$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/8D26DADCB6C411EF99C3B758C4F9AE02.roa File: 8D26DADCB6C411EF99C3B758C4F9AE02.roa (raw, json) Hash identifier: BCZ1HJoEZyrIFeiF3ZHLW8BBZXBaO4KH4xqAbBol+hw= Subject key identifier: C3:78:E5:88:7A:12:89:6A:FD:09:4D:D1:36:1C:A1:E0:30:11:76:BF Certificate issuer: /CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Certificate serial: 02 Authority key identifier: 64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/8D26DADCB6C411EF99C3B758C4F9AE02.roa Signing time: Tue 10 Dec 2024 07:01:17 +0000 ROA not before: Tue 10 Dec 2024 07:01:17 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134193 IP address blocks: 160.187.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Validity Not Before: Dec 10 07:01:17 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6757e73d-a4f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c0:ce:07:07:a7:e8:9c:30:9f:17:b1:41:4e: 3b:2f:82:1b:91:94:a6:f7:1d:a2:32:f1:98:32:00: a5:16:be:07:c0:94:72:25:3f:f3:00:c7:3e:f4:3f: 34:07:28:ba:8c:68:4a:66:25:ae:c6:7b:da:fb:da: 58:e1:c9:db:e8:a8:b3:1f:0a:11:d0:c4:b1:34:40: 55:e2:35:68:83:af:41:16:63:31:48:09:b5:58:22: 1a:6e:7a:5e:c2:49:d8:24:bd:5f:bc:9e:f3:5d:48: 69:e3:81:38:c4:23:ba:34:49:48:1d:2f:de:bb:d9: 34:7e:06:e0:7b:b7:23:88:b6:f8:40:5e:68:6c:79: 3e:9b:b7:98:1a:8d:ac:33:bd:d6:a3:d9:45:ff:ad: 14:0c:50:0c:72:97:5e:40:83:24:37:e3:6b:8c:f9: 5c:48:21:5a:1d:8f:31:60:fb:b9:70:32:43:54:d4: 3d:ff:ae:f0:28:2b:db:f9:8b:28:80:6f:5e:6a:a0: 81:0a:2e:ed:36:f2:39:6a:43:71:14:ae:70:85:2b: 14:a1:af:dc:9b:03:0e:55:3c:5a:b2:7f:26:ad:39: cb:fe:cb:18:9a:c7:b3:0a:ac:a6:94:d9:f7:45:8f: 6e:41:c6:34:a0:0a:35:98:33:09:f2:96:dc:62:4e: 71:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:78:E5:88:7A:12:89:6A:FD:09:4D:D1:36:1C:A1:E0:30:11:76:BF X509v3 Authority Key Identifier: keyid:64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/8D26DADCB6C411EF99C3B758C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.202.0/23 Signature Algorithm: sha256WithRSAEncryption a3:a7:15:2e:3c:30:0e:f9:2c:4d:0f:f8:b5:ac:a4:2a:eb:7c: 13:8c:bf:21:11:dc:3a:44:85:ab:c2:9c:6c:df:fe:40:62:30: c7:fd:20:96:b5:60:27:16:8d:b8:c8:e1:72:34:7b:58:4f:73: 8c:05:2b:73:17:bf:ce:49:a0:bd:cd:8a:69:9e:fc:ae:2e:e0: dd:62:23:cb:65:81:b6:24:ba:ac:c0:2a:bb:0c:1d:0e:62:8b: 50:a3:41:9c:b4:a4:dc:d0:73:fc:01:c5:3f:f6:d1:10:85:67: b5:da:ae:0f:ed:4e:1d:02:f0:db:1a:d6:69:b3:79:8d:44:b8: 35:22:e5:bc:bb:29:0b:cb:64:83:30:fd:f8:4f:cf:d9:0a:19: 44:f8:23:7f:4b:f8:22:c3:4d:1a:33:b3:df:a9:ae:64:f9:24: ba:2b:f9:92:f1:57:25:a8:f7:9c:77:f4:2d:b0:d0:7d:7e:d5: e9:a8:f4:50:37:e4:14:3f:f4:42:63:c5:a4:98:64:b8:9b:10: d5:09:81:f4:e1:4b:5f:1c:e5:88:1d:85:21:b3:16:43:73:3f: ea:7a:6c:43:e2:a2:aa:f3:8e:05:e2:ea:8e:27:e9:fe:29:62: 03:93:11:3a:45:c2:53:dd:2f:ab:09:1c:ce:34:aa:f5:63:86: 3a:65:49:6e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkM2MTExMC8GA1UEBRMoNjREMkIzRDY1QTVDNkNDRTREMDhENzhGRkVEQjI4NTZC NjQxRDZBMzAeFw0yNDEyMTAwNzAxMTdaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTdlNzNkLWE0ZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7wM4HB6fonDCfF7FBTjsvghuRlKb3HaIy8ZgyAKUWvgfAlHIlP/MAxz70PzQH KLqMaEpmJa7Ge9r72ljhydvoqLMfChHQxLE0QFXiNWiDr0EWYzFICbVYIhpuel7C SdgkvV+8nvNdSGnjgTjEI7o0SUgdL9672TR+BuB7tyOItvhAXmhseT6bt5gajawz vdaj2UX/rRQMUAxyl15AgyQ342uM+VxIIVodjzFg+7lwMkNU1D3/rvAoK9v5iyiA b15qoIEKLu028jlqQ3EUrnCFKxShr9ybAw5VPFqyfyatOcv+yxiax7MKrKaU2fdF j25BxjSgCjWYMwnyltxiTnEZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUw3jliHoS iWr9CU3RNhyh4DARdr8wHwYDVR0jBBgwFoAUZNKz1lpcbM5NCNeP/tsoVrZB1qMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQzYxLzQ0NkJEN0EyQjZD NDExRUZBMjRBQTYxNkM0RjlBRTAyL1pOS3oxbHBjYk01TkNOZVBfdHNvVnJaQjFx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWk5LejFscGNiTTVOQ05lUF90c29WclpCMXFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkM2MS80NDZCRDdBMkI2QzQxMUVGQTI0QUE2MTZDNEY5QUUwMi84RDI2REFEQ0I2 QzQxMUVGOTlDM0I3NThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7yjANBgkqhkiG9w0BAQsFAAOCAQEAo6cVLjwwDvksTQ/4 taykKut8E4y/IRHcOkSFq8KcbN/+QGIwx/0glrVgJxaNuMjhcjR7WE9zjAUrcxe/ zkmgvc2KaZ78ri7g3WIjy2WBtiS6rMAquwwdDmKLUKNBnLSk3NBz/AHFP/bREIVn tdquD+1OHQLw2xrWabN5jUS4NSLlvLspC8tkgzD9+E/P2QoZRPgjf0v4IsNNGjOz 36muZPkkuiv5kvFXJaj3nHf0LbDQfX7V6aj0UDfkFD/0QmPFpJhkuJsQ1QmB9OFL XxzliB2FIbMWQ3M/6npsQ+KiqvOOBeLqjifp/iliA5MROkXCU90vqwkczjSq9WOG OmVJbg== -----END CERTIFICATE-----Generated at Fri Dec 27 08:43:53 2024 by rpki-client on console-fra.rpki-client.org