$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/C0F3F504492B11EF8EF0D04FC4F9AE02.roa File: C0F3F504492B11EF8EF0D04FC4F9AE02.roa (raw, json) Hash identifier: 9XdOr8ci0XxQ25MZorUAalomR3Uhklj1yk5ZzWVz3NQ= Subject key identifier: 13:A0:46:A0:20:1A:9A:5B:F5:35:66:1D:33:1B:E2:9A:59:B7:75:C2 Certificate issuer: /CN=A91E0CF5/serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Certificate serial: 02 Authority key identifier: 81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/C0F3F504492B11EF8EF0D04FC4F9AE02.roa Signing time: Tue 23 Jul 2024 19:42:54 +0000 ROA not before: Tue 23 Jul 2024 19:42:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135418 IP address blocks: 160.30.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5/serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Validity Not Before: Jul 23 19:42:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66a007be-654c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4b:ad:16:0f:85:7e:63:52:ad:38:0c:31:5c: 0f:03:83:19:fa:81:39:c3:c1:b2:42:c2:c0:3c:4e: 59:1c:22:9b:10:e7:ec:b2:aa:3c:2a:25:87:17:87: f3:23:96:f3:c1:37:41:0f:8e:16:09:24:a3:12:ab: b8:83:79:6c:9e:24:6d:9b:95:d7:18:3e:2f:8f:6c: 04:68:3b:0d:e3:89:bc:66:c2:ec:0d:e0:2c:30:5e: d9:ad:09:36:80:58:cc:b2:ec:12:d7:c3:04:55:cf: bd:62:4e:68:43:55:9c:18:d6:18:fe:25:51:27:d0: 00:27:d5:38:46:cb:14:fd:54:04:1c:73:ff:85:f0: 72:9f:71:b5:51:3d:aa:af:9c:ab:4b:8a:38:fe:f5: 34:39:76:91:37:33:7e:91:e6:91:0e:b5:d3:9b:89: 12:24:ec:4c:08:7d:59:fc:7f:35:bd:e1:54:c0:3b: ce:50:47:ff:a7:00:8e:b4:b3:7a:00:27:2f:96:ac: fe:56:d7:e4:e0:ad:6d:fa:00:5c:03:17:93:00:8f: e9:78:f1:85:22:70:03:29:39:29:ca:dd:b5:d3:ac: 6e:c9:f8:ec:83:6b:74:f8:bd:89:db:5c:e0:e1:3b: 5b:d8:ca:07:be:aa:f9:50:b9:73:37:71:10:e0:b7: c5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A0:46:A0:20:1A:9A:5B:F5:35:66:1D:33:1B:E2:9A:59:B7:75:C2 X509v3 Authority Key Identifier: keyid:81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/C0F3F504492B11EF8EF0D04FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.0.0/23 Signature Algorithm: sha256WithRSAEncryption 86:d0:58:30:74:60:94:50:2b:2e:16:84:b1:2e:89:16:8e:60: e6:14:1a:4e:3e:68:51:f9:33:15:99:7e:4f:5d:e3:c8:f0:9e: 4c:21:6e:01:77:40:06:2b:63:d2:08:a6:b0:74:b5:84:40:58: a6:5e:2e:9c:67:05:0c:63:f8:78:07:04:cd:8a:43:d8:7a:bf: 39:c2:e3:98:32:38:db:eb:c5:85:80:db:19:db:c6:ff:cd:06: 6d:22:e4:6f:1e:a4:a4:f8:05:dc:bb:44:c4:93:09:66:31:8b: c9:4c:49:67:b1:87:90:fc:a5:6c:0f:e1:ec:7e:35:b7:10:a2: 6a:5c:3e:55:54:60:43:35:6c:c3:db:94:48:85:90:4d:4e:0f: c4:a0:96:62:4d:55:bf:20:8d:04:30:e6:5a:c6:df:0d:f3:3f: da:bc:f6:58:33:28:19:e5:cc:fa:87:4a:e0:46:7a:6d:88:a1: 90:98:82:c6:d9:e8:bb:02:8c:97:b6:a8:20:82:d1:35:46:3f: 1d:9a:5f:c7:d5:81:d9:3f:2b:45:a1:9b:c4:02:68:4a:97:79: 1c:86:b9:4c:00:3a:5a:70:20:96:b4:46:5f:b8:ab:42:aa:2d: 69:18:ed:83:4b:28:62:d5:b6:be:28:e1:7b:ce:79:2b:ff:a0: 7d:d7:cd:ab -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MENGNTExMC8GA1UEBRMoODEzQTZFNEY3RURDNThCQzdBNDhCNkQxRkQ3QzE5REZE ODI4RjFGMTAeFw0yNDA3MjMxOTQyNTRaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTAwN2JlLTY1NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcS60WD4V+Y1KtOAwxXA8Dgxn6gTnDwbJCwsA8TlkcIpsQ5+yyqjwqJYcXh/Mj lvPBN0EPjhYJJKMSq7iDeWyeJG2bldcYPi+PbARoOw3jibxmwuwN4CwwXtmtCTaA WMyy7BLXwwRVz71iTmhDVZwY1hj+JVEn0AAn1ThGyxT9VAQcc/+F8HKfcbVRPaqv nKtLijj+9TQ5dpE3M36R5pEOtdObiRIk7EwIfVn8fzW94VTAO85QR/+nAI60s3oA Jy+WrP5W1+TgrW36AFwDF5MAj+l48YUicAMpOSnK3bXTrG7J+OyDa3T4vYnbXODh O1vYyge+qvlQuXM3cRDgt8XBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUE6BGoCAa mlv1NWYdMxvimlm3dcIwHwYDVR0jBBgwFoAUgTpuT37cWLx6SLbR/XwZ39go8fEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQ0Y1LzRCQjdDNjQ0NDky QjExRUZCRTEwMTg0RkM0RjlBRTAyL2dUcHVUMzdjV0x4NlNMYlJfWHdaMzlnbzhm RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ1RwdVQzN2NXTHg2U0xiUl9Yd1ozOWdvOGZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENGNS80QkI3QzY0NDQ5MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi9DMEYzRjUwNDQ5 MkIxMUVGOEVGMEQwNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAeADANBgkqhkiG9w0BAQsFAAOCAQEAhtBYMHRglFArLhaE sS6JFo5g5hQaTj5oUfkzFZl+T13jyPCeTCFuAXdABitj0gimsHS1hEBYpl4unGcF DGP4eAcEzYpD2Hq/OcLjmDI42+vFhYDbGdvG/80GbSLkbx6kpPgF3LtExJMJZjGL yUxJZ7GHkPylbA/h7H41txCialw+VVRgQzVsw9uUSIWQTU4PxKCWYk1VvyCNBDDm WsbfDfM/2rz2WDMoGeXM+odK4EZ6bYihkJiCxtnouwKMl7aoIILRNUY/HZpfx9WB 2T8rRaGbxAJoSpd5HIa5TAA6WnAglrRGX7irQqotaRjtg0soYtW2vijhe855K/+g fdfNqw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:30 2024 by rpki-client on console-fra.rpki-client.org