$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/20B2721A955B11EFBF0F5669C4F9AE02.roa File: 20B2721A955B11EFBF0F5669C4F9AE02.roa (raw, json) Hash identifier: llWki8GcmgjT7J8EXf4LrHE2T0htuGvxurz/78InPoE= Subject key identifier: EB:16:64:64:82:95:6C:47:C7:C9:39:84:9E:C7:E6:57:40:4B:B0:3F Certificate issuer: /CN=A91B8E70/serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Certificate serial: 06 Authority key identifier: 81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/20B2721A955B11EFBF0F5669C4F9AE02.roa Signing time: Tue 29 Oct 2024 18:15:49 +0000 ROA not before: Tue 29 Oct 2024 18:15:49 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153378 IP address blocks: 160.191.116.0/23 maxlen: 23 160.191.116.0/24 maxlen: 24 160.191.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70/serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Validity Not Before: Oct 29 18:15:49 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67212655-1644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d9:85:45:54:62:25:be:0c:62:95:de:49:78: 27:ae:46:9c:dc:ef:31:8a:e6:93:d2:55:6d:43:e7: ca:3d:07:5e:c2:1c:02:dc:f5:db:bd:7d:4e:24:f1: f4:6e:4d:92:69:e9:94:b2:31:47:2c:72:74:be:31: 8d:5d:37:3f:cc:1f:75:43:72:28:43:0c:62:83:80: 2c:6c:88:db:79:32:88:b1:9b:0c:54:17:e4:00:90: 9b:13:67:97:6d:18:f1:96:6b:ec:09:dc:09:95:64: 74:99:2b:28:81:20:f2:d8:2f:9c:5c:08:e1:45:2b: 38:43:5f:ae:ad:0c:b3:71:4b:c2:2c:f8:93:5a:b9: 41:7f:01:22:03:65:2b:c9:ba:b8:05:6c:59:95:af: f5:6d:91:00:5f:5c:13:4d:d8:90:f6:e4:55:34:17: 43:e8:03:d5:8b:39:72:b7:45:6f:bd:3c:6c:6e:b8: db:75:c1:ea:b3:b5:90:15:68:40:00:27:60:42:ba: fa:d3:f9:46:66:ac:0d:e3:17:a2:8a:b4:b2:7b:bb: 59:81:2a:66:d9:d9:9b:a1:c8:78:d6:28:c0:c3:17: b7:ae:dc:91:ac:78:fc:34:9d:2f:b5:cd:4e:52:5b: 10:dc:3f:e1:57:f8:6a:b9:03:b1:fe:9d:fb:1f:fe: b3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:16:64:64:82:95:6C:47:C7:C9:39:84:9E:C7:E6:57:40:4B:B0:3F X509v3 Authority Key Identifier: keyid:81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/20B2721A955B11EFBF0F5669C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.116.0/23 Signature Algorithm: sha256WithRSAEncryption 97:1e:24:01:a2:f5:50:b7:b7:a3:d7:fd:aa:de:41:50:38:99: 64:3c:28:bf:3a:59:a7:91:3a:10:4b:df:4e:72:91:09:30:f1: 56:e1:53:57:03:00:76:dc:16:16:57:6f:84:07:b1:97:a2:df: 5d:d9:f3:08:a4:f0:41:c7:1f:50:9a:b3:4b:11:ed:f3:74:61: 17:8d:ae:d1:5c:dd:13:70:b2:66:3d:f2:af:2c:ac:f3:cb:ac: be:3a:fa:13:0f:51:cf:da:11:b0:38:b6:af:cd:4e:97:b3:6e: 71:d4:6c:c2:38:b6:45:58:4f:8c:55:f8:d3:bf:22:16:76:7b: e7:a5:b6:82:d1:38:bb:6b:82:50:f7:80:56:9b:ad:4e:09:28: ff:32:0b:2a:b6:c1:ec:57:3a:b0:73:2d:47:44:90:55:dc:3a: 5e:b6:13:62:d0:bf:b0:05:50:32:a4:73:92:bd:da:3a:b3:1e: d0:ab:98:2a:6a:e2:97:46:8f:2c:84:9d:1c:ab:13:de:36:d6: 90:5f:2f:71:95:19:5a:47:51:f7:e3:e3:86:b2:b6:03:b0:53: 14:03:e1:53:44:62:b9:f9:51:33:a5:ef:87:a5:49:03:b9:90: 7a:84:08:0b:dc:68:ec:63:9e:38:95:fe:76:4e:19:fc:82:5f: 16:84:52:99 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoODFDMjZGM0Q4RjQxMzZFNTE5MENDN0ExN0Q2QUY3MjI0 MjJFQjY2RjAeFw0yNDEwMjkxODE1NDlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjEyNjU1LTE2NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG2YVFVGIlvgxild5JeCeuRpzc7zGK5pPSVW1D58o9B17CHALc9du9fU4k8fRu TZJp6ZSyMUcscnS+MY1dNz/MH3VDcihDDGKDgCxsiNt5MoixmwxUF+QAkJsTZ5dt GPGWa+wJ3AmVZHSZKyiBIPLYL5xcCOFFKzhDX66tDLNxS8Is+JNauUF/ASIDZSvJ urgFbFmVr/VtkQBfXBNN2JD25FU0F0PoA9WLOXK3RW+9PGxuuNt1weqztZAVaEAA J2BCuvrT+UZmrA3jF6KKtLJ7u1mBKmbZ2ZuhyHjWKMDDF7eu3JGsePw0nS+1zU5S WxDcP+FX+Gq5A7H+nfsf/rPRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6xZkZIKV bEfHyTmEnsfmV0BLsD8wHwYDVR0jBBgwFoAUgcJvPY9BNuUZDMehfWr3IkIutm8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzJEOTk3MEQ4OTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL2djSnZQWTlCTnVVWkRNZWhmV3IzSWtJdXRt OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ2NKdlBZOUJOdVVaRE1laGZXcjNJa0l1dG04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8yRDk5NzBEODk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi8yMEIyNzIxQTk1 NUIxMUVGQkYwRjU2NjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/dDANBgkqhkiG9w0BAQsFAAOCAQEAlx4kAaL1ULe3o9f9 qt5BUDiZZDwovzpZp5E6EEvfTnKRCTDxVuFTVwMAdtwWFldvhAexl6LfXdnzCKTw QccfUJqzSxHt83RhF42u0VzdE3CyZj3yryys88usvjr6Ew9Rz9oRsDi2r81Ol7Nu cdRswji2RVhPjFX4078iFnZ756W2gtE4u2uCUPeAVputTgko/zILKrbB7Fc6sHMt R0SQVdw6XrYTYtC/sAVQMqRzkr3aOrMe0KuYKmril0aPLISdHKsT3jbWkF8vcZUZ WkdR9+PjhrK2A7BTFAPhU0RiuflRM6Xvh6VJA7mQeoQIC9xo7GOeOJX+dk4Z/IJf FoRSmQ== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org