$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/DFAC1D02816911EFBC73980DC4F9AE02.roa File: DFAC1D02816911EFBC73980DC4F9AE02.roa (raw, json) Hash identifier: ieIL/C2PsSajQ+T9x9NCeatLKXOzRnjbWOmpv4r/01g= Subject key identifier: 57:19:93:99:0E:FB:C0:7D:3F:F9:D3:0C:1B:4F:10:39:BB:3D:F9:90 Certificate issuer: /CN=A91D0FCB/serialNumber=3CB4A900418BE9DCDC5E04A0BA62A84DA85FE6E0 Certificate serial: 02 Authority key identifier: 3C:B4:A9:00:41:8B:E9:DC:DC:5E:04:A0:BA:62:A8:4D:A8:5F:E6:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PLSpAEGL6dzcXgSgumKoTahf5uA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/DFAC1D02816911EFBC73980DC4F9AE02.roa Signing time: Thu 03 Oct 2024 09:28:39 +0000 ROA not before: Thu 03 Oct 2024 09:28:39 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152915 IP address blocks: 160.22.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/PLSpAEGL6dzcXgSgumKoTahf5uA.crl rsync://rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/PLSpAEGL6dzcXgSgumKoTahf5uA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PLSpAEGL6dzcXgSgumKoTahf5uA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0FCB/serialNumber=3CB4A900418BE9DCDC5E04A0BA62A84DA85FE6E0 Validity Not Before: Oct 3 09:28:39 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66fe63c7-5956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:fa:cf:58:df:db:36:80:3b:aa:c6:e3:13:4f: d6:b2:f9:9a:1c:91:b8:74:6e:f2:36:fd:c0:ac:bb: 05:1e:72:3a:9e:f5:df:f1:21:e7:d9:e2:1c:52:c7: cb:ba:c0:66:1c:dc:81:3a:41:92:99:4f:52:5e:a0: 7d:c5:3f:28:22:6e:4a:7d:47:ed:19:b5:19:77:4e: 43:71:a6:0c:b0:9b:97:c7:3d:26:d9:2a:4c:20:57: 6e:40:02:2e:02:02:36:39:7d:18:2e:9d:4a:78:d3: 22:78:b4:78:e3:15:97:a0:44:eb:8e:a4:bb:62:73: 5a:90:65:4a:e6:f1:4f:c7:43:cc:4e:fd:76:11:76: b9:f7:d3:5f:56:f3:d9:94:9c:b7:fd:80:c0:77:39: f9:86:6d:bd:6b:c3:71:96:cb:08:b8:e4:51:a3:dc: 84:c0:ed:59:92:3d:51:54:63:6a:48:2e:70:ab:b6: e0:59:9d:eb:98:da:73:b7:4c:fb:cf:08:0d:f9:48: 41:cd:cc:18:34:de:6a:5a:40:78:7b:70:d0:d3:be: 22:a4:2f:11:d9:55:1d:2a:96:23:33:dc:5b:cc:d2: e8:bc:8e:ce:1c:fd:85:e5:0f:b4:d0:88:9d:26:27: f1:ad:3b:63:d8:c5:0b:1c:e0:3a:c4:0e:8b:12:d6: 4d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:19:93:99:0E:FB:C0:7D:3F:F9:D3:0C:1B:4F:10:39:BB:3D:F9:90 X509v3 Authority Key Identifier: keyid:3C:B4:A9:00:41:8B:E9:DC:DC:5E:04:A0:BA:62:A8:4D:A8:5F:E6:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/PLSpAEGL6dzcXgSgumKoTahf5uA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PLSpAEGL6dzcXgSgumKoTahf5uA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/DFAC1D02816911EFBC73980DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.178.0/24 Signature Algorithm: sha256WithRSAEncryption 06:ed:c4:c9:7f:b2:df:79:df:81:bf:61:53:c8:8e:2a:70:02: 7c:f5:06:f6:95:0a:2f:4c:35:4a:c2:ba:ab:9e:8c:f1:60:16: 31:ba:8f:76:05:50:69:94:14:c3:79:3d:fd:73:81:62:8f:9c: 2c:15:1f:4f:32:2f:cf:87:50:19:8f:5d:7a:45:bb:14:98:35: df:15:7c:67:14:dc:f5:e7:50:6e:80:5a:09:99:63:8e:c0:78: 7f:ee:56:14:a2:3c:61:e4:75:ff:52:92:f3:04:37:c8:7a:54: b8:50:03:04:c3:ba:3f:4a:ec:7e:10:d7:7c:eb:6e:ed:ca:86: dd:01:15:e7:36:f6:77:a4:51:28:c1:fb:21:66:b2:8b:16:e3: 4d:78:e1:bb:94:c0:06:17:31:ca:0e:19:06:c7:25:ea:99:f0: 0a:75:ea:a0:93:c8:1c:99:b2:e6:60:9e:11:f5:63:1b:d5:15: f0:30:26:99:6e:42:e3:be:87:66:53:64:d1:5a:ae:f6:f3:17: 64:3f:b5:f6:de:04:49:39:67:54:cb:9a:fa:2b:97:a3:70:51: 9c:6e:dc:e3:af:a5:23:0e:61:aa:23:cf:07:1e:bf:69:ca:b7: 5d:b9:0b:da:ad:9a:84:d9:ee:a4:bd:89:8d:6e:7f:a7:45:49: 43:2a:82:15 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEZDQjExMC8GA1UEBRMoM0NCNEE5MDA0MThCRTlEQ0RDNUUwNEEwQkE2MkE4NERB ODVGRTZFMDAeFw0yNDEwMDMwOTI4MzlaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZmU2M2M3LTU5NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD6+s9Y39s2gDuqxuMTT9ay+Zockbh0bvI2/cCsuwUecjqe9d/xIefZ4hxSx8u6 wGYc3IE6QZKZT1JeoH3FPygibkp9R+0ZtRl3TkNxpgywm5fHPSbZKkwgV25AAi4C AjY5fRgunUp40yJ4tHjjFZegROuOpLtic1qQZUrm8U/HQ8xO/XYRdrn3019W89mU nLf9gMB3OfmGbb1rw3GWywi45FGj3ITA7VmSPVFUY2pILnCrtuBZneuY2nO3TPvP CA35SEHNzBg03mpaQHh7cNDTviKkLxHZVR0qliMz3FvM0ui8js4c/YXlD7TQiJ0m J/GtO2PYxQsc4DrEDosS1k3xAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVxmTmQ77 wH0/+dMMG08QObs9+ZAwHwYDVR0jBBgwFoAUPLSpAEGL6dzcXgSgumKoTahf5uAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwRkNCLzg5Qzc4RjcwODE2 OTExRUY4MjEzRkIwQ0M0RjlBRTAyL1BMU3BBRUdMNmR6Y1hnU2d1bUtvVGFoZjV1 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUExTcEFFR0w2ZHpjWGdTZ3VtS29UYWhmNXVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEZDQi84OUM3OEY3MDgxNjkxMUVGODIxM0ZCMENDNEY5QUUwMi9ERkFDMUQwMjgx NjkxMUVGQkM3Mzk4MERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAWsjANBgkqhkiG9w0BAQsFAAOCAQEABu3EyX+y33nfgb9h U8iOKnACfPUG9pUKL0w1SsK6q56M8WAWMbqPdgVQaZQUw3k9/XOBYo+cLBUfTzIv z4dQGY9dekW7FJg13xV8ZxTc9edQboBaCZljjsB4f+5WFKI8YeR1/1KS8wQ3yHpU uFADBMO6P0rsfhDXfOtu7cqG3QEV5zb2d6RRKMH7IWayixbjTXjhu5TABhcxyg4Z Bscl6pnwCnXqoJPIHJmy5mCeEfVjG9UV8DAmmW5C476HZlNk0Vqu9vMXZD+19t4E STlnVMua+iuXo3BRnG7c46+lIw5hqiPPBx6/acq3XbkL2q2ahNnupL2JjW5/p0VJ QyqCFQ== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org