$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7709/786BDF5E8BB611EF998BAC72C4F9AE02/06F9E5368BB711EFB4630B30C4F9AE02.roa File: 06F9E5368BB711EFB4630B30C4F9AE02.roa (raw, json) Hash identifier: wAMyns8JAwyol9+kP2W1kb8SKSEmxeqxcrfUrnMoAjQ= Subject key identifier: DB:90:98:C8:FD:C0:6A:92:63:3F:8D:1C:A2:B7:30:51:98:17:54:E0 Certificate issuer: /CN=A91B7709/serialNumber=128B935B895DAC6E97728FFF8BDC356E891853EF Certificate serial: 02 Authority key identifier: 12:8B:93:5B:89:5D:AC:6E:97:72:8F:FF:8B:DC:35:6E:89:18:53:EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EouTW4ldrG6Xco__i9w1bokYU-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7709/786BDF5E8BB611EF998BAC72C4F9AE02/06F9E5368BB711EFB4630B30C4F9AE02.roa Signing time: Wed 16 Oct 2024 12:06:08 +0000 ROA not before: Wed 16 Oct 2024 12:06:08 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153367 IP address blocks: 160.191.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7709/786BDF5E8BB611EF998BAC72C4F9AE02/EouTW4ldrG6Xco__i9w1bokYU-8.crl rsync://rpki.apnic.net/member_repository/A91B7709/786BDF5E8BB611EF998BAC72C4F9AE02/EouTW4ldrG6Xco__i9w1bokYU-8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EouTW4ldrG6Xco__i9w1bokYU-8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7709/serialNumber=128B935B895DAC6E97728FFF8BDC356E891853EF Validity Not Before: Oct 16 12:06:08 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=670fac30-686c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:00:b9:a1:0a:14:9e:7f:33:ad:38:da:7d: bb:39:04:56:c7:53:75:a9:eb:a6:ba:78:a1:19:3f: 5d:03:3c:1f:bf:6b:bb:37:89:4f:06:de:cc:ea:af: d7:7a:75:03:eb:97:68:04:5e:38:77:3b:88:af:35: 55:b5:24:f1:50:12:3e:82:58:8d:54:6a:38:57:3d: dc:dc:a6:ef:33:83:e8:70:3c:4c:38:ff:00:04:e6: 4f:c6:ae:d5:9b:69:fe:50:d8:ff:c3:44:00:5c:ef: 1f:ce:90:67:29:4f:cb:00:7d:57:47:28:91:14:1d: 71:f7:29:42:d3:79:6d:51:69:7a:d6:38:a4:9a:ea: f8:ea:0a:75:3a:02:8d:f7:37:dc:ce:b1:5a:4b:0e: 70:64:18:a6:ed:dd:5c:29:5b:9b:3c:31:b0:b1:b5: 8b:5c:38:ce:1e:5e:2f:b7:5b:28:f7:07:47:b1:5b: 32:6d:42:ba:8d:fa:37:1b:4b:28:42:01:fa:fa:d5: f1:7c:63:c9:0a:5b:64:cf:d2:75:16:ea:74:02:22: 8f:2a:93:19:2f:fd:a1:c6:19:a0:56:c2:9b:8e:7c: c1:18:84:35:70:5d:af:ff:45:cd:08:a4:50:64:50: 5e:7c:af:17:18:8c:2b:20:e4:c4:11:e1:24:d9:c5: 45:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:90:98:C8:FD:C0:6A:92:63:3F:8D:1C:A2:B7:30:51:98:17:54:E0 X509v3 Authority Key Identifier: keyid:12:8B:93:5B:89:5D:AC:6E:97:72:8F:FF:8B:DC:35:6E:89:18:53:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7709/786BDF5E8BB611EF998BAC72C4F9AE02/EouTW4ldrG6Xco__i9w1bokYU-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EouTW4ldrG6Xco__i9w1bokYU-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7709/786BDF5E8BB611EF998BAC72C4F9AE02/06F9E5368BB711EFB4630B30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.14.0/24 Signature Algorithm: sha256WithRSAEncryption 44:4e:16:df:7c:e6:5d:bb:f7:5d:49:43:b9:f0:6f:8d:a7:f2: 74:45:ad:bb:78:d9:07:ff:a7:d5:8a:1a:a4:90:20:b4:71:bf: 28:f9:8d:d1:99:5a:c9:e3:45:c1:63:17:84:01:93:b2:d1:b6: 41:07:12:e8:39:a8:48:0a:f9:ea:44:db:e4:a0:26:75:e8:8d: d7:f4:d2:fd:47:a9:c7:9b:b9:69:64:7f:1e:56:80:64:7c:cd: 58:33:f9:2c:65:c0:4a:39:5a:3e:77:51:bf:40:63:39:4e:da: ce:21:1e:d7:f6:68:28:75:01:e7:0d:8f:14:8e:45:c1:0f:32: bf:e0:88:00:82:2d:77:8d:cb:5d:9f:ed:36:f0:76:11:90:e3: 10:1b:cf:b7:84:c3:6e:e8:d7:6c:c9:0f:1a:95:c0:a5:63:1a: 90:59:80:34:66:70:d5:a9:6f:d2:dc:7d:3b:50:a6:27:95:88: 53:04:9b:aa:90:2e:97:64:b9:16:1a:62:97:1e:7b:d9:c5:07: 05:9f:03:2a:b8:cb:85:46:bb:2d:cf:9c:71:bd:1e:1a:be:ad: 70:b2:1c:62:8c:1a:69:e0:74:73:97:1b:aa:e5:c7:50:a1:ac: 72:a3:4c:8c:13:44:0c:bc:f4:29:a9:52:55:66:38:3d:c6:ab: 64:16:68:54 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzcwOTExMC8GA1UEBRMoMTI4QjkzNUI4OTVEQUM2RTk3NzI4RkZGOEJEQzM1NkU4 OTE4NTNFRjAeFw0yNDEwMTYxMjA2MDhaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MGZhYzMwLTY4NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFNAC5oQoUnn8zrTjafbs5BFbHU3Wp66a6eKEZP10DPB+/a7s3iU8G3szqr9d6 dQPrl2gEXjh3O4ivNVW1JPFQEj6CWI1UajhXPdzcpu8zg+hwPEw4/wAE5k/GrtWb af5Q2P/DRABc7x/OkGcpT8sAfVdHKJEUHXH3KULTeW1RaXrWOKSa6vjqCnU6Ao33 N9zOsVpLDnBkGKbt3VwpW5s8MbCxtYtcOM4eXi+3Wyj3B0exWzJtQrqN+jcbSyhC Afr61fF8Y8kKW2TP0nUW6nQCIo8qkxkv/aHGGaBWwpuOfMEYhDVwXa//Rc0IpFBk UF58rxcYjCsg5MQR4STZxUWTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU25CYyP3A apJjP40corcwUZgXVOAwHwYDVR0jBBgwFoAUEouTW4ldrG6Xco//i9w1bokYU+8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3NzA5Lzc4NkJERjVFOEJC NjExRUY5OThCQUM3MkM0RjlBRTAyL0VvdVRXNGxkckc2WGNvX19pOXcxYm9rWVUt OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRW91VFc0bGRyRzZYY29fX2k5dzFib2tZVS04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzcwOS83ODZCREY1RThCQjYxMUVGOTk4QkFDNzJDNEY5QUUwMi8wNkY5RTUzNjhC QjcxMUVGQjQ2MzBCMzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/DjANBgkqhkiG9w0BAQsFAAOCAQEARE4W33zmXbv3XUlD ufBvjafydEWtu3jZB/+n1YoapJAgtHG/KPmN0ZlayeNFwWMXhAGTstG2QQcS6Dmo SAr56kTb5KAmdeiN1/TS/Uepx5u5aWR/HlaAZHzNWDP5LGXASjlaPndRv0BjOU7a ziEe1/ZoKHUB5w2PFI5FwQ8yv+CIAIItd43LXZ/tNvB2EZDjEBvPt4TDbujXbMkP GpXApWMakFmANGZw1alv0tx9O1CmJ5WIUwSbqpAul2S5Fhpilx572cUHBZ8DKrjL hUa7Lc+ccb0eGr6tcLIcYowaaeB0c5cbquXHUKGscqNMjBNEDLz0KalSVWY4Pcar ZBZoVA== -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:02 2024 by rpki-client on console-ams.rpki-client.org