$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/08D9C8604ABE11EF8708395BC4F9AE02.roa File: 08D9C8604ABE11EF8708395BC4F9AE02.roa (raw, json) Hash identifier: MJuZKMR1FAapsiCyrMHIkWD3kY2RmS87dJHgOPkpAew= Subject key identifier: 31:6E:36:65:C1:75:73:6A:DD:64:F9:8B:53:40:64:2C:A7:0A:9F:87 Certificate issuer: /CN=A911BDA9/serialNumber=24920C5DF989FCCD990B08A8F0479EA4AFB36198 Certificate serial: 08 Authority key identifier: 24:92:0C:5D:F9:89:FC:CD:99:0B:08:A8:F0:47:9E:A4:AF:B3:61:98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JJIMXfmJ_M2ZCwio8EeepK-zYZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/08D9C8604ABE11EF8708395BC4F9AE02.roa Signing time: Thu 25 Jul 2024 19:42:32 +0000 ROA not before: Thu 25 Jul 2024 19:42:32 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 29802 IP address blocks: 160.25.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/JJIMXfmJ_M2ZCwio8EeepK-zYZg.crl rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/JJIMXfmJ_M2ZCwio8EeepK-zYZg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JJIMXfmJ_M2ZCwio8EeepK-zYZg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDA9 Validity Not Before: Jul 25 19:42:32 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66a2aaa8-b2f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c5:4f:98:31:ee:ab:6d:2c:96:99:a2:22:91: f4:ec:26:ac:ef:ff:e5:49:45:ee:91:58:26:c2:af: ae:c1:a8:48:99:c1:ff:ab:4d:db:da:d0:2d:88:fa: 0f:16:f4:90:c8:67:ef:85:33:04:70:d6:6f:79:6b: d1:a5:69:97:d2:41:51:a2:f8:04:cd:4a:be:30:63: 6d:7c:d8:f6:ed:96:b3:fc:42:e7:f2:1c:11:cb:9e: d3:15:10:79:81:c8:68:d2:b9:1a:a4:80:d4:33:77: 19:a8:aa:64:c9:b1:3c:75:40:bc:57:ef:03:8b:09: 24:1a:4d:88:3f:cb:7d:da:4e:4c:5a:ea:38:2e:f2: e5:7f:6e:09:a4:5b:4c:47:0c:d4:75:f2:60:0e:2b: 84:87:36:b8:37:ea:50:1e:b0:e1:3d:e5:f1:68:ac: 86:fb:d6:58:ce:8e:27:d7:1f:65:ba:26:7e:cc:65: fa:11:b0:82:6b:1c:3c:1f:8c:ea:fb:1d:92:d4:bb: 91:0f:6f:23:3b:27:d7:fa:4c:66:88:3e:d2:1b:a2: 45:2e:15:d1:65:b9:56:4a:b4:1a:ca:3e:d4:ed:8b: b8:de:38:49:0a:a7:cb:d6:69:5c:ae:fe:1d:96:c9: 28:9b:c1:3a:3f:38:9e:81:2a:d3:3d:fc:8e:90:46: 76:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:6E:36:65:C1:75:73:6A:DD:64:F9:8B:53:40:64:2C:A7:0A:9F:87 X509v3 Authority Key Identifier: keyid:24:92:0C:5D:F9:89:FC:CD:99:0B:08:A8:F0:47:9E:A4:AF:B3:61:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/JJIMXfmJ_M2ZCwio8EeepK-zYZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JJIMXfmJ_M2ZCwio8EeepK-zYZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/08D9C8604ABE11EF8708395BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.227.0/24 Signature Algorithm: sha256WithRSAEncryption 39:60:88:25:aa:d1:f8:4a:2f:28:f1:aa:f4:01:2c:c1:15:2b: 49:a4:db:78:61:53:a8:48:6f:2c:64:6a:56:04:5f:d9:d8:e3: 2e:f6:0d:a9:ae:5e:fb:66:0a:aa:95:c8:fc:fd:41:5f:58:a8: fc:1c:23:6c:3c:17:13:20:2c:cf:27:dd:d0:48:99:dd:71:2a: 32:15:18:ad:ce:96:83:3b:e4:95:60:0f:c3:9e:64:84:55:b4: 29:1c:aa:14:fc:8a:19:8d:8b:ea:e2:8a:81:88:5a:e3:21:87: fd:82:9d:23:d6:eb:93:51:58:6d:48:7c:14:49:bc:a4:a0:75: d3:2a:23:50:02:2f:c3:d8:a8:00:df:ca:ae:37:33:43:89:4d: cc:59:5f:60:ac:3c:9c:99:5e:85:85:4e:16:1c:b2:97:27:76: 5a:ea:9a:ef:a9:98:e8:fe:81:c2:49:7e:fe:15:e3:ec:17:be: 5f:85:2a:d3:0e:c0:cf:52:63:47:de:82:00:a3:7b:44:46:35: ae:9f:68:92:ac:8b:5b:fc:9d:d6:f1:a0:d9:d3:e0:97:0e:67: a9:ce:12:b3:95:e8:77:60:03:a0:3c:21:cd:09:a3:96:b0:25: 58:42:ea:c8:17:6d:ec:18:59:98:29:5c:21:16:2e:4f:f8:d1: dc:4a:1d:6e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QkRBOTExMC8GA1UEBRMoMjQ5MjBDNURGOTg5RkNDRDk5MEIwOEE4RjA0NzlFQTRB RkIzNjE5ODAeFw0yNDA3MjUxOTQyMzJaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTJhYWE4LWIyZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAxU+YMe6rbSyWmaIikfTsJqzv/+VJRe6RWCbCr67BqEiZwf+rTdva0C2I+g8W 9JDIZ++FMwRw1m95a9GlaZfSQVGi+ATNSr4wY2182PbtlrP8QufyHBHLntMVEHmB yGjSuRqkgNQzdxmoqmTJsTx1QLxX7wOLCSQaTYg/y33aTkxa6jgu8uV/bgmkW0xH DNR18mAOK4SHNrg36lAesOE95fForIb71ljOjifXH2W6Jn7MZfoRsIJrHDwfjOr7 HZLUu5EPbyM7J9f6TGaIPtIbokUuFdFluVZKtBrKPtTti7jeOEkKp8vWaVyu/h2W ySibwTo/OJ6BKtM9/I6QRnarAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMW42ZcF1 c2rdZPmLU0BkLKcKn4cwHwYDVR0jBBgwFoAUJJIMXfmJ/M2ZCwio8EeepK+zYZgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCREE5LzJFMENCNTVFNDRC RDExRUZCNzNEQjc3QkM0RjlBRTAyL0pKSU1YZm1KX00yWkN3aW84RWVlcEstella Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSkpJTVhmbUpfTTJaQ3dpbzhFZWVwSy16WVpnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkRBOS8yRTBDQjU1RTQ0QkQxMUVGQjczREI3N0JDNEY5QUUwMi8wOEQ5Qzg2MDRB QkUxMUVGODcwODM5NUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAZ4zANBgkqhkiG9w0BAQsFAAOCAQEAOWCIJarR+EovKPGq 9AEswRUrSaTbeGFTqEhvLGRqVgRf2djjLvYNqa5e+2YKqpXI/P1BX1io/BwjbDwX EyAszyfd0EiZ3XEqMhUYrc6WgzvklWAPw55khFW0KRyqFPyKGY2L6uKKgYha4yGH /YKdI9brk1FYbUh8FEm8pKB10yojUAIvw9ioAN/KrjczQ4lNzFlfYKw8nJlehYVO Fhyylyd2Wuqa76mY6P6Bwkl+/hXj7Be+X4Uq0w7Az1JjR96CAKN7REY1rp9okqyL W/yd1vGg2dPglw5nqc4Ss5Xod2ADoDwhzQmjlrAlWELqyBdt7BhZmClcIRYuT/jR 3Eodbg== -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:08 2025 by rpki-client