$ rpki-client -vvf rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/85CDB6087C1211EF8E490677C4F9AE02.roa File: 85CDB6087C1211EF8E490677C4F9AE02.roa (raw, json) Hash identifier: KFCUhuojUE9z3vG4Nxdn/HgqQMitwPXfCwdmjU8xUaI= Subject key identifier: A7:92:CC:A7:22:F5:FB:87:B1:1C:27:B0:EC:55:6B:29:45:D2:EA:9A Certificate issuer: /CN=A915B50D/serialNumber=B7CF0B270A7FDB1D717AE8B979D1EE0FF88BD44F Certificate serial: 2B Authority key identifier: B7:CF:0B:27:0A:7F:DB:1D:71:7A:E8:B9:79:D1:EE:0F:F8:8B:D4:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t88LJwp_2x1xeui5edHuD_iL1E8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/85CDB6087C1211EF8E490677C4F9AE02.roa Signing time: Wed 04 Dec 2024 04:09:11 +0000 ROA not before: Wed 04 Dec 2024 04:09:11 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153042 IP address blocks: 160.25.18.0/24 maxlen: 24 160.250.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/t88LJwp_2x1xeui5edHuD_iL1E8.crl rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/t88LJwp_2x1xeui5edHuD_iL1E8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t88LJwp_2x1xeui5edHuD_iL1E8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 05:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B50D, serialNumber=B7CF0B270A7FDB1D717AE8B979D1EE0FF88BD44F Validity Not Before: Dec 4 04:09:11 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=674fd5e7-7b6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:56:4b:22:09:6d:a5:bf:42:3c:9e:32:0c:d8: 0b:48:5d:e1:1c:4a:57:61:4d:67:3a:99:a1:2e:4c: 08:0e:d9:af:3d:1d:d9:1d:02:65:5b:fe:c2:36:22: 3e:3e:c6:99:f1:75:54:40:4a:24:d9:4b:10:b3:80: f9:9d:18:de:53:57:fa:78:19:fb:a7:87:da:f2:72: 1e:80:c2:60:0a:2d:92:22:c0:c3:0c:52:44:ed:b4: 42:22:2a:58:68:a6:d3:d2:e6:d8:d6:bc:d8:82:c3: ee:bb:f2:2c:c0:bb:92:2d:f3:20:a4:98:76:df:20: 55:a4:a6:99:7f:39:40:65:39:f3:29:0a:5e:d6:35: 6f:83:66:2c:d3:76:05:47:1d:98:c5:55:84:41:06: 80:26:8d:10:11:c6:bb:05:bf:cb:01:fa:e5:75:03: a0:b8:2d:35:ce:e5:b3:cd:b4:25:c9:57:b0:da:65: 64:11:33:52:0c:56:67:b7:32:22:d5:1d:e5:fb:09: f1:90:40:6f:6e:69:cc:3b:dc:78:77:9e:42:ce:4d: 8c:78:e0:8a:04:9e:42:79:e5:14:18:c3:e9:58:7e: 24:0b:d3:33:bc:e2:89:41:76:5e:49:a5:79:fc:65: c1:61:8b:3b:b0:e1:99:15:b8:4e:73:fc:39:f4:1e: 12:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:92:CC:A7:22:F5:FB:87:B1:1C:27:B0:EC:55:6B:29:45:D2:EA:9A X509v3 Authority Key Identifier: keyid:B7:CF:0B:27:0A:7F:DB:1D:71:7A:E8:B9:79:D1:EE:0F:F8:8B:D4:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/t88LJwp_2x1xeui5edHuD_iL1E8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t88LJwp_2x1xeui5edHuD_iL1E8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/85CDB6087C1211EF8E490677C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.18.0/24 160.250.141.0/24 Signature Algorithm: sha256WithRSAEncryption 92:8d:ce:b9:33:b0:73:3b:90:82:df:8d:66:2b:e4:34:e5:57: 2b:e7:bf:2b:58:17:d4:5a:aa:92:33:d0:6d:a1:07:5f:04:e4: 35:75:77:ca:e9:1f:fd:7d:d4:c2:bc:8f:6a:fb:04:b5:04:a0: a8:19:b3:fd:41:7d:97:61:d0:ca:4a:b0:d0:8b:f6:14:e5:6f: e3:c8:db:01:85:0e:a0:7a:0c:aa:2a:93:5b:f6:8c:59:f2:02: a6:3d:80:57:b5:36:49:c1:8d:9e:bd:78:bf:78:7b:61:7d:0c: 1d:c8:a8:3b:2c:ea:d6:b7:76:f7:77:fa:a8:64:0e:f6:37:0d: dc:5a:35:ff:df:dd:e2:a8:84:9c:34:79:15:60:54:9c:3c:7d: f3:7c:e6:88:35:3b:0a:ed:db:9c:e2:c7:a5:84:b0:21:44:99: f8:58:1d:ac:e4:3e:ea:d1:f7:72:1a:c3:32:91:9c:9b:9d:31: 44:9a:c4:6d:c8:d1:73:1d:ed:7d:77:eb:91:01:57:c4:e0:c6: 51:35:07:42:12:c1:82:01:32:0e:b2:50:1a:03:72:db:ff:6a: 87:a0:f3:1e:9d:57:19:8a:43:86:0e:20:d4:ed:b4:83:e3:0e: 1d:e3:08:d5:6d:b7:78:9e:a7:79:14:51:34:0c:83:74:ba:54: 2c:26:c4:ff -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QjUwRDExMC8GA1UEBRMoQjdDRjBCMjcwQTdGREIxRDcxN0FFOEI5NzlEMUVFMEZG ODhCRDQ0RjAeFw0yNDEyMDQwNDA5MTFaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGZkNWU3LTdiNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrVksiCW2lv0I8njIM2AtIXeEcSldhTWc6maEuTAgO2a89HdkdAmVb/sI2Ij4+ xpnxdVRASiTZSxCzgPmdGN5TV/p4Gfunh9rych6AwmAKLZIiwMMMUkTttEIiKlho ptPS5tjWvNiCw+678izAu5It8yCkmHbfIFWkppl/OUBlOfMpCl7WNW+DZizTdgVH HZjFVYRBBoAmjRARxrsFv8sB+uV1A6C4LTXO5bPNtCXJV7DaZWQRM1IMVme3MiLV HeX7CfGQQG9uacw73Hh3nkLOTYx44IoEnkJ55RQYw+lYfiQL0zO84olBdl5JpXn8 ZcFhizuw4ZkVuE5z/Dn0HhLVAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUp5LMpyL1 +4exHCew7FVrKUXS6powHwYDVR0jBBgwFoAUt88LJwp/2x1xeui5edHuD/iL1E8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCNTBEL0U2ODI2ODNDN0JC QzExRUY5MkVFMUE2NkM0RjlBRTAyL3Q4OExKd3BfMngxeGV1aTVlZEh1RF9pTDFF OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdDg4TEp3cF8yeDF4ZXVpNWVkSHVEX2lMMUU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjUwRC9FNjgyNjgzQzdCQkMxMUVGOTJFRTFBNjZDNEY5QUUwMi84NUNEQjYwODdD MTIxMUVGOEU0OTA2NzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAKAZEgMEAKD6jTANBgkqhkiG9w0BAQsFAAOCAQEAko3OuTOw czuQgt+NZivkNOVXK+e/K1gX1FqqkjPQbaEHXwTkNXV3yukf/X3UwryPavsEtQSg qBmz/UF9l2HQykqw0Iv2FOVv48jbAYUOoHoMqiqTW/aMWfICpj2AV7U2ScGNnr14 v3h7YX0MHcioOyzq1rd293f6qGQO9jcN3Fo1/9/d4qiEnDR5FWBUnDx983zmiDU7 Cu3bnOLHpYSwIUSZ+FgdrOQ+6tH3chrDMpGcm50xRJrEbcjRcx3tfXfrkQFXxODG UTUHQhLBggEyDrJQGgNy2/9qh6DzHp1XGYpDhg4g1O20g+MOHeMI1W23eJ6neRRR NAyDdLpULCbE/w== -----END CERTIFICATE-----Generated at Wed Apr 16 22:19:16 2025 by rpki-client