$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/4647BCD66E7F11EF9223EA62C4F9AE02.roa File: 4647BCD66E7F11EF9223EA62C4F9AE02.roa (raw, json) Hash identifier: B83vyctz3B0CBY300XtJK40jQxKO2YbqnW1lhv/rnh0= Subject key identifier: D4:99:33:94:40:62:FE:38:F3:96:6F:06:69:A3:57:2C:45:29:BD:0B Certificate issuer: /CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Certificate serial: 35 Authority key identifier: 4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/4647BCD66E7F11EF9223EA62C4F9AE02.roa Signing time: Mon 09 Sep 2024 07:43:59 +0000 ROA not before: Mon 09 Sep 2024 07:43:59 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 63801 IP address blocks: 160.22.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Validity Not Before: Sep 9 07:43:59 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66dea73f-ac76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2a:62:41:dc:d1:eb:12:a5:7c:02:7f:c4:16: 8e:89:a9:fc:6d:9c:2f:26:7f:cc:9f:06:c9:0c:dd: b6:47:d0:a6:b1:92:ff:67:82:aa:10:e5:4a:c7:30: 6c:9f:6b:6b:8c:f5:c1:a1:10:5b:cc:83:de:77:3a: e5:b6:65:40:a5:4e:54:de:c8:50:fc:8d:e6:0e:20: 63:ff:9e:74:9b:0c:1d:e0:63:7d:38:74:23:f6:60: 9d:8e:3b:6b:57:ef:c8:b3:18:13:a4:90:8b:84:37: 70:a7:0e:aa:39:41:cb:96:20:53:43:8d:91:af:ac: 88:57:da:3c:d0:6a:69:68:94:15:65:b5:1d:4f:8f: 00:e5:44:15:60:6f:d3:4b:a0:89:df:53:f6:93:2c: ba:3e:20:fc:1f:75:6d:4d:eb:d2:18:a8:a4:ca:b4: d8:eb:e4:29:77:34:2e:20:6d:b1:4f:b3:a9:c7:02: 9b:3b:e8:a5:68:48:97:08:b5:c3:0c:2e:04:d4:7a: ca:e4:7e:bb:b5:53:84:d9:a1:e6:be:31:20:3e:86: f3:ce:e5:89:08:ea:de:ae:0e:7b:4e:13:de:0f:20: 5f:ca:d8:63:8b:70:01:4c:24:74:b7:7e:31:e5:7d: ab:e2:c1:44:36:d2:9e:15:89:74:93:64:c7:da:c7: 1d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:99:33:94:40:62:FE:38:F3:96:6F:06:69:A3:57:2C:45:29:BD:0B X509v3 Authority Key Identifier: keyid:4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/4647BCD66E7F11EF9223EA62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.40.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:fd:44:24:16:b1:e6:91:11:07:49:fa:91:23:d7:60:1d:e1: b6:ea:e2:24:85:f1:66:56:aa:ab:6b:30:c1:e8:8a:1f:09:08: 6b:4f:aa:d3:df:96:d6:f0:8c:d9:ba:d1:1b:b1:bb:d4:34:15: 7e:33:a5:e3:08:a2:56:0f:1b:81:b7:65:e8:d6:b2:5d:ab:d9: 5c:d6:30:62:55:02:f7:3d:b2:02:e2:51:18:02:a7:5f:a8:0a: 81:2d:d1:82:aa:d9:a8:36:62:56:25:ed:f2:b0:10:cd:13:f9: 63:57:12:fa:5c:8f:fc:8e:cc:0e:82:6e:cf:9a:ed:41:31:6f: 66:16:fe:af:ca:54:0f:b7:98:12:26:32:df:a0:78:f5:0e:d4: c8:16:9d:bb:4e:00:8a:c1:b9:aa:1c:4d:34:3f:14:c7:65:39: 3b:22:eb:9b:f7:bd:b5:7b:c8:6d:cc:63:eb:1e:d1:b0:af:06: 34:af:9f:92:54:c6:2f:dc:29:bc:0b:70:9d:41:f3:34:01:45: 02:75:55:83:29:ab:85:bf:64:43:39:a3:4a:a8:6c:c3:1a:56: 5e:63:eb:69:3f:41:22:6c:0d:a1:c2:c2:ba:6d:51:0b:ad:b2: f9:8a:1e:ee:30:6e:9d:ec:c4:70:51:6f:49:62:61:0b:fd:99: db:a5:d0:31 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTdBOTExMC8GA1UEBRMoNEUyNTlCQTg3QTQwQjY2RDg0MkFDOENFMEFFQTc4NEU0 QkQ3MzgyRTAeFw0yNDA5MDkwNzQzNTlaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGVhNzNmLWFjNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmKmJB3NHrEqV8An/EFo6JqfxtnC8mf8yfBskM3bZH0Kaxkv9ngqoQ5UrHMGyf a2uM9cGhEFvMg953OuW2ZUClTlTeyFD8jeYOIGP/nnSbDB3gY304dCP2YJ2OO2tX 78izGBOkkIuEN3CnDqo5QcuWIFNDjZGvrIhX2jzQamlolBVltR1PjwDlRBVgb9NL oInfU/aTLLo+IPwfdW1N69IYqKTKtNjr5Cl3NC4gbbFPs6nHAps76KVoSJcItcMM LgTUesrkfru1U4TZoea+MSA+hvPO5YkI6t6uDntOE94PIF/K2GOLcAFMJHS3fjHl faviwUQ20p4ViXSTZMfaxx1rAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1JkzlEBi /jjzlm8GaaNXLEUpvQswHwYDVR0jBBgwFoAUTiWbqHpAtm2EKsjOCup4TkvXOC4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1N0E5LzdCQkQxMUFDMUZG MzExRUZBM0ZCMkM4MUM0RjlBRTAyL1RpV2JxSHBBdG0yRUtzak9DdXA0VGt2WE9D NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVGlXYnFIcEF0bTJFS3NqT0N1cDRUa3ZYT0M0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdBOS83QkJEMTFBQzFGRjMxMUVGQTNGQjJDODFDNEY5QUUwMi80NjQ3QkNENjZF N0YxMUVGOTIyM0VBNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAWKDANBgkqhkiG9w0BAQsFAAOCAQEAPf1EJBax5pERB0n6 kSPXYB3hturiJIXxZlaqq2swweiKHwkIa0+q09+W1vCM2brRG7G71DQVfjOl4wii Vg8bgbdl6NayXavZXNYwYlUC9z2yAuJRGAKnX6gKgS3RgqrZqDZiViXt8rAQzRP5 Y1cS+lyP/I7MDoJuz5rtQTFvZhb+r8pUD7eYEiYy36B49Q7UyBadu04AisG5qhxN ND8Ux2U5OyLrm/e9tXvIbcxj6x7RsK8GNK+fklTGL9wpvAtwnUHzNAFFAnVVgymr hb9kQzmjSqhswxpWXmPraT9BImwNocLCum1RC62y+Yoe7jBunezEcFFvSWJhC/2Z 26XQMQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:31 2024 by rpki-client on console-fra.rpki-client.org