$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/607B5F6AB05411EF84C8DC74C4F9AE02.roa File: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (raw, json) Hash identifier: OnMDRT+B6RI2pySK/GT7zK6sSZU+o29fnWCK2xZrKx8= Subject key identifier: 8D:9C:38:94:F6:BC:1B:9A:F3:11:14:35:6B:13:7C:77:C2:F7:BC:71 Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: 02 Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/607B5F6AB05411EF84C8DC74C4F9AE02.roa Signing time: Mon 02 Dec 2024 02:23:12 +0000 ROA not before: Mon 02 Dec 2024 02:23:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138391 IP address blocks: 160.187.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Dec 2 02:23:12 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=674d1a0f-842c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cd:76:d8:82:5c:e6:fc:26:05:51:bd:28:e6: b7:d8:be:37:07:cc:41:98:c4:7e:ce:06:e1:d8:13: 9f:74:23:7b:a0:75:a2:c1:21:d4:ae:c6:dc:b3:d8: 29:41:5b:34:c1:e8:99:ab:c1:3a:e2:25:2f:36:1f: 40:6e:2a:d9:01:d0:36:67:5c:32:02:0a:c2:39:da: b6:69:39:1c:2c:b6:24:9e:d7:de:b2:c9:43:53:2b: 76:dc:2a:10:b8:94:e8:1a:97:a0:37:4c:3f:9c:df: 67:0d:42:ec:55:c8:fd:c8:b1:66:3a:45:e2:7d:b0: ae:c4:fe:a0:d9:5d:3e:de:20:d0:a8:6e:93:6c:e6: 6e:2b:ec:f6:32:86:e3:d3:6c:77:93:9f:27:d1:39: 24:40:c2:7e:23:f9:3f:31:38:26:c7:26:cc:98:d7: 15:ca:dc:3d:94:51:2a:1d:36:43:1f:36:ea:c2:c4: ed:1d:78:3e:f7:cb:ab:8a:70:d0:bc:a8:b3:dd:c5: a7:da:e6:6c:3b:44:49:22:33:a5:6e:39:3f:05:40: 15:65:8e:b3:36:a1:97:17:fc:aa:87:69:3b:f1:09: 40:28:a6:f6:c7:a5:ba:53:46:5d:da:d6:dd:36:c1: 90:10:1d:04:5e:1f:0d:36:8d:1d:7a:63:0a:ba:e6: de:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:9C:38:94:F6:BC:1B:9A:F3:11:14:35:6B:13:7C:77:C2:F7:BC:71 X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/607B5F6AB05411EF84C8DC74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.133.0/24 Signature Algorithm: sha256WithRSAEncryption 21:69:aa:cf:38:06:f0:6b:56:fb:a2:68:66:ae:13:03:5a:9e: b4:56:47:f8:40:57:5c:2f:45:61:ba:25:80:54:19:2a:f5:22: 7d:80:f5:2b:2c:cc:cd:0c:28:b2:0d:3e:4f:dc:70:5e:3a:de: c7:b4:9f:ab:75:f6:57:0b:46:d9:5a:97:63:c8:46:0b:c0:dd: 52:4f:d8:70:20:49:83:04:61:48:c9:b3:cd:2e:ac:20:8f:64: a3:83:4a:05:83:88:80:c7:36:60:fa:b7:de:49:75:ad:75:e2: 02:47:30:ae:ff:35:15:37:52:f7:c4:10:05:1a:13:26:18:8f: ee:4c:fb:2c:b2:3f:03:6c:50:b7:3b:68:29:a2:63:e9:d9:21: 58:8d:b7:9b:74:7d:4a:f2:e4:a3:f4:d3:5c:1c:19:2e:12:a4: a4:79:a1:6e:7b:fc:97:24:1f:9a:a9:20:11:e2:2c:21:89:11: 35:c9:39:47:32:bf:69:64:34:49:27:b6:0f:30:fb:f8:b2:b2: 05:2e:24:a5:ce:8f:ff:ca:84:02:49:1d:20:b9:5f:80:ce:5f: 49:54:75:22:dc:5e:08:1a:ca:b1:22:80:a7:b5:36:33:b9:36: 74:68:cd:f9:0b:f1:77:a8:5b:8c:2b:ca:63:0e:e6:a3:e0:90: 4c:6e:8a:f6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTIzRjExMC8GA1UEBRMoMkE1OUI5NkMzMEE1NUZCRDYxRDIyMzAzNzNDRUI4OUQx REIwMUE4QjAeFw0yNDEyMDIwMjIzMTJaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGQxYTBmLTg0MmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXzXbYglzm/CYFUb0o5rfYvjcHzEGYxH7OBuHYE590I3ugdaLBIdSuxtyz2ClB WzTB6JmrwTriJS82H0BuKtkB0DZnXDICCsI52rZpORwstiSe196yyUNTK3bcKhC4 lOgal6A3TD+c32cNQuxVyP3IsWY6ReJ9sK7E/qDZXT7eINCobpNs5m4r7PYyhuPT bHeTnyfROSRAwn4j+T8xOCbHJsyY1xXK3D2UUSodNkMfNurCxO0deD73y6uKcNC8 qLPdxafa5mw7REkiM6VuOT8FQBVljrM2oZcX/KqHaTvxCUAopvbHpbpTRl3a1t02 wZAQHQReHw02jR16Ywq65t6xAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjZw4lPa8 G5rzERQ1axN8d8L3vHEwHwYDVR0jBBgwFoAUKlm5bDClX71h0iMDc864nR2wGosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1MjNGLzRFQkE2QjMyQjA1 MzExRUY5QzJCOEQzRkM0RjlBRTAyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2xtNWJEQ2xYNzFoMGlNRGM4NjRuUjJ3R29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi82MDdCNUY2QUIw NTQxMUVGODRDOERDNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7hTANBgkqhkiG9w0BAQsFAAOCAQEAIWmqzzgG8GtW+6Jo Zq4TA1qetFZH+EBXXC9FYbolgFQZKvUifYD1KyzMzQwosg0+T9xwXjrex7Sfq3X2 VwtG2VqXY8hGC8DdUk/YcCBJgwRhSMmzzS6sII9ko4NKBYOIgMc2YPq33kl1rXXi Akcwrv81FTdS98QQBRoTJhiP7kz7LLI/A2xQtztoKaJj6dkhWI23m3R9SvLko/TT XBwZLhKkpHmhbnv8lyQfmqkgEeIsIYkRNck5RzK/aWQ0SSe2DzD7+LKyBS4kpc6P /8qEAkkdILlfgM5fSVR1ItxeCBrKsSKAp7U2M7k2dGjN+Qvxd6hbjCvKYw7mo+CQ TG6K9g== -----END CERTIFICATE-----Generated at Fri Dec 27 07:44:02 2024 by rpki-client on console-ams.rpki-client.org