$ rpki-client -vvf rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/C5B7E29491F111EFA1C14C61C4F9AE02.roa File: C5B7E29491F111EFA1C14C61C4F9AE02.roa (raw, json) Hash identifier: id6HTAhbs7lkZSnmnWxvojaKrloCyVbBox6Qwy3+IY8= Subject key identifier: 8D:3D:08:31:25:97:AE:E4:3D:A8:98:2C:E4:9C:8C:37:1E:5D:B7:52 Certificate issuer: /CN=A91C60A5/serialNumber=AAEC488771D7B94185C8A90FE36D297DE76C84BC Certificate serial: 07 Authority key identifier: AA:EC:48:87:71:D7:B9:41:85:C8:A9:0F:E3:6D:29:7D:E7:6C:84:BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/quxIh3HXuUGFyKkP420pfedshLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/C5B7E29491F111EFA1C14C61C4F9AE02.roa Signing time: Thu 24 Oct 2024 10:23:18 +0000 ROA not before: Thu 24 Oct 2024 10:23:18 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153374 IP address blocks: 160.191.82.0/23 maxlen: 23 160.191.82.0/24 maxlen: 24 160.191.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/quxIh3HXuUGFyKkP420pfedshLw.crl rsync://rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/quxIh3HXuUGFyKkP420pfedshLw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/quxIh3HXuUGFyKkP420pfedshLw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C60A5/serialNumber=AAEC488771D7B94185C8A90FE36D297DE76C84BC Validity Not Before: Oct 24 10:23:18 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=671a2015-aaab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:99:06:d1:49:f1:00:c3:e0:93:49:24:1b:8a: 14:e1:12:83:45:25:3a:ec:40:bc:9b:b3:c5:91:21: c1:76:af:38:fd:b1:4b:b4:35:3d:18:e3:6a:00:fe: a6:cd:03:26:02:73:68:b1:18:b1:44:ba:f2:60:1b: f3:b4:fc:c1:02:a8:e3:98:7f:8d:8b:04:10:7e:38: e7:b7:e4:cb:e2:67:f7:d1:ea:4b:a5:f0:43:eb:76: fa:f3:e6:6d:d0:cb:69:47:6b:c1:00:26:c4:bf:0d: 89:e0:fc:5d:8d:28:6c:7e:64:1f:4a:43:fd:c4:80: 2d:fa:8d:2b:63:5b:60:de:43:df:e0:f8:0f:37:a8: 60:92:03:68:dd:de:30:bd:f4:7f:d1:69:89:95:b3: 29:f6:ea:2a:a2:d2:62:78:bf:58:2f:4d:11:a8:36: ca:1b:0a:25:21:58:9f:01:5a:0c:d8:0f:6b:22:e9: bc:3e:8b:99:fc:e5:1d:7a:21:73:d2:33:d2:bf:af: ca:4d:95:fe:75:cd:e3:2a:fd:27:6f:fd:2e:ad:50: 2a:7e:ce:89:c8:1c:4b:37:5c:3b:93:b6:dc:f1:5f: 1d:76:8a:fc:9b:17:cd:6b:23:59:54:12:33:56:f2: d6:85:db:04:85:36:92:3e:09:4c:f2:3a:c5:6e:ff: 6f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:3D:08:31:25:97:AE:E4:3D:A8:98:2C:E4:9C:8C:37:1E:5D:B7:52 X509v3 Authority Key Identifier: keyid:AA:EC:48:87:71:D7:B9:41:85:C8:A9:0F:E3:6D:29:7D:E7:6C:84:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/quxIh3HXuUGFyKkP420pfedshLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/quxIh3HXuUGFyKkP420pfedshLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/C5B7E29491F111EFA1C14C61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.82.0/23 Signature Algorithm: sha256WithRSAEncryption 39:5f:7f:40:7d:dc:08:62:34:db:64:81:3a:70:e4:35:75:79: 06:2a:2b:7e:d5:35:62:06:9d:2c:31:b9:34:b2:a1:0a:08:04: 61:51:75:b6:b8:d5:9d:25:5d:37:94:4d:50:38:a5:ea:8a:50: 6b:36:9e:09:d4:46:1c:25:a8:be:d1:9d:13:97:e1:09:be:f7: 12:6c:45:b2:a9:18:4a:a9:2f:ef:4b:2c:4f:d4:fc:d8:48:a2: 72:d0:35:2d:6a:5f:cd:e7:4c:56:e6:04:ea:7e:a9:cb:9b:94: f2:e7:f1:a7:4e:80:52:ea:b2:05:70:2c:35:6c:34:1f:cb:b7: 48:24:c7:47:89:fd:70:66:68:42:ac:f9:6a:26:73:55:d0:44: b5:cf:d9:01:71:e2:d2:4d:3b:14:3a:19:78:91:8f:87:1f:b7: 2d:2c:32:da:60:24:62:23:34:85:33:65:a3:40:8c:94:fd:18: 08:5a:12:ed:e5:8b:dc:7b:ab:e6:b8:11:f1:98:a6:fd:ce:55: d7:fd:55:a5:41:26:39:3a:7d:2c:25:f6:7d:06:ff:f9:fc:9a: 65:9f:f2:00:be:e8:8b:b2:0e:5a:eb:b7:97:e3:53:37:2f:ef: c1:a6:2e:2d:39:3f:61:01:60:67:b1:04:44:fb:a9:b5:46:d0: 05:ca:f1:c5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjBBNTExMC8GA1UEBRMoQUFFQzQ4ODc3MUQ3Qjk0MTg1QzhBOTBGRTM2RDI5N0RF NzZDODRCQzAeFw0yNDEwMjQxMDIzMThaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWEyMDE1LWFhYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZmQbRSfEAw+CTSSQbihThEoNFJTrsQLybs8WRIcF2rzj9sUu0NT0Y42oA/qbN AyYCc2ixGLFEuvJgG/O0/MECqOOYf42LBBB+OOe35MviZ/fR6kul8EPrdvrz5m3Q y2lHa8EAJsS/DYng/F2NKGx+ZB9KQ/3EgC36jStjW2DeQ9/g+A83qGCSA2jd3jC9 9H/RaYmVsyn26iqi0mJ4v1gvTRGoNsobCiUhWJ8BWgzYD2si6bw+i5n85R16IXPS M9K/r8pNlf51zeMq/Sdv/S6tUCp+zonIHEs3XDuTttzxXx12ivybF81rI1lUEjNW 8taF2wSFNpI+CUzyOsVu/2/xAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjT0IMSWX ruQ9qJgs5JyMNx5dt1IwHwYDVR0jBBgwFoAUquxIh3HXuUGFyKkP420pfedshLww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2MEE1Lzk5N0IzNjZFOTFG MDExRUZCNjk2NUMyNEM0RjlBRTAyL3F1eEloM0hYdVVHRnlLa1A0MjBwZmVkc2hM dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcXV4SWgzSFh1VUdGeUtrUDQyMHBmZWRzaEx3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjBBNS85OTdCMzY2RTkxRjAxMUVGQjY5NjVDMjRDNEY5QUUwMi9DNUI3RTI5NDkx RjExMUVGQTFDMTRDNjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/UjANBgkqhkiG9w0BAQsFAAOCAQEAOV9/QH3cCGI022SB OnDkNXV5BiorftU1YgadLDG5NLKhCggEYVF1trjVnSVdN5RNUDil6opQazaeCdRG HCWovtGdE5fhCb73EmxFsqkYSqkv70ssT9T82EiictA1LWpfzedMVuYE6n6py5uU 8ufxp06AUuqyBXAsNWw0H8u3SCTHR4n9cGZoQqz5aiZzVdBEtc/ZAXHi0k07FDoZ eJGPhx+3LSwy2mAkYiM0hTNlo0CMlP0YCFoS7eWL3Hur5rgR8Zim/c5V1/1VpUEm OTp9LCX2fQb/+fyaZZ/yAL7oi7IOWuu3l+NTNy/vwaYuLTk/YQFgZ7EERPuptUbQ BcrxxQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org