$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/CCFF219C6C1811EFA5619D0FC4F9AE02.roa File: CCFF219C6C1811EFA5619D0FC4F9AE02.roa (raw, json) Hash identifier: 3XxXrUl7XjjQy54chnpbCmHALQO6VY0UNh1QIEO4utw= Subject key identifier: DD:BC:70:2B:D2:08:3E:75:36:DF:21:CE:85:D2:5E:A2:48:5B:94:F5 Certificate issuer: /CN=A91E9B89/serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Certificate serial: 04 Authority key identifier: 22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/CCFF219C6C1811EFA5619D0FC4F9AE02.roa Signing time: Fri 06 Sep 2024 06:26:07 +0000 ROA not before: Fri 06 Sep 2024 06:26:07 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153320 IP address blocks: 160.187.10.0/24 maxlen: 24 160.187.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89/serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Validity Not Before: Sep 6 06:26:07 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66daa07e-b5ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dd:8a:08:86:4b:8e:07:f5:17:f0:c3:b3:17: f9:89:ab:9b:5e:3d:8b:fe:a5:f3:da:e0:70:54:39: 35:e1:5b:8f:a2:c5:ca:fb:a1:ec:40:3c:bf:43:f4: 86:06:f0:d1:f7:d2:3a:b4:47:1b:ad:e5:e9:53:c8: d2:cf:fb:ec:0d:7d:a2:2a:78:44:5d:3c:7b:f4:4c: e6:17:84:27:f2:da:5b:81:22:43:90:e2:4f:ed:ef: 9f:c0:30:8a:07:e7:df:d4:d5:f9:16:6b:81:93:f1: e1:b1:2f:82:22:a5:8c:35:12:a4:a7:46:ed:68:68: 18:4d:3a:11:29:42:d5:64:3b:d6:15:92:7a:a3:fe: 8a:bc:d4:88:d5:d8:9f:79:ee:bc:43:49:d3:56:6a: fa:24:d5:a8:3c:5c:be:89:b9:9a:8f:90:09:5e:38: 9b:af:87:ef:0d:c8:a0:0f:d5:6c:17:5f:ab:c0:11: 81:b7:13:f5:92:24:54:87:51:48:d8:74:c5:b7:3a: 9d:d3:61:56:06:71:f9:c5:d8:d8:5a:3f:bc:31:33: 91:bb:27:dc:c9:f6:68:df:1e:ff:75:e3:d3:ee:f0: 61:f5:c2:c2:73:45:6f:47:1a:5b:12:da:24:7e:a6: 54:6a:55:ed:03:bc:2f:dc:81:f4:d3:66:27:b4:78: ab:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BC:70:2B:D2:08:3E:75:36:DF:21:CE:85:D2:5E:A2:48:5B:94:F5 X509v3 Authority Key Identifier: keyid:22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/CCFF219C6C1811EFA5619D0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.10.0/23 Signature Algorithm: sha256WithRSAEncryption 77:04:9a:ab:d7:12:26:c3:d9:28:ac:e5:7d:66:46:89:57:bf: ec:83:0f:04:ba:98:21:78:98:1a:b4:ec:3c:81:df:5b:ba:44: 34:95:66:a6:ce:18:c9:77:a9:34:a9:63:cb:0b:cf:c8:ef:04: e4:eb:88:cb:9c:0d:f6:de:57:84:de:33:50:e0:94:29:2d:74: ad:0a:de:8a:b5:d3:20:5f:68:a3:24:7a:6c:bf:8e:72:34:09: 7d:b7:d0:14:b5:85:b8:b9:5d:88:37:60:29:d5:02:e7:40:11: 46:90:1b:17:91:da:dd:10:a5:32:45:83:22:06:65:8e:7f:b2: d9:cf:97:d5:7b:fe:00:1f:2b:37:e7:2a:51:22:18:54:ff:9d: 00:00:f5:d5:07:73:56:50:d1:0e:ad:c5:87:72:62:a2:c0:fc: 59:2e:ce:1b:98:2b:d5:25:62:1a:4f:61:35:01:92:b6:d7:fc: 75:10:0b:dc:04:57:ab:84:64:28:69:67:56:a9:88:ad:df:9b: 1f:93:c9:e2:82:88:3e:d4:8d:b3:fd:52:42:61:9f:15:e0:53: 5e:7e:32:a8:b9:c6:4a:20:52:5d:c8:cc:bd:3f:00:93:55:b2: 45:cc:db:0a:4a:7a:42:97:bf:60:fa:4a:37:34:ce:f9:43:52: 60:d4:2e:85 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OUI4OTExMC8GA1UEBRMoMjI1OUY4NzA5NkU0MEFEQjNDODQxODBFMjhCNTZDM0U4 ODIyRjY1MTAeFw0yNDA5MDYwNjI2MDdaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGFhMDdlLWI1YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC23YoIhkuOB/UX8MOzF/mJq5tePYv+pfPa4HBUOTXhW4+ixcr7oexAPL9D9IYG 8NH30jq0Rxut5elTyNLP++wNfaIqeERdPHv0TOYXhCfy2luBIkOQ4k/t75/AMIoH 59/U1fkWa4GT8eGxL4IipYw1EqSnRu1oaBhNOhEpQtVkO9YVknqj/oq81IjV2J95 7rxDSdNWavok1ag8XL6JuZqPkAleOJuvh+8NyKAP1WwXX6vAEYG3E/WSJFSHUUjY dMW3Op3TYVYGcfnF2NhaP7wxM5G7J9zJ9mjfHv9149Pu8GH1wsJzRW9HGlsS2iR+ plRqVe0DvC/cgfTTZie0eKuZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3bxwK9II PnU23yHOhdJeokhblPUwHwYDVR0jBBgwFoAUIln4cJbkCts8hBgOKLVsPogi9lEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5Qjg5LzNBOUM4QTU2NkMx ODExRUZBQjZCNjkwQ0M0RjlBRTAyL0lsbjRjSmJrQ3RzOGhCZ09LTFZzUG9naTls RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWxuNGNKYmtDdHM4aEJnT0tMVnNQb2dpOWxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS8zQTlDOEE1NjZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9DQ0ZGMjE5QzZD MTgxMUVGQTU2MTlEMEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7CjANBgkqhkiG9w0BAQsFAAOCAQEAdwSaq9cSJsPZKKzl fWZGiVe/7IMPBLqYIXiYGrTsPIHfW7pENJVmps4YyXepNKljywvPyO8E5OuIy5wN 9t5XhN4zUOCUKS10rQreirXTIF9ooyR6bL+OcjQJfbfQFLWFuLldiDdgKdUC50AR RpAbF5Ha3RClMkWDIgZljn+y2c+X1Xv+AB8rN+cqUSIYVP+dAAD11QdzVlDRDq3F h3JiosD8WS7OG5gr1SViGk9hNQGSttf8dRAL3ARXq4RkKGlnVqmIrd+bH5PJ4oKI PtSNs/1SQmGfFeBTXn4yqLnGSiBSXcjMvT8Ak1WyRczbCkp6Qpe/YPpKNzTO+UNS YNQuhQ== -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:04 2024 by rpki-client on console-ams.rpki-client.org