$ rpki-client -vvf rpki.apnic.net/member_repository/A91E63E7/41B0C986887111EFA708D17DC4F9AE02/A54B071C887211EFAC44513CC4F9AE02.roa File: A54B071C887211EFAC44513CC4F9AE02.roa (raw, json) Hash identifier: xlW1WRvz7DCMXZZnV+rfb+Ls8+ewucJliDacTm3Al7M= Subject key identifier: DE:D8:8F:2A:1B:1C:B7:69:ED:63:BB:62:99:E0:2A:BF:57:EC:F0:3E Certificate issuer: /CN=A91E63E7/serialNumber=A59F7EE2FA275937F3E1C2DBA5BB8FBF63D37C34 Certificate serial: 09 Authority key identifier: A5:9F:7E:E2:FA:27:59:37:F3:E1:C2:DB:A5:BB:8F:BF:63:D3:7C:34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pZ9-4vonWTfz4cLbpbuPv2PTfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E63E7/41B0C986887111EFA708D17DC4F9AE02/A54B071C887211EFAC44513CC4F9AE02.roa Signing time: Sat 12 Oct 2024 08:21:10 +0000 ROA not before: Sat 12 Oct 2024 08:21:09 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 63969 IP address blocks: 160.187.190.0/23 maxlen: 23 160.187.190.0/24 maxlen: 24 160.187.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E63E7/41B0C986887111EFA708D17DC4F9AE02/pZ9-4vonWTfz4cLbpbuPv2PTfDQ.crl rsync://rpki.apnic.net/member_repository/A91E63E7/41B0C986887111EFA708D17DC4F9AE02/pZ9-4vonWTfz4cLbpbuPv2PTfDQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pZ9-4vonWTfz4cLbpbuPv2PTfDQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E63E7/serialNumber=A59F7EE2FA275937F3E1C2DBA5BB8FBF63D37C34 Validity Not Before: Oct 12 08:21:09 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=670a3175-6991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:35:59:12:33:91:db:f3:5f:fb:05:16:3a:2e: db:01:10:b2:4b:fa:87:93:c3:27:8b:e1:f5:26:7d: d4:f8:f9:85:2f:25:9c:51:b7:09:52:29:24:66:62: cf:d5:98:c2:c3:3b:03:01:f3:4a:b4:c6:23:aa:bb: 9c:89:4f:a2:bf:d5:33:92:cf:2b:34:8f:6b:11:28: 37:e3:80:00:aa:13:85:c3:6a:72:10:06:e2:c6:48: 42:a7:c2:e1:72:60:c7:87:27:f5:30:0d:59:ca:c9: e7:b4:82:6a:c0:6a:bb:e6:b6:68:d1:47:5f:f5:77: 09:3a:70:f3:a1:23:75:56:6e:27:15:77:79:5f:e4: 97:6e:cb:9c:56:57:65:58:f6:d7:cf:5d:bc:cf:96: 3d:72:8e:04:c3:71:a0:1a:1c:c0:13:5a:e7:70:8f: 33:98:6d:2c:5a:53:ad:c1:89:85:d9:f7:60:52:3f: 93:61:61:a0:83:f6:47:4b:5b:36:b9:44:6f:75:0c: 09:97:9e:cb:b1:b0:71:90:f1:98:b1:09:3d:e9:c9: b6:81:14:4a:1c:7f:da:28:d9:21:ab:27:fd:bb:b1: a1:0b:ba:a7:86:98:e7:32:29:47:f1:88:f6:5a:73: 93:3b:29:66:51:84:c0:d9:11:c5:32:7c:60:4f:df: be:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:D8:8F:2A:1B:1C:B7:69:ED:63:BB:62:99:E0:2A:BF:57:EC:F0:3E X509v3 Authority Key Identifier: keyid:A5:9F:7E:E2:FA:27:59:37:F3:E1:C2:DB:A5:BB:8F:BF:63:D3:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E63E7/41B0C986887111EFA708D17DC4F9AE02/pZ9-4vonWTfz4cLbpbuPv2PTfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pZ9-4vonWTfz4cLbpbuPv2PTfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E63E7/41B0C986887111EFA708D17DC4F9AE02/A54B071C887211EFAC44513CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.190.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:7e:68:74:65:3e:25:a8:ac:65:b1:3c:a8:48:c3:0f:5e:e8: 34:20:b9:58:db:5d:3e:1e:27:4e:7a:ae:c1:86:99:45:08:06: 7e:dd:bd:63:dc:2f:47:d0:29:9f:6d:37:dd:8e:2f:c9:9f:8d: ce:00:35:4d:2d:42:81:5b:09:5f:ea:76:ed:ff:95:91:54:16: 84:60:b4:d3:ee:ad:7e:8b:27:72:ab:a3:d6:5e:8d:14:7f:f9: 5f:41:5c:ff:0e:29:98:95:ea:7c:9c:a2:b7:7f:89:22:2c:1d: d0:ce:7a:35:a6:93:ac:b1:b0:42:df:b8:89:71:ee:ef:63:d0: 2e:72:ae:cc:72:65:ae:56:79:54:fb:cc:8e:dd:b4:c8:1b:55: 44:d1:59:ba:a9:1a:c4:8e:a7:83:b8:06:6e:41:1f:a9:62:26: 0b:57:d6:da:f9:4f:70:9f:2d:3b:a3:52:84:a7:d2:99:e4:5c: 7f:40:1c:94:af:d8:99:1c:3c:2f:38:8e:c0:e1:0d:46:b8:12: bc:0e:a8:1d:08:58:b1:f6:49:f8:52:41:04:a0:29:a2:4f:52: 80:26:33:32:d9:1c:a3:d1:a0:a8:4b:ca:c8:f1:2f:fe:8e:0c: d0:90:04:2c:ec:89:fa:18:ba:ec:65:cd:ba:17:cf:72:53:03: 09:63:5a:b7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NjNFNzExMC8GA1UEBRMoQTU5RjdFRTJGQTI3NTkzN0YzRTFDMkRCQTVCQjhGQkY2 M0QzN0MzNDAeFw0yNDEwMTIwODIxMDlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MGEzMTc1LTY5OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBNVkSM5Hb81/7BRY6LtsBELJL+oeTwyeL4fUmfdT4+YUvJZxRtwlSKSRmYs/V mMLDOwMB80q0xiOqu5yJT6K/1TOSzys0j2sRKDfjgACqE4XDanIQBuLGSEKnwuFy YMeHJ/UwDVnKyee0gmrAarvmtmjRR1/1dwk6cPOhI3VWbicVd3lf5Jduy5xWV2VY 9tfPXbzPlj1yjgTDcaAaHMATWudwjzOYbSxaU63BiYXZ92BSP5NhYaCD9kdLWza5 RG91DAmXnsuxsHGQ8ZixCT3pybaBFEocf9oo2SGrJ/27saELuqeGmOcyKUfxiPZa c5M7KWZRhMDZEcUyfGBP377RAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3tiPKhsc t2ntY7timeAqv1fs8D4wHwYDVR0jBBgwFoAUpZ9+4vonWTfz4cLbpbuPv2PTfDQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2M0U3LzQxQjBDOTg2ODg3 MTExRUZBNzA4RDE3REM0RjlBRTAyL3BaOS00dm9uV1RmejRjTGJwYnVQdjJQVGZE US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcFo5LTR2b25XVGZ6NGNMYnBidVB2MlBUZkRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjNFNy80MUIwQzk4Njg4NzExMUVGQTcwOEQxN0RDNEY5QUUwMi9BNTRCMDcxQzg4 NzIxMUVGQUM0NDUxM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7vjANBgkqhkiG9w0BAQsFAAOCAQEAL35odGU+JaisZbE8 qEjDD17oNCC5WNtdPh4nTnquwYaZRQgGft29Y9wvR9Apn2033Y4vyZ+NzgA1TS1C gVsJX+p27f+VkVQWhGC00+6tfosncquj1l6NFH/5X0Fc/w4pmJXqfJyit3+JIiwd 0M56NaaTrLGwQt+4iXHu72PQLnKuzHJlrlZ5VPvMjt20yBtVRNFZuqkaxI6ng7gG bkEfqWImC1fW2vlPcJ8tO6NShKfSmeRcf0AclK/YmRw8LziOwOENRrgSvA6oHQhY sfZJ+FJBBKApok9SgCYzMtkco9GgqEvKyPEv/o4M0JAELOyJ+hi67GXNuhfPclMD CWNatw== -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org