$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa File: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (raw, json) Hash identifier: 2bzYWZhSZUzBimn1IglwPv7AEhVCAaK8feLQOEL571A= Subject key identifier: 5A:97:BB:B7:DF:00:4E:A5:D4:76:CC:75:3F:BC:AB:5A:19:F1:9A:C0 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: 04 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa Signing time: Wed 27 Nov 2024 02:19:09 +0000 ROA not before: Wed 27 Nov 2024 02:19:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142285 IP address blocks: 160.250.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Feb 2025 22:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D Validity Not Before: Nov 27 02:19:09 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6746819d-9173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5e:70:c0:56:a5:f2:e2:46:3c:e5:51:d5:48: 3b:8b:ca:b7:6b:e9:cc:bd:ce:ae:99:a4:0d:06:44: 59:a8:cc:37:5c:c6:bb:d3:9e:33:59:8b:eb:28:43: cf:96:98:46:0c:88:b3:13:fe:e6:f2:d3:a0:ac:06: 23:40:18:a7:ff:5d:c0:1b:b9:2b:a7:0f:dd:f8:fa: 46:57:ca:7b:28:88:ab:74:86:bc:c6:b3:58:71:3a: 90:6e:e9:59:47:95:19:29:d8:a4:c0:1d:aa:ac:fc: a3:63:d2:58:40:eb:54:55:2c:13:27:dc:b1:dd:a7: 46:08:1e:95:67:68:6d:a1:c7:4e:78:1f:36:15:73: d8:a6:f1:c3:5e:d1:e5:07:90:5e:df:cb:76:a2:f9: 0c:5e:db:93:1b:fc:4e:b6:55:08:d0:3e:13:6c:b1: bb:1c:12:c5:7e:da:de:f1:1d:85:7d:54:c2:32:45: 6e:f9:50:36:1b:8c:0f:9a:02:e8:0d:7e:e7:6d:1f: ce:0b:96:c8:94:5e:b9:93:b1:12:ad:ec:4f:43:d0: e3:6a:5a:ea:8d:4c:7d:48:79:a7:35:82:6c:de:a7: 09:c2:38:e3:94:3c:dd:52:52:57:65:4b:60:70:34: 8d:49:dd:61:a2:0e:45:8b:d8:08:aa:57:9c:c3:bf: c3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:97:BB:B7:DF:00:4E:A5:D4:76:CC:75:3F:BC:AB:5A:19:F1:9A:C0 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.73.0/24 Signature Algorithm: sha256WithRSAEncryption 83:3c:c2:64:6f:72:eb:06:d2:96:e0:83:65:fd:54:05:90:dd: 6e:51:b9:07:a1:7a:73:6e:a1:a2:90:df:b8:c0:5d:01:65:e8: 48:0a:90:6b:0a:16:24:f1:34:95:58:89:82:c2:67:12:bf:6f: d2:bb:05:2e:f5:d5:12:90:3c:99:92:7d:86:30:d4:70:20:cf: 4b:fb:1a:d2:ed:51:b0:37:3b:7a:1d:68:fe:78:0f:9f:7d:b6: e3:cf:c0:d3:05:9d:6a:43:8d:e9:57:16:c0:ba:fd:fe:3c:65: 91:5f:89:10:29:a1:11:87:8e:75:92:6a:d0:a0:4f:f3:8e:bc: 6d:3b:d8:f7:50:0c:3a:e3:ea:ab:cb:4e:98:09:36:84:39:4d: 45:74:4e:91:bf:88:25:99:a6:b0:0a:dd:6e:3d:c0:1c:bb:65: 63:bb:bd:d4:7e:72:94:c5:9c:0b:62:a9:32:98:5a:60:bc:19: e4:4d:cc:af:06:24:ac:11:de:ba:07:40:13:60:ec:4e:87:70: 41:7c:f4:39:85:5a:9f:72:b7:5c:29:07:c7:16:4e:70:d0:3c: 91:83:60:ec:f7:c5:51:1a:8c:b3:36:93:e6:c0:2d:05:7f:0e: 18:70:a1:dc:ed:59:11:7e:b6:70:b5:cf:cf:ab:a3:d3:a1:8d: dc:6f:40:6d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkYyRDExMC8GA1UEBRMoQUY2NzJEQThDNUQxRDZDODBENTA2MTc4QzlFN0NCNzQ0 RjZFMzhFNjAeFw0yNDExMjcwMjE5MDlaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NDY4MTlkLTkxNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUXnDAVqXy4kY85VHVSDuLyrdr6cy9zq6ZpA0GRFmozDdcxrvTnjNZi+soQ8+W mEYMiLMT/uby06CsBiNAGKf/XcAbuSunD934+kZXynsoiKt0hrzGs1hxOpBu6VlH lRkp2KTAHaqs/KNj0lhA61RVLBMn3LHdp0YIHpVnaG2hx054HzYVc9im8cNe0eUH kF7fy3ai+Qxe25Mb/E62VQjQPhNssbscEsV+2t7xHYV9VMIyRW75UDYbjA+aAugN fudtH84LlsiUXrmTsRKt7E9D0ONqWuqNTH1Ieac1gmzepwnCOOOUPN1SUldlS2Bw NI1J3WGiDkWL2AiqV5zDv8OnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWpe7t98A TqXUdsx1P7yrWhnxmsAwHwYDVR0jBBgwFoAUr2ctqMXR1sgNUGF4yefLdE9uOOYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjJELzZGODIxMTc4QUI4 ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9P WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcjJjdHFNWFIxc2dOVUdGNHllZkxkRTl1T09ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC82RjgyMTE3OEFCODgxMUVGODBDNzVBNzRDNEY5QUUwMi9GQkUwQUI1NkFD NjUxMUVGQUVBQThBM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6STANBgkqhkiG9w0BAQsFAAOCAQEAgzzCZG9y6wbSluCD Zf1UBZDdblG5B6F6c26hopDfuMBdAWXoSAqQawoWJPE0lViJgsJnEr9v0rsFLvXV EpA8mZJ9hjDUcCDPS/sa0u1RsDc7eh1o/ngPn32248/A0wWdakON6VcWwLr9/jxl kV+JECmhEYeOdZJq0KBP8468bTvY91AMOuPqq8tOmAk2hDlNRXROkb+IJZmmsArd bj3AHLtlY7u91H5ylMWcC2KpMphaYLwZ5E3MrwYkrBHeugdAE2DsTodwQXz0OYVa n3K3XCkHxxZOcNA8kYNg7PfFURqMszaT5sAtBX8OGHCh3O1ZEX62cLXPz6uj06GN 3G9AbQ== -----END CERTIFICATE-----Generated at Wed Feb 5 23:11:37 2025 by rpki-client