$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/34EEE440914911EFAD03F553C4F9AE02.roa File: 34EEE440914911EFAD03F553C4F9AE02.roa (raw, json) Hash identifier: RWa5lrlutTMngpTm0HkOapuE36iZOEv43n5poC2mt1I= Subject key identifier: 00:81:F8:2C:3D:A9:A0:C7:F1:00:26:8A:80:69:05:94:2E:78:12:4F Certificate issuer: /CN=A91AF4CC/serialNumber=252A5A58C2C2393682BBF2BBC4612341C11D8419 Certificate serial: 02 Authority key identifier: 25:2A:5A:58:C2:C2:39:36:82:BB:F2:BB:C4:61:23:41:C1:1D:84:19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/34EEE440914911EFAD03F553C4F9AE02.roa Signing time: Wed 23 Oct 2024 14:15:08 +0000 ROA not before: Wed 23 Oct 2024 14:15:08 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153373 IP address blocks: 160.191.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.crl rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 14:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF4CC/serialNumber=252A5A58C2C2393682BBF2BBC4612341C11D8419 Validity Not Before: Oct 23 14:15:08 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=671904ec-e174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7e:94:6e:b0:e6:a5:6e:f0:8f:6c:9a:04:af: 31:35:51:10:fb:40:e6:8d:7e:c0:02:cc:89:09:85: 69:d7:62:89:cf:2d:16:50:38:0e:81:f3:93:d7:a3: 34:97:2d:32:5f:5e:cb:2b:20:50:9b:76:04:33:5a: 10:08:44:e4:5f:d7:8a:a0:e7:95:e0:86:9f:7a:53: a2:3c:49:09:bd:bb:cb:a1:b6:e5:ba:3f:e2:9e:94: 8e:69:a3:2d:18:69:99:e6:47:45:9d:36:63:c2:16: c8:ea:32:25:7b:20:52:7a:b4:8d:a1:7f:20:48:08: 11:e5:3d:74:8d:32:41:7d:59:20:2c:a8:4d:d2:a6: 10:46:a0:b4:d0:86:b6:2a:46:35:21:0f:95:18:96: c1:18:81:17:19:c5:b0:db:33:fd:81:30:82:7e:3d: 06:40:54:0c:05:db:20:d7:97:28:ef:a1:80:81:86: eb:be:88:e7:ca:2e:af:75:8b:f3:07:6e:f8:1c:2d: 81:11:75:86:1b:17:bc:89:ed:51:4a:98:48:98:0e: b2:b2:22:e4:a5:17:ff:2c:c1:bc:a0:40:00:73:5b: f3:a5:64:a5:25:89:4e:9a:af:49:0c:7e:9b:3a:9c: 8e:24:22:29:98:51:6b:53:1d:72:67:1c:15:7c:d9: 97:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:81:F8:2C:3D:A9:A0:C7:F1:00:26:8A:80:69:05:94:2E:78:12:4F X509v3 Authority Key Identifier: keyid:25:2A:5A:58:C2:C2:39:36:82:BB:F2:BB:C4:61:23:41:C1:1D:84:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/34EEE440914911EFAD03F553C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.70.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:25:c8:10:1e:b0:48:fe:30:ec:92:69:a0:90:2f:80:ce:4f: fd:4f:a9:b6:64:13:a9:36:16:44:c6:48:57:23:67:3c:4e:a2: ba:f8:6e:df:af:e7:b7:6a:bf:70:ba:8d:98:08:44:59:3e:88: be:cc:e2:db:7b:ae:8e:b5:f9:a7:9d:ff:bf:7f:4e:9e:4b:68: 4e:4d:48:97:ba:36:48:d4:85:27:0b:fe:e7:45:c9:62:ff:81: f9:0e:bd:92:d4:11:a3:26:a6:fa:45:39:28:23:95:c9:d1:fb: 03:11:c1:b6:77:52:80:22:99:26:ee:e1:0c:20:c1:95:23:32: d5:74:4c:a9:f5:33:1b:84:e9:96:e9:b7:f0:ee:06:85:4a:4a: 31:f0:67:39:e1:73:11:52:53:6c:83:36:4d:4c:cb:b8:ad:32: 50:20:65:ca:da:cf:84:41:c0:b6:7e:5b:df:e3:81:ff:0a:5e: 6b:27:5a:50:c3:de:f7:32:2f:57:cf:5c:0f:a2:48:66:b2:24: b9:21:02:19:ec:25:95:9d:34:e1:5b:d2:10:40:18:fd:ab:18: 23:82:6c:c7:9c:9e:61:46:21:87:f5:92:5c:ad:bf:39:cf:87: 03:ad:79:41:15:63:8f:91:c0:92:ed:08:54:bc:5c:b9:2a:2d: 27:a7:8e:17 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RjRDQzExMC8GA1UEBRMoMjUyQTVBNThDMkMyMzkzNjgyQkJGMkJCQzQ2MTIzNDFD MTFEODQxOTAeFw0yNDEwMjMxNDE1MDhaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTkwNGVjLWUxNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPfpRusOalbvCPbJoErzE1URD7QOaNfsACzIkJhWnXYonPLRZQOA6B85PXozSX LTJfXssrIFCbdgQzWhAIRORf14qg55Xghp96U6I8SQm9u8uhtuW6P+KelI5poy0Y aZnmR0WdNmPCFsjqMiV7IFJ6tI2hfyBICBHlPXSNMkF9WSAsqE3SphBGoLTQhrYq RjUhD5UYlsEYgRcZxbDbM/2BMIJ+PQZAVAwF2yDXlyjvoYCBhuu+iOfKLq91i/MH bvgcLYERdYYbF7yJ7VFKmEiYDrKyIuSlF/8swbygQABzW/OlZKUliU6ar0kMfps6 nI4kIimYUWtTHXJnHBV82Zc/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUAIH4LD2p oMfxACaKgGkFlC54Ek8wHwYDVR0jBBgwFoAUJSpaWMLCOTaCu/K7xGEjQcEdhBkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGNENDL0NDNjhFM0RBOTE0 ODExRUY4N0VBREQ1MkM0RjlBRTAyL0pTcGFXTUxDT1RhQ3VfSzd4R0VqUWNFZGhC ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSlNwYVdNTENPVGFDdV9LN3hHRWpRY0VkaEJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjRDQy9DQzY4RTNEQTkxNDgxMUVGODdFQURENTJDNEY5QUUwMi8zNEVFRTQ0MDkx NDkxMUVGQUQwM0Y1NTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/RjANBgkqhkiG9w0BAQsFAAOCAQEAfCXIEB6wSP4w7JJp oJAvgM5P/U+ptmQTqTYWRMZIVyNnPE6iuvhu36/nt2q/cLqNmAhEWT6Ivszi23uu jrX5p53/v39OnktoTk1Il7o2SNSFJwv+50XJYv+B+Q69ktQRoyam+kU5KCOVydH7 AxHBtndSgCKZJu7hDCDBlSMy1XRMqfUzG4Tplum38O4GhUpKMfBnOeFzEVJTbIM2 TUzLuK0yUCBlytrPhEHAtn5b3+OB/wpeaydaUMPe9zIvV89cD6JIZrIkuSECGewl lZ004VvSEEAY/asYI4Jsx5yeYUYhh/WSXK2/Oc+HA615QRVjj5HAku0IVLxcuSot J6eOFw== -----END CERTIFICATE-----Generated at Wed Oct 23 17:36:07 2024 by rpki-client on console-ams.rpki-client.org