$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/8092DB4C718011EF8BEC2931C4F9AE02.roa File: 8092DB4C718011EF8BEC2931C4F9AE02.roa (raw, json) Hash identifier: 7nA1efNGTDFzhcfd3qIrEv5ewOBaHaECnFuhItODREE= Subject key identifier: B7:ED:C6:5B:86:65:D3:BF:1D:12:7C:10:FD:F3:D2:06:E0:93:6F:38 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 03C3 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/8092DB4C718011EF8BEC2931C4F9AE02.roa Signing time: Tue 05 Nov 2024 07:51:57 +0000 ROA not before: Tue 05 Nov 2024 07:51:57 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140822 IP address blocks: 160.30.254.0/23 maxlen: 23 160.187.88.0/23 maxlen: 23 160.187.90.0/23 maxlen: 23 160.187.242.0/23 maxlen: 23 160.187.244.0/23 maxlen: 23 160.191.36.0/23 maxlen: 23 160.191.90.0/23 maxlen: 23 160.191.92.0/23 maxlen: 23 160.191.94.0/23 maxlen: 23 160.191.96.0/23 maxlen: 23 160.191.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Nov 5 07:51:57 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6729ce9d-9940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:84:ef:91:c4:fa:4c:d6:60:89:09:d4:7f:6b: 5e:18:46:57:a0:42:d4:51:73:62:c4:72:68:f6:00: 34:77:ed:29:a4:c9:af:2a:7c:65:db:69:18:5b:b3: 28:4a:5f:cf:6a:49:4e:cb:d5:87:5b:39:60:cf:42: 55:2b:e0:d3:e5:6e:e7:3a:ad:cf:d1:df:a9:f8:f2: 4b:f0:be:73:9b:79:70:38:53:e1:98:a3:cc:90:c7: 60:08:21:51:21:36:0d:14:31:79:5b:3c:69:f4:14: 6d:10:4a:1f:86:53:60:45:f5:01:06:c5:f8:07:56: 3a:3f:a8:3b:89:b5:4b:fc:65:ee:e3:24:f7:23:bf: 81:ca:5e:4f:f1:fe:df:d6:58:82:42:2b:39:9f:c3: 05:80:95:8e:50:c4:4c:9f:99:7a:0e:be:09:14:aa: d1:8b:88:31:b7:99:bf:c5:d2:cb:2d:59:55:f5:10: c5:3e:02:7e:30:95:3a:84:ec:80:92:a2:a3:37:d8: 50:01:62:cc:fd:47:b5:c0:a2:46:02:de:ba:0a:fa: 81:db:c1:5b:b2:a2:85:ec:5e:95:aa:51:77:c4:a7: 43:9f:40:a0:f5:30:78:c1:b0:dd:40:2e:a9:f6:fa: 9e:fa:d4:97:a3:f6:4c:02:8f:db:95:ab:b7:2f:23: 97:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:ED:C6:5B:86:65:D3:BF:1D:12:7C:10:FD:F3:D2:06:E0:93:6F:38 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/8092DB4C718011EF8BEC2931C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.254.0/23 160.187.88.0/22 160.187.242.0-160.187.245.255 160.191.36.0/23 160.191.90.0-160.191.99.255 Signature Algorithm: sha256WithRSAEncryption 66:8e:a4:11:cd:e3:0b:8f:b6:dc:5c:d6:fb:12:1b:68:a8:c3: ca:00:2b:d3:8c:69:26:fd:a6:70:a4:be:6d:d7:77:ae:cc:63: 5c:81:77:2c:33:f5:a8:7d:6c:65:19:b0:07:72:dc:78:35:f5: 43:92:0c:68:bd:26:e5:c1:d5:63:58:15:3a:25:4e:a5:ed:bc: 86:d4:47:e5:d5:b8:9e:3a:f8:1a:60:98:ba:a9:2f:f7:ea:0e: 76:f1:3a:f8:ee:8e:e7:36:0d:95:94:94:0e:f9:af:9f:90:a4: c9:55:09:53:86:c5:5a:3c:d0:41:56:be:83:5f:76:3c:1c:70: e3:bd:0d:5c:70:e3:fa:91:ac:61:74:f6:ee:53:ac:fa:4e:d7: ec:1f:e9:b9:26:d2:1d:cd:fa:6a:3b:c3:8f:31:9d:2f:bd:b0: a1:39:a1:6f:b5:91:58:bf:d0:75:c0:92:c4:7f:71:88:6e:77: 69:ab:52:9d:40:51:63:e9:50:c8:1a:f8:b5:be:62:85:5f:b3: 6b:d5:2f:9e:26:18:18:54:53:ee:0a:96:86:3a:69:5b:4f:b2: 82:80:2a:6f:22:ca:97:56:93:8b:a3:5e:0c:ff:01:a1:12:63: ec:e1:2d:53:36:b2:01:b1:bf:43:ef:5b:e4:55:42:98:1e:c8: c0:89:0d:8c -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMTA1MDc1MTU3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5Y2U5ZC05OTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YTvkcT6TNZgiQnUf2teGEZXoELUUXNixHJo9gA0d+0ppMmvKnxl22kYW7Mo Sl/PaklOy9WHWzlgz0JVK+DT5W7nOq3P0d+p+PJL8L5zm3lwOFPhmKPMkMdgCCFR ITYNFDF5Wzxp9BRtEEofhlNgRfUBBsX4B1Y6P6g7ibVL/GXu4yT3I7+Byl5P8f7f 1liCQis5n8MFgJWOUMRMn5l6Dr4JFKrRi4gxt5m/xdLLLVlV9RDFPgJ+MJU6hOyA kqKjN9hQAWLM/Ue1wKJGAt66CvqB28FbsqKF7F6VqlF3xKdDn0Cg9TB4wbDdQC6p 9vqe+tSXo/ZMAo/blau3LyOX7QIDAQABo4ICvTCCArkwHQYDVR0OBBYEFLftxluG ZdO/HRJ8EP3z0gbgk284MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvODA5MkRCNEM3 MTgwMTFFRjhCRUMyOTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MDQEAgABMC4DBAGgHv4DBAKgu1gwDAMEAaC78gMEAaC79AMEAaC/JDAMAwQB oL9aAwQCoL9gMA0GCSqGSIb3DQEBCwUAA4IBAQBmjqQRzeMLj7bcXNb7EhtoqMPK ACvTjGkm/aZwpL5t13euzGNcgXcsM/WofWxlGbAHctx4NfVDkgxovSblwdVjWBU6 JU6l7byG1Efl1bieOvgaYJi6qS/36g528Tr47o7nNg2VlJQO+a+fkKTJVQlThsVa PNBBVr6DX3Y8HHDjvQ1ccOP6kaxhdPbuU6z6TtfsH+m5JtIdzfpqO8OPMZ0vvbCh OaFvtZFYv9B1wJLEf3GIbndpq1KdQFFj6VDIGvi1vmKFX7Nr1S+eJhgYVFPuCpaG OmlbT7KCgCpvIsqXVpOLo14M/wGhEmPs4S1TNrIBsb9D71vkVUKYHsjAiQ2M -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org