$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/334BC5E237B511EF81204F0BC4F9AE02.roa File: 334BC5E237B511EF81204F0BC4F9AE02.roa (raw, json) Hash identifier: kJhE61v4vcRsPc/qy2/NN3jtHfg6YpOIubVaYhvgJk4= Subject key identifier: 58:D4:15:25:B2:10:D1:26:E0:CF:E4:85:61:6A:EE:CE:A4:71:F1:B8 Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: 2D Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/334BC5E237B511EF81204F0BC4F9AE02.roa Signing time: Mon 01 Jul 2024 14:21:26 +0000 ROA not before: Mon 01 Jul 2024 14:21:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 215828 IP address blocks: 160.20.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Sep 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Jul 1 14:21:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6682bb66-73f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:10:a1:c2:39:6a:40:7d:c7:88:62:7c:ad:57: 8a:9e:c0:91:79:7a:9a:63:22:31:1f:84:05:53:0a: 8d:e8:97:a6:02:12:f3:59:e6:be:ac:eb:24:2e:0b: e4:82:02:4d:ea:ba:b0:85:6d:9f:49:bf:ca:1c:b1: a3:52:c7:1b:65:4a:b8:97:c0:50:6d:6e:c1:1e:f4: f6:38:99:ff:6b:95:19:01:e0:84:f3:73:f7:ee:4e: aa:ae:da:e3:96:a1:de:7e:47:d0:03:7c:c2:99:41: c1:89:05:c0:62:bc:43:00:e9:a7:31:04:52:24:03: ee:97:fb:8a:97:57:7e:ea:da:5b:5e:41:7d:87:24: 64:2b:99:c3:25:59:3f:53:8e:ef:a6:27:57:12:00: 4c:b6:9b:01:ed:28:08:7d:ed:55:d6:8c:e7:5a:18: fa:a0:9a:4e:cc:35:a8:7c:78:74:17:e5:38:41:63: 5f:a1:00:8c:68:c5:7e:17:97:04:32:e6:bc:e4:74: a6:e3:7f:78:9b:ad:53:d7:79:7c:80:a1:0a:94:a4: 16:1d:0b:32:b3:bc:98:f2:ee:30:b3:66:9d:65:06: 67:4b:af:bb:aa:1a:55:3a:64:52:49:cb:e4:ac:e5: 6e:18:3e:54:9a:69:23:9c:fd:f2:02:3e:01:2b:21: 88:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:D4:15:25:B2:10:D1:26:E0:CF:E4:85:61:6A:EE:CE:A4:71:F1:B8 X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/334BC5E237B511EF81204F0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.121.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:52:06:26:c3:8e:e5:1b:92:4c:b7:d4:19:c5:0a:97:66:6e: da:33:d9:c3:22:d8:39:ae:7c:b4:5c:56:74:9c:15:21:55:c6: b8:05:eb:b3:39:38:a2:cd:7f:10:30:7b:76:2f:ab:5e:0b:43: b0:94:41:51:74:2f:d5:38:b1:a6:9d:4f:46:64:c7:42:52:44: 22:dc:48:51:cf:40:b6:41:14:50:79:04:7d:a8:f5:8e:15:9d: 80:a9:11:d9:70:e8:31:b6:6d:da:54:60:77:82:4b:4c:46:89: 22:62:91:64:e6:e3:6c:cb:57:0d:1c:18:f3:25:d0:76:8b:79: a9:9a:8c:03:1d:97:53:61:4e:5b:4c:44:f7:b0:fb:75:27:74: 2e:13:61:f0:a0:31:06:16:a0:0b:5d:4a:7b:78:7d:73:e4:80: c2:d4:e2:29:50:3c:93:4f:fb:ba:d8:42:36:91:7b:f1:40:45: b3:ee:b8:39:70:a6:be:84:3a:02:11:ba:bc:5b:95:43:d5:e9: 44:81:e1:f9:3f:5c:33:10:25:1e:4b:a3:d1:8a:7b:eb:19:c8: 5b:12:eb:b4:f2:c7:e7:71:40:f8:9f:bd:49:5d:16:51:85:33: d2:49:2e:df:b6:fd:64:8b:0e:76:c4:57:76:1f:ef:02:e8:46: cc:70:b0:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODBDMjExMC8GA1UEBRMoMkFCQTJBQTNDQjNGOTQ1ODFDNUQzRDkxQkEzNkI4QTlE OEU4REVBRDAeFw0yNDA3MDExNDIxMjZaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODJiYjY2LTczZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuEKHCOWpAfceIYnytV4qewJF5eppjIjEfhAVTCo3ol6YCEvNZ5r6s6yQuC+SC Ak3qurCFbZ9Jv8ocsaNSxxtlSriXwFBtbsEe9PY4mf9rlRkB4ITzc/fuTqqu2uOW od5+R9ADfMKZQcGJBcBivEMA6acxBFIkA+6X+4qXV37q2lteQX2HJGQrmcMlWT9T ju+mJ1cSAEy2mwHtKAh97VXWjOdaGPqgmk7MNah8eHQX5ThBY1+hAIxoxX4XlwQy 5rzkdKbjf3ibrVPXeXyAoQqUpBYdCzKzvJjy7jCzZp1lBmdLr7uqGlU6ZFJJy+Ss 5W4YPlSaaSOc/fICPgErIYhXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWNQVJbIQ 0Sbgz+SFYWruzqRx8bgwHwYDVR0jBBgwFoAUKroqo8s/lFgcXT2Ruja4qdjo3q0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4MEMyLzk4M0U2MTUwMTcx QTExRUY4NjU3NzU0RkM0RjlBRTAyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3JvcW84c19sRmdjWFQyUnVqYTRxZGpvM3EwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi85ODNFNjE1MDE3MUExMUVGODY1Nzc1NEZDNEY5QUUwMi8zMzRCQzVFMjM3 QjUxMUVGODEyMDRGMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAUeTANBgkqhkiG9w0BAQsFAAOCAQEAG1IGJsOO5RuSTLfU GcUKl2Zu2jPZwyLYOa58tFxWdJwVIVXGuAXrszk4os1/EDB7di+rXgtDsJRBUXQv 1Tixpp1PRmTHQlJEItxIUc9AtkEUUHkEfaj1jhWdgKkR2XDoMbZt2lRgd4JLTEaJ ImKRZObjbMtXDRwY8yXQdot5qZqMAx2XU2FOW0xE97D7dSd0LhNh8KAxBhagC11K e3h9c+SAwtTiKVA8k0/7uthCNpF78UBFs+64OXCmvoQ6AhG6vFuVQ9XpRIHh+T9c MxAlHkuj0Yp76xnIWxLrtPLH53FA+J+9SV0WUYUz0kku37b9ZIsOdsRXdh/vAuhG zHCwTA== -----END CERTIFICATE-----Generated at Sat Sep 7 08:40:28 2024 by rpki-client on console-fra.rpki-client.org