$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/DA8D1C7EA72311EFBCEB047EC4F9AE02.roa File: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (raw, json) Hash identifier: 4Ilw9gY/NOcFcq0qbuj1smp6o0+TRpgSf2CHUKcnvWE= Subject key identifier: 75:3D:42:A7:7B:C8:91:0C:3E:59:E1:E0:89:B4:FB:08:C0:BD:F4:3D Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: 36 Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/DA8D1C7EA72311EFBCEB047EC4F9AE02.roa Signing time: Wed 20 Nov 2024 09:43:10 +0000 ROA not before: Wed 20 Nov 2024 09:43:10 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153358 IP address blocks: 160.187.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Nov 20 09:43:10 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=673daf2e-1e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:50:16:90:44:bd:07:c0:23:bf:bd:9e:a5:34: 49:96:1c:49:5f:12:b2:a1:cc:aa:39:ef:a4:8c:50: 86:50:ba:e5:8f:b1:d1:0f:63:b4:af:db:f8:0e:81: 14:c7:3d:49:00:fd:77:24:19:cd:85:a5:4e:79:3a: 59:a2:c9:26:8e:26:c8:e2:c1:e0:e2:08:0b:2b:67: e8:50:7e:40:1b:40:be:7b:97:93:b2:7b:e9:8c:f3: 25:59:29:c4:94:26:34:d4:13:af:87:b5:f8:ab:72: c7:28:29:5e:4a:17:38:cd:bf:9a:f5:4c:cf:ef:90: 83:a7:26:91:cb:c2:d9:f8:b2:34:06:4b:49:31:a4: b1:51:f4:33:63:37:09:f4:99:c6:ac:7a:da:22:d9: de:50:6c:cc:11:82:fe:65:14:79:44:b8:8c:d0:06: 6e:d9:e5:ae:6d:f0:79:b7:21:a7:dd:75:ec:9e:c8: 20:54:70:56:57:0b:da:d6:9a:21:84:ac:b0:35:d2: 61:35:5d:b1:3c:38:6a:c7:27:34:d2:b2:69:ff:72: 8f:ef:e1:04:04:3b:64:28:59:c1:12:77:1d:36:00: e8:85:f3:5b:78:fa:ee:58:f1:c2:c0:8a:4d:3e:5b: 98:e5:b0:4e:92:35:7b:3c:30:b3:7f:79:93:41:78: a5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:3D:42:A7:7B:C8:91:0C:3E:59:E1:E0:89:B4:FB:08:C0:BD:F4:3D X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/DA8D1C7EA72311EFBCEB047EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.175.0/24 Signature Algorithm: sha256WithRSAEncryption 00:84:52:b2:68:6f:45:70:f5:eb:42:3f:1e:71:f0:85:79:e8: 2a:af:e9:74:57:e2:e2:b9:df:fc:6b:65:12:df:a5:40:09:f0: 88:bf:25:4a:6f:e9:44:f6:3e:bb:af:26:f4:1d:83:54:4a:48: 33:c4:2b:46:1d:34:21:33:c3:b5:58:dd:09:5e:3b:18:73:b5: f6:73:51:22:f4:e7:4c:8d:1e:fa:91:ef:41:30:fc:bd:31:3d: ad:ab:fe:72:5f:3b:3f:36:15:1e:ac:e8:a6:19:f7:0e:5c:fa: b4:00:f5:a2:bd:b5:de:ae:fa:3a:13:49:91:85:b8:fb:a8:38: 0a:cd:a1:8a:1d:f3:62:ad:a5:d6:57:b4:41:09:4f:fa:65:e3: b3:6e:3d:07:be:b1:e0:63:a4:c5:2a:e8:05:bd:a0:49:75:73: f9:b0:6a:98:3d:7a:bc:38:e7:23:51:5f:5b:3d:8e:af:73:d0: 30:ff:01:7b:2d:19:ef:a7:70:b4:10:13:fa:20:f5:9d:4c:33: 0f:63:91:67:ef:11:2a:31:2d:4f:54:b2:00:64:ef:95:40:3d: 01:33:67:a3:d1:74:6d:c4:a8:c1:1a:f5:f9:e5:8e:38:c7:ff: 5e:cd:2d:94:b4:6e:e9:2a:ce:6c:61:32:3e:78:e9:6d:da:f5: ab:63:5e:92 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDQwQjExMC8GA1UEBRMoMzU3NDc5MEQ4REY4MkIzQjU1MUUzQjcwMjU3MUJBRjU1 QTlFOTk2MTAeFw0yNDExMjAwOTQzMTBaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3M2RhZjJlLTFlNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjUBaQRL0HwCO/vZ6lNEmWHElfErKhzKo576SMUIZQuuWPsdEPY7Sv2/gOgRTH PUkA/XckGc2FpU55OlmiySaOJsjiweDiCAsrZ+hQfkAbQL57l5Oye+mM8yVZKcSU JjTUE6+HtfircscoKV5KFzjNv5r1TM/vkIOnJpHLwtn4sjQGS0kxpLFR9DNjNwn0 mcasetoi2d5QbMwRgv5lFHlEuIzQBm7Z5a5t8Hm3IafddeyeyCBUcFZXC9rWmiGE rLA10mE1XbE8OGrHJzTSsmn/co/v4QQEO2QoWcESdx02AOiF81t4+u5Y8cLAik0+ W5jlsE6SNXs8MLN/eZNBeKUZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUdT1Cp3vI kQw+WeHgibT7CMC99D0wHwYDVR0jBBgwFoAUNXR5DY34KztVHjtwJXG69VqemWEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNENDBCLzZCNUQyQTdDODU1 QjExRUZCMDU3NkQ0MEM0RjlBRTAyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1X RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTlhSNURZMzRLenRWSGp0d0pYRzY5VnFlbVdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9EQThEMUM3RUE3 MjMxMUVGQkNFQjA0N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7rzANBgkqhkiG9w0BAQsFAAOCAQEAAIRSsmhvRXD160I/ HnHwhXnoKq/pdFfi4rnf/GtlEt+lQAnwiL8lSm/pRPY+u68m9B2DVEpIM8QrRh00 ITPDtVjdCV47GHO19nNRIvTnTI0e+pHvQTD8vTE9rav+cl87PzYVHqzophn3Dlz6 tAD1or213q76OhNJkYW4+6g4Cs2hih3zYq2l1le0QQlP+mXjs249B76x4GOkxSro Bb2gSXVz+bBqmD16vDjnI1FfWz2Or3PQMP8Bey0Z76dwtBAT+iD1nUwzD2ORZ+8R KjEtT1SyAGTvlUA9ATNno9F0bcSowRr1+eWOOMf/Xs0tlLRu6SrObGEyPnjpbdr1 q2Nekg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org