$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/D0B078FA389611EF909AF237C4F9AE02.roa File: D0B078FA389611EF909AF237C4F9AE02.roa (raw, json) Hash identifier: AFifu1YP8FleMFw0L6x+s4qXy39ubAWolO6tvcH8Ipg= Subject key identifier: B2:2E:00:B9:4B:D4:EF:EF:8B:9F:EB:32:91:9A:25:5C:77:19:12:C9 Certificate issuer: /CN=A913F2BD/serialNumber=D1EEBD1624DCDE519410ED5D64E6D513984B77D0 Certificate serial: 02 Authority key identifier: D1:EE:BD:16:24:DC:DE:51:94:10:ED:5D:64:E6:D5:13:98:4B:77:D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0e69FiTc3lGUEO1dZObVE5hLd9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/D0B078FA389611EF909AF237C4F9AE02.roa Signing time: Tue 02 Jul 2024 17:16:27 +0000 ROA not before: Tue 02 Jul 2024 17:16:27 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153048 IP address blocks: 160.25.40.0/24 maxlen: 24 160.25.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/0e69FiTc3lGUEO1dZObVE5hLd9A.crl rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/0e69FiTc3lGUEO1dZObVE5hLd9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0e69FiTc3lGUEO1dZObVE5hLd9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2BD/serialNumber=D1EEBD1624DCDE519410ED5D64E6D513984B77D0 Validity Not Before: Jul 2 17:16:27 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668435eb-c429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:92:d4:d5:c1:ba:e2:ae:43:4a:5a:0a:ef:0d: 7e:91:87:02:f4:6d:50:84:98:61:a6:3d:6b:cd:96: ea:fd:fa:ee:ea:e0:18:85:03:a4:23:0f:d7:b5:a2: df:34:a8:b1:db:5c:1c:01:22:00:bf:4b:f4:e7:1c: b7:2f:5a:c4:b5:d6:a7:d4:76:4f:57:89:42:ea:7e: af:51:12:24:74:ab:f2:d3:58:d8:f6:53:c5:d8:f8: 1b:fd:7b:89:da:e6:0e:d3:06:05:cb:14:23:3a:90: 6c:a4:08:ed:02:2a:43:25:44:7c:c1:49:c5:7d:63: c7:aa:e3:93:67:3a:a7:05:24:40:3c:7e:84:81:e8: 5e:f4:c3:a2:a4:5a:26:7a:b4:0f:5a:6f:d2:6a:f0: de:ed:24:2a:c1:07:72:2e:e7:52:1c:53:56:48:1b: 5c:1b:93:89:9d:db:28:ba:6f:03:76:c3:88:79:5f: 96:29:0e:8f:53:8e:5c:2b:e4:56:5f:d7:ee:3f:79: d2:b3:13:90:9e:fb:90:5d:6d:68:b1:91:80:65:7c: ad:ef:87:1d:4a:b4:f8:fb:c1:2c:98:1b:6f:c0:1c: c2:04:3b:9e:6a:dd:71:93:8b:63:97:62:85:f1:43: fe:ba:f7:7b:24:b2:20:29:e0:24:e0:ce:1a:90:66: 0a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2E:00:B9:4B:D4:EF:EF:8B:9F:EB:32:91:9A:25:5C:77:19:12:C9 X509v3 Authority Key Identifier: keyid:D1:EE:BD:16:24:DC:DE:51:94:10:ED:5D:64:E6:D5:13:98:4B:77:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/0e69FiTc3lGUEO1dZObVE5hLd9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0e69FiTc3lGUEO1dZObVE5hLd9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/D0B078FA389611EF909AF237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.40.0/23 Signature Algorithm: sha256WithRSAEncryption c1:a1:3e:46:11:7d:7e:24:39:f8:2c:d6:cb:1f:d1:4c:b7:8e: 21:8b:7d:a6:83:bd:75:93:4d:9a:d2:bf:a4:95:85:69:8d:22: 97:69:bc:0c:7c:15:ea:fc:f9:b8:d0:0e:d5:0d:e7:1d:e9:21: 55:25:e5:a1:9d:f6:04:0d:4c:6c:30:38:70:d3:7c:2b:78:58: 65:dc:91:ae:6f:32:92:b0:77:6e:23:e0:7f:0b:1c:0e:86:2c: eb:e8:34:ba:fa:34:82:1c:74:e4:57:91:0d:48:a8:b3:61:13: bf:1b:de:db:f0:b0:b7:36:b7:31:3e:05:06:cd:cb:3f:9d:52: 92:c1:7d:2a:8e:d0:8b:22:c3:4a:8b:80:f6:fe:d8:70:19:e1: b9:1e:56:5c:01:73:94:c4:38:9a:9f:14:57:97:18:36:62:0a: 12:13:fe:c8:f4:8b:ad:95:52:eb:23:f9:3a:4f:b3:f4:0a:a4: 8e:de:3e:78:fe:26:ad:7f:36:47:bd:15:4c:90:12:8a:6a:43: 9b:f4:f2:c8:a4:6d:16:26:50:e1:a3:99:cd:62:ff:bc:a1:9d: 07:63:53:10:9a:59:a1:e8:38:a9:44:c1:b7:19:ad:47:9a:b7: ec:c1:33:dd:e7:79:ac:73:c4:48:83:2c:16:c6:4e:63:a0:f0: a1:29:43:a0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RjJCRDExMC8GA1UEBRMoRDFFRUJEMTYyNERDREU1MTk0MTBFRDVENjRFNkQ1MTM5 ODRCNzdEMDAeFw0yNDA3MDIxNzE2MjdaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODQzNWViLWM0MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDktTVwbrirkNKWgrvDX6RhwL0bVCEmGGmPWvNlur9+u7q4BiFA6QjD9e1ot80 qLHbXBwBIgC/S/TnHLcvWsS11qfUdk9XiULqfq9REiR0q/LTWNj2U8XY+Bv9e4na 5g7TBgXLFCM6kGykCO0CKkMlRHzBScV9Y8eq45NnOqcFJEA8foSB6F70w6KkWiZ6 tA9ab9Jq8N7tJCrBB3Iu51IcU1ZIG1wbk4md2yi6bwN2w4h5X5YpDo9Tjlwr5FZf 1+4/edKzE5Ce+5BdbWixkYBlfK3vhx1KtPj7wSyYG2/AHMIEO55q3XGTi2OXYoXx Q/6693sksiAp4CTgzhqQZgrHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsi4AuUvU 7++Ln+sykZolXHcZEskwHwYDVR0jBBgwFoAU0e69FiTc3lGUEO1dZObVE5hLd9Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGMkJELzNFRTI3Njc2Mzg5 NjExRUY5RURFODEzNkM0RjlBRTAyLzBlNjlGaVRjM2xHVUVPMWRaT2JWRTVoTGQ5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMGU2OUZpVGMzbEdVRU8xZFpPYlZFNWhMZDlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjJCRC8zRUUyNzY3NjM4OTYxMUVGOUVERTgxMzZDNEY5QUUwMi9EMEIwNzhGQTM4 OTYxMUVGOTA5QUYyMzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAZKDANBgkqhkiG9w0BAQsFAAOCAQEAwaE+RhF9fiQ5+CzW yx/RTLeOIYt9poO9dZNNmtK/pJWFaY0il2m8DHwV6vz5uNAO1Q3nHekhVSXloZ32 BA1MbDA4cNN8K3hYZdyRrm8ykrB3biPgfwscDoYs6+g0uvo0ghx05FeRDUios2ET vxve2/Cwtza3MT4FBs3LP51SksF9Ko7QiyLDSouA9v7YcBnhuR5WXAFzlMQ4mp8U V5cYNmIKEhP+yPSLrZVS6yP5Ok+z9Aqkjt4+eP4mrX82R70VTJASimpDm/TyyKRt FiZQ4aOZzWL/vKGdB2NTEJpZoeg4qUTBtxmtR5q37MEz3ed5rHPESIMsFsZOY6Dw oSlDoA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:14 2024 by rpki-client on console-fra.rpki-client.org