$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/95F02760A64111EF85A21744C4F9AE02.roa File: 95F02760A64111EF85A21744C4F9AE02.roa (raw, json) Hash identifier: 3RISD8eDJYcnpJ4sTHHIMkiSdATrnQ/D4bupkZw91+A= Subject key identifier: 55:FB:F6:9C:47:F4:4F:98:E8:66:8C:2D:60:3F:F8:5D:70:33:6C:1F Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 87 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/95F02760A64111EF85A21744C4F9AE02.roa Signing time: Tue 19 Nov 2024 06:43:29 +0000 ROA not before: Tue 19 Nov 2024 06:43:29 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 214166 IP address blocks: 160.20.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Nov 19 06:43:29 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673c3391-693c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3f:ea:27:5a:3c:7f:f2:11:ea:b1:21:e3:bd: cd:70:93:80:70:03:6e:26:77:5f:07:c9:64:00:ec: d4:04:61:af:0b:2f:df:c0:66:d9:6c:b7:6f:52:bf: 30:a7:37:a6:c2:fa:7b:f9:4e:d1:49:6a:a5:bb:b9: bc:73:2f:61:2c:e2:07:27:95:23:65:bf:6f:73:91: 18:4e:ff:eb:5b:30:65:d9:c5:53:92:bf:93:16:99: e2:eb:d2:6c:22:d2:5d:98:83:82:00:b9:bc:5c:f8: 77:fd:01:e4:7e:b5:8c:97:c7:a8:43:1a:5c:63:45: 27:09:26:93:4b:cf:f7:e8:b5:e5:1e:00:01:de:dd: 2b:85:49:2f:c2:52:45:cc:2e:fe:37:36:95:fc:20: e3:eb:55:5c:08:20:9c:9e:bd:ae:41:f8:39:c7:a7: 6c:96:a6:26:6f:f8:4a:d0:86:8e:1f:07:67:84:5f: b3:c4:e6:35:72:d8:5a:2d:32:46:f2:54:4e:12:11: 45:37:1a:06:09:f7:72:d5:cc:18:9a:6f:05:e8:37: cf:c9:9e:61:eb:a2:39:43:a9:93:e6:ad:1c:bb:f6: cd:c2:5d:d8:4f:fe:0d:be:97:95:7a:e8:84:a9:cc: 57:0a:2a:66:40:51:77:92:5c:45:ef:70:ff:a1:18: b0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:FB:F6:9C:47:F4:4F:98:E8:66:8C:2D:60:3F:F8:5D:70:33:6C:1F X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/95F02760A64111EF85A21744C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.142.0/24 Signature Algorithm: sha256WithRSAEncryption 85:9f:98:fe:ee:73:f1:50:25:f9:3e:c6:d8:e2:5f:85:30:c3: 5e:5e:dc:8d:fc:ab:52:40:c3:1e:41:fd:05:fc:b6:e0:ab:3f: 40:f7:55:a8:c8:ff:9b:2f:a3:6b:dc:a9:3d:d0:53:fd:41:9f: 5c:77:ad:c9:60:b8:df:14:96:69:cf:72:52:a5:ab:9c:36:30: 62:11:41:27:52:9e:18:2f:79:18:c5:61:a4:56:86:b5:93:76: a0:92:f9:ea:30:8e:da:57:a6:89:83:25:ba:76:33:26:ef:b7: 2d:b6:61:d3:f3:b6:59:3e:f7:dc:13:a1:cc:37:aa:c3:ef:48: be:f3:97:fe:9f:e4:77:8f:8e:08:4f:a7:66:12:3a:99:44:bc: a4:27:39:20:be:a1:d8:c9:45:c1:3b:26:d9:ef:60:20:e3:2e: f9:3e:1d:cf:dd:82:51:ae:8a:f2:19:84:81:86:c0:70:b5:25: 99:4e:56:8b:57:5e:4f:25:42:3e:d5:e9:15:31:2b:a0:8d:73: 07:dc:a7:7c:18:00:6b:38:85:70:a8:23:73:3b:f3:33:82:cc: 43:6f:b7:a9:a2:96:53:8b:4e:a2:1b:9b:0a:64:af:e9:c3:e3: 8e:12:6f:1f:d8:5a:c3:38:1c:91:d1:68:c8:70:48:01:f1:3b: 79:18:ec:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjQxMTE5MDY0MzI5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNjMzM5MS02OTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2T/qJ1o8f/IR6rEh473NcJOAcANuJndfB8lkAOzUBGGvCy/fwGbZbLdvUr8w pzemwvp7+U7RSWqlu7m8cy9hLOIHJ5UjZb9vc5EYTv/rWzBl2cVTkr+TFpni69Js ItJdmIOCALm8XPh3/QHkfrWMl8eoQxpcY0UnCSaTS8/36LXlHgAB3t0rhUkvwlJF zC7+NzaV/CDj61VcCCCcnr2uQfg5x6dslqYmb/hK0IaOHwdnhF+zxOY1cthaLTJG 8lROEhFFNxoGCfdy1cwYmm8F6DfPyZ5h66I5Q6mT5q0cu/bNwl3YT/4NvpeVeuiE qcxXCipmQFF3klxF73D/oRiwgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFX79pxH 9E+Y6GaMLWA/+F1wM2wfMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VBRTAvQUVGNjM3NjAxOTY4MTFFRjhGRjdCRTZGQzRGOUFFMDIvOTVGMDI3NjBB NjQxMTFFRjg1QTIxNzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFI4wDQYJKoZIhvcNAQELBQADggEBAIWfmP7uc/FQJfk+ xtjiX4Uww15e3I38q1JAwx5B/QX8tuCrP0D3VajI/5svo2vcqT3QU/1Bn1x3rclg uN8UlmnPclKlq5w2MGIRQSdSnhgveRjFYaRWhrWTdqCS+eowjtpXpomDJbp2Mybv ty22YdPztlk+99wTocw3qsPvSL7zl/6f5HePjghPp2YSOplEvKQnOSC+odjJRcE7 JtnvYCDjLvk+Hc/dglGuivIZhIGGwHC1JZlOVotXXk8lQj7V6RUxK6CNcwfcp3wY AGs4hXCoI3M78zOCzENvt6millOLTqIbmwpkr+nD444Sbx/YWsM4HJHRaMhwSAHx O3kY7Dk= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org