$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/C470564044BD11EFA8F7157FC4F9AE02.roa File: C470564044BD11EFA8F7157FC4F9AE02.roa (raw, json) Hash identifier: UAQ2ui+thAeuq+PxdrfSFnEc0TOcjvunQ9qpCX61XwU= Subject key identifier: 17:EA:53:55:8C:FA:8C:8D:FB:08:8F:A5:09:F5:F4:B3:8B:55:ED:0A Certificate issuer: /CN=A911BDA9/serialNumber=24920C5DF989FCCD990B08A8F0479EA4AFB36198 Certificate serial: 02 Authority key identifier: 24:92:0C:5D:F9:89:FC:CD:99:0B:08:A8:F0:47:9E:A4:AF:B3:61:98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JJIMXfmJ_M2ZCwio8EeepK-zYZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/C470564044BD11EFA8F7157FC4F9AE02.roa Signing time: Thu 18 Jul 2024 04:25:31 +0000 ROA not before: Thu 18 Jul 2024 04:25:31 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152698 IP address blocks: 160.25.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/JJIMXfmJ_M2ZCwio8EeepK-zYZg.crl rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/JJIMXfmJ_M2ZCwio8EeepK-zYZg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JJIMXfmJ_M2ZCwio8EeepK-zYZg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDA9/serialNumber=24920C5DF989FCCD990B08A8F0479EA4AFB36198 Validity Not Before: Jul 18 04:25:31 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6698993a-5048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8f:44:8a:f9:4c:cb:c9:de:1a:c2:e7:5f:ec: b8:08:d1:75:ab:07:c3:76:63:ef:9f:bc:22:08:f1: 8c:ef:cd:3d:ea:39:21:ac:e9:2a:cd:1b:12:47:b6: 7b:b2:0a:4d:ae:13:4c:c3:02:70:4c:70:0d:1f:40: 90:6b:73:a4:75:79:0c:d2:2d:77:5c:1e:c4:de:5f: 85:8a:91:59:75:b1:4f:27:a5:6b:71:cc:80:97:4d: 38:7c:68:e0:e5:88:b5:bc:92:6e:aa:dc:26:5a:aa: fe:12:7c:b0:f7:86:2e:b7:31:1a:66:2e:bc:45:dc: f9:e3:92:56:da:36:7c:bd:6a:cc:fe:29:7d:da:0c: 8b:2f:05:d4:45:06:9d:23:e5:63:21:df:df:a5:41: 4b:af:74:6c:2a:33:7c:06:4a:12:ca:19:f6:01:31: 94:5a:c8:44:97:25:db:0d:8f:43:aa:6d:0a:bc:54: 84:56:1c:9c:12:84:6b:d6:9c:8c:60:29:7f:22:1a: f3:14:af:63:1d:02:03:3d:bd:94:2f:34:9b:bd:cf: 72:50:be:fd:bc:64:2d:f6:61:5d:b6:1c:1f:c4:cb: 47:2e:94:ea:c3:5f:23:58:af:a3:fe:ed:d8:c1:f2: 44:3b:11:6a:00:89:4a:66:c0:60:ce:2b:7a:34:96: 51:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:EA:53:55:8C:FA:8C:8D:FB:08:8F:A5:09:F5:F4:B3:8B:55:ED:0A X509v3 Authority Key Identifier: keyid:24:92:0C:5D:F9:89:FC:CD:99:0B:08:A8:F0:47:9E:A4:AF:B3:61:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/JJIMXfmJ_M2ZCwio8EeepK-zYZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JJIMXfmJ_M2ZCwio8EeepK-zYZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/C470564044BD11EFA8F7157FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.226.0/24 Signature Algorithm: sha256WithRSAEncryption 12:ba:12:2b:b2:fe:62:47:36:25:62:81:8b:eb:b6:a9:37:15: af:1d:e5:8b:50:cc:a7:1d:3a:b8:2d:16:c0:eb:ea:09:ba:7e: 08:ac:12:be:1f:4b:7f:90:ef:b1:b0:de:d7:dd:80:01:45:61: 6d:c0:6d:dd:08:8b:56:c7:93:0a:ca:91:a9:a5:48:a5:59:1f: a8:0f:b7:d1:cf:14:22:cb:4f:4a:6c:dd:64:28:84:93:17:7a: 37:0a:93:4a:95:bf:00:01:a0:3d:19:95:80:eb:a2:f1:b9:59: f5:18:d9:f5:66:8f:f3:4c:04:f2:34:de:d6:3a:96:93:fe:49: 8a:49:56:c4:fa:2f:a1:49:d1:28:3d:48:0c:46:e7:cd:6e:d1: f7:58:f8:67:db:09:2b:3c:ea:a6:20:50:b5:04:d3:f0:98:4a: 63:6f:78:ed:b7:12:23:f3:ab:89:bc:8f:8f:44:f8:f7:b2:ce: 21:44:3b:56:ed:8a:0e:2a:a4:dd:03:65:25:45:9e:ab:f0:7e: 71:1b:53:99:5d:9d:e5:d2:b3:a6:d1:d0:9c:7f:45:21:e3:b5: 17:02:57:7c:af:80:79:ad:9b:c6:dd:d3:d4:40:9a:b2:cc:02: c4:ff:7e:99:ff:e6:34:6d:5c:c7:ba:31:7f:fd:10:f1:a4:35: 61:9d:62:7b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QkRBOTExMC8GA1UEBRMoMjQ5MjBDNURGOTg5RkNDRDk5MEIwOEE4RjA0NzlFQTRB RkIzNjE5ODAeFw0yNDA3MTgwNDI1MzFaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTg5OTNhLTUwNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBj0SK+UzLyd4awudf7LgI0XWrB8N2Y++fvCII8YzvzT3qOSGs6SrNGxJHtnuy Ck2uE0zDAnBMcA0fQJBrc6R1eQzSLXdcHsTeX4WKkVl1sU8npWtxzICXTTh8aODl iLW8km6q3CZaqv4SfLD3hi63MRpmLrxF3PnjklbaNny9asz+KX3aDIsvBdRFBp0j 5WMh39+lQUuvdGwqM3wGShLKGfYBMZRayESXJdsNj0OqbQq8VIRWHJwShGvWnIxg KX8iGvMUr2MdAgM9vZQvNJu9z3JQvv28ZC32YV22HB/Ey0culOrDXyNYr6P+7djB 8kQ7EWoAiUpmwGDOK3o0llHrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUF+pTVYz6 jI37CI+lCfX0s4tV7QowHwYDVR0jBBgwFoAUJJIMXfmJ/M2ZCwio8EeepK+zYZgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCREE5LzJFMENCNTVFNDRC RDExRUZCNzNEQjc3QkM0RjlBRTAyL0pKSU1YZm1KX00yWkN3aW84RWVlcEstella Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSkpJTVhmbUpfTTJaQ3dpbzhFZWVwSy16WVpnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkRBOS8yRTBDQjU1RTQ0QkQxMUVGQjczREI3N0JDNEY5QUUwMi9DNDcwNTY0MDQ0 QkQxMUVGQThGNzE1N0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAZ4jANBgkqhkiG9w0BAQsFAAOCAQEAEroSK7L+Ykc2JWKB i+u2qTcVrx3li1DMpx06uC0WwOvqCbp+CKwSvh9Lf5DvsbDe192AAUVhbcBt3QiL VseTCsqRqaVIpVkfqA+30c8UIstPSmzdZCiEkxd6NwqTSpW/AAGgPRmVgOui8blZ 9RjZ9WaP80wE8jTe1jqWk/5JiklWxPovoUnRKD1IDEbnzW7R91j4Z9sJKzzqpiBQ tQTT8JhKY2947bcSI/OribyPj0T497LOIUQ7Vu2KDiqk3QNlJUWeq/B+cRtTmV2d 5dKzptHQnH9FIeO1FwJXfK+Aea2bxt3T1ECasswCxP9+mf/mNG1cx7oxf/0Q8aQ1 YZ1iew== -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:43 2024 by rpki-client on console-fra.rpki-client.org