$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/938766E6717B11EF8588F70CC4F9AE02.roa File: 938766E6717B11EF8588F70CC4F9AE02.roa (raw, json) Hash identifier: ismZM4QqwIwKnZ5FqD1PxY8jyd8RjppeVqL9BUutblI= Subject key identifier: 1C:CA:30:12:61:EF:8E:90:7F:1F:F9:09:E3:69:E6:38:A3:99:8C:77 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 02DC Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/938766E6717B11EF8588F70CC4F9AE02.roa Signing time: Fri 13 Sep 2024 02:55:05 +0000 ROA not before: Fri 13 Sep 2024 02:55:04 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152959 IP address blocks: 160.30.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 13 02:55:04 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e3a988-fdb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:17:9b:88:59:e1:1e:27:3f:fb:5b:80:c7:1b: 3e:1a:65:a7:b5:2e:eb:02:61:04:61:b5:e8:da:dc: fc:8c:9c:2b:f4:35:7b:3b:27:3e:88:a1:2b:15:e0: 97:da:e8:e6:f7:14:63:de:8d:dc:5f:59:f3:fb:d1: bf:1e:8b:a0:1c:8d:94:f1:37:31:22:35:2e:ec:00: a4:c5:4e:68:a8:36:35:51:b5:ee:de:db:38:70:47: 92:34:00:76:ad:95:c8:56:d8:72:45:10:c5:9e:7b: ee:e3:b6:b1:6c:c8:a3:8e:07:62:0b:c3:ef:c7:6c: 6c:f2:fc:18:bf:e4:d9:1f:e2:4a:74:77:16:d4:24: e1:50:1c:74:87:9a:c3:05:d3:52:cb:70:47:3d:5e: 4d:fa:42:83:d1:3e:cb:b5:ec:c7:ef:7b:52:3d:dd: 55:21:a5:d2:bc:93:0c:0c:c3:17:83:3c:fd:75:0f: b5:1c:c9:23:12:1d:4f:d5:15:15:44:f3:1b:5c:ed: d4:25:17:d5:f5:40:d1:7d:d4:06:14:29:b6:ba:d6: 6b:4e:66:ce:f2:49:d2:c0:af:8c:12:55:60:7a:fa: 11:0c:95:c9:88:6b:37:09:1b:34:bc:85:4c:46:cd: 2d:66:1c:be:a1:be:d3:eb:68:89:2c:e9:f7:a9:a4: db:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:CA:30:12:61:EF:8E:90:7F:1F:F9:09:E3:69:E6:38:A3:99:8C:77 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/938766E6717B11EF8588F70CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.12.0/23 Signature Algorithm: sha256WithRSAEncryption 21:80:c3:88:32:4f:22:3b:0f:06:09:57:fb:f6:d6:74:89:d7: ad:39:2c:c7:53:19:20:87:08:77:c3:57:59:8e:e2:d6:76:81: 89:5b:c2:8b:83:43:e2:33:95:ca:e7:1c:8e:76:6e:b6:75:9d: 86:cf:dc:ed:71:b0:45:1b:e1:92:a6:97:56:0c:0c:a9:24:e3: b3:32:75:96:a0:f6:19:cd:0f:ae:f6:ba:a6:06:a7:3a:7d:60: 68:d1:24:c1:51:39:b0:72:5d:20:7f:fc:f0:51:84:6d:48:48: 7f:f5:5a:1e:bb:a4:29:53:88:73:9f:8b:62:f9:f8:4f:65:88: d0:7f:67:8d:22:08:bb:2e:d9:a2:71:4a:10:8a:ad:b9:ba:9c: 70:e0:00:a8:34:64:22:0a:7a:dd:bd:8e:00:22:a5:01:b9:b7: 11:c9:4d:be:07:c1:24:69:22:96:6a:b1:99:cc:eb:a4:11:8f: e5:1b:dd:29:8b:4a:ba:b6:77:b6:c5:df:ee:5f:f2:3c:09:f9: 3c:21:d3:cc:23:51:06:b6:7e:3c:61:a9:89:5f:94:b7:f3:b9: ef:67:ce:00:1f:20:3b:6b:6d:e7:69:8a:d6:0e:9f:96:2c:fe: 62:92:9c:6e:25:32:75:51:21:14:69:1e:56:7f:24:b2:8a:4b: ef:c9:6c:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTEzMDI1NTA0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzYTk4OC1mZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxebiFnhHic/+1uAxxs+GmWntS7rAmEEYbXo2tz8jJwr9DV7Oyc+iKErFeCX 2ujm9xRj3o3cX1nz+9G/HougHI2U8TcxIjUu7ACkxU5oqDY1UbXu3ts4cEeSNAB2 rZXIVthyRRDFnnvu47axbMijjgdiC8Pvx2xs8vwYv+TZH+JKdHcW1CThUBx0h5rD BdNSy3BHPV5N+kKD0T7LtezH73tSPd1VIaXSvJMMDMMXgzz9dQ+1HMkjEh1P1RUV RPMbXO3UJRfV9UDRfdQGFCm2utZrTmbO8knSwK+MElVgevoRDJXJiGs3CRs0vIVM Rs0tZhy+ob7T62iJLOn3qaTbZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBzKMBJh 746Qfx/5CeNp5jijmYx3MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvOTM4NzY2RTY3 MTdCMTFFRjg1ODhGNzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHgwwDQYJKoZIhvcNAQELBQADggEBACGAw4gyTyI7DwYJ V/v21nSJ1605LMdTGSCHCHfDV1mO4tZ2gYlbwouDQ+IzlcrnHI52brZ1nYbP3O1x sEUb4ZKml1YMDKkk47MydZag9hnND672uqYGpzp9YGjRJMFRObByXSB//PBRhG1I SH/1Wh67pClTiHOfi2L5+E9liNB/Z40iCLsu2aJxShCKrbm6nHDgAKg0ZCIKet29 jgAipQG5txHJTb4HwSRpIpZqsZnM66QRj+Ub3SmLSrq2d7bF3+5f8jwJ+Twh08wj UQa2fjxhqYlflLfzue9nzgAfIDtrbedpitYOn5Ys/mKSnG4lMnVRIRRpHlZ/JLKK S+/JbLA= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org