$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/CCEAF60C911311EFA9C63854C4F9AE02.roa File: CCEAF60C911311EFA9C63854C4F9AE02.roa (raw, json) Hash identifier: lpawVFjrLTQaiIY8ph0aOBiFjAIuxDOp5nWen5zsXsU= Subject key identifier: C2:12:0E:B1:02:B4:0C:52:CF:E9:F8:D8:C3:1A:5B:ED:F3:9F:6D:B1 Certificate issuer: /CN=A91EFCFF/serialNumber=E8D6D421282B9019000097761A2563223CA7815E Certificate serial: 0D Authority key identifier: E8:D6:D4:21:28:2B:90:19:00:00:97:76:1A:25:63:22:3C:A7:81:5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6NbUISgrkBkAAJd2GiVjIjyngV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/CCEAF60C911311EFA9C63854C4F9AE02.roa Signing time: Wed 23 Oct 2024 07:52:50 +0000 ROA not before: Wed 23 Oct 2024 07:52:50 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142165 IP address blocks: 160.30.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/6NbUISgrkBkAAJd2GiVjIjyngV4.crl rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/6NbUISgrkBkAAJd2GiVjIjyngV4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6NbUISgrkBkAAJd2GiVjIjyngV4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFCFF/serialNumber=E8D6D421282B9019000097761A2563223CA7815E Validity Not Before: Oct 23 07:52:50 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6718ab52-5ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:19:bc:5b:ea:d6:9e:b7:5d:b3:30:5f:ab:50: 1d:d5:b6:1b:9f:1c:34:82:77:51:6b:31:e9:79:2e: 3f:d7:f9:fc:0c:96:8a:17:1f:82:e4:f8:b8:2e:21: 24:49:ba:ed:84:b1:b2:dc:db:6c:ab:bf:80:8c:ea: af:29:d5:4d:02:0c:d3:a7:f4:4b:87:a7:59:9d:3c: 45:97:20:94:ff:1c:f5:d1:c5:a7:f5:cc:4b:f0:e4: 01:69:bc:b0:a4:16:36:ab:e0:d9:16:37:3e:16:86: 4b:ab:84:f9:e5:44:95:5f:c2:5b:4d:ab:77:44:0d: 94:fe:b6:1f:08:a6:ac:8d:ca:90:d0:76:15:04:77: 95:68:53:e8:38:79:43:01:8b:b2:13:d9:92:6d:4d: 09:37:d1:dd:90:8f:af:42:05:fa:dd:7a:d7:58:e5: 1f:27:67:a0:7a:be:b7:6e:0c:3f:14:e9:de:5e:a9: 07:9d:7f:43:04:1c:a0:b6:1c:4a:c7:8b:2b:e8:5a: c2:4f:cb:30:12:fa:f1:66:ec:34:ff:a2:d0:26:6b: de:59:cf:87:4f:00:21:aa:8d:cf:2a:09:8e:c2:02: 35:fd:c2:b5:09:99:c7:93:43:69:d9:9a:fd:0e:c5: 13:04:70:9d:51:26:63:e8:2d:23:d8:91:35:35:82: 5e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:12:0E:B1:02:B4:0C:52:CF:E9:F8:D8:C3:1A:5B:ED:F3:9F:6D:B1 X509v3 Authority Key Identifier: keyid:E8:D6:D4:21:28:2B:90:19:00:00:97:76:1A:25:63:22:3C:A7:81:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/6NbUISgrkBkAAJd2GiVjIjyngV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6NbUISgrkBkAAJd2GiVjIjyngV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/CCEAF60C911311EFA9C63854C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.228.0/24 Signature Algorithm: sha256WithRSAEncryption 38:f4:bd:ab:fd:17:f5:3c:40:d1:e7:5a:63:a7:a5:b9:56:e3: db:9d:c9:e9:21:4c:bf:0e:02:c9:eb:f3:7a:8d:9c:d5:14:62: f9:c2:2d:50:f4:e2:b0:67:e4:49:da:0e:9d:82:93:fe:0b:58: 21:ed:cf:44:93:f8:6d:19:ee:38:c8:47:38:60:46:86:96:dc: 33:72:bf:ff:e2:52:6c:5a:1e:0e:3a:76:d8:1c:a2:0b:a5:46: 28:5d:59:e4:d3:7c:8f:c4:d8:d8:08:83:b0:2e:f4:f8:b4:bb: f5:e8:8e:70:d4:dc:e4:40:65:57:ad:16:08:56:49:01:b7:2a: 0b:25:7a:de:d7:e0:28:8b:01:f4:06:a4:75:bf:35:f0:af:56: b3:62:57:04:4f:3a:7e:bc:57:93:58:8f:33:7c:0a:81:ad:1a: fa:02:18:4d:e1:47:89:37:cd:a5:d1:e4:03:01:f5:e4:0a:fb: c8:f1:3a:9d:a7:14:e3:d8:7c:73:84:dc:1e:ec:06:6b:ed:62: 70:53:48:bb:dd:d3:2c:eb:ac:a7:96:82:70:df:1a:21:88:43: 19:d1:a4:bd:8e:d6:6d:88:5f:bb:71:9d:75:f1:d4:22:3c:70: d8:96:d3:e5:c6:92:8c:c9:49:51:cd:3d:64:72:75:63:01:b4: 7c:93:fa:8b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RkNGRjExMC8GA1UEBRMoRThENkQ0MjEyODJCOTAxOTAwMDA5Nzc2MUEyNTYzMjIz Q0E3ODE1RTAeFw0yNDEwMjMwNzUyNTBaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MThhYjUyLTVlYzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYGbxb6taet12zMF+rUB3VthufHDSCd1FrMel5Lj/X+fwMlooXH4Lk+LguISRJ uu2EsbLc22yrv4CM6q8p1U0CDNOn9EuHp1mdPEWXIJT/HPXRxaf1zEvw5AFpvLCk Fjar4NkWNz4WhkurhPnlRJVfwltNq3dEDZT+th8IpqyNypDQdhUEd5VoU+g4eUMB i7IT2ZJtTQk30d2Qj69CBfrdetdY5R8nZ6B6vrduDD8U6d5eqQedf0MEHKC2HErH iyvoWsJPyzAS+vFm7DT/otAma95Zz4dPACGqjc8qCY7CAjX9wrUJmceTQ2nZmv0O xRMEcJ1RJmPoLSPYkTU1gl4bAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUwhIOsQK0 DFLP6fjYwxpb7fOfbbEwHwYDVR0jBBgwFoAU6NbUISgrkBkAAJd2GiVjIjyngV4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGQ0ZGLzBGQTg1Rjg4ODIx RjExRUZBMURCNEM3NUM0RjlBRTAyLzZOYlVJU2dya0JrQUFKZDJHaVZqSWp5bmdW NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNk5iVUlTZ3JrQmtBQUpkMkdpVmpJanluZ1Y0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkNGRi8wRkE4NUY4ODgyMUYxMUVGQTFEQjRDNzVDNEY5QUUwMi9DQ0VBRjYwQzkx MTMxMUVGQTlDNjM4NTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAe5DANBgkqhkiG9w0BAQsFAAOCAQEAOPS9q/0X9TxA0eda Y6eluVbj253J6SFMvw4Cyevzeo2c1RRi+cItUPTisGfkSdoOnYKT/gtYIe3PRJP4 bRnuOMhHOGBGhpbcM3K//+JSbFoeDjp22ByiC6VGKF1Z5NN8j8TY2AiDsC70+LS7 9eiOcNTc5EBlV60WCFZJAbcqCyV63tfgKIsB9Aakdb818K9Ws2JXBE86frxXk1iP M3wKga0a+gIYTeFHiTfNpdHkAwH15Ar7yPE6nacU49h8c4TcHuwGa+1icFNIu93T LOusp5aCcN8aIYhDGdGkvY7WbYhfu3GddfHUIjxw2JbT5caSjMlJUc09ZHJ1YwG0 fJP6iw== -----END CERTIFICATE-----Generated at Wed Oct 23 09:59:05 2024 by rpki-client on console-ams.rpki-client.org