$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/CB31DFEA7BE411EFB6955155C4F9AE02.roa File: CB31DFEA7BE411EFB6955155C4F9AE02.roa (raw, json) Hash identifier: aGiRG+xUGgWwAx/G6pVvTX9ourgHUuGhOXJQLlTyA9Q= Subject key identifier: 5E:EF:44:66:AC:65:C6:3D:41:55:73:CA:4C:51:8E:65:92:14:2A:50 Certificate issuer: /CN=A91BFE4E/serialNumber=C72002767A10EC2FF14515A2AAB86E614097A75C Certificate serial: 02 Authority key identifier: C7:20:02:76:7A:10:EC:2F:F1:45:15:A2:AA:B8:6E:61:40:97:A7:5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/CB31DFEA7BE411EFB6955155C4F9AE02.roa Signing time: Thu 26 Sep 2024 08:53:26 +0000 ROA not before: Thu 26 Sep 2024 08:53:26 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 153345 IP address blocks: 160.30.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E/serialNumber=C72002767A10EC2FF14515A2AAB86E614097A75C Validity Not Before: Sep 26 08:53:26 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f52106-d0ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:96:16:9e:62:f9:68:2b:3c:c6:69:b7:ec:f5: b5:a2:ed:64:e1:c0:ba:12:76:c3:f9:5b:b0:7f:ed: b3:ef:5e:7e:cc:a7:b9:7e:41:1e:d7:4b:16:13:7b: 3b:91:2f:36:a9:84:57:80:29:d2:dd:c6:6e:da:89: 0a:19:86:27:ce:ab:89:d4:42:e5:a6:61:cf:e8:ea: 35:6a:7b:18:c9:d9:86:f1:45:7b:b9:ab:d9:5a:15: 3a:d8:90:57:a3:b0:11:0c:81:e7:4f:7c:6f:a1:e3: e3:96:71:df:29:ea:91:80:67:3f:33:66:3c:11:12: b1:29:06:3e:3a:44:c8:1a:8b:26:71:38:1f:d1:08: e6:ba:be:f1:fa:a4:cc:17:f5:21:58:f2:6f:1e:e7: 90:fd:72:af:50:ac:76:04:ee:a6:b2:9f:f5:c1:2a: 0a:90:24:6d:2e:b5:85:0f:8c:01:df:2a:d2:a8:dc: 80:b1:21:85:45:5e:10:70:69:d9:89:b4:f0:f2:df: 33:bd:4f:e9:0f:6f:45:18:ff:4d:cc:2f:f2:fd:68: db:14:e2:2b:20:2f:a2:7d:1b:d8:96:0d:1d:1d:05: 54:72:9c:08:6b:4d:d1:9b:22:10:c0:1d:5c:5d:b0: d0:fc:cd:02:63:3e:64:84:8a:16:2a:b8:6d:47:54: cf:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EF:44:66:AC:65:C6:3D:41:55:73:CA:4C:51:8E:65:92:14:2A:50 X509v3 Authority Key Identifier: keyid:C7:20:02:76:7A:10:EC:2F:F1:45:15:A2:AA:B8:6E:61:40:97:A7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/CB31DFEA7BE411EFB6955155C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.47.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:c8:eb:4c:18:af:e7:18:82:b5:16:06:7b:53:1f:fb:a5:7c: e9:b7:58:d9:97:84:12:bb:65:ed:7f:bf:6d:f4:be:e3:25:29: 61:50:dd:47:a5:2e:bb:84:63:b0:77:21:37:a6:a5:2c:66:45: 67:c9:41:4d:e5:7a:31:d1:0f:4c:cd:61:24:a6:88:56:67:38: ce:b7:f2:2b:1c:d3:80:f1:aa:a9:20:af:f9:66:14:f5:d1:f8: 41:b4:bc:06:b1:75:e1:e2:f2:34:5c:6a:70:80:8c:af:64:e9: 42:7d:2e:fa:3d:e3:c9:ae:ec:3f:69:6b:a3:66:5e:ed:74:d7: 3e:a2:a3:05:8f:b8:1f:8d:df:97:75:43:67:5e:6d:1e:86:74: d2:74:8d:48:b1:7f:8e:3f:4e:ca:87:44:7b:8b:50:0e:a2:b8: b1:0d:56:e3:fa:e9:9e:0d:3c:b7:03:6a:7f:4c:d8:33:cb:2d: e6:b2:bd:55:7b:35:29:ac:89:7b:eb:8b:46:a1:d3:5e:56:13: a0:a4:6f:a3:30:45:98:e3:d6:43:18:d9:0e:b8:e0:ea:12:f0: 31:6f:07:45:6f:b5:0a:19:e0:01:f6:cf:31:fb:f4:11:41:5c: bc:d8:85:d8:70:84:fc:95:20:26:a4:60:ef:d8:dc:cd:ab:e4: 6c:ad:9d:d4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RkU0RTExMC8GA1UEBRMoQzcyMDAyNzY3QTEwRUMyRkYxNDUxNUEyQUFCODZFNjE0 MDk3QTc1QzAeFw0yNDA5MjYwODUzMjZaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjUyMTA2LWQwY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKlhaeYvloKzzGabfs9bWi7WThwLoSdsP5W7B/7bPvXn7Mp7l+QR7XSxYTezuR LzaphFeAKdLdxm7aiQoZhifOq4nUQuWmYc/o6jVqexjJ2YbxRXu5q9laFTrYkFej sBEMgedPfG+h4+OWcd8p6pGAZz8zZjwRErEpBj46RMgaiyZxOB/RCOa6vvH6pMwX 9SFY8m8e55D9cq9QrHYE7qayn/XBKgqQJG0utYUPjAHfKtKo3ICxIYVFXhBwadmJ tPDy3zO9T+kPb0UY/03ML/L9aNsU4isgL6J9G9iWDR0dBVRynAhrTdGbIhDAHVxd sND8zQJjPmSEihYquG1HVM/vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUXu9EZqxl xj1BVXPKTFGOZZIUKlAwHwYDVR0jBBgwFoAUxyACdnoQ7C/xRRWiqrhuYUCXp1ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGRTRFL0QxNjVFNEEyN0JF MzExRUY4OEQ5Qzc1M0M0RjlBRTAyL3h5QUNkbm9RN0NfeFJSV2lxcmh1WVVDWHAx dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveHlBQ2Rub1E3Q194UlJXaXFyaHVZVUNYcDF3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EMTY1RTRBMjdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9DQjMxREZFQTdC RTQxMUVGQjY5NTUxNTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAeLzANBgkqhkiG9w0BAQsFAAOCAQEAasjrTBiv5xiCtRYG e1Mf+6V86bdY2ZeEErtl7X+/bfS+4yUpYVDdR6Uuu4RjsHchN6alLGZFZ8lBTeV6 MdEPTM1hJKaIVmc4zrfyKxzTgPGqqSCv+WYU9dH4QbS8BrF14eLyNFxqcICMr2Tp Qn0u+j3jya7sP2lro2Ze7XTXPqKjBY+4H43fl3VDZ15tHoZ00nSNSLF/jj9OyodE e4tQDqK4sQ1W4/rpng08twNqf0zYM8st5rK9VXs1KayJe+uLRqHTXlYToKRvozBF mOPWQxjZDrjg6hLwMW8HRW+1ChngAfbPMfv0EUFcvNiF2HCE/JUgJqRg79jczavk bK2d1A== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:24 2024 by rpki-client on console-fra.rpki-client.org