$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/1E110D7E1DA011EFBC90D55EC4F9AE02.roa File: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (raw, json) Hash identifier: sXijOKbCJmo7Vc9siLjMj6vbNj9IjkbsFg/cetJYPUA= Subject key identifier: 67:B1:9E:EC:09:DC:35:62:04:B7:C1:7E:B5:7E:B0:7A:1C:EA:A8:E5 Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: 02 Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/1E110D7E1DA011EFBC90D55EC4F9AE02.roa Signing time: Wed 29 May 2024 09:45:01 +0000 ROA not before: Wed 29 May 2024 09:45:01 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152882 IP address blocks: 160.20.132.0/24 maxlen: 24 160.20.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091 Validity Not Before: May 29 09:45:01 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6656f91d-8683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:34:68:3e:6f:58:04:78:65:d9:00:fc:78:f1: c9:8d:86:55:74:7c:b8:f5:14:b7:ed:35:f4:cf:e6: 6b:06:18:8f:52:dd:c1:c7:d8:10:86:50:2f:66:f0: 42:c4:b2:f2:b4:05:8a:72:b4:6c:f7:94:bf:90:c5: 0d:7d:7a:95:ee:58:22:6c:1a:9a:43:0a:56:b8:82: 4f:13:3a:e6:09:8d:b1:a2:f5:18:d9:e8:e6:04:98: ac:4b:ed:a5:5f:5c:f4:6d:9e:27:89:09:ab:cf:02: b4:ac:60:81:53:3f:82:e1:fb:ad:bb:62:fe:09:7b: e2:38:46:de:90:ff:b7:4f:5b:b0:75:89:e4:ef:85: 3d:fd:8d:e4:0f:25:2c:33:d8:36:82:7f:ae:63:9b: 42:2d:c1:88:1d:ec:3f:7e:17:64:f6:55:33:e5:98: 0c:e1:e1:90:f5:3b:64:d4:b8:d8:8c:ed:05:b8:33: 6e:d7:80:ba:a9:50:c5:94:6e:8d:d7:c7:24:1d:bf: 0d:8a:8c:43:66:6a:8b:fe:fe:8d:23:bb:17:0d:2e: 1c:9c:35:d6:99:74:e6:b0:e5:22:f7:9b:c5:81:6d: c6:e8:a2:4b:80:32:c0:81:8c:33:84:a3:d7:1e:fc: de:3a:09:2c:a4:e7:81:01:4e:7f:05:ce:57:1e:bf: 4f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B1:9E:EC:09:DC:35:62:04:B7:C1:7E:B5:7E:B0:7A:1C:EA:A8:E5 X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/1E110D7E1DA011EFBC90D55EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.132.0/23 Signature Algorithm: sha256WithRSAEncryption 84:c0:8b:70:84:f5:e3:db:0c:76:27:98:94:ef:5a:5a:63:8c: 05:4c:6f:70:35:72:9f:35:47:e0:4e:44:6d:1b:44:f4:91:86: 8f:17:ce:24:6c:e8:af:81:79:a3:27:c5:58:96:2d:fa:c4:59: b2:b2:fd:b5:d8:68:2a:8e:7f:cc:ec:75:05:fa:e5:a4:47:34: 5d:5f:1d:18:b5:41:0b:9b:09:0c:33:41:d2:17:b0:4c:df:f9: 92:bf:13:4b:4b:1e:9d:31:6f:54:f9:41:83:36:3a:54:a2:8c: 51:47:1b:3b:d0:c7:0b:42:45:78:d1:22:e5:d9:e2:d3:0d:96: 0d:15:0b:0d:de:2a:d6:fb:7f:c2:5f:42:30:7f:64:8a:88:5c: 02:22:1e:cb:ca:bc:08:c6:01:7d:aa:44:be:ea:38:3e:3e:8a: 07:4e:65:65:7b:0a:87:36:98:47:b9:4b:70:2f:98:1d:b3:b6: 08:ba:43:ed:be:63:18:cf:b5:aa:15:8d:76:65:50:b2:08:9f: 77:20:d9:4a:a1:95:7d:17:c6:1c:8b:0a:55:49:fd:a2:93:f2: 09:5f:79:64:dd:38:cc:2f:fc:d8:aa:3c:b9:2e:19:85:da:1c: 28:fa:d7:ee:f8:64:80:c0:46:74:fd:e1:88:f9:fd:ad:ad:86: 85:8f:9a:fe -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDA5MTExMC8GA1UEBRMoODNDOTAxNTFCRTE3ODIxNEZDMTY3NTgzMzREM0I2RDUy NzdBM0NCRjAeFw0yNDA1MjkwOTQ1MDFaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTZmOTFkLTg2ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0NGg+b1gEeGXZAPx48cmNhlV0fLj1FLftNfTP5msGGI9S3cHH2BCGUC9m8ELE svK0BYpytGz3lL+QxQ19epXuWCJsGppDCla4gk8TOuYJjbGi9RjZ6OYEmKxL7aVf XPRtnieJCavPArSsYIFTP4Lh+627Yv4Je+I4Rt6Q/7dPW7B1ieTvhT39jeQPJSwz 2DaCf65jm0ItwYgd7D9+F2T2VTPlmAzh4ZD1O2TUuNiM7QW4M27XgLqpUMWUbo3X xyQdvw2KjENmaov+/o0juxcNLhycNdaZdOaw5SL3m8WBbcbookuAMsCBjDOEo9ce /N46CSyk54EBTn8Fzlcev0/jAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZ7Ge7Anc NWIEt8F+tX6wehzqqOUwHwYDVR0jBBgwFoAUg8kBUb4XghT8FnWDNNO21Sd6PL8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MDkxLzVBMTE2QkFBMUQ5 RDExRUZBMTBGMkQzQUM0RjlBRTAyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBM OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZzhrQlViNFhnaFQ4Rm5XRE5OTzIxU2Q2UEw4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi8xRTExMEQ3RTFE QTAxMUVGQkM5MEQ1NUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAUhDANBgkqhkiG9w0BAQsFAAOCAQEAhMCLcIT149sMdieY lO9aWmOMBUxvcDVynzVH4E5EbRtE9JGGjxfOJGzor4F5oyfFWJYt+sRZsrL9tdho Ko5/zOx1BfrlpEc0XV8dGLVBC5sJDDNB0hewTN/5kr8TS0senTFvVPlBgzY6VKKM UUcbO9DHC0JFeNEi5dni0w2WDRULDd4q1vt/wl9CMH9kiohcAiIey8q8CMYBfapE vuo4Pj6KB05lZXsKhzaYR7lLcC+YHbO2CLpD7b5jGM+1qhWNdmVQsgifdyDZSqGV fRfGHIsKVUn9opPyCV95ZN04zC/82Ko8uS4ZhdocKPrX7vhkgMBGdP3hiPn9ra2G hY+a/g== -----END CERTIFICATE-----Generated at Wed Feb 19 20:33:31 2025 by rpki-client