$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/0CBC987AA27211EFB7421B1EC4F9AE02.roa File: 0CBC987AA27211EFB7421B1EC4F9AE02.roa (raw, json) Hash identifier: RDmd6ogp6YGmarDu8N07ODFZoFOiCGDHnbF6uT6D6Tc= Subject key identifier: E0:56:C9:85:5F:9D:1E:0A:A8:A6:7D:F1:D2:F8:B4:08:93:CA:26:85 Certificate issuer: /CN=A91F7537/serialNumber=DF5FE21B7C955215934471794D8B070663D2B34E Certificate serial: 02 Authority key identifier: DF:5F:E2:1B:7C:95:52:15:93:44:71:79:4D:8B:07:06:63:D2:B3:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/0CBC987AA27211EFB7421B1EC4F9AE02.roa Signing time: Thu 14 Nov 2024 10:20:20 +0000 ROA not before: Thu 14 Nov 2024 10:20:20 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153456 IP address blocks: 160.250.8.0/23 maxlen: 23 160.250.8.0/24 maxlen: 24 160.250.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.crl rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537/serialNumber=DF5FE21B7C955215934471794D8B070663D2B34E Validity Not Before: Nov 14 10:20:20 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6735cee3-cf7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:15:42:14:88:68:00:2d:44:c2:c8:d5:90:8e: 3e:88:86:88:84:3e:c6:8c:67:b4:1f:d5:35:e4:be: 89:62:f4:23:48:b5:69:e1:bb:f4:dd:76:b5:57:40: ef:56:2b:49:d7:58:ca:8e:77:55:d1:ab:41:ac:e9: 98:dc:1a:c4:56:ed:46:f3:bd:45:a9:bd:84:42:18: ab:49:79:8f:d2:0a:99:3a:c0:40:57:94:14:92:af: 05:75:fc:2f:4e:6e:ec:9d:63:cf:da:16:c8:56:cb: 7e:91:1a:37:52:01:b1:dd:89:3a:97:98:05:72:f4: 50:64:ab:51:5a:e1:e8:bf:20:41:00:48:e6:9b:3f: cb:21:f9:a2:74:96:46:1c:d5:47:e8:63:62:dc:02: 6d:24:82:a2:12:5b:3e:2d:6f:1a:25:d0:b5:00:57: e0:d2:b0:53:80:c6:0f:3c:f0:64:3b:9a:d6:cf:e7: c8:f7:99:9d:70:e1:79:9e:6f:90:ec:04:31:c7:e8: 31:d4:46:15:2a:1d:2a:5c:3a:c1:90:24:31:2f:97: bc:69:fc:91:fd:af:a3:da:c5:65:2e:52:19:9e:52: b1:14:8b:dd:9c:c6:47:85:68:1a:be:13:5b:21:a6: 09:04:45:7c:5f:f5:6a:98:2f:65:2c:8b:5f:41:0d: 98:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:56:C9:85:5F:9D:1E:0A:A8:A6:7D:F1:D2:F8:B4:08:93:CA:26:85 X509v3 Authority Key Identifier: keyid:DF:5F:E2:1B:7C:95:52:15:93:44:71:79:4D:8B:07:06:63:D2:B3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/0CBC987AA27211EFB7421B1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.8.0/23 Signature Algorithm: sha256WithRSAEncryption 57:1e:8f:85:71:35:26:7d:ff:7d:a1:c3:44:61:30:87:ba:fd: 2e:38:51:da:53:57:8b:fe:cd:c7:9c:58:b9:7d:f4:ef:f7:29: 3b:aa:f7:d0:26:b7:cc:39:f5:39:4a:bb:cc:ed:b6:9f:3f:63: 1f:de:e1:49:d2:c2:2d:64:14:09:bb:7b:48:71:43:36:9e:b4: e7:ae:26:7e:3e:59:fd:af:e6:08:99:5d:b0:56:c9:28:43:9b: e5:f2:6f:46:1b:b2:8e:6c:34:1d:20:8b:c0:36:af:a5:7f:d9: 7f:30:28:66:d9:bb:62:09:15:b2:49:12:9e:9e:98:a0:a5:65: fc:3a:a2:64:e5:9b:eb:e2:02:9b:10:a0:0d:d8:eb:e8:57:be: 76:ca:43:3e:88:db:66:3e:0f:9e:2d:50:e1:f1:d6:88:ee:27: 78:3a:b9:96:62:22:c1:ef:7b:ee:2a:93:dc:85:3f:e0:bc:b3: 23:22:f1:fd:de:88:3c:5f:ed:78:43:89:46:7e:e2:21:8b:08: a1:56:78:9d:69:18:d1:92:97:93:dd:91:24:7a:7c:b2:37:e6: 2f:f0:5c:9c:d7:6d:69:80:b7:d3:dd:7e:4a:ae:84:b7:1c:da: 86:0e:b8:e5:8a:a1:44:7b:fc:dc:d5:b3:8f:78:0c:63:90:5d: 19:e0:d7:1e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzUzNzExMC8GA1UEBRMoREY1RkUyMUI3Qzk1NTIxNTkzNDQ3MTc5NEQ4QjA3MDY2 M0QyQjM0RTAeFw0yNDExMTQxMDIwMjBaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzVjZWUzLWNmN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChFUIUiGgALUTCyNWQjj6IhoiEPsaMZ7Qf1TXkvoli9CNItWnhu/TddrVXQO9W K0nXWMqOd1XRq0Gs6ZjcGsRW7UbzvUWpvYRCGKtJeY/SCpk6wEBXlBSSrwV1/C9O buydY8/aFshWy36RGjdSAbHdiTqXmAVy9FBkq1Fa4ei/IEEASOabP8sh+aJ0lkYc 1UfoY2LcAm0kgqISWz4tbxol0LUAV+DSsFOAxg888GQ7mtbP58j3mZ1w4Xmeb5Ds BDHH6DHURhUqHSpcOsGQJDEvl7xp/JH9r6PaxWUuUhmeUrEUi92cxkeFaBq+E1sh pgkERXxf9WqYL2Usi19BDZg/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4FbJhV+d Hgqopn3x0vi0CJPKJoUwHwYDVR0jBBgwFoAU31/iG3yVUhWTRHF5TYsHBmPSs04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3NTM3LzgwMkFFNjQ2QTI3 MTExRUZBMzkyRjA3OUM0RjlBRTAyLzMxX2lHM3lWVWhXVFJIRjVUWXNIQm1QU3Mw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMzFfaUczeVZVaFdUUkhGNVRZc0hCbVBTczA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzUzNy84MDJBRTY0NkEyNzExMUVGQTM5MkYwNzlDNEY5QUUwMi8wQ0JDOTg3QUEy NzIxMUVGQjc0MjFCMUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6CDANBgkqhkiG9w0BAQsFAAOCAQEAVx6PhXE1Jn3/faHD RGEwh7r9LjhR2lNXi/7Nx5xYuX307/cpO6r30Ca3zDn1OUq7zO22nz9jH97hSdLC LWQUCbt7SHFDNp60564mfj5Z/a/mCJldsFbJKEOb5fJvRhuyjmw0HSCLwDavpX/Z fzAoZtm7YgkVskkSnp6YoKVl/DqiZOWb6+ICmxCgDdjr6Fe+dspDPojbZj4Pni1Q 4fHWiO4neDq5lmIiwe977iqT3IU/4LyzIyLx/d6IPF/teEOJRn7iIYsIoVZ4nWkY 0ZKXk92RJHp8sjfmL/BcnNdtaYC3091+Sq6Etxzahg645YqhRHv83NWzj3gMY5Bd GeDXHg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:40 2024 by rpki-client on console-ams.rpki-client.org