$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/C7500EC88C2F11EF82B2F55CC4F9AE02.roa File: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (raw, json) Hash identifier: KqwFgUGGWmZ6w/oc9lE/9i1V2X5VufgZVt2vhykEeNg= Subject key identifier: EB:6E:99:1A:AE:48:A2:73:8D:09:1F:16:5F:95:A7:2E:55:C2:A6:CB Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: 03 Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/C7500EC88C2F11EF82B2F55CC4F9AE02.roa Signing time: Thu 17 Oct 2024 02:30:31 +0000 ROA not before: Thu 17 Oct 2024 02:30:31 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 399861 IP address blocks: 160.187.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Validity Not Before: Oct 17 02:30:31 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=671076c7-94f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:51:e7:7a:70:ed:82:eb:2f:5a:51:db:68:00: 7e:6f:2f:06:15:2d:be:9d:cd:7d:c3:e7:ab:59:08: 22:25:13:2b:a8:96:e3:17:6c:0e:32:68:0c:ac:02: d0:9e:48:5a:9d:bc:49:23:b9:e3:6c:9d:5d:eb:e7: 8f:ed:56:7b:a4:8a:a3:60:62:e5:00:4b:cb:1c:f1: 36:1f:53:77:fa:bc:4c:84:9d:7d:50:75:3a:e3:93: 85:b0:65:ab:38:2f:eb:69:1f:2d:49:11:1e:b8:13: 82:40:26:d2:6f:ec:5e:8a:c0:9c:22:63:23:fd:4e: 82:df:04:1e:39:c7:9d:03:d4:13:d7:93:6a:ff:c3: dc:a3:f1:2e:1e:ea:6b:65:1e:b3:20:a7:3f:a2:36: aa:94:eb:fa:0b:e3:26:fb:41:ad:29:12:b1:3a:2a: d3:6c:4f:6a:67:d4:fc:23:2c:83:7c:56:9b:54:57: 90:19:e5:ac:38:a8:68:83:64:7e:e0:83:17:09:6b: c4:aa:99:4c:05:01:5b:ef:e3:0b:71:e4:a0:2d:ca: b5:6e:cd:9f:3c:3b:28:e1:a9:7d:46:a8:57:5e:35: 8c:f2:5b:26:a4:99:f5:10:3a:7e:64:aa:37:f3:d3: 77:0f:c8:38:ea:29:2d:c6:f7:90:e2:88:c0:55:4f: e1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:6E:99:1A:AE:48:A2:73:8D:09:1F:16:5F:95:A7:2E:55:C2:A6:CB X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/C7500EC88C2F11EF82B2F55CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.162.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:26:18:91:9d:ae:97:3a:9b:6e:18:34:0b:15:2a:14:73:82: 06:db:3c:e0:9e:a1:0c:6f:d4:dc:a4:6f:a4:1c:53:29:38:2e: dd:21:3e:48:c3:63:b1:f1:f1:cf:ef:56:74:0a:ee:c6:9c:f4: 3e:1b:02:6c:df:c0:39:4e:09:f6:92:2d:79:06:e3:9b:7d:8d: df:ce:1a:54:b9:1c:5f:d2:b7:10:a5:c4:4f:ff:5c:d7:c9:98: 15:bb:2f:92:94:04:2a:d9:61:6f:ff:75:0a:07:0b:9b:61:a2: 5b:c9:a1:45:5b:9a:f8:c0:aa:59:5e:4e:c5:09:7b:26:87:c3: 78:fd:65:b2:e6:5a:08:cf:d8:1e:26:bc:9f:af:27:d0:db:c3: 69:10:17:7a:e8:1e:db:ca:37:c2:25:3d:0f:20:5c:ba:b7:4b: 49:d4:ba:a5:46:73:d3:9f:80:9c:df:8e:6c:f9:9f:c9:35:b9: 0a:63:4e:0f:ff:3c:06:f7:27:f5:63:ac:4f:58:d7:98:dc:2b: 66:57:26:a2:71:33:6b:26:de:2b:9b:d6:33:81:78:a3:1c:14: 56:df:91:32:bd:59:81:49:f6:ec:3a:57:37:89:c0:2c:23:3b: 91:02:db:c2:cc:d9:4f:44:01:0d:bf:3e:a7:b1:76:c8:8f:17: 95:9d:9c:cb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTMxOTExMC8GA1UEBRMoMUREMzNBNjhCQzBCNUM5MzEwRkZGNTJBRDczOTQxMjBE MTAyQTYyNzAeFw0yNDEwMTcwMjMwMzFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTA3NmM3LTk0ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1Ued6cO2C6y9aUdtoAH5vLwYVLb6dzX3D56tZCCIlEyuoluMXbA4yaAysAtCe SFqdvEkjueNsnV3r54/tVnukiqNgYuUAS8sc8TYfU3f6vEyEnX1QdTrjk4WwZas4 L+tpHy1JER64E4JAJtJv7F6KwJwiYyP9ToLfBB45x50D1BPXk2r/w9yj8S4e6mtl HrMgpz+iNqqU6/oL4yb7Qa0pErE6KtNsT2pn1PwjLIN8VptUV5AZ5aw4qGiDZH7g gxcJa8SqmUwFAVvv4wtx5KAtyrVuzZ88OyjhqX1GqFdeNYzyWyakmfUQOn5kqjfz 03cPyDjqKS3G95DiiMBVT+H1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU626ZGq5I onONCR8WX5WnLlXCpsswHwYDVR0jBBgwFoAUHdM6aLwLXJMQ//Uq1zlBINECpicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1MzE5L0Y5NEQ0MUM4OEMy QzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3Bp Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSGRNNmFMd0xYSk1RX19VcTF6bEJJTkVDcGljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMxOS9GOTRENDFDODhDMkMxMUVGODEyMkVDMTFDNEY5QUUwMi9DNzUwMEVDODhD MkYxMUVGODJCMkY1NUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7ojANBgkqhkiG9w0BAQsFAAOCAQEAOiYYkZ2ulzqbbhg0 CxUqFHOCBts84J6hDG/U3KRvpBxTKTgu3SE+SMNjsfHxz+9WdAruxpz0PhsCbN/A OU4J9pIteQbjm32N384aVLkcX9K3EKXET/9c18mYFbsvkpQEKtlhb/91CgcLm2Gi W8mhRVua+MCqWV5OxQl7JofDeP1lsuZaCM/YHia8n68n0NvDaRAXeuge28o3wiU9 DyBcurdLSdS6pUZz05+AnN+ObPmfyTW5CmNOD/88Bvcn9WOsT1jXmNwrZlcmonEz aybeK5vWM4F4oxwUVt+RMr1ZgUn27DpXN4nALCM7kQLbwszZT0QBDb8+p7F2yI8X lZ2cyw== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org