$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/2ADA37E6790F11EE99D7CB43C4F9AE02.roa File: 2ADA37E6790F11EE99D7CB43C4F9AE02.roa (raw, json) Hash identifier: voOu3FS6atcTzQMFzUe36XFmwRTAVJhuDBd+mVShCxg= Subject key identifier: 8C:86:ED:CB:66:A1:1A:40:24:9B:A8:15:6A:9B:10:F2:F0:6F:61:1E Certificate issuer: /CN=A91D6DBD/serialNumber=272D71AD62645775CCDFBB5770478E5943EA6595 Certificate serial: 83 Authority key identifier: 27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/2ADA37E6790F11EE99D7CB43C4F9AE02.roa Signing time: Wed 19 Jun 2024 07:43:47 +0000 ROA not before: Wed 19 Jun 2024 07:43:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17559 IP address blocks: 192.160.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6DBD/serialNumber=272D71AD62645775CCDFBB5770478E5943EA6595 Validity Not Before: Jun 19 07:43:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66728c33-77ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a3:22:0e:63:e8:be:db:05:2a:85:bf:e4:cd: 53:47:8a:74:60:3e:5c:9a:e0:e7:31:ad:5d:0c:e1: e6:fe:6f:d0:1a:3e:d1:60:a8:fc:f7:56:25:e9:f3: 15:33:1f:6a:a0:7a:47:df:3a:ec:29:bc:97:8d:44: d7:fc:40:99:aa:76:e3:78:75:21:9b:a9:2a:31:dd: 7f:e7:39:ef:94:f6:53:e5:c5:4d:f9:6a:2f:cd:68: 0e:48:10:ff:0e:3a:46:b4:1b:b1:82:9b:ed:43:ee: c6:da:d7:bd:49:3a:a5:95:a9:dd:03:0c:21:08:64: fc:8e:6a:9f:0a:b4:4a:f0:91:a1:82:8e:db:c6:f7: d8:0c:ca:a9:be:1f:97:d8:cb:29:76:6a:5f:ce:4c: 6d:e5:0e:4b:2e:9e:23:18:d6:fe:5f:ca:36:00:f4: fe:f5:af:1e:2a:2d:8e:de:27:38:08:90:a5:91:b4: ae:48:4e:45:32:96:73:a0:4e:e8:d9:ba:30:b4:13: df:ee:a2:20:a7:0e:82:c8:0d:c4:71:06:7a:7a:2b: c2:d6:f4:7a:5b:9a:02:67:b8:b7:0a:36:6a:fa:3a: b5:09:08:90:e9:61:59:fb:d7:9f:60:87:a8:6e:50: 5f:ec:36:af:8c:3e:b2:47:6f:18:16:98:64:43:9a: ba:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:86:ED:CB:66:A1:1A:40:24:9B:A8:15:6A:9B:10:F2:F0:6F:61:1E X509v3 Authority Key Identifier: keyid:27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/2ADA37E6790F11EE99D7CB43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.160.171.0/24 Signature Algorithm: sha256WithRSAEncryption 53:f0:ef:e3:51:e6:18:2c:43:f1:45:97:5a:1d:55:75:5c:17: a0:d9:94:21:c7:5e:a0:c3:b2:d9:77:a1:42:3b:e4:8c:e7:f5: a3:97:ae:b9:a5:3a:e1:92:e5:92:50:d9:64:85:78:52:a5:4d: 68:c2:2c:2d:7f:36:a0:24:3f:f0:c3:f1:77:c9:90:4f:2b:92: 6a:1b:b0:31:4a:6c:fe:bf:12:83:be:67:49:b4:85:3b:78:59: 08:90:2b:22:a7:de:7f:31:c7:1d:fc:b8:9a:a2:e5:f6:15:bc: 48:d5:b4:f5:0b:2e:d1:a6:c0:26:24:89:5a:79:92:34:af:8d: b8:cf:2e:63:6b:d6:2e:68:55:97:92:06:25:5e:69:79:d0:52: 9b:52:00:0d:d3:93:30:61:51:e3:50:0a:e8:c6:23:7d:54:b0: 4d:d5:9e:ad:07:0c:c7:50:fe:f1:f7:5f:b9:f0:da:bf:52:cb: 60:11:b0:d7:41:20:6a:7b:7d:1e:45:34:b7:c0:ce:a9:18:12: a6:27:d7:9c:aa:b2:41:a1:5e:e1:47:46:9f:9d:1a:2d:6f:da: 2f:fb:c2:7a:9c:8e:f1:a4:9c:78:e4:f7:c4:d6:aa:d2:c7:9d: da:e2:e2:3d:6b:2f:26:11:37:64:80:ce:74:0c:b6:1c:9f:50: 19:0c:3f:c8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZEQkQxMTAvBgNVBAUTKDI3MkQ3MUFENjI2NDU3NzVDQ0RGQkI1NzcwNDc4RTU5 NDNFQTY1OTUwHhcNMjQwNjE5MDc0MzQ3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyOGMzMy03N2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqMiDmPovtsFKoW/5M1TR4p0YD5cmuDnMa1dDOHm/m/QGj7RYKj891Yl6fMV Mx9qoHpH3zrsKbyXjUTX/ECZqnbjeHUhm6kqMd1/5znvlPZT5cVN+WovzWgOSBD/ DjpGtBuxgpvtQ+7G2te9STqllandAwwhCGT8jmqfCrRK8JGhgo7bxvfYDMqpvh+X 2Mspdmpfzkxt5Q5LLp4jGNb+X8o2APT+9a8eKi2O3ic4CJClkbSuSE5FMpZzoE7o 2bowtBPf7qIgpw6CyA3EcQZ6eivC1vR6W5oCZ7i3CjZq+jq1CQiQ6WFZ+9efYIeo blBf7DavjD6yR28YFphkQ5q6SQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIyG7ctm oRpAJJuoFWqbEPLwb2EeMB8GA1UdIwQYMBaAFCctca1iZFd1zN+7V3BHjllD6mWV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkRCRC9GOUMwRTExRTc5 MDkxMUVFOTlFREQxMUZDNEY5QUUwMi9KeTF4cldKa1YzWE0zN3RYY0VlT1dVUHFa WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0p5MXhyV0prVjNYTTM3dFhjRWVPV1VQcVpaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZEQkQvRjlDMEUxMUU3OTA5MTFFRTk5RUREMTFGQzRGOUFFMDIvMkFEQTM3RTY3 OTBGMTFFRTk5RDdDQjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAoKswDQYJKoZIhvcNAQELBQADggEBAFPw7+NR5hgsQ/FF l1odVXVcF6DZlCHHXqDDstl3oUI75Izn9aOXrrmlOuGS5ZJQ2WSFeFKlTWjCLC1/ NqAkP/DD8XfJkE8rkmobsDFKbP6/EoO+Z0m0hTt4WQiQKyKn3n8xxx38uJqi5fYV vEjVtPULLtGmwCYkiVp5kjSvjbjPLmNr1i5oVZeSBiVeaXnQUptSAA3TkzBhUeNQ CujGI31UsE3Vnq0HDMdQ/vH3X7nw2r9Sy2ARsNdBIGp7fR5FNLfAzqkYEqYn15yq skGhXuFHRp+dGi1v2i/7wnqcjvGknHjk98TWqtLHndri4j1rLyYRN2SAznQMthyf UBkMP8g= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org