$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/812B7A9E905411EF9B4B1342C4F9AE02.roa File: 812B7A9E905411EF9B4B1342C4F9AE02.roa (raw, json) Hash identifier: ZWiFwyPaAqmKKujxJ+Uvt09r/IViaNwWhiUJrRfYQmI= Subject key identifier: DF:10:90:7B:F9:D5:5E:92:6A:4D:59:0E:78:AB:2A:45:62:B6:FC:2F Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0375 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/812B7A9E905411EF9B4B1342C4F9AE02.roa Signing time: Tue 22 Oct 2024 09:03:29 +0000 ROA not before: Tue 22 Oct 2024 09:03:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131378 IP address blocks: 160.191.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 885 (0x375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Oct 22 09:03:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67176a61-e197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:26:a4:49:08:e0:ac:eb:9c:99:21:af:9c:31: 43:d0:39:ca:e8:c6:aa:6f:75:9b:92:a5:78:57:72: 62:81:ac:9d:b2:0b:50:22:24:60:00:7d:77:9f:24: 6c:3a:d7:fa:d3:b7:7c:17:3a:c2:3a:44:48:04:e1: ef:0b:42:73:ae:38:72:6f:d4:6d:1f:87:f4:00:bf: a5:03:5e:4d:3b:53:cc:71:2b:4e:8e:7a:54:9a:7a: 88:9e:51:b1:5b:a2:0a:5c:dd:83:e6:6a:8d:4c:25: 09:d6:52:87:22:93:c4:46:4b:fc:83:c2:23:0a:d1: 86:8a:d9:f7:05:05:c2:d1:a0:10:73:e3:c3:42:21: 5f:e1:77:51:c3:7b:5c:b0:4a:89:db:6f:b5:26:7e: c0:bb:a4:87:04:a8:08:d5:d0:f9:93:7e:2c:1a:89: 30:51:f4:0d:98:8a:eb:61:ce:83:e1:fe:f5:58:66: 40:95:74:fd:c8:47:08:9c:5e:96:23:c1:1d:6e:e1: b8:14:9e:b4:0e:c1:94:d0:40:33:d0:e8:20:b1:51: a4:3f:a1:25:65:56:ef:4e:5b:db:a5:ef:93:38:a3: 9f:90:29:1f:61:e0:17:a7:d8:07:7e:b4:14:20:a6: 83:23:50:eb:ce:a6:c8:c1:5e:c5:4d:5d:f5:56:6a: 65:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:10:90:7B:F9:D5:5E:92:6A:4D:59:0E:78:AB:2A:45:62:B6:FC:2F X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/812B7A9E905411EF9B4B1342C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.2.0/23 Signature Algorithm: sha256WithRSAEncryption 44:8d:74:4f:b6:d3:f7:a6:0a:21:36:c8:3a:c1:72:8c:0a:84: 6e:0f:dc:0c:ff:8b:9b:0d:54:cc:28:79:04:3a:cc:21:b4:16: a9:9e:b6:97:85:df:ef:8a:6a:d2:fd:f1:55:a4:e3:a8:df:a9: 9b:65:2f:9e:12:31:cd:5d:9f:df:51:1e:27:57:00:b1:b3:d1: 64:d7:42:e1:4c:34:2f:fa:87:ac:aa:3e:af:db:6f:d0:3d:30: e5:a5:13:0e:27:e3:17:3f:0b:de:fa:40:70:a0:c0:1c:79:7d: 96:4c:91:31:59:e5:e3:89:6c:51:9d:87:b7:15:f8:7d:cf:d3: eb:38:44:be:ac:61:ce:d2:9a:19:4a:5a:9c:fc:dd:ce:e7:13: 6f:61:85:c8:d2:8f:ae:47:d7:b9:a1:ab:78:c2:ec:f1:34:c8: 43:ea:ee:c2:cb:d2:7a:8c:a3:2c:b2:52:53:23:d5:c3:47:e2: 2d:0f:80:8b:4a:b3:87:b5:37:4d:10:b0:5c:59:f4:5d:d6:b1: 87:81:be:66:9f:d5:23:79:60:12:25:1a:e4:0c:a6:5c:ea:76: 34:b5:0b:ca:bc:80:af:29:1d:81:cf:01:99:27:65:29:d1:9c: 8f:95:7b:89:f0:97:95:8d:cb:91:07:10:28:88:73:29:17:ba: 2d:89:2b:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMDIyMDkwMzI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3NmE2MS1lMTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCakSQjgrOucmSGvnDFD0DnK6Maqb3WbkqV4V3JigaydsgtQIiRgAH13nyRs Otf607d8FzrCOkRIBOHvC0Jzrjhyb9RtH4f0AL+lA15NO1PMcStOjnpUmnqInlGx W6IKXN2D5mqNTCUJ1lKHIpPERkv8g8IjCtGGitn3BQXC0aAQc+PDQiFf4XdRw3tc sEqJ22+1Jn7Au6SHBKgI1dD5k34sGokwUfQNmIrrYc6D4f71WGZAlXT9yEcInF6W I8EdbuG4FJ60DsGU0EAz0OggsVGkP6ElZVbvTlvbpe+TOKOfkCkfYeAXp9gHfrQU IKaDI1DrzqbIwV7FTV31VmpluQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN8QkHv5 1V6Sak1ZDnirKkVitvwvMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvODEyQjdBOUU5 MDU0MTFFRjlCNEIxMzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgvwIwDQYJKoZIhvcNAQELBQADggEBAESNdE+20/emCiE2 yDrBcowKhG4P3Az/i5sNVMwoeQQ6zCG0FqmetpeF3++KatL98VWk46jfqZtlL54S Mc1dn99RHidXALGz0WTXQuFMNC/6h6yqPq/bb9A9MOWlEw4n4xc/C976QHCgwBx5 fZZMkTFZ5eOJbFGdh7cV+H3P0+s4RL6sYc7SmhlKWpz83c7nE29hhcjSj65H17mh q3jC7PE0yEPq7sLL0nqMoyyyUlMj1cNH4i0PgItKs4e1N00QsFxZ9F3WsYeBvmaf 1SN5YBIlGuQMplzqdjS1C8q8gK8pHYHPAZknZSnRnI+Ve4nwl5WNy5EHECiIcykX ui2JK4c= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org