$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/EA810E6278FA11EF9043060AC4F9AE02.roa File: EA810E6278FA11EF9043060AC4F9AE02.roa (raw, json) Hash identifier: jUEy/iUbesTw/bKzIqKbuM3aQtOsfpKNSiK5hvDoL0g= Subject key identifier: CE:1C:B0:06:DE:93:4C:DD:C5:76:3D:81:82:30:49:E6:DC:3C:9A:B4 Certificate issuer: /CN=A91B1E55/serialNumber=DD7C8D0F478F9BE6ABF739C04F5B5BE4DC9F61F8 Certificate serial: 02 Authority key identifier: DD:7C:8D:0F:47:8F:9B:E6:AB:F7:39:C0:4F:5B:5B:E4:DC:9F:61:F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3XyND0ePm-ar9znAT1tb5NyfYfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/EA810E6278FA11EF9043060AC4F9AE02.roa Signing time: Sun 22 Sep 2024 15:54:14 +0000 ROA not before: Sun 22 Sep 2024 15:54:14 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141346 IP address blocks: 160.187.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.crl rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3XyND0ePm-ar9znAT1tb5NyfYfg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E55/serialNumber=DD7C8D0F478F9BE6ABF739C04F5B5BE4DC9F61F8 Validity Not Before: Sep 22 15:54:14 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66f03da6-588c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3c:9c:d0:70:51:7d:18:ee:b6:be:90:e4:b0: 94:0a:3a:7f:3c:93:03:be:7e:ca:eb:6f:44:bf:6d: 9d:93:96:ab:98:c6:8e:e6:ed:ba:5a:e9:92:93:e4: 9f:29:f2:e3:3c:de:3b:d3:04:36:3c:05:d5:5b:ed: 57:6a:b5:ce:f4:ea:89:d4:2c:23:6c:cb:e2:58:20: e6:4a:ab:d5:ac:60:de:5a:43:40:55:dc:4e:7b:ea: 0e:bc:05:48:55:eb:70:0d:d9:5c:5e:16:91:ad:f0: 5a:d4:5e:df:5f:ae:bb:b3:57:82:e2:c5:34:84:f2: ce:85:ec:45:92:af:09:ef:fd:41:d0:1b:b4:d8:f6: 5b:fd:6b:42:eb:4e:07:b9:bf:f8:5b:14:73:c7:ea: 6d:f0:f3:a5:52:59:1a:59:99:4e:5e:5b:98:9a:49: 5e:ad:89:b8:85:34:3b:cb:1e:b4:a5:e7:46:61:72: 01:ba:f8:76:83:59:7b:f9:5d:1a:49:21:3b:39:e3: b2:79:4f:cb:d3:21:48:30:76:4d:04:ea:cf:20:29: 03:14:16:5c:00:7b:c0:c1:8d:34:fc:7f:b5:05:48: dd:db:ea:06:f9:1f:b5:58:38:f0:a2:13:5d:2f:84: 30:dc:30:5b:8c:5f:50:1c:78:36:27:e1:9d:17:d3: 02:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:1C:B0:06:DE:93:4C:DD:C5:76:3D:81:82:30:49:E6:DC:3C:9A:B4 X509v3 Authority Key Identifier: keyid:DD:7C:8D:0F:47:8F:9B:E6:AB:F7:39:C0:4F:5B:5B:E4:DC:9F:61:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3XyND0ePm-ar9znAT1tb5NyfYfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/EA810E6278FA11EF9043060AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.35.0/24 Signature Algorithm: sha256WithRSAEncryption bf:32:7a:65:d4:7b:6f:4b:68:2c:10:69:b0:8b:08:74:b8:32: 44:26:3d:57:d5:47:52:8f:39:fb:a8:c3:5b:3f:d2:77:8d:30: 01:4b:24:db:39:67:cd:74:72:ee:85:9e:ef:0d:e7:2b:0a:f4: a6:25:c0:a1:7e:f9:2c:08:96:fc:df:3d:0a:f3:6f:d2:5c:e9: 83:d9:76:18:fd:df:de:50:5d:57:74:29:55:bf:fc:cf:bf:b6: 22:3c:65:0b:89:60:51:cf:78:c2:40:70:8b:43:b2:57:ff:8f: 94:d2:5f:ec:1b:2a:07:32:04:94:29:45:ce:f4:a6:32:81:ae: f9:c1:3a:c8:15:e3:1d:7c:f2:42:bf:2c:33:8d:c2:1d:b5:f1: 50:40:b2:bb:73:77:0c:4e:e6:83:14:51:71:c7:3c:58:6e:ce: bc:a5:99:c5:e7:2c:97:93:74:9e:80:9d:31:ed:d0:cd:02:a7: 56:4b:9b:47:c0:58:33:80:95:7d:14:12:50:2c:2f:89:03:98: 24:87:dc:12:41:56:41:90:f0:d6:9d:7e:62:0b:45:30:77:ce: 1b:6d:73:41:65:27:6b:ee:c4:42:76:94:70:21:0d:c4:0d:ac: 9d:4e:5a:38:0c:dd:cb:17:9d:db:61:85:4f:5c:48:27:f6:c8: e0:ba:63:c1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUU1NTExMC8GA1UEBRMoREQ3QzhEMEY0NzhGOUJFNkFCRjczOUMwNEY1QjVCRTRE QzlGNjFGODAeFw0yNDA5MjIxNTU0MTRaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjAzZGE2LTU4OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsPJzQcFF9GO62vpDksJQKOn88kwO+fsrrb0S/bZ2TlquYxo7m7bpa6ZKT5J8p 8uM83jvTBDY8BdVb7Vdqtc706onULCNsy+JYIOZKq9WsYN5aQ0BV3E576g68BUhV 63AN2VxeFpGt8FrUXt9frruzV4LixTSE8s6F7EWSrwnv/UHQG7TY9lv9a0LrTge5 v/hbFHPH6m3w86VSWRpZmU5eW5iaSV6tibiFNDvLHrSl50ZhcgG6+HaDWXv5XRpJ ITs547J5T8vTIUgwdk0E6s8gKQMUFlwAe8DBjTT8f7UFSN3b6gb5H7VYOPCiE10v hDDcMFuMX1AceDYn4Z0X0wKxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzhywBt6T TN3Fdj2BgjBJ5tw8mrQwHwYDVR0jBBgwFoAU3XyND0ePm+ar9znAT1tb5NyfYfgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxRTU1LzRDMDk4NjJFNzhG QTExRUZBNDRGRTU4NkM0RjlBRTAyLzNYeU5EMGVQbS1hcjl6bkFUMXRiNU55Zllm Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM1h5TkQwZVBtLWFyOXpuQVQxdGI1TnlmWWZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU1NS80QzA5ODYyRTc4RkExMUVGQTQ0RkU1ODZDNEY5QUUwMi9FQTgxMEU2Mjc4 RkExMUVGOTA0MzA2MEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7IzANBgkqhkiG9w0BAQsFAAOCAQEAvzJ6ZdR7b0toLBBp sIsIdLgyRCY9V9VHUo85+6jDWz/Sd40wAUsk2zlnzXRy7oWe7w3nKwr0piXAoX75 LAiW/N89CvNv0lzpg9l2GP3f3lBdV3QpVb/8z7+2IjxlC4lgUc94wkBwi0OyV/+P lNJf7BsqBzIElClFzvSmMoGu+cE6yBXjHXzyQr8sM43CHbXxUECyu3N3DE7mgxRR ccc8WG7OvKWZxecsl5N0noCdMe3QzQKnVkubR8BYM4CVfRQSUCwviQOYJIfcEkFW QZDw1p1+YgtFMHfOG21zQWUna+7EQnaUcCENxA2snU5aOAzdyxed22GFT1xIJ/bI 4LpjwQ== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:37 2024 by rpki-client on console-ams.rpki-client.org