$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/8580DC705AE311EF86351430C4F9AE02.roa File: 8580DC705AE311EF86351430C4F9AE02.roa (raw, json) Hash identifier: tNd1A1Pa4JpDSAJTUxSzKVvWvdR5TDXaWTiFNabeiYY= Subject key identifier: 19:1F:E4:2A:1E:20:13:2B:8B:C4:DD:3B:6C:20:8C:3B:89:6E:15:CA Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Certificate serial: 02 Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/8580DC705AE311EF86351430C4F9AE02.roa Signing time: Thu 15 Aug 2024 08:51:12 +0000 ROA not before: Thu 15 Aug 2024 08:51:12 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151663 IP address blocks: 160.30.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Validity Not Before: Aug 15 08:51:12 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bdc17f-cf78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c8:6b:a5:d1:b6:9c:3f:11:1a:b0:ff:1f:30: 06:14:d1:15:66:7f:36:10:08:a9:19:59:40:6e:72: 35:a5:8a:10:42:98:18:18:63:9c:2f:35:8c:5f:63: 6c:9e:c0:5a:98:82:18:f0:24:aa:a9:bd:f3:c3:ca: 6a:c3:78:f2:55:94:75:2a:d2:c5:24:86:62:16:03: cc:b9:66:8d:0d:42:0a:a6:93:8d:60:a5:e3:cb:83: de:9b:59:ac:22:d3:62:bb:37:c2:8c:03:b4:fd:86: 53:81:f1:ac:b5:60:e8:ad:6e:15:6c:84:c6:9a:62: 58:64:8a:a7:e6:ac:62:7b:80:a0:25:e9:b4:74:76: b7:1c:26:dd:a0:a9:7f:43:05:05:5f:95:0b:8c:d1: f8:7c:0b:0c:32:ac:3f:c2:7b:ab:c6:ec:c5:2c:8e: 23:2b:58:a0:26:af:ad:34:a3:03:da:48:27:f4:7b: 5b:8e:c9:c5:6e:a1:d5:6d:62:0f:41:0c:83:f3:7e: 2f:85:89:55:3d:72:93:de:5b:58:e7:3e:3f:f0:26: 5c:3b:d6:35:cb:a1:da:f3:de:95:c2:4a:73:a4:e1: 34:38:1e:1f:1d:2c:4f:fd:4b:29:b9:c6:45:e3:7e: f1:85:5f:21:c3:04:b3:18:22:bb:de:92:a2:f4:27: be:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:1F:E4:2A:1E:20:13:2B:8B:C4:DD:3B:6C:20:8C:3B:89:6E:15:CA X509v3 Authority Key Identifier: keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/8580DC705AE311EF86351430C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.132.0/24 Signature Algorithm: sha256WithRSAEncryption a7:1c:45:00:7d:4b:f2:aa:a3:51:82:45:2c:87:07:1e:0e:f9: d5:61:e3:86:04:63:ae:6d:98:03:1b:66:bf:40:f4:30:de:16: 74:3b:ef:fe:27:bc:c4:cc:78:ce:59:0a:f9:29:ff:a8:78:00: 8e:06:de:2b:2f:a8:47:b7:f8:48:7a:83:50:77:48:11:3c:0b: 24:a8:90:a4:86:a9:80:07:c2:64:13:eb:9c:e4:be:d3:08:5a: 37:a8:b6:83:ca:cf:3e:c7:17:e6:ec:43:76:0f:2f:ba:b9:0b: 5b:ba:bf:6e:a7:0c:8b:55:dc:6d:2d:75:55:9e:7f:11:7c:30: 97:6a:1b:6c:62:a4:f8:21:ac:9d:7a:87:74:ec:f8:5f:e0:59: e5:da:bd:f3:22:54:bd:c7:df:da:29:c7:f0:92:98:33:45:fa: ea:d6:a3:be:07:55:25:02:e8:d1:54:8a:21:0b:7f:89:47:ed: 6c:89:c0:3c:22:a9:14:62:71:29:b2:9c:a7:7b:7d:16:f1:2f: 27:b4:6f:af:c4:5d:e0:0f:33:dc:26:b0:c7:f8:1d:d0:2d:f5: 89:74:17:1c:46:85:64:e2:22:7d:87:f9:82:3b:a2:fb:ce:b7: 2e:dd:89:aa:21:77:7a:df:82:ff:ab:e1:61:cd:2a:ca:5e:a8: 02:1d:1b:2f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RDU5NjExMC8GA1UEBRMoQkY3MUY1QkYxMTY4QTc4NDA1NzZFMDAwNkYzQkJDNjVG QzQ4MzQwQjAeFw0yNDA4MTUwODUxMTJaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmRjMTdmLWNmNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5yGul0bacPxEasP8fMAYU0RVmfzYQCKkZWUBucjWlihBCmBgYY5wvNYxfY2ye wFqYghjwJKqpvfPDymrDePJVlHUq0sUkhmIWA8y5Zo0NQgqmk41gpePLg96bWawi 02K7N8KMA7T9hlOB8ay1YOitbhVshMaaYlhkiqfmrGJ7gKAl6bR0drccJt2gqX9D BQVflQuM0fh8CwwyrD/Ce6vG7MUsjiMrWKAmr600owPaSCf0e1uOycVuodVtYg9B DIPzfi+FiVU9cpPeW1jnPj/wJlw71jXLodrz3pXCSnOk4TQ4Hh8dLE/9Sym5xkXj fvGFXyHDBLMYIrvekqL0J75NAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGR/kKh4g EyuLxN07bCCMO4luFcowHwYDVR0jBBgwFoAUv3H1vxFop4QFduAAbzu8ZfxINAsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVENTk2LzA1NzJERDhBNUFF MzExRUY5MzJDMjMyRkM0RjlBRTAyL3YzSDF2eEZvcDRRRmR1QUFienU4WmZ4SU5B cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdjNIMXZ4Rm9wNFFGZHVBQWJ6dThaZnhJTkFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wNTcyREQ4QTVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi84NTgwREM3MDVB RTMxMUVGODYzNTE0MzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAehDANBgkqhkiG9w0BAQsFAAOCAQEApxxFAH1L8qqjUYJF LIcHHg751WHjhgRjrm2YAxtmv0D0MN4WdDvv/ie8xMx4zlkK+Sn/qHgAjgbeKy+o R7f4SHqDUHdIETwLJKiQpIapgAfCZBPrnOS+0whaN6i2g8rPPscX5uxDdg8vurkL W7q/bqcMi1XcbS11VZ5/EXwwl2obbGKk+CGsnXqHdOz4X+BZ5dq98yJUvcff2inH 8JKYM0X66tajvgdVJQLo0VSKIQt/iUftbInAPCKpFGJxKbKcp3t9FvEvJ7Rvr8Rd 4A8z3Cawx/gd0C31iXQXHEaFZOIifYf5gjui+863Lt2JqiF3et+C/6vhYc0qyl6o Ah0bLw== -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:04 2024 by rpki-client on console-ams.rpki-client.org