$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/95C79E36379611EF87CBA24DC4F9AE02.roa File: 95C79E36379611EF87CBA24DC4F9AE02.roa (raw, json) Hash identifier: VSLP0SurFYr7NQK9R5lJWuMTjXBESVuwKDdrtUvBsXc= Subject key identifier: 1F:9A:8D:DE:E6:1E:51:C2:33:7C:D7:AE:B3:AB:11:FF:72:6A:DC:66 Certificate issuer: /CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Certificate serial: 02 Authority key identifier: 24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/95C79E36379611EF87CBA24DC4F9AE02.roa Signing time: Mon 01 Jul 2024 10:42:17 +0000 ROA not before: Mon 01 Jul 2024 10:42:17 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152932 IP address blocks: 160.25.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:58:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Validity Not Before: Jul 1 10:42:17 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66828809-bf28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:75:29:f5:1d:84:19:c8:3e:6a:2c:4d:3b:ae: b6:38:74:76:79:f5:84:ca:71:58:47:55:a9:98:01: 8b:27:00:ee:69:df:c2:e8:b7:8a:73:98:60:d8:7c: c9:a5:c1:30:8b:80:32:9e:88:a3:2f:af:38:34:00: 4e:1a:b2:14:72:78:d8:41:d8:f7:b4:db:ad:d7:2e: f3:f7:98:bd:e6:39:62:53:6a:d0:47:84:52:e3:e4: 07:86:96:d9:ac:6c:9e:7e:6f:86:d8:d1:2a:71:74: cb:ac:f9:ed:8e:f4:7c:87:12:08:7d:3b:f1:ab:0a: 46:4a:57:e8:fd:cc:71:02:53:23:10:c9:2d:43:44: ea:63:1b:f5:86:8a:ad:89:cd:dc:43:31:5d:6e:a1: db:f2:05:11:1d:66:3d:3c:41:8f:7b:3f:85:7d:58: 82:a4:79:59:e2:03:55:82:ca:37:28:77:82:d3:61: 33:d0:ad:08:ef:25:6a:10:6f:1c:a3:d1:44:d0:01: 8a:4d:69:07:60:97:2e:4e:d6:a2:23:a2:56:16:1f: c2:bd:d8:94:2d:e2:99:a5:5a:64:55:11:19:b4:cf: dd:54:ec:4b:f6:1c:b6:a7:96:7b:b0:24:04:2e:9a: d8:b6:2d:58:61:85:07:d3:0c:95:02:6f:88:cb:2c: 69:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9A:8D:DE:E6:1E:51:C2:33:7C:D7:AE:B3:AB:11:FF:72:6A:DC:66 X509v3 Authority Key Identifier: keyid:24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/95C79E36379611EF87CBA24DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.4.0/23 Signature Algorithm: sha256WithRSAEncryption 56:5c:a1:d7:06:aa:a6:20:0d:dc:a6:58:c6:12:c3:e3:f6:18: dd:e9:ca:08:4e:93:71:01:0f:5b:2a:fb:10:36:6f:c6:fb:76: 56:62:cb:d8:0f:50:f0:91:c7:a3:70:5a:61:39:19:bf:96:74: 5a:09:c8:3e:7a:b1:36:ba:4f:67:d9:51:5e:ae:41:42:90:86: 4f:a4:d9:66:b7:1b:c8:4b:84:8c:57:fb:03:d3:9d:15:f5:d2: 10:0e:07:a4:e6:ab:f6:3a:43:3a:6d:ae:1a:83:a4:42:d9:44: 4f:c0:0f:b7:c0:f4:76:cd:95:30:b2:fb:f6:99:e3:e7:23:89: 30:0a:93:4b:63:4a:05:14:97:dc:00:a7:b9:fc:6d:1e:0b:9d: c0:db:64:6b:11:31:f6:0d:a7:19:44:d1:66:0b:02:0d:fe:66: f9:26:6d:18:4e:b3:50:bc:9a:45:29:12:54:6b:17:1e:50:13: d4:ee:a0:2c:65:dc:f3:63:2d:7f:bb:02:65:3e:7e:b0:d9:a2: 15:bd:2f:f1:8b:90:cc:3f:3f:31:29:ef:54:e4:0a:3c:8d:63: 22:13:ed:84:e9:61:89:e9:96:46:d1:ac:2d:67:ca:8c:12:7e: 11:f8:0b:b2:30:4f:6b:16:15:3c:0f:4c:e0:7d:42:eb:09:03: b8:e9:9e:28 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QjIyRTExMC8GA1UEBRMoMjQyQUI5MUZBN0M3QTY0QUNFNzdEOUI0RjY2MUUyOEMw QjE1QjhFMDAeFw0yNDA3MDExMDQyMTdaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODI4ODA5LWJmMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCidSn1HYQZyD5qLE07rrY4dHZ59YTKcVhHVamYAYsnAO5p38Lot4pzmGDYfMml wTCLgDKeiKMvrzg0AE4ashRyeNhB2Pe0263XLvP3mL3mOWJTatBHhFLj5AeGltms bJ5+b4bY0SpxdMus+e2O9HyHEgh9O/GrCkZKV+j9zHECUyMQyS1DROpjG/WGiq2J zdxDMV1uodvyBREdZj08QY97P4V9WIKkeVniA1WCyjcod4LTYTPQrQjvJWoQbxyj 0UTQAYpNaQdgly5O1qIjolYWH8K92JQt4pmlWmRVERm0z91U7Ev2HLanlnuwJAQu mti2LVhhhQfTDJUCb4jLLGnJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUH5qN3uYe UcIzfNeus6sR/3Jq3GYwHwYDVR0jBBgwFoAUJCq5H6fHpkrOd9m09mHijAsVuOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCMjJFLzgzNDE1QjM2Mzc5 NTExRUY4N0NGRDY0QkM0RjlBRTAyL0pDcTVINmZIcGtyT2Q5bTA5bUhpakFzVnVP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSkNxNUg2Zkhwa3JPZDltMDltSGlqQXNWdU9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjIyRS84MzQxNUIzNjM3OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi85NUM3OUUzNjM3 OTYxMUVGODdDQkEyNERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAZBDANBgkqhkiG9w0BAQsFAAOCAQEAVlyh1waqpiAN3KZY xhLD4/YY3enKCE6TcQEPWyr7EDZvxvt2VmLL2A9Q8JHHo3BaYTkZv5Z0WgnIPnqx NrpPZ9lRXq5BQpCGT6TZZrcbyEuEjFf7A9OdFfXSEA4HpOar9jpDOm2uGoOkQtlE T8APt8D0ds2VMLL79pnj5yOJMAqTS2NKBRSX3ACnufxtHgudwNtkaxEx9g2nGUTR ZgsCDf5m+SZtGE6zULyaRSkSVGsXHlAT1O6gLGXc82Mtf7sCZT5+sNmiFb0v8YuQ zD8/MSnvVOQKPI1jIhPthOlhiemWRtGsLWfKjBJ+EfgLsjBPaxYVPA9M4H1C6wkD uOmeKA== -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:03 2024 by rpki-client on console-ams.rpki-client.org