$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/D79D112E6C7F11EF92105459C4F9AE02.roa File: D79D112E6C7F11EF92105459C4F9AE02.roa (raw, json) Hash identifier: HfxBV0ZJ9ixuR1eesZIIiZUZrrfXBYTU4Z7Ry5c0lbg= Subject key identifier: 49:DE:58:1D:D9:E1:F7:76:59:27:E2:2E:31:23:2E:40:26:F5:AE:60 Certificate issuer: /CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Certificate serial: 02 Authority key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/D79D112E6C7F11EF92105459C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:43:01 +0000 ROA not before: Fri 06 Sep 2024 18:43:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153175 IP address blocks: 160.30.26.0/24 maxlen: 24 160.30.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Validity Not Before: Sep 6 18:43:00 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66db4d34-1bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:56:7d:ec:31:28:90:74:8f:6f:a1:ba:4f:01: 80:52:27:0c:51:0c:10:8a:25:97:d2:ed:8d:18:12: 40:b2:1e:ad:f2:a4:0c:e8:87:86:15:d1:42:b5:dd: 4b:62:eb:b6:a8:e6:fe:02:64:3a:7b:1b:46:bd:f6: 44:41:3a:b1:d5:04:66:38:bd:8c:62:9c:1f:ec:5d: fb:29:f0:00:6c:79:e4:03:f0:19:b6:f7:f3:c5:cc: f7:cd:93:b1:7b:aa:95:ba:09:a7:b3:7b:da:0f:77: ea:a0:03:b7:b4:e8:3b:8b:68:91:d4:81:81:0f:d2: 8d:fa:9c:57:3f:24:70:f4:a2:11:20:fb:02:58:f9: 69:4a:c7:84:54:1f:8f:79:7c:39:60:0f:79:a7:50: 5e:9a:9e:7a:0e:ad:19:fe:fb:0b:01:8b:cb:fe:f3: 82:27:36:b2:db:85:81:eb:6e:1a:c3:f2:d6:76:0e: a8:1b:bd:a6:cf:8c:80:95:42:47:cb:40:10:d0:e7: 5f:3a:25:a9:23:91:0d:d9:f6:43:e2:0b:50:b5:6e: e7:ce:ed:2b:23:f0:fb:82:36:f5:3e:2b:6a:71:f4: 85:74:80:d5:e7:6c:a3:a2:13:fe:93:a3:c9:40:b9: e9:3f:4a:09:f6:5e:15:40:34:d1:9c:44:94:9c:fa: 8e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:DE:58:1D:D9:E1:F7:76:59:27:E2:2E:31:23:2E:40:26:F5:AE:60 X509v3 Authority Key Identifier: keyid:52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/D79D112E6C7F11EF92105459C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.26.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:d1:9e:a4:ce:52:fc:05:e5:2f:a7:ff:04:77:67:eb:50:67: 43:f7:54:b8:56:ab:e7:b4:dd:04:4d:51:b6:0a:37:c7:b9:0a: 8f:ad:80:01:7e:13:aa:8a:2e:8c:11:16:df:04:e2:1b:a7:70: 05:f1:e1:9b:ea:fe:59:e5:b6:51:89:13:7f:d8:ab:3e:6f:92: 50:94:0a:5f:3c:b9:f8:3c:6b:23:0e:07:1c:82:5e:22:6f:cb: 1f:7b:61:40:85:4e:5b:3e:41:24:59:f7:86:58:2b:a4:04:05: a3:c7:8d:2b:a4:d6:ce:d2:5e:f2:76:93:5b:96:9c:cc:94:3d: 2d:dd:b4:06:e3:59:b2:19:ce:50:ce:e0:2a:04:fe:db:11:3c: 7a:67:17:75:93:bd:5f:15:3f:8e:66:d0:64:ba:7c:51:5e:10: c4:c7:d0:5e:b7:37:f7:ce:e4:73:a5:39:89:ae:74:1e:c2:97: 36:2f:85:fd:a0:9b:c8:80:48:33:19:4a:ea:2f:69:e5:04:2a: 4d:6d:b4:aa:6a:62:b6:9d:e5:d3:ea:70:df:b5:9a:9c:7a:cc: 3f:53:90:88:29:d8:ae:22:a5:0b:0c:97:4c:78:ef:7b:03:10: 39:7d:d3:cf:0a:b3:9f:e5:18:e1:01:c6:27:25:41:85:88:21: 67:57:a2:0c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODk4MTExMC8GA1UEBRMoNTIwQkE5NENEMEZCOUU3QzE0MERGQkMwQ0M1OEI5M0NG NTRDMjJGMzAeFw0yNDA5MDYxODQzMDBaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGI0ZDM0LTFiZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAVn3sMSiQdI9vobpPAYBSJwxRDBCKJZfS7Y0YEkCyHq3ypAzoh4YV0UK13Uti 67ao5v4CZDp7G0a99kRBOrHVBGY4vYxinB/sXfsp8ABseeQD8Bm29/PFzPfNk7F7 qpW6Caeze9oPd+qgA7e06DuLaJHUgYEP0o36nFc/JHD0ohEg+wJY+WlKx4RUH495 fDlgD3mnUF6annoOrRn++wsBi8v+84InNrLbhYHrbhrD8tZ2DqgbvabPjICVQkfL QBDQ5186JakjkQ3Z9kPiC1C1bufO7Ssj8PuCNvU+K2px9IV0gNXnbKOiE/6To8lA uek/Sgn2XhVANNGcRJSc+o6TAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSd5YHdnh 93ZZJ+IuMSMuQCb1rmAwHwYDVR0jBBgwFoAUUgupTND7nnwUDfvAzFi5PPVMIvMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OTgxLzFDRjZDRDc0NkM3 RjExRUY5MTREN0Q1N0M0RjlBRTAyL1VndXBUTkQ3bm53VURmdkF6Rmk1UFBWTUl2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVWd1cFRORDdubndVRGZ2QXpGaTVQUFZNSXZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8xQ0Y2Q0Q3NDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9ENzlEMTEyRTZD N0YxMUVGOTIxMDU0NTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAeGjANBgkqhkiG9w0BAQsFAAOCAQEAW9GepM5S/AXlL6f/ BHdn61BnQ/dUuFar57TdBE1Rtgo3x7kKj62AAX4TqooujBEW3wTiG6dwBfHhm+r+ WeW2UYkTf9irPm+SUJQKXzy5+DxrIw4HHIJeIm/LH3thQIVOWz5BJFn3hlgrpAQF o8eNK6TWztJe8naTW5aczJQ9Ld20BuNZshnOUM7gKgT+2xE8emcXdZO9XxU/jmbQ ZLp8UV4QxMfQXrc3987kc6U5ia50HsKXNi+F/aCbyIBIMxlK6i9p5QQqTW20qmpi tp3l0+pw37WanHrMP1OQiCnYriKlCwyXTHjvewMQOX3Tzwqzn+UY4QHGJyVBhYgh Z1eiDA== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:27 2024 by rpki-client on console-fra.rpki-client.org