$ rpki-client -vvf rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/D104C618A4B511EFBA73001BC4F9AE02.roa File: D104C618A4B511EFBA73001BC4F9AE02.roa (raw, json) Hash identifier: CuyOcZ0MuPuNPZ5rINAnGA4hE1Y4mvsuj4q4DxHyxl4= Subject key identifier: 85:8B:9B:53:D3:01:A0:2C:9A:45:24:17:79:D8:9A:77:C9:E2:14:CD Certificate issuer: /CN=A91B165F/serialNumber=5A56C4DE9423B9E2B800AB7E040DCA3E09F23475 Certificate serial: 04 Authority key identifier: 5A:56:C4:DE:94:23:B9:E2:B8:00:AB:7E:04:0D:CA:3E:09:F2:34:75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/D104C618A4B511EFBA73001BC4F9AE02.roa Signing time: Sun 17 Nov 2024 07:31:10 +0000 ROA not before: Sun 17 Nov 2024 07:31:10 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 140219 IP address blocks: 160.187.158.0/24 maxlen: 24 160.187.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.crl rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B165F/serialNumber=5A56C4DE9423B9E2B800AB7E040DCA3E09F23475 Validity Not Before: Nov 17 07:31:10 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67399bbd-d1b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e6:60:c5:67:2f:07:e0:82:0d:d2:0c:4b:be: 8a:67:d4:40:99:7c:cc:8b:d7:09:3f:6a:78:00:f1: f7:64:0f:dc:a8:1c:2f:5f:29:8c:7c:c3:41:b5:44: aa:ea:76:a3:83:8f:9a:38:e7:56:fd:d4:8a:8b:6b: f1:35:8c:b1:ff:81:2a:e1:00:7d:5f:ad:3e:6c:ac: 6b:99:9e:a8:15:fe:09:99:2c:b4:47:56:f3:66:70: d1:54:6d:16:b0:aa:70:f8:65:c4:a4:e5:ec:eb:35: 2b:4f:88:e8:4a:1c:48:3d:87:74:39:4b:a8:9b:be: 3a:50:e0:24:9e:67:21:df:c7:94:1c:88:9d:d4:e3: d9:9f:37:11:a4:25:0e:40:84:65:c0:5d:76:59:db: 16:19:43:ea:4a:e8:58:ce:8e:d7:20:91:21:ee:4c: e4:81:d3:53:e8:3f:e3:b3:92:e5:e0:30:88:1f:63: 3b:1b:f7:fa:d8:1b:2b:8b:47:e5:61:b9:43:80:48: a8:f7:7f:66:7e:98:de:de:70:8a:31:77:19:ab:5b: 80:e1:bb:3c:e5:ed:35:ac:f8:6d:3c:ad:51:b1:ee: ac:30:9f:41:40:d2:e7:76:55:35:69:a0:63:f2:6a: 91:49:6d:ba:d9:10:93:83:e6:b2:12:c8:22:93:5a: fa:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8B:9B:53:D3:01:A0:2C:9A:45:24:17:79:D8:9A:77:C9:E2:14:CD X509v3 Authority Key Identifier: keyid:5A:56:C4:DE:94:23:B9:E2:B8:00:AB:7E:04:0D:CA:3E:09:F2:34:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/D104C618A4B511EFBA73001BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.158.0/23 Signature Algorithm: sha256WithRSAEncryption b0:3f:d5:20:23:48:82:96:73:d4:2c:93:10:bd:3e:3a:a1:ae: 93:03:1b:fd:06:5b:68:1e:f3:ff:4c:17:bf:e4:d8:55:a6:0e: e5:62:d6:d9:77:df:9f:c8:85:47:af:b0:8d:3c:64:50:f5:54: 96:81:39:68:43:0b:58:a2:15:5e:41:6d:e6:c0:69:54:d7:e0: 1e:6b:c9:45:99:17:7d:11:df:31:fc:99:09:61:ad:04:e3:fb: 7d:80:31:b9:94:b9:46:dc:44:d0:0a:bf:26:34:d9:64:10:ae: 13:49:c8:18:01:e0:2b:d3:80:55:57:36:83:11:83:91:04:0f: 89:0d:ab:72:b4:a9:b3:bd:cf:91:d0:6f:35:37:9c:7e:20:d1: 28:3c:ea:33:9b:73:10:9d:e0:83:69:9e:be:b5:7e:e1:09:3d: f8:a2:87:32:a3:67:dd:f0:0b:d3:21:8d:cb:01:44:10:45:76: 63:99:d3:4b:7d:14:26:e4:16:4c:63:85:24:c5:08:b7:09:24: 8a:6d:03:11:dc:44:a2:75:24:2c:f2:d7:ec:93:46:98:58:5d: b7:03:3f:cc:c5:99:7b:47:18:27:7b:7e:6a:0a:0a:51:25:e1: 38:a8:2b:c4:d8:77:d8:90:5b:0d:bf:15:ad:76:5b:36:17:56: bb:7c:cb:c9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTY1RjExMC8GA1UEBRMoNUE1NkM0REU5NDIzQjlFMkI4MDBBQjdFMDQwRENBM0Uw OUYyMzQ3NTAeFw0yNDExMTcwNzMxMTBaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Mzk5YmJkLWQxYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB5mDFZy8H4IIN0gxLvopn1ECZfMyL1wk/angA8fdkD9yoHC9fKYx8w0G1RKrq dqODj5o451b91IqLa/E1jLH/gSrhAH1frT5srGuZnqgV/gmZLLRHVvNmcNFUbRaw qnD4ZcSk5ezrNStPiOhKHEg9h3Q5S6ibvjpQ4CSeZyHfx5QciJ3U49mfNxGkJQ5A hGXAXXZZ2xYZQ+pK6FjOjtcgkSHuTOSB01PoP+OzkuXgMIgfYzsb9/rYGyuLR+Vh uUOASKj3f2Z+mN7ecIoxdxmrW4Dhuzzl7TWs+G08rVGx7qwwn0FA0ud2VTVpoGPy apFJbbrZEJOD5rISyCKTWvoBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhYubU9MB oCyaRSQXediad8niFM0wHwYDVR0jBBgwFoAUWlbE3pQjueK4AKt+BA3KPgnyNHUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNjVGLzgzRkQ2QjJFQTRC MzExRUY4ODlDNzY4N0M0RjlBRTAyL1dsYkUzcFFqdWVLNEFLdC1CQTNLUGdueU5I VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV2xiRTNwUWp1ZUs0QUt0LUJBM0tQZ255TkhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTY1Ri84M0ZENkIyRUE0QjMxMUVGODg5Qzc2ODdDNEY5QUUwMi9EMTA0QzYxOEE0 QjUxMUVGQkE3MzAwMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7njANBgkqhkiG9w0BAQsFAAOCAQEAsD/VICNIgpZz1CyT EL0+OqGukwMb/QZbaB7z/0wXv+TYVaYO5WLW2Xffn8iFR6+wjTxkUPVUloE5aEML WKIVXkFt5sBpVNfgHmvJRZkXfRHfMfyZCWGtBOP7fYAxuZS5RtxE0Aq/JjTZZBCu E0nIGAHgK9OAVVc2gxGDkQQPiQ2rcrSps73PkdBvNTecfiDRKDzqM5tzEJ3gg2me vrV+4Qk9+KKHMqNn3fAL0yGNywFEEEV2Y5nTS30UJuQWTGOFJMUItwkkim0DEdxE onUkLPLX7JNGmFhdtwM/zMWZe0cYJ3t+agoKUSXhOKgrxNh32JBbDb8VrXZbNhdW u3zLyQ== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:37 2024 by rpki-client on console-ams.rpki-client.org