$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/9E4987668C7F11EFB4290976C4F9AE02.roa File: 9E4987668C7F11EFB4290976C4F9AE02.roa (raw, json) Hash identifier: cHJy1BLtElHS3p1bo+4QsrHmfc/col4vczERE1sjyMs= Subject key identifier: 58:1A:DE:96:FB:4E:6A:11:DC:6F:A3:51:7E:42:03:4B:E4:F4:0E:A1 Certificate issuer: /CN=A91DBF0C/serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Certificate serial: 07 Authority key identifier: AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/9E4987668C7F11EFB4290976C4F9AE02.roa Signing time: Thu 17 Oct 2024 12:07:36 +0000 ROA not before: Thu 17 Oct 2024 12:07:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153312 IP address blocks: 160.30.240.0/23 maxlen: 23 160.30.240.0/24 maxlen: 32 160.30.241.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0C Validity Not Before: Oct 17 12:07:36 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6710fe08-3ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a8:45:66:8a:0e:cb:ec:49:f7:9d:8f:07:34: 74:fc:4b:ff:6a:b2:b5:bf:92:2a:11:1a:80:35:2b: a3:e6:05:b9:91:66:93:70:b6:6f:d9:73:91:17:60: d3:37:fe:31:1e:be:96:68:ed:67:a4:e5:51:a3:4e: 26:e6:f6:65:58:58:d6:ce:b7:0f:4b:3d:1b:d9:a8: 35:23:e6:37:78:71:f8:a5:42:52:d0:8e:b7:91:19: 27:e9:f2:d2:a5:fc:e7:c7:b8:01:9d:35:bc:c7:d2: 79:62:8f:0d:42:64:51:c3:4c:6e:e1:c4:4f:aa:2a: 72:bc:bd:62:4f:2b:9b:df:cc:c5:6a:eb:ae:24:ca: 51:b9:39:9f:4d:29:3a:c5:d4:4c:cc:cf:7b:ac:f5: 8c:aa:b4:f9:b5:c9:ab:0a:02:05:96:4d:af:4d:90: c5:e8:31:eb:b7:b0:18:41:c9:bf:01:44:38:ad:0f: 5a:a9:26:36:d7:b0:d2:70:6d:0b:87:35:10:5d:09: 56:fe:dd:b7:84:0a:4f:4f:cf:13:bd:51:a0:d8:5b: be:55:49:44:58:09:00:52:67:9e:02:b5:b8:fe:e9: 5b:ee:fe:ab:a9:b7:33:74:5a:6f:8b:e9:bb:70:76: a7:96:6e:91:25:d8:47:8e:50:84:f8:ea:7c:2e:cb: 84:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1A:DE:96:FB:4E:6A:11:DC:6F:A3:51:7E:42:03:4B:E4:F4:0E:A1 X509v3 Authority Key Identifier: keyid:AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/9E4987668C7F11EFB4290976C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.240.0/23 Signature Algorithm: sha256WithRSAEncryption 81:30:34:2d:4e:a5:31:a3:29:71:b6:ba:51:31:f4:aa:b9:eb: 8c:09:26:a3:ad:d5:47:fa:d9:f8:f2:fc:d0:c4:b6:91:4c:1d: 00:65:7a:4e:3a:41:16:73:07:98:97:4b:34:0a:eb:e8:79:28: 88:41:56:14:75:81:4a:fa:b0:3d:c5:62:19:37:ab:55:90:be: f9:47:06:7c:56:a4:5f:51:a6:b7:4b:31:9b:fc:c7:1e:80:0b: c9:f4:34:86:61:22:24:dc:c7:28:05:d9:85:b7:f3:cc:6c:87: 1b:f2:eb:a4:1b:e6:97:94:1f:f8:62:b8:ee:9d:e1:e7:24:4d: 28:4d:c8:04:94:04:88:24:cf:f2:7c:12:10:ca:eb:12:94:c1: 00:0f:71:04:30:e6:16:ac:63:65:52:f5:d7:60:ad:00:77:58: a7:e3:6c:48:61:df:f4:4f:7e:fc:50:e9:a2:32:97:77:8e:78: 31:95:b3:16:a4:b4:ca:15:bf:e4:ea:1c:96:b3:7f:d5:e6:c1: 5c:e1:63:6b:5e:34:6f:9a:91:f4:13:43:27:79:3e:99:ce:0e: 59:ba:49:ea:cd:ec:13:68:50:ed:ab:53:ee:c1:a2:50:f0:a9: 95:de:ed:81:64:9f:27:9a:3b:21:23:02:e0:b7:19:71:5a:2b: 71:df:9e:52 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkYwQzExMC8GA1UEBRMoQUUwRTRCRUM1NjhGRTZGRUU0OTJGNzJFNEQzQUNCOTI4 RDlDMUU0RjAeFw0yNDEwMTcxMjA3MzZaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTBmZTA4LTNhYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRqEVmig7L7En3nY8HNHT8S/9qsrW/kioRGoA1K6PmBbmRZpNwtm/Zc5EXYNM3 /jEevpZo7Wek5VGjTibm9mVYWNbOtw9LPRvZqDUj5jd4cfilQlLQjreRGSfp8tKl /OfHuAGdNbzH0nlijw1CZFHDTG7hxE+qKnK8vWJPK5vfzMVq664kylG5OZ9NKTrF 1EzMz3us9YyqtPm1yasKAgWWTa9NkMXoMeu3sBhByb8BRDitD1qpJjbXsNJwbQuH NRBdCVb+3beECk9PzxO9UaDYW75VSURYCQBSZ54Ctbj+6Vvu/quptzN0Wm+L6btw dqeWbpEl2EeOUIT46nwuy4SDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWBrelvtO ahHcb6NRfkIDS+T0DqEwHwYDVR0jBBgwFoAUrg5L7FaP5v7kkvcuTTrLko2cHk8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCRjBDLzQxNDg1MDcwOEM1 QjExRUZBNzA2NzU3RkM0RjlBRTAyL3JnNUw3RmFQNXY3a2t2Y3VUVHJMa28yY0hr OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcmc1TDdGYVA1djdra3ZjdVRUckxrbzJjSGs4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwQy80MTQ4NTA3MDhDNUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi85RTQ5ODc2NjhD N0YxMUVGQjQyOTA5NzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAe8DANBgkqhkiG9w0BAQsFAAOCAQEAgTA0LU6lMaMpcba6 UTH0qrnrjAkmo63VR/rZ+PL80MS2kUwdAGV6TjpBFnMHmJdLNArr6HkoiEFWFHWB SvqwPcViGTerVZC++UcGfFakX1Gmt0sxm/zHHoALyfQ0hmEiJNzHKAXZhbfzzGyH G/LrpBvml5Qf+GK47p3h5yRNKE3IBJQEiCTP8nwSEMrrEpTBAA9xBDDmFqxjZVL1 12CtAHdYp+NsSGHf9E9+/FDpojKXd454MZWzFqS0yhW/5OoclrN/1ebBXOFja140 b5qR9BNDJ3k+mc4OWbpJ6s3sE2hQ7atT7sGiUPCpld7tgWSfJ5o7ISMC4LcZcVor cd+eUg== -----END CERTIFICATE-----Generated at Wed Feb 19 20:42:23 2025 by rpki-client