$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/1506B298B00711EF863A582EC4F9AE02.roa File: 1506B298B00711EF863A582EC4F9AE02.roa (raw, json) Hash identifier: PjiKcHZxo3PwYpPFYpla6KazUuXCJGnKHspIakJqo2E= Subject key identifier: 05:A3:4E:C2:00:D8:6B:CD:E9:0C:E5:4C:FB:57:1F:58:C4:36:CF:C4 Certificate issuer: /CN=A91EE5E5/serialNumber=69236E5996300A2FD785EF85783C5C29C5B4E874 Certificate serial: 04 Authority key identifier: 69:23:6E:59:96:30:0A:2F:D7:85:EF:85:78:3C:5C:29:C5:B4:E8:74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/1506B298B00711EF863A582EC4F9AE02.roa Signing time: Sun 01 Dec 2024 17:09:54 +0000 ROA not before: Sun 01 Dec 2024 17:09:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 399861 IP address blocks: 160.191.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5 Validity Not Before: Dec 1 17:09:54 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674c9861-6ad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:61:37:a2:36:63:45:27:a4:64:70:bd:92:f6: b2:ce:ca:62:04:43:26:5c:af:fe:20:14:38:b4:c6: 47:b6:a8:92:8a:22:7f:44:74:0c:26:1d:1d:eb:25: eb:39:7d:2c:22:7f:4d:d5:13:9a:12:81:14:d1:e9: 81:93:43:c7:1f:fc:eb:d9:d5:00:7e:45:32:88:35: 68:4c:71:7e:6e:92:d6:ea:17:af:af:c0:c2:14:2c: b8:d5:07:d4:38:58:4c:14:07:fe:a6:38:d2:2e:cb: 8c:28:41:7d:07:92:a6:9a:3d:18:81:21:10:7b:0e: da:ce:a3:15:62:3c:f8:9f:7a:38:95:10:5f:73:6d: 8d:bc:92:07:f6:5c:59:0e:34:02:a5:0c:69:94:38: 93:bf:6f:9f:dc:93:81:eb:58:dc:d4:04:78:53:d9: ee:ac:d8:31:c6:72:29:0a:ba:00:ba:4d:b4:ac:1f: 10:a0:6f:f1:05:f2:f2:54:f8:fe:e9:81:47:f0:9f: 28:e5:bb:0d:7d:75:8a:23:9a:31:51:87:19:df:4a: 9c:09:cb:d8:06:aa:ce:3e:62:fd:23:7c:af:4f:fe: 17:eb:89:a1:45:a6:fb:49:55:47:9d:2b:9b:69:82: 83:e1:ad:e3:77:5e:86:d0:01:bd:2c:47:95:17:81: 96:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A3:4E:C2:00:D8:6B:CD:E9:0C:E5:4C:FB:57:1F:58:C4:36:CF:C4 X509v3 Authority Key Identifier: keyid:69:23:6E:59:96:30:0A:2F:D7:85:EF:85:78:3C:5C:29:C5:B4:E8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/1506B298B00711EF863A582EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.156.0/23 Signature Algorithm: sha256WithRSAEncryption 52:b6:19:a5:19:f5:eb:dd:57:f9:01:b0:63:e4:74:10:11:a9: 29:78:a1:fd:bd:e4:60:3b:02:4f:ae:9c:e0:57:45:17:8b:95: 56:15:83:2b:32:1d:b3:bb:10:4b:34:e1:db:b3:b0:cb:45:f6: 4e:b6:b3:17:d8:80:25:68:30:49:f2:4a:9f:a1:3e:34:bc:07: 27:5d:0c:8d:54:27:d0:2a:e7:2a:b0:f2:c0:69:14:08:53:53: 05:24:f7:e1:f2:61:75:cb:af:83:9d:39:e3:f0:ba:57:08:b4: 73:8e:24:51:f3:5e:c7:fd:8a:21:8a:08:51:50:fd:e6:e5:94: 04:5f:2f:4f:b1:ca:d9:e0:7d:4a:e6:4b:04:43:e7:ee:fb:c5: c2:eb:2b:58:dd:13:ee:d4:76:3d:4a:5c:4c:de:07:40:fb:27: 18:45:ff:5f:e8:f6:cf:9d:cd:97:6b:f1:22:04:01:a9:33:4f: b4:ac:d9:70:be:b4:29:43:74:45:ff:0c:40:20:43:d7:2c:96: 8a:c6:15:ad:ff:bf:31:c5:20:fc:4c:c2:7b:c4:53:ce:e9:0d: 1f:64:ab:0d:c1:fe:35:44:31:88:12:48:b4:b6:ea:17:8b:68: d7:6b:d9:ce:12:28:a9:a8:72:58:d6:ca:a0:58:d6:67:8a:e7: 14:df:0e:7c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTVFNTExMC8GA1UEBRMoNjkyMzZFNTk5NjMwMEEyRkQ3ODVFRjg1NzgzQzVDMjlD NUI0RTg3NDAeFw0yNDEyMDExNzA5NTRaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGM5ODYxLTZhZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMYTeiNmNFJ6RkcL2S9rLOymIEQyZcr/4gFDi0xke2qJKKIn9EdAwmHR3rJes5 fSwif03VE5oSgRTR6YGTQ8cf/OvZ1QB+RTKINWhMcX5uktbqF6+vwMIULLjVB9Q4 WEwUB/6mONIuy4woQX0HkqaaPRiBIRB7DtrOoxViPPifejiVEF9zbY28kgf2XFkO NAKlDGmUOJO/b5/ck4HrWNzUBHhT2e6s2DHGcikKugC6TbSsHxCgb/EF8vJU+P7p gUfwnyjluw19dYojmjFRhxnfSpwJy9gGqs4+Yv0jfK9P/hfriaFFpvtJVUedK5tp goPhreN3XobQAb0sR5UXgZajAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBaNOwgDY a83pDOVM+1cfWMQ2z8QwHwYDVR0jBBgwFoAUaSNuWZYwCi/Xhe+FeDxcKcW06HQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFNUU1L0YwRTc2RTEyQUZC RjExRUZBMjhBMzY1NEM0RjlBRTAyL2FTTnVXWll3Q2lfWGhlLUZlRHhjS2NXMDZI US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYVNOdVdaWXdDaV9YaGUtRmVEeGNLY1cwNkhRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GMEU3NkUxMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi8xNTA2QjI5OEIw MDcxMUVGODYzQTU4MkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/nDANBgkqhkiG9w0BAQsFAAOCAQEAUrYZpRn1691X+QGw Y+R0EBGpKXih/b3kYDsCT66c4FdFF4uVVhWDKzIds7sQSzTh27Owy0X2TrazF9iA JWgwSfJKn6E+NLwHJ10MjVQn0CrnKrDywGkUCFNTBST34fJhdcuvg5054/C6Vwi0 c44kUfNex/2KIYoIUVD95uWUBF8vT7HK2eB9SuZLBEPn7vvFwusrWN0T7tR2PUpc TN4HQPsnGEX/X+j2z53Nl2vxIgQBqTNPtKzZcL60KUN0Rf8MQCBD1yyWisYVrf+/ McUg/EzCe8RTzukNH2SrDcH+NUQxiBJItLbqF4to12vZzhIoqahyWNbKoFjWZ4rn FN8OfA== -----END CERTIFICATE-----Generated at Wed Feb 5 23:04:09 2025 by rpki-client