:5b:ff:75:f0: 27:92:ec:02:e1:d9:11:53:8f:63:ca:70:0e:14:ba:8d:1b:42: 13:7d:1e:ee:b2:da:5e:a5:cf:33:c1:c3:b4:be:a6:5c:7c:7b: 83:07:39:ea:c6:8a:b5:1d:97:51:44:29:a7:62:f3:1b:f3:d9: 9f:79:df:a8:60:c9:1d:25:cb:6a:79:7a:c1:a2:0d:d1:ef:b7: 3b:9a:e2:20:09:2f:3f:75:b8:34:49:14:cf:88:d5:45:91:55: 46:ba:c2:b5:7d:e1:c1:95:f4:7a:3e:d3:8e:44:86:c8:8e:73: ea:bf:d4:4d:59:98:00:ba:78:46:08:51:a3:b6:16:7e:34:4d: b8:aa:86:cd:21:f6:d8:40:b5:8f:1e:3d:f6:13:df:47:38:ef: 7c:d2:a7:01:ba:2a:b7:d1:d3:48:68:df:ef:1a:22:38:3f:e2: 23:55:9f:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMDUxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVlYi1jOGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FR6ETuWioAg9RXk4nEc3HSUdu4jPwBBmioas2RC8UWiA/PN7KLEwz77318i 4Yi3CzxJUpRDa9VFmXO0qIe7hKqigW5pQiYPjeaAcrrmuLl1D2FLeZnKfRSmY/Gl BEKI7kahwOyXgwZyJtbj4SXYc4YWInOP+n7Ek3U0w89/pPBEGicB8rPK4PZZkHi4 YAsi0YivpDgGoxZGtcVpSs6nXtuazQShgdPSuPS9eVW85DjPjiHP1zGFKtYoAC7H 85lfBlyw+v8vuipqMk/7HNMXg28bP0tJAlOg6Clg37I+/e8qo79yIF9SzS8ibAv3 nHP773snlo4w7WusvDah14xY0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFK8xTkjn lUuinTSGatDDiIAVQd+aMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNzk2RkI3NzI1 QkE1MTFFRjgxMjNFNjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHlowDQYJKoZIhvcNAQELBQADggEBAGFSPurD0sh+PRdf gVlMlnpJT4LY0smCrH5QGpVxbNptRFEu0yVziHgViYNhqpYzXUHCxwOAvw9ziMtb IdmiLHcgz8yffNx66kZXfVmTdafEkQ04DXEJW/918CeS7ALh2RFTj2PKcA4Uuo0b QhN9Hu6y2l6lzzPBw7S+plx8e4MHOerGirUdl1FEKadi8xvz2Z9536hgyR0ly2p5 esGiDdHvtzua4iAJLz91uDRJFM+I1UWRVUa6wrV94cGV9Ho+045EhsiOc+q/1E1Z mAC6eEYIUaO2Fn40Tbiqhs0h9thAtY8ePfYT30c473zSpwG6KrfR00ho3+8aIjg/ 4iNVn1A= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:02 2024 by rpki-client on console-fra.rpki-client.org