$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/E9F177B89D9C11EFA9526A6CC4F9AE02.roa File: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (raw, json) Hash identifier: /L7H1H9bfON5bqOj4q1pWVjciM/BYtStadHGVAVA9LE= Subject key identifier: A2:1D:E5:61:02:24:A5:2F:A1:5B:57:34:15:2E:7A:85:98:96:DE:81 Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: 05 Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/E9F177B89D9C11EFA9526A6CC4F9AE02.roa Signing time: Fri 08 Nov 2024 06:44:44 +0000 ROA not before: Fri 08 Nov 2024 06:44:44 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153398 IP address blocks: 160.191.194.0/24 maxlen: 24 160.191.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Nov 8 06:44:44 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672db35c-9f48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4e:92:05:4f:98:72:85:e2:0a:66:9c:5e:5a: cc:63:c6:c3:11:65:d2:af:33:2b:5b:2c:c0:c8:21: 84:4b:d5:5a:76:d6:36:a9:64:ab:ba:4a:ef:9d:26: ec:0b:40:d8:d9:52:fb:3a:9c:3f:af:3b:c8:9e:30: db:4c:6a:9c:44:a7:02:78:0b:07:ef:43:00:8d:b7: 81:43:eb:89:17:5a:d3:24:ee:63:6c:e1:0d:19:60: 48:1d:01:bb:82:d1:85:41:70:cf:6f:f8:e7:16:1a: 2e:ae:0a:9c:04:19:50:ad:2a:49:a6:d2:ae:31:63: f0:12:66:fa:8d:a5:9c:e4:49:3f:16:dd:db:9d:d0: f4:72:80:88:38:14:78:ef:54:6a:bb:cf:88:c4:93: 3f:f9:a5:da:37:e9:05:92:9f:0f:1d:09:ae:e0:11: 4c:99:9f:c9:75:c7:d6:d8:22:86:9a:9a:16:3a:74: 3e:41:16:5e:be:36:27:f3:f1:49:73:56:1e:15:4a: b3:92:39:88:00:8a:53:7c:d2:9b:6b:0c:0e:f4:02: d2:93:56:de:b1:a1:1a:55:87:6d:25:28:3a:b6:e9: 81:11:da:8a:0f:53:60:06:26:9b:5c:36:09:d8:94: 60:a2:d6:58:76:54:52:5a:79:7f:b4:10:91:d7:1c: f2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:1D:E5:61:02:24:A5:2F:A1:5B:57:34:15:2E:7A:85:98:96:DE:81 X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/E9F177B89D9C11EFA9526A6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.194.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:fd:22:f5:37:1a:d5:b5:a1:1a:78:ee:cf:87:0a:f3:44:8b: 8f:76:12:7a:79:93:a8:90:c4:6b:43:0e:52:49:85:4f:99:9d: 59:c5:6f:a3:bb:7e:c7:90:28:95:55:e6:33:e4:be:80:fd:72: 10:28:13:b8:ab:27:9b:79:ae:cc:27:f8:ec:da:0a:fd:d8:54: 3c:6d:48:5c:3e:09:b4:1f:95:89:20:72:cf:72:8b:16:ec:47: d5:c3:1c:b0:b7:08:e7:8a:09:83:8d:aa:4e:9e:b8:54:6e:7c: 11:b4:59:3a:d6:b5:d4:3b:f8:ee:23:77:86:fe:99:d5:8c:96: 8e:d4:65:95:29:34:de:25:e9:d3:b6:76:3e:43:1a:16:1d:a3: 37:5c:b9:de:b8:b6:b7:2f:07:12:fa:6b:7b:37:93:11:c8:5f: ac:25:3e:69:5b:26:94:fe:07:66:d7:86:76:ad:b3:ae:5a:ba: af:41:e9:0a:78:bb:ba:75:9f:08:da:c5:4e:ae:15:51:16:55: 1f:e3:cb:33:6b:2e:56:1b:3c:d8:72:a8:1f:f9:ea:a8:22:3a: d6:b2:0d:b9:a2:8d:11:6d:d0:fd:c7:11:01:49:02:66:5c:c8: 1a:74:0d:d1:33:d4:21:42:e5:1b:62:ae:a3:0e:9a:f0:2f:4c: 8c:34:21:98 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTQwOTExMC8GA1UEBRMoMjE2NERENTlBNjE1RDVGMkUzMzkzRTcyMDk4QTczQUQ4 NjhFNzhEQTAeFw0yNDExMDgwNjQ0NDRaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MmRiMzVjLTlmNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+TpIFT5hyheIKZpxeWsxjxsMRZdKvMytbLMDIIYRL1Vp21japZKu6Su+dJuwL QNjZUvs6nD+vO8ieMNtMapxEpwJ4CwfvQwCNt4FD64kXWtMk7mNs4Q0ZYEgdAbuC 0YVBcM9v+OcWGi6uCpwEGVCtKkmm0q4xY/ASZvqNpZzkST8W3dud0PRygIg4FHjv VGq7z4jEkz/5pdo36QWSnw8dCa7gEUyZn8l1x9bYIoaamhY6dD5BFl6+Nifz8Ulz Vh4VSrOSOYgAilN80ptrDA70AtKTVt6xoRpVh20lKDq26YER2ooPU2AGJptcNgnY lGCi1lh2VFJaeX+0EJHXHPIxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUoh3lYQIk pS+hW1c0FS56hZiW3oEwHwYDVR0jBBgwFoAUIWTdWaYV1fLjOT5yCYpzrYaOeNow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBNDA5L0Y5NDRFM0NDOUNB QjExRUZBQjU5NTUxNkM0RjlBRTAyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VO by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSVdUZFdhWVYxZkxqT1Q1eUNZcHpyWWFPZU5vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS9GOTQ0RTNDQzlDQUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9FOUYxNzdCODlE OUMxMUVGQTk1MjZBNkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/wjANBgkqhkiG9w0BAQsFAAOCAQEAG/0i9Tca1bWhGnju z4cK80SLj3YSenmTqJDEa0MOUkmFT5mdWcVvo7t+x5AolVXmM+S+gP1yECgTuKsn m3muzCf47NoK/dhUPG1IXD4JtB+ViSByz3KLFuxH1cMcsLcI54oJg42qTp64VG58 EbRZOta11Dv47iN3hv6Z1YyWjtRllSk03iXp07Z2PkMaFh2jN1y53ri2ty8HEvpr ezeTEchfrCU+aVsmlP4HZteGdq2zrlq6r0HpCni7unWfCNrFTq4VURZVH+PLM2su Vhs82HKoH/nqqCI61rINuaKNEW3Q/ccRAUkCZlzIGnQN0TPUIULlG2Kuow6a8C9M jDQhmA== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:32 2024 by rpki-client on console-fra.rpki-client.org