$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/38C0EEBADFB411EF906ED349C4F9AE02.roa File: 38C0EEBADFB411EF906ED349C4F9AE02.roa (raw, json) Hash identifier: /KH/6LnCVg+ZZWAflRo7v0It2aAhQ+3XwfNVyLcpMGQ= Subject key identifier: 55:10:DD:16:54:F5:FB:59:73:D4:C1:9C:57:CF:7B:81:14:99:66:11 Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: A5 Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/38C0EEBADFB411EF906ED349C4F9AE02.roa Signing time: Fri 31 Jan 2025 09:17:41 +0000 ROA not before: Fri 31 Jan 2025 09:17:41 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 160.20.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2 Validity Not Before: Jan 31 09:17:41 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=679c9535-583e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2c:fd:5f:67:9b:bf:47:21:f6:4b:b3:93:14: 0f:f4:ff:23:3b:91:be:05:75:d1:a9:ac:3f:e1:a0: 8d:97:ee:b3:1e:53:ec:68:91:a4:a7:66:ea:1b:5a: 77:e2:08:2b:7e:e6:3e:d5:b8:19:1e:a1:d9:1b:24: 69:ad:2c:17:9c:6d:ab:f3:f6:45:36:89:95:5e:a4: 24:72:5b:eb:ac:d5:d5:62:0b:8b:5c:9a:83:f6:ad: ce:60:71:38:83:98:c0:68:cb:57:0f:4d:bb:48:74: 01:81:ad:5c:cf:36:8d:a1:dd:5c:9a:ca:7e:76:5d: 91:0c:d2:1e:da:e3:15:54:ec:29:48:8b:8d:61:41: e3:8a:58:44:6f:ca:10:a3:29:fe:ca:73:12:80:9a: 81:9b:6c:0a:00:92:be:67:6f:8e:c3:83:83:eb:b8: 2a:b0:09:5f:66:33:99:4c:a3:a9:d4:56:3b:0c:ff: 7b:be:d4:0f:85:46:62:84:03:47:2e:03:dc:2f:b3: c7:e6:a9:1e:77:d7:a5:67:67:c2:f4:f9:46:7f:ec: e0:6f:1c:8e:64:95:65:d8:f0:77:a2:90:23:2b:39: 08:d2:7f:8d:3e:00:96:68:09:78:d5:d0:5b:4e:6c: e6:57:2d:cc:5f:e5:fd:b5:a8:3b:47:0d:a1:ea:a1: 79:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:10:DD:16:54:F5:FB:59:73:D4:C1:9C:57:CF:7B:81:14:99:66:11 X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/38C0EEBADFB411EF906ED349C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.121.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:94:aa:9c:3a:4e:66:fd:5b:0e:4c:7f:03:77:ca:71:ca:ec: 59:e9:20:24:bd:49:7a:6c:2f:9e:4f:4e:f9:38:e1:b7:e0:57: 84:ac:b6:23:11:e6:42:a9:34:0a:98:78:50:c6:1e:2b:4e:05: 01:03:03:fc:80:52:df:fe:85:df:22:32:2e:c9:4d:dc:be:11: ab:d8:a1:86:87:49:fc:ac:1a:6d:ab:5c:a9:8c:72:21:2f:a4: 7b:37:8a:a3:81:4a:06:be:a5:18:16:f8:94:ae:89:37:09:72: 5e:93:0e:b2:be:7a:8e:a9:30:29:86:51:36:b7:98:0c:9c:08: 8c:c2:44:03:5e:ee:34:ef:94:cd:4e:34:54:82:8b:ac:d6:3d: 53:30:00:e5:d0:f5:a4:f1:e0:c6:81:83:fc:66:71:07:bc:e1: 58:02:97:1b:65:25:84:ae:dc:64:00:12:8e:b2:04:48:e3:c7: ed:35:d5:a9:ff:15:64:ee:2a:4c:52:d5:72:40:c0:58:ef:63: 83:12:3e:20:ac:53:1e:aa:05:6f:bf:2b:41:4a:af:0b:ed:71: 80:2c:c1:44:fd:aa:23:48:b8:bb:26:34:02:8f:cb:b6:ab:b0: 4a:3f:87:b0:25:aa:07:0d:af:ab:d5:73:a3:0a:17:c9:77:f9: e8:65:30:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjUwMTMxMDkxNzQxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljOTUzNS01ODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCz9X2ebv0ch9kuzkxQP9P8jO5G+BXXRqaw/4aCNl+6zHlPsaJGkp2bqG1p3 4ggrfuY+1bgZHqHZGyRprSwXnG2r8/ZFNomVXqQkclvrrNXVYguLXJqD9q3OYHE4 g5jAaMtXD027SHQBga1czzaNod1cmsp+dl2RDNIe2uMVVOwpSIuNYUHjilhEb8oQ oyn+ynMSgJqBm2wKAJK+Z2+Ow4OD67gqsAlfZjOZTKOp1FY7DP97vtQPhUZihANH LgPcL7PH5qked9elZ2fC9PlGf+zgbxyOZJVl2PB3opAjKzkI0n+NPgCWaAl41dBb TmzmVy3MX+X9tag7Rw2h6qF5xwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFUQ3RZU 9ftZc9TBnFfPe4EUmWYRMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgwQzIvOTgzRTYxNTAxNzFBMTFFRjg2NTc3NTRGQzRGOUFFMDIvMzhDMEVFQkFE RkI0MTFFRjkwNkVEMzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFHkwDQYJKoZIhvcNAQELBQADggEBAD6Uqpw6Tmb9Ww5M fwN3ynHK7FnpICS9SXpsL55PTvk44bfgV4SstiMR5kKpNAqYeFDGHitOBQEDA/yA Ut/+hd8iMi7JTdy+EavYoYaHSfysGm2rXKmMciEvpHs3iqOBSga+pRgW+JSuiTcJ cl6TDrK+eo6pMCmGUTa3mAycCIzCRANe7jTvlM1ONFSCi6zWPVMwAOXQ9aTx4MaB g/xmcQe84VgClxtlJYSu3GQAEo6yBEjjx+011an/FWTuKkxS1XJAwFjvY4MSPiCs Ux6qBW+/K0FKrwvtcYAswUT9qiNIuLsmNAKPy7arsEo/h7AlqgcNr6vVc6MKF8l3 +ehlMCI= -----END CERTIFICATE-----Generated at Wed Feb 19 20:45:19 2025 by rpki-client