$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/FC6822B4654A11EF8DAAD052C4F9AE02.roa File: FC6822B4654A11EF8DAAD052C4F9AE02.roa (raw, json) Hash identifier: rHtDwt1uMJ5tHm6CLgFoqS8KNW32Y/0YeI0MUczWRWs= Subject key identifier: AB:72:AE:75:B9:68:77:9E:4B:C9:53:0F:82:A8:0B:55:FD:27:44:C2 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 02AB Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/FC6822B4654A11EF8DAAD052C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:26 +0000 ROA not before: Thu 05 Sep 2024 03:31:26 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152978 IP address blocks: 160.30.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:26 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9260e-46af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:26:95:d2:f1:75:a2:a2:2a:ff:24:e6:a8:a6: 1e:8e:0e:33:c8:2a:32:a6:25:63:db:7e:f7:6e:15: 55:ec:48:9b:4f:7b:64:1a:aa:ac:7b:34:80:ad:66: cf:00:0e:b8:f2:47:1a:94:57:d1:49:15:88:cf:ef: 22:32:82:ef:3e:3b:6f:66:b4:4e:ce:10:01:17:64: 56:23:52:cf:84:35:48:e0:07:d0:44:ea:5d:e3:fd: e7:32:3a:62:e0:26:38:34:20:c3:ca:04:63:7e:e1: 61:b5:e6:09:0a:a4:f6:a4:33:ff:9d:f6:02:a0:00: e9:44:09:1a:33:59:6a:10:a1:8c:25:99:f0:70:8a: 61:09:88:5f:e6:5e:ec:db:a4:28:c3:3f:be:a0:a5: c4:7b:84:04:31:c7:f1:95:15:ab:40:64:e5:f5:50: 9a:23:10:e9:af:20:e0:cf:3c:c3:35:f0:cd:5a:f6: 6f:7b:ba:28:a3:bb:6b:94:7a:e5:50:37:2b:43:d0: f3:bb:54:5e:d6:15:2a:ae:58:2d:ac:61:0d:44:da: b5:c7:a1:0d:c9:18:4b:8a:0c:5a:8c:b1:7c:01:e8: d4:b4:fc:a1:99:d1:55:3b:75:7f:fb:26:22:b7:63: 5e:ab:86:e2:a7:15:58:38:01:8b:96:d2:63:f5:18: 3e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:72:AE:75:B9:68:77:9E:4B:C9:53:0F:82:A8:0B:55:FD:27:44:C2 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/FC6822B4654A11EF8DAAD052C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.158.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:58:df:2a:bb:67:a5:2b:ec:f2:83:58:a5:24:77:d2:71:88: 70:f1:c7:aa:78:d9:09:b1:0c:ff:c8:ad:50:fa:51:8e:27:ab: 15:7f:de:d9:22:6f:5a:0d:b7:83:ba:a9:6b:9f:4d:d0:51:f9: ee:65:83:fd:32:43:a2:9e:08:fc:81:c9:d7:61:f6:22:e4:cc: db:4c:ad:72:6e:52:c6:4a:4a:1b:3e:9e:24:80:cb:0b:1f:8f: 98:6b:86:7c:ad:17:e8:ee:dd:df:53:c8:0f:3b:ce:c8:e9:55: ff:63:54:f4:98:62:24:39:5b:88:0c:a3:9c:fd:d0:bb:5f:75: 07:e0:2e:ae:30:c6:88:bd:3b:97:51:1b:15:92:d5:c0:f1:62: 07:43:34:d6:37:f6:78:cd:46:1c:66:eb:25:6c:08:2b:32:4d: 77:2c:bf:9b:af:ee:d8:1d:20:8b:e6:b6:3a:1f:40:28:42:dd: 74:ab:05:db:53:c3:52:34:3f:57:eb:58:96:97:00:83:d6:14: 22:9e:4a:04:5f:98:88:6d:9c:d2:e7:02:40:ef:3c:a1:ac:df: 14:6d:29:e9:bd:ef:f3:74:a8:fb:e1:39:02:0c:e7:05:63:48: 86:c6:cc:3b:df:7d:ef:10:73:9b:3c:e5:c6:84:11:23:4b:34: ef:7e:53:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTI2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYwZS00NmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SaV0vF1oqIq/yTmqKYejg4zyCoypiVj2373bhVV7EibT3tkGqqsezSArWbP AA648kcalFfRSRWIz+8iMoLvPjtvZrROzhABF2RWI1LPhDVI4AfQROpd4/3nMjpi 4CY4NCDDygRjfuFhteYJCqT2pDP/nfYCoADpRAkaM1lqEKGMJZnwcIphCYhf5l7s 26Qowz++oKXEe4QEMcfxlRWrQGTl9VCaIxDpryDgzzzDNfDNWvZve7ooo7trlHrl UDcrQ9Dzu1Re1hUqrlgtrGENRNq1x6ENyRhLigxajLF8AejUtPyhmdFVO3V/+yYi t2Neq4bipxVYOAGLltJj9Rg+5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKtyrnW5 aHeeS8lTD4KoC1X9J0TCMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRkM2ODIyQjQ2 NTRBMTFFRjhEQUFEMDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHp4wDQYJKoZIhvcNAQELBQADggEBAFtY3yq7Z6Ur7PKD WKUkd9JxiHDxx6p42QmxDP/IrVD6UY4nqxV/3tkib1oNt4O6qWufTdBR+e5lg/0y Q6KeCPyByddh9iLkzNtMrXJuUsZKShs+niSAywsfj5hrhnytF+ju3d9TyA87zsjp Vf9jVPSYYiQ5W4gMo5z90LtfdQfgLq4wxoi9O5dRGxWS1cDxYgdDNNY39njNRhxm 6yVsCCsyTXcsv5uv7tgdIIvmtjofQChC3XSrBdtTw1I0P1frWJaXAIPWFCKeSgRf mIhtnNLnAkDvPKGs3xRtKem97/N0qPvhOQIM5wVjSIbGzDvffe8Qc5s85caEESNL NO9+UzE= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org