$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/9C532970B72311EFBA17AB72C4F9AE02.roa File: 9C532970B72311EFBA17AB72C4F9AE02.roa (raw, json) Hash identifier: V8Oi/Zt9u9c7P3V5ZEct3r3+92oknInn9a1C4JSyxzA= Subject key identifier: 3C:29:CE:AC:2E:01:D1:FB:41:3E:73:72:13:E1:EC:16:4C:DA:EB:45 Certificate issuer: /CN=A91EAE0A/serialNumber=670E3A06721684AB473BBBE5CC22CF05D024BF6D Certificate serial: 02 Authority key identifier: 67:0E:3A:06:72:16:84:AB:47:3B:BB:E5:CC:22:CF:05:D0:24:BF:6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zw46BnIWhKtHO7vlzCLPBdAkv20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/9C532970B72311EFBA17AB72C4F9AE02.roa Signing time: Tue 10 Dec 2024 18:21:45 +0000 ROA not before: Tue 10 Dec 2024 18:21:45 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 135374 IP address blocks: 160.250.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/Zw46BnIWhKtHO7vlzCLPBdAkv20.crl rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/Zw46BnIWhKtHO7vlzCLPBdAkv20.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zw46BnIWhKtHO7vlzCLPBdAkv20.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE0A/serialNumber=670E3A06721684AB473BBBE5CC22CF05D024BF6D Validity Not Before: Dec 10 18:21:45 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=675886b8-4bd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c6:47:7d:4c:52:7a:76:a9:1b:11:13:2d:e8: 6d:69:3f:c4:4e:7a:7e:0b:6a:87:3a:50:8d:96:17: ad:4b:b8:2b:ee:2c:cd:37:25:99:88:e4:24:c8:fb: e3:e7:ec:9a:2f:d8:43:1d:3c:19:d8:76:eb:82:d5: e4:5e:f3:f0:02:54:3b:ae:3b:ec:be:94:89:fa:cb: 74:86:19:4d:47:1a:0c:60:a7:19:39:8a:06:45:58: 64:53:ee:66:cf:05:77:10:1e:06:bb:65:5d:c2:b3: bf:b1:2d:ef:fc:25:a4:7f:28:78:25:11:e6:f4:5b: 56:9f:df:fa:71:27:cf:69:9a:71:3a:b8:f5:63:8d: 3d:9b:54:d4:af:19:03:be:52:bb:af:8d:84:5b:d9: 1a:df:29:b1:60:19:cb:ec:db:2a:47:33:5d:33:32: e8:f2:74:a7:e6:8c:14:06:65:1b:09:99:3e:c4:0d: 75:ae:da:f2:5a:5f:9a:dc:8f:d6:32:1c:2e:a1:a2: 3f:57:cd:54:9c:c8:32:aa:57:c4:6f:46:0e:0f:27: e5:5c:79:ba:8d:bd:d9:19:44:ae:16:30:a7:c6:35: d4:de:13:ab:5d:3f:11:ff:93:27:35:74:a1:12:b4: 16:81:ff:c5:9a:09:21:35:16:7f:38:00:71:7a:89: 5e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:29:CE:AC:2E:01:D1:FB:41:3E:73:72:13:E1:EC:16:4C:DA:EB:45 X509v3 Authority Key Identifier: keyid:67:0E:3A:06:72:16:84:AB:47:3B:BB:E5:CC:22:CF:05:D0:24:BF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/Zw46BnIWhKtHO7vlzCLPBdAkv20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zw46BnIWhKtHO7vlzCLPBdAkv20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/9C532970B72311EFBA17AB72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.196.0/23 Signature Algorithm: sha256WithRSAEncryption 59:5a:0f:9d:01:dc:64:a3:9d:27:b6:49:12:03:55:94:01:71: 9d:6a:25:99:68:f4:6d:f3:8f:fe:f8:8b:a9:da:0b:4d:ba:94: 27:7a:cc:6b:0b:86:fc:b3:84:29:7c:86:3c:c7:a0:ff:97:44: 53:8b:94:1b:40:78:3e:88:93:73:c0:e1:d4:9a:6d:37:e4:e2: ed:b3:dd:98:35:f4:a8:b3:1a:b4:de:ca:77:f6:36:36:80:cc: 93:4e:d6:a1:a1:87:18:b2:1b:88:a8:46:f0:08:92:4d:a0:03: c3:ae:fa:0f:ca:a3:f6:ae:36:2a:f5:a8:5f:f1:81:28:55:ad: c6:3d:e8:ea:d9:85:f9:cf:73:53:f1:04:eb:7a:0d:0c:a3:05: 88:a4:e0:5e:cb:46:5d:04:a1:b1:df:80:54:0f:7c:aa:08:ad: 04:42:e4:cc:13:87:af:dd:e2:17:34:be:7b:2e:42:8d:2e:10: af:89:b3:f3:1c:9b:25:8a:0f:27:8f:82:b0:c3:1e:2f:5d:95: d3:25:95:8f:13:f2:7c:02:41:9b:61:74:57:a5:d0:27:da:66: ac:23:e4:66:e8:16:ef:f3:9b:eb:bc:f8:ec:47:c9:dc:f1:1e: f7:be:75:10:13:ec:68:a4:c4:dc:36:05:66:83:da:8f:c5:1e: ef:a8:98:48 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUUwQTExMC8GA1UEBRMoNjcwRTNBMDY3MjE2ODRBQjQ3M0JCQkU1Q0MyMkNGMDVE MDI0QkY2RDAeFw0yNDEyMTAxODIxNDVaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTg4NmI4LTRiZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCexkd9TFJ6dqkbERMt6G1pP8ROen4Laoc6UI2WF61LuCvuLM03JZmI5CTI++Pn 7Jov2EMdPBnYduuC1eRe8/ACVDuuO+y+lIn6y3SGGU1HGgxgpxk5igZFWGRT7mbP BXcQHga7ZV3Cs7+xLe/8JaR/KHglEeb0W1af3/pxJ89pmnE6uPVjjT2bVNSvGQO+ UruvjYRb2RrfKbFgGcvs2ypHM10zMujydKfmjBQGZRsJmT7EDXWu2vJaX5rcj9Yy HC6hoj9XzVScyDKqV8RvRg4PJ+VcebqNvdkZRK4WMKfGNdTeE6tdPxH/kyc1dKES tBaB/8WaCSE1Fn84AHF6iV6tAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUPCnOrC4B 0ftBPnNyE+HsFkza60UwHwYDVR0jBBgwFoAUZw46BnIWhKtHO7vlzCLPBdAkv20w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRTBBL0RBRjZENzM2Qjcy MjExRUZCQzM2QTc0OEM0RjlBRTAyL1p3NDZCbklXaEt0SE83dmx6Q0xQQmRBa3Yy MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWnc0NkJuSVdoS3RITzd2bHpDTFBCZEFrdjIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUwQS9EQUY2RDczNkI3MjIxMUVGQkMzNkE3NDhDNEY5QUUwMi85QzUzMjk3MEI3 MjMxMUVGQkExN0FCNzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6xDANBgkqhkiG9w0BAQsFAAOCAQEAWVoPnQHcZKOdJ7ZJ EgNVlAFxnWolmWj0bfOP/viLqdoLTbqUJ3rMawuG/LOEKXyGPMeg/5dEU4uUG0B4 PoiTc8Dh1JptN+Ti7bPdmDX0qLMatN7Kd/Y2NoDMk07WoaGHGLIbiKhG8AiSTaAD w676D8qj9q42KvWoX/GBKFWtxj3o6tmF+c9zU/EE63oNDKMFiKTgXstGXQShsd+A VA98qgitBELkzBOHr93iFzS+ey5CjS4Qr4mz8xybJYoPJ4+CsMMeL12V0yWVjxPy fAJBm2F0V6XQJ9pmrCPkZugW7/Ob67z47EfJ3PEe9751EBPsaKTE3DYFZoPaj8Ue 76iYSA== -----END CERTIFICATE-----Generated at Fri Dec 27 07:44:02 2024 by rpki-client on console-ams.rpki-client.org