$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/389BD49096AD11EF8DD3B535C4F9AE02.roa File: 389BD49096AD11EF8DD3B535C4F9AE02.roa (raw, json) Hash identifier: pCk1BM3eEEd/MLFCsHJHYrsXbZ44cQqHYccS6t2WXO8= Subject key identifier: E4:78:E2:B7:07:77:54:8B:D9:E7:97:5F:C4:A6:C4:53:E8:BC:13:17 Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 0B Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/389BD49096AD11EF8DD3B535C4F9AE02.roa Signing time: Fri 01 Nov 2024 14:08:15 +0000 ROA not before: Fri 01 Nov 2024 14:08:15 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153377 IP address blocks: 160.191.80.0/24 maxlen: 24 160.191.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Nov 1 14:08:15 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6724e0cf-53bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:63:3a:24:9c:a3:7b:45:62:bf:93:b6:aa:59: 34:d8:85:56:f2:1c:6e:c8:5d:ae:65:8f:17:ef:d9: 7a:30:0d:76:fa:d3:61:d9:33:45:5d:72:32:81:9f: 48:b3:44:bd:a1:84:c4:41:d9:85:30:59:e9:32:42: 3f:86:af:d1:70:80:74:62:1f:2d:3b:f4:f4:47:02: 29:9b:3b:03:03:68:51:b4:62:8e:26:55:dc:b5:76: 88:c9:5f:a9:53:47:d6:22:7b:2d:32:03:17:e3:b3: 5e:f4:a7:ef:60:72:a7:0a:0c:50:3f:ab:56:f0:d8: 58:b8:3d:ac:81:75:cf:c5:87:c9:7b:c5:35:0f:2a: ac:9a:2e:36:af:af:48:c0:3e:e5:a5:76:64:29:6f: bb:3b:25:05:1e:a2:c7:44:70:d9:7f:d2:e8:22:37: 9f:f3:98:7b:2c:1b:0a:79:e6:47:30:bf:f1:52:39: 46:e6:b1:5c:b8:64:f2:e3:56:4c:e8:50:9b:49:2a: 50:f2:0a:cc:d4:96:89:9c:f1:77:e4:7e:19:4b:5f: b6:e0:5b:14:e2:07:c2:45:81:ac:e1:47:c1:42:1c: 81:c3:3f:3c:c6:7b:1b:5d:fa:96:1e:b2:94:c1:ff: d9:4f:61:e4:95:6b:51:de:a6:67:1b:34:cb:ff:f1: b5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:78:E2:B7:07:77:54:8B:D9:E7:97:5F:C4:A6:C4:53:E8:BC:13:17 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/389BD49096AD11EF8DD3B535C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.80.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:06:2e:71:b3:6d:09:73:fd:17:67:fd:06:49:3b:ad:e3:24: 38:d4:a2:40:e0:95:f2:14:7f:7c:cb:3b:c0:eb:85:57:17:92: 1a:a8:86:18:b1:a9:52:fa:bb:90:7b:79:a8:7d:97:e8:cd:9b: 95:7c:f3:61:22:40:ea:b1:4f:7d:7e:82:a9:07:8d:f8:97:55: ea:b2:53:31:f0:7b:9d:40:2f:d0:83:87:3e:00:7f:c9:38:68: 73:8c:4a:25:f3:88:f8:ee:c5:e3:f8:c7:1f:4f:28:37:80:81: 04:ae:0c:3d:3e:c9:26:bf:26:d2:2a:31:f6:64:00:43:78:16: 3e:17:58:a8:0e:48:4d:29:74:1b:30:31:f3:b0:a1:bb:d3:6a: 55:ca:0c:64:26:6b:23:47:96:83:e1:88:17:86:98:af:29:c2: 27:a7:2a:19:c3:bb:51:c8:9d:d1:71:49:9b:40:05:d7:2e:7f: 65:11:b9:b5:d5:d6:fa:25:72:a6:2a:8d:91:b3:fe:63:b5:a5: ec:1c:1f:45:d9:4b:98:23:fe:c2:e7:c4:50:e6:bd:0e:53:bf: 5c:05:99:c8:0b:51:5f:31:4d:a8:c4:c8:d0:f4:6e:20:33:c4: fc:d4:ab:7c:dc:48:a0:47:85:dd:32:ee:5c:16:14:7b:f5:b6: 80:3d:2f:e4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTU0QTExMC8GA1UEBRMoMTIxQUYxNDREOTAzRTNGODg5N0RGMEZFRDIwNzFBMTY0 Nzc1RUQ0RjAeFw0yNDExMDExNDA4MTVaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjRlMGNmLTUzYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUYzoknKN7RWK/k7aqWTTYhVbyHG7IXa5ljxfv2XowDXb602HZM0VdcjKBn0iz RL2hhMRB2YUwWekyQj+Gr9FwgHRiHy079PRHAimbOwMDaFG0Yo4mVdy1dojJX6lT R9Yiey0yAxfjs170p+9gcqcKDFA/q1bw2Fi4PayBdc/Fh8l7xTUPKqyaLjavr0jA PuWldmQpb7s7JQUeosdEcNl/0ugiN5/zmHssGwp55kcwv/FSOUbmsVy4ZPLjVkzo UJtJKlDyCszUlomc8XfkfhlLX7bgWxTiB8JFgazhR8FCHIHDPzzGextd+pYespTB /9lPYeSVa1HepmcbNMv/8bVLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5Hjitwd3 VIvZ55dfxKbEU+i8ExcwHwYDVR0jBBgwFoAUEhrxRNkD4/iJffD+0gcaFkd17U8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1NTRBLzc5NUU3M0QwOTFG NzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdV OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRWhyeFJOa0Q0X2lKZmZELTBnY2FGa2QxN1U4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi8zODlCRDQ5MDk2 QUQxMUVGOEREM0I1MzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/UDANBgkqhkiG9w0BAQsFAAOCAQEAPwYucbNtCXP9F2f9 Bkk7reMkONSiQOCV8hR/fMs7wOuFVxeSGqiGGLGpUvq7kHt5qH2X6M2blXzzYSJA 6rFPfX6CqQeN+JdV6rJTMfB7nUAv0IOHPgB/yThoc4xKJfOI+O7F4/jHH08oN4CB BK4MPT7JJr8m0iox9mQAQ3gWPhdYqA5ITSl0GzAx87Chu9NqVcoMZCZrI0eWg+GI F4aYrynCJ6cqGcO7Ucid0XFJm0AF1y5/ZRG5tdXW+iVypiqNkbP+Y7Wl7BwfRdlL mCP+wufEUOa9DlO/XAWZyAtRXzFNqMTI0PRuIDPE/NSrfNxIoEeF3TLuXBYUe/W2 gD0v5A== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org