$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/62B87A26895B11EFBA2A3B22C4F9AE02.roa File: 62B87A26895B11EFBA2A3B22C4F9AE02.roa (raw, json) Hash identifier: J0gZ5lnYUEPrxIi0V+nZjZbkbZQGWUAh3pz/mPzLVKA= Subject key identifier: B7:16:9E:A6:FC:4B:36:25:DE:86:37:EC:54:66:5F:EC:0D:3B:00:CE Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: 66 Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/62B87A26895B11EFBA2A3B22C4F9AE02.roa Signing time: Sun 13 Oct 2024 12:05:06 +0000 ROA not before: Sun 13 Oct 2024 12:05:06 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 401106 IP address blocks: 160.20.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Oct 13 12:05:06 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=670bb772-ee65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:33:a2:7e:cc:ff:a7:20:87:f0:24:ef:c0:79: 5d:71:c3:3b:24:a5:61:87:b2:f6:2b:25:6b:2f:87: b0:59:d5:d7:82:33:e8:7e:11:fb:7f:aa:9b:f8:7f: ca:d0:59:48:78:01:7a:1b:73:a9:b3:45:63:f9:05: 2e:57:b0:cf:e1:d7:ca:91:e6:3d:25:83:61:3e:ee: 18:5b:16:e5:08:99:53:d0:94:98:a1:60:56:2b:b5: 61:d7:54:2d:2f:dd:23:13:ae:9e:07:94:22:43:63: 3c:e7:02:a5:04:62:9b:b9:5b:f9:56:c8:b7:d9:ef: b4:82:71:6e:84:c8:7e:fa:ae:71:45:2f:db:15:d3: f2:ad:f7:c6:10:33:46:b1:72:e3:1b:ee:3c:bd:05: 54:e7:c0:fc:5c:a5:28:1a:28:43:45:99:d0:ac:4c: 97:da:a8:08:bf:b1:f8:de:6c:da:54:c6:9e:35:8d: 4b:18:4e:20:ae:cf:44:f9:1d:2c:0a:d8:41:c8:f9: 93:36:fc:dc:e0:dc:a4:ca:d7:c9:bf:d5:a8:a4:48: 4a:7e:d8:3f:5e:e3:74:53:e9:da:dc:3b:9d:49:81: 21:31:ae:79:ba:06:0e:0c:29:65:97:d3:30:8d:bf: 36:93:3a:19:b3:27:da:96:d7:46:62:2f:5f:8e:64: bc:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:16:9E:A6:FC:4B:36:25:DE:86:37:EC:54:66:5F:EC:0D:3B:00:CE X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/62B87A26895B11EFBA2A3B22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.121.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:26:bb:87:cd:39:0e:31:b7:38:5d:5e:a2:af:ed:02:86:23: 2a:34:f0:38:61:7d:c8:f1:af:87:1a:8f:32:68:9f:84:ea:a4: 41:a4:a5:2e:32:a1:80:9c:90:8a:e2:ed:c3:20:a8:51:11:41: da:fa:03:64:5f:b2:3a:c7:7b:74:5f:b5:20:96:95:55:54:9b: b5:58:c7:2b:4c:4c:84:63:64:cb:c8:ce:47:81:92:f4:22:45: e5:c6:89:f4:c2:16:5e:79:89:80:52:1a:cd:44:f1:8e:e1:1a: 27:13:2c:f6:8c:9a:db:13:85:93:db:13:8c:10:e0:ac:7c:f6: 52:ed:a5:20:85:d3:45:8f:c5:e4:68:2e:c5:13:62:b6:f0:1f: d3:26:d9:89:2f:d8:69:c6:c0:ef:71:06:18:4d:c0:78:19:43: c9:52:25:3a:56:8a:07:12:30:64:4f:6b:09:0c:c7:5b:29:9d: 25:f5:b1:2b:1d:d9:74:26:79:30:4c:37:8d:ab:f2:e5:90:29: cf:73:e0:07:07:be:66:62:4a:b8:c1:96:96:9b:6b:b2:1f:19: e6:a0:62:54:64:51:cb:da:24:00:e7:a7:75:36:b0:29:42:9d: 88:97:4f:fe:f9:52:3d:8d:cc:72:ea:7c:c8:da:37:86:7d:80: 7b:a5:d7:f4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODBDMjExMC8GA1UEBRMoMkFCQTJBQTNDQjNGOTQ1ODFDNUQzRDkxQkEzNkI4QTlE OEU4REVBRDAeFw0yNDEwMTMxMjA1MDZaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MGJiNzcyLWVlNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeM6J+zP+nIIfwJO/AeV1xwzskpWGHsvYrJWsvh7BZ1deCM+h+Eft/qpv4f8rQ WUh4AXobc6mzRWP5BS5XsM/h18qR5j0lg2E+7hhbFuUImVPQlJihYFYrtWHXVC0v 3SMTrp4HlCJDYzznAqUEYpu5W/lWyLfZ77SCcW6EyH76rnFFL9sV0/Kt98YQM0ax cuMb7jy9BVTnwPxcpSgaKENFmdCsTJfaqAi/sfjebNpUxp41jUsYTiCuz0T5HSwK 2EHI+ZM2/Nzg3KTK18m/1aikSEp+2D9e43RT6drcO51JgSExrnm6Bg4MKWWX0zCN vzaTOhmzJ9qW10ZiL1+OZLzrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUtxaepvxL NiXehjfsVGZf7A07AM4wHwYDVR0jBBgwFoAUKroqo8s/lFgcXT2Ruja4qdjo3q0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4MEMyLzk4M0U2MTUwMTcx QTExRUY4NjU3NzU0RkM0RjlBRTAyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3JvcW84c19sRmdjWFQyUnVqYTRxZGpvM3EwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi85ODNFNjE1MDE3MUExMUVGODY1Nzc1NEZDNEY5QUUwMi82MkI4N0EyNjg5 NUIxMUVGQkEyQTNCMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAUeTANBgkqhkiG9w0BAQsFAAOCAQEAaia7h805DjG3OF1e oq/tAoYjKjTwOGF9yPGvhxqPMmifhOqkQaSlLjKhgJyQiuLtwyCoURFB2voDZF+y Osd7dF+1IJaVVVSbtVjHK0xMhGNky8jOR4GS9CJF5caJ9MIWXnmJgFIazUTxjuEa JxMs9oya2xOFk9sTjBDgrHz2Uu2lIIXTRY/F5GguxRNitvAf0ybZiS/YacbA73EG GE3AeBlDyVIlOlaKBxIwZE9rCQzHWymdJfWxKx3ZdCZ5MEw3javy5ZApz3PgBwe+ ZmJKuMGWlptrsh8Z5qBiVGRRy9okAOendTawKUKdiJdP/vlSPY3Mcup8yNo3hn2A e6XX9A== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:49 2024 by rpki-client on console-fra.rpki-client.org