$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/2ADA37E6790F11EE99D7CB43C4F9AE02.roa File: 2ADA37E6790F11EE99D7CB43C4F9AE02.roa (raw, json) Hash identifier: 4OHTgWMqDaKbWvbjhMGgKM171kYymbCgqMQEk3oimig= Subject key identifier: CB:D7:F0:D8:33:E1:9E:5E:2C:D4:28:72:5F:01:C6:08:DF:F2:5C:8F Certificate issuer: /CN=A91D6DBD/serialNumber=272D71AD62645775CCDFBB5770478E5943EA6595 Certificate serial: 09 Authority key identifier: 27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/2ADA37E6790F11EE99D7CB43C4F9AE02.roa Signing time: Wed 01 Nov 2023 23:34:14 +0000 ROA not before: Wed 01 Nov 2023 23:34:14 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 17559 IP address blocks: 192.160.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6DBD/serialNumber=272D71AD62645775CCDFBB5770478E5943EA6595 Validity Not Before: Nov 1 23:34:14 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6542e076-a165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:02:b7:56:17:ec:41:2c:d2:f0:fc:c9:ca:e8: c4:f5:e9:cb:63:3d:c3:9b:45:78:c3:d6:9c:8a:4c: d5:c4:c4:21:64:0b:ae:79:6b:c7:ad:1c:f5:b4:cd: f0:ae:d3:96:d0:88:29:a0:66:9f:10:1a:86:be:98: a0:26:3e:eb:5b:b0:32:fa:9c:4e:b6:6c:08:ce:52: 7b:0f:18:a0:72:b9:97:5d:42:c7:90:d4:dc:c4:87: 29:03:a6:85:24:91:00:4d:1d:cf:43:99:bf:df:7a: 56:96:08:31:24:f3:f5:91:91:13:d0:be:73:9c:fb: 86:a7:90:26:92:b5:b4:71:0c:61:7d:83:cc:6f:3a: f5:23:d4:b4:8c:3e:b5:d8:9c:2a:a1:7d:d4:f3:17: 4a:ab:4b:96:eb:f7:1d:2a:04:98:dc:ea:fd:0f:6a: 49:8a:11:10:8c:a6:0a:8c:b2:54:24:d9:d6:03:97: 0b:af:4e:0f:54:b1:57:72:58:37:a6:aa:7a:94:5e: 83:b1:9f:75:2d:10:9d:9d:0a:01:15:3d:96:03:9a: 86:2a:87:8e:d3:be:61:76:fe:65:6a:de:d1:a9:d3: 28:e0:13:04:3a:53:6a:32:6a:8a:f9:d7:3c:a6:99: 07:8e:f6:1b:07:95:57:12:35:08:4a:2b:e5:dc:6d: 7a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D7:F0:D8:33:E1:9E:5E:2C:D4:28:72:5F:01:C6:08:DF:F2:5C:8F X509v3 Authority Key Identifier: keyid:27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/2ADA37E6790F11EE99D7CB43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.160.171.0/24 Signature Algorithm: sha256WithRSAEncryption cc:37:1d:06:2f:30:70:3d:33:7a:30:48:4c:ee:50:cd:58:a9: de:87:c9:76:74:b4:3e:87:88:7b:55:fe:7d:5d:5f:fb:82:5f: 5e:c5:cb:4a:d6:05:33:f6:bf:2a:b4:f9:67:9f:de:82:a8:2a: cb:97:f6:f0:f8:8d:46:8b:8c:ae:8b:93:1d:8a:d8:59:82:a7: 4a:0c:12:86:0f:a1:5a:56:65:ff:3d:37:23:4d:ff:8b:49:0a: b5:99:ae:a8:f2:a2:e9:9b:1a:8d:34:56:42:03:bf:92:fe:cf: 50:a6:de:0e:f9:c4:58:8f:c1:ef:64:69:26:fc:35:0d:73:2b: b2:0a:35:c8:89:8e:87:68:8a:19:fd:8f:b7:8c:be:18:9b:34: 65:18:5f:d1:9f:df:52:31:36:4f:ff:00:ed:8e:ed:7c:93:b3: a0:ac:87:f4:78:ad:0a:7e:68:a2:02:c7:d7:09:e6:a1:50:ae: 51:14:3b:ba:13:be:78:66:cd:c1:ce:31:d7:38:27:12:a8:31: bd:00:19:2f:eb:76:a2:81:e6:62:fb:79:0c:d9:30:97:5b:ae: 66:1e:9e:0c:7b:96:9c:c5:9d:2a:b5:74:b9:7a:57:da:a4:1e: 36:b8:c7:31:71:30:e9:96:16:13:4a:3d:35:d2:99:13:ce:93: 20:a8:59:73 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NkRCRDExMC8GA1UEBRMoMjcyRDcxQUQ2MjY0NTc3NUNDREZCQjU3NzA0NzhFNTk0 M0VBNjU5NTAeFw0yMzExMDEyMzM0MTRaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDJlMDc2LWExNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjArdWF+xBLNLw/MnK6MT16ctjPcObRXjD1pyKTNXExCFkC655a8etHPW0zfCu 05bQiCmgZp8QGoa+mKAmPutbsDL6nE62bAjOUnsPGKByuZddQseQ1NzEhykDpoUk kQBNHc9Dmb/felaWCDEk8/WRkRPQvnOc+4ankCaStbRxDGF9g8xvOvUj1LSMPrXY nCqhfdTzF0qrS5br9x0qBJjc6v0PakmKERCMpgqMslQk2dYDlwuvTg9UsVdyWDem qnqUXoOxn3UtEJ2dCgEVPZYDmoYqh47TvmF2/mVq3tGp0yjgEwQ6U2oyaor51zym mQeO9hsHlVcSNQhKK+XcbXoBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUy9fw2DPh nl4s1ChyXwHGCN/yXI8wHwYDVR0jBBgwFoAUJy1xrWJkV3XM37tXcEeOWUPqZZUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2REJEL0Y5QzBFMTFFNzkw OTExRUU5OUVERDExRkM0RjlBRTAyL0p5MXhyV0prVjNYTTM3dFhjRWVPV1VQcVpa VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSnkxeHJXSmtWM1hNMzd0WGNFZU9XVVBxWlpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkRCRC9GOUMwRTExRTc5MDkxMUVFOTlFREQxMUZDNEY5QUUwMi8yQURBMzdFNjc5 MEYxMUVFOTlEN0NCNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMCgqzANBgkqhkiG9w0BAQsFAAOCAQEAzDcdBi8wcD0zejBI TO5QzVip3ofJdnS0PoeIe1X+fV1f+4JfXsXLStYFM/a/KrT5Z5/egqgqy5f28PiN RouMrouTHYrYWYKnSgwShg+hWlZl/z03I03/i0kKtZmuqPKi6ZsajTRWQgO/kv7P UKbeDvnEWI/B72RpJvw1DXMrsgo1yImOh2iKGf2Pt4y+GJs0ZRhf0Z/fUjE2T/8A 7Y7tfJOzoKyH9HitCn5oogLH1wnmoVCuURQ7uhO+eGbNwc4x1zgnEqgxvQAZL+t2 ooHmYvt5DNkwl1uuZh6eDHuWnMWdKrV0uXpX2qQeNrjHMXEw6ZYWE0o9NdKZE86T IKhZcw== -----END CERTIFICATE-----Generated at Sun May 5 08:39:14 2024 by rpki-client on console-fra.rpki-client.org