$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/25E0DF60D7EB11EF82BE8B40C4F9AE02.roa File: 25E0DF60D7EB11EF82BE8B40C4F9AE02.roa (raw, json) Hash identifier: Xn3bLE2TmzUYmK07H7yq76QPsdkUF7KbD3sKDuX17oQ= Subject key identifier: 88:09:FB:C0:30:1D:86:D5:3C:AA:60:7A:1A:E2:D4:B6:AE:42:5B:07 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1C8C Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/25E0DF60D7EB11EF82BE8B40C4F9AE02.roa Signing time: Tue 21 Jan 2025 11:30:42 +0000 ROA not before: Tue 21 Jan 2025 11:30:42 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 4195 IP address blocks: 160.30.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Feb 2025 15:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7308 (0x1c8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Jan 21 11:30:42 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=678f8562-32ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bd:6a:06:36:a1:c0:a5:24:b9:bf:84:33:8f: 80:df:fa:97:98:79:91:64:16:21:cc:fc:24:5e:93: e6:9f:3d:48:3c:d8:a8:f2:64:4c:3b:80:51:59:e6: fe:d6:20:b7:be:5c:39:0d:28:fa:8f:fd:9e:ea:b2: 9f:45:82:b5:20:8e:47:bd:06:a9:04:80:e7:10:79: 54:18:86:76:5e:84:10:45:dc:32:61:85:fd:2d:28: 87:51:7a:c9:81:c7:8c:de:39:c6:b9:49:fd:6d:cf: 64:a2:d6:19:97:47:95:49:d8:52:d7:1c:6f:24:cd: 36:cd:73:3a:23:97:db:70:5f:f3:01:a9:f9:49:97: a5:0a:e1:22:0b:0f:3a:04:9c:df:9f:ce:62:17:94: 71:9c:8e:e1:55:62:4d:60:d2:79:41:db:2f:40:13: ca:1e:2f:9a:54:5b:86:f6:46:99:17:84:f1:aa:61: b7:42:59:92:d2:0d:dd:41:0d:6f:d4:54:a5:04:ba: c3:7a:39:c3:d7:8e:b1:94:00:25:b1:1e:51:c7:95: c9:f5:c7:be:50:1e:b6:17:f2:97:a8:d9:ba:05:45: ae:57:9a:98:60:c6:5c:ce:64:04:91:89:ba:d8:94: 23:71:10:36:3c:1f:08:6e:64:9e:d0:ef:46:6f:53: c5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:09:FB:C0:30:1D:86:D5:3C:AA:60:7A:1A:E2:D4:B6:AE:42:5B:07 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/25E0DF60D7EB11EF82BE8B40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.203.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:35:b7:b9:be:a0:4d:4f:b9:30:36:f3:9f:1e:1e:7c:f0:cf: 09:c3:ab:88:09:14:e2:e3:c6:3d:af:29:8e:b4:a1:35:bd:6d: d7:e8:96:f5:04:8b:41:a8:43:4e:d4:d1:ba:3e:c7:c4:d9:fe: d2:00:6c:2e:7d:57:4d:be:e1:d1:c0:c8:92:01:89:24:ba:81: 8b:b9:33:c2:78:53:4a:7f:15:ce:f8:68:8a:a2:43:2c:79:5a: 12:b8:ee:1f:31:4e:73:40:63:ae:d6:98:da:b7:a0:01:c2:3d: 74:69:cb:fd:cc:39:3c:36:75:55:48:f4:d2:78:c3:b2:99:09: 14:ec:df:5b:34:00:9d:c1:59:b5:44:da:38:51:d0:fb:a0:4e: ce:2b:f6:9f:0d:7a:d2:c2:a2:52:a1:4b:79:75:4e:68:8d:1f: 4d:7d:a3:64:7d:cd:e0:ce:ef:25:11:45:e0:a8:c0:5e:73:98: 19:21:a3:c6:50:8b:63:4d:53:2e:55:08:cd:8c:eb:33:35:77: a5:ee:f9:7b:a9:75:3b:d7:e9:df:bb:df:6d:ba:ce:4b:f2:68: 7d:71:bd:ba:76:1d:a0:1f:be:b1:13:c3:d1:ca:d6:57:2b:98: 3c:9e:bf:a2:c8:57:ce:bc:ae:61:bd:6b:47:d2:7c:2a:87:a0: 25:6c:d5:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwMTIxMTEzMDQyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhmODU2Mi0zMmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy71qBjahwKUkub+EM4+A3/qXmHmRZBYhzPwkXpPmnz1IPNio8mRMO4BRWeb+ 1iC3vlw5DSj6j/2e6rKfRYK1II5HvQapBIDnEHlUGIZ2XoQQRdwyYYX9LSiHUXrJ gceM3jnGuUn9bc9kotYZl0eVSdhS1xxvJM02zXM6I5fbcF/zAan5SZelCuEiCw86 BJzfn85iF5RxnI7hVWJNYNJ5QdsvQBPKHi+aVFuG9kaZF4TxqmG3QlmS0g3dQQ1v 1FSlBLrDejnD146xlAAlsR5Rx5XJ9ce+UB62F/KXqNm6BUWuV5qYYMZczmQEkYm6 2JQjcRA2PB8IbmSe0O9Gb1PFIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIgJ+8Aw HYbVPKpgehri1LauQlsHMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjVFMERGNjBE N0VCMTFFRjgyQkU4QjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgHsswDQYJKoZIhvcNAQELBQADggEBAF81t7m+oE1PuTA2 858eHnzwzwnDq4gJFOLjxj2vKY60oTW9bdfolvUEi0GoQ07U0bo+x8TZ/tIAbC59 V02+4dHAyJIBiSS6gYu5M8J4U0p/Fc74aIqiQyx5WhK47h8xTnNAY67WmNq3oAHC PXRpy/3MOTw2dVVI9NJ4w7KZCRTs31s0AJ3BWbVE2jhR0PugTs4r9p8NetLColKh S3l1TmiNH019o2R9zeDO7yURReCowF5zmBkho8ZQi2NNUy5VCM2M6zM1d6Xu+Xup dTvX6d+73226zkvyaH1xvbp2HaAfvrETw9HK1lcrmDyev6LIV868rmG9a0fSfCqH oCVs1Vo= -----END CERTIFICATE-----Generated at Fri Feb 21 11:22:44 2025 by rpki-client