$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa File: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (raw, json) Hash identifier: n3pzdI1R6OnpGAR7FmeF9nZ8iLEx5lsOyhq7ASsGK90= Subject key identifier: 3B:4A:69:AC:84:02:10:3C:1F:DC:E0:46:A3:0F:92:55:5B:BC:9B:7E Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: 02 Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa Signing time: Wed 04 Sep 2024 06:21:18 +0000 ROA not before: Wed 04 Sep 2024 06:21:18 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 153310 IP address blocks: 160.30.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Validity Not Before: Sep 4 06:21:18 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d7fc5e-dfbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:da:68:8c:ae:c6:fb:77:a6:3d:96:e4:05:6d: f3:99:bd:5c:6a:55:ee:c7:d5:09:1a:b3:cf:1b:66: 3c:4e:fa:35:7b:05:c3:fd:56:1e:10:2e:e0:72:a7: 8f:5c:9a:b5:fc:5f:c7:56:60:49:3b:be:13:76:fd: c2:70:eb:87:8a:5c:4e:a4:82:70:f5:d1:61:7b:8f: 98:56:2c:a7:96:63:00:ee:74:5c:c1:f0:65:74:ca: 2a:1c:1c:13:4c:c1:0d:51:a2:08:c2:53:64:17:2a: 86:98:ae:36:3f:1a:ba:84:4a:85:b9:e9:ef:07:ad: 92:c8:30:98:8a:c7:be:a4:a0:b4:a9:20:20:7f:6a: 10:67:aa:6c:2f:9c:9b:d4:9c:ec:c2:5e:bb:13:25: 3a:c5:86:18:ba:8a:2f:3e:c4:cd:2c:83:44:3f:e1: 14:c2:e7:36:a0:f3:9d:56:de:9c:1f:b8:68:c1:9e: 50:bb:75:9e:78:b3:56:f9:e6:db:3c:9b:39:7a:d4: 2a:b3:21:e1:81:9f:0e:b9:20:11:c6:cb:88:0c:90: dc:06:7d:93:0f:be:2a:b4:e9:74:b3:10:66:d4:53: c5:72:9e:d7:f0:78:a4:41:0c:b6:fd:94:50:e2:70: 5c:70:e3:93:c9:14:0a:fe:0c:0d:17:4b:38:63:74: e5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:4A:69:AC:84:02:10:3C:1F:DC:E0:46:A3:0F:92:55:5B:BC:9B:7E X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.238.0/23 Signature Algorithm: sha256WithRSAEncryption 05:ef:e2:ac:4f:e5:cd:8f:25:16:09:5b:43:82:be:76:c4:14: 96:89:ba:2b:8e:1d:57:d6:b8:55:f0:5f:18:ca:4a:27:da:5e: a4:50:77:37:93:7a:b3:6f:41:6b:c7:ba:46:0c:37:17:c0:59: e5:71:2e:78:77:a5:fe:f1:2f:8c:94:6b:6b:db:07:8e:04:45: 96:01:16:1b:82:6e:8a:c7:f0:c9:66:0e:a0:fc:b9:5f:02:99: 1f:c9:5e:79:7f:65:b1:1f:44:19:4e:3e:24:92:e6:ee:ea:17: 0d:a9:00:5e:a5:d5:04:20:26:e8:47:da:ee:ad:47:07:73:8a: 5f:f2:fe:7e:80:0f:54:bc:2c:ac:07:ff:9c:c2:ac:e4:88:5e: 97:0e:eb:75:55:db:f0:e3:73:29:35:f1:7f:59:c0:3b:ac:95: ad:1f:fe:07:dd:84:c6:de:59:38:6b:5e:53:ed:5e:84:51:7e: cc:89:e2:14:67:b4:16:03:87:7d:87:fa:7d:5f:64:4a:d2:46: 27:0d:82:10:af:d9:79:02:5a:33:ad:b0:05:71:a4:ac:3b:29: 39:9c:a1:0e:77:de:6b:99:f8:4c:b7:48:8e:3c:ae:54:57:26: 67:75:1a:13:b6:40:70:fb:fa:ec:e3:a9:45:90:f0:c7:8c:7c: 36:a3:ba:0a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MERFMDExMC8GA1UEBRMoOEVBNUI5NTYzMjI3QzJFNThENDM4QkMxN0JBODIyNTA3 NTQyNDQzQjAeFw0yNDA5MDQwNjIxMThaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDdmYzVlLWRmYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR2miMrsb7d6Y9luQFbfOZvVxqVe7H1Qkas88bZjxO+jV7BcP9Vh4QLuByp49c mrX8X8dWYEk7vhN2/cJw64eKXE6kgnD10WF7j5hWLKeWYwDudFzB8GV0yiocHBNM wQ1RogjCU2QXKoaYrjY/GrqESoW56e8HrZLIMJiKx76koLSpICB/ahBnqmwvnJvU nOzCXrsTJTrFhhi6ii8+xM0sg0Q/4RTC5zag851W3pwfuGjBnlC7dZ54s1b55ts8 mzl61CqzIeGBnw65IBHGy4gMkNwGfZMPviq06XSzEGbUU8VyntfweKRBDLb9lFDi cFxw45PJFAr+DA0XSzhjdOXzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUO0pprIQC EDwf3OBGow+SVVu8m34wHwYDVR0jBBgwFoAUjqW5VjInwuWNQ4vBe6giUHVCRDsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwREUwLzcwNDBBOEU4NkE4 NTExRUZCMTU2ODE0N0M0RjlBRTAyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JE cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvanFXNVZqSW53dVdOUTR2QmU2Z2lVSFZDUkRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MERFMC83MDQwQThFODZBODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9FNTY5RDZEQTZB ODUxMUVGOURCMUNENERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAe7jANBgkqhkiG9w0BAQsFAAOCAQEABe/irE/lzY8lFglb Q4K+dsQUlom6K44dV9a4VfBfGMpKJ9pepFB3N5N6s29Ba8e6Rgw3F8BZ5XEueHel /vEvjJRra9sHjgRFlgEWG4JuisfwyWYOoPy5XwKZH8leeX9lsR9EGU4+JJLm7uoX DakAXqXVBCAm6Efa7q1HB3OKX/L+foAPVLwsrAf/nMKs5Ihelw7rdVXb8ONzKTXx f1nAO6yVrR/+B92Ext5ZOGteU+1ehFF+zIniFGe0FgOHfYf6fV9kStJGJw2CEK/Z eQJaM62wBXGkrDspOZyhDnfea5n4TLdIjjyuVFcmZ3UaE7ZAcPv67OOpRZDwx4x8 NqO6Cg== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org