$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa File: BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa (raw, json) Hash identifier: ASyOdjxX3bTv6LEG6rhAb+4hOVrCfvwO9cJPKa93j28= Subject key identifier: 49:A9:CD:10:24:BC:06:07:10:4F:25:1F:7F:87:0D:5A:C0:7E:E8:BF Certificate issuer: /CN=A9144391/serialNumber=96A635027B64A654D808945DB835A9E28C794B01 Certificate serial: 02 Authority key identifier: 96:A6:35:02:7B:64:A6:54:D8:08:94:5D:B8:35:A9:E2:8C:79:4B:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa Signing time: Thu 12 Sep 2024 02:35:54 +0000 ROA not before: Thu 12 Sep 2024 02:35:54 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153053 IP address blocks: 160.25.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.crl rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391/serialNumber=96A635027B64A654D808945DB835A9E28C794B01 Validity Not Before: Sep 12 02:35:54 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66e2538a-8d26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:24:3f:f7:92:09:ea:4a:36:8e:d6:b0:e4:8d: fc:0b:18:a0:e9:84:b6:1a:f5:6c:d5:5f:de:ab:2f: 62:3e:f6:86:a7:9b:03:db:ff:e6:33:bf:ec:9a:44: bd:5a:4b:3b:c2:18:32:1e:73:79:32:47:4f:f5:42: 8a:fd:82:7b:a3:2f:44:57:60:48:55:ec:38:df:e3: 30:79:e6:c1:5f:84:22:de:53:cc:33:0f:69:38:77: b1:d6:61:8b:2b:c2:5a:7a:d8:a8:39:b6:fe:67:cb: fd:99:6a:95:4f:ab:8e:b5:34:8d:8e:7c:79:e1:cb: 0d:03:c8:fc:3a:7c:fa:d4:19:95:4c:82:90:df:71: 11:86:fb:98:b7:9f:41:64:b7:ec:d3:b3:49:40:80: 1b:a0:f7:bd:71:ae:fa:c1:16:09:a8:36:da:bf:56: a6:3c:8b:2e:07:47:74:7a:71:a8:7a:01:de:25:d5: 2a:77:21:43:55:c9:a2:ae:40:73:ed:21:8b:33:27: a8:19:d7:a7:f8:50:78:80:37:90:cd:10:be:e3:11: b4:cb:2c:96:94:84:53:02:35:ae:e5:84:ce:77:5b: d1:5a:97:fb:fb:d1:61:f2:de:85:4a:33:cb:ff:46: fc:af:c9:47:4b:66:14:4a:50:43:42:2c:cf:6e:aa: 86:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A9:CD:10:24:BC:06:07:10:4F:25:1F:7F:87:0D:5A:C0:7E:E8:BF X509v3 Authority Key Identifier: keyid:96:A6:35:02:7B:64:A6:54:D8:08:94:5D:B8:35:A9:E2:8C:79:4B:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.96.0/23 Signature Algorithm: sha256WithRSAEncryption 40:c6:70:f8:40:c7:d0:e2:bd:9f:8e:29:71:d6:e1:a9:b5:42: dc:34:ab:d8:33:bd:60:a4:1e:66:18:21:9a:d7:a7:03:a4:c4: f8:19:04:34:f6:bf:79:6f:4c:d6:e9:14:26:84:0f:d7:0a:6d: a0:b4:44:b3:f5:ff:27:84:44:cf:bc:37:50:b2:db:0f:ae:93: 17:0e:27:5e:4c:a7:05:b9:2f:b5:e2:73:e7:85:e2:5c:24:cd: 6c:7c:66:89:ac:37:6d:e6:ec:44:79:5a:03:dd:55:03:d3:f1: e5:9c:c9:19:8c:d7:67:23:34:54:b9:74:34:96:9c:4a:e7:f9: 28:93:29:84:58:02:31:91:97:73:05:73:4c:a7:36:9b:db:eb: 58:f5:51:8d:3d:cd:02:88:a3:ca:e1:da:86:c3:c7:e5:80:38: 2d:0e:ae:3d:62:d0:32:21:87:a4:51:ad:2d:7c:e2:9b:10:35: ed:a7:61:94:b7:a1:d1:2b:85:24:c0:f5:9f:8f:10:f7:56:69: 89:7f:79:53:0d:a8:1c:30:97:df:13:d9:64:67:66:d3:c0:71: 4a:71:53:52:a1:a0:58:76:df:4a:d2:cb:03:1d:a2:d9:da:6e: 2f:dc:ae:fb:0d:63:f4:03:a0:b4:f9:8f:38:bc:f0:b5:99:c3: f4:11:41:be -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDM5MTExMC8GA1UEBRMoOTZBNjM1MDI3QjY0QTY1NEQ4MDg5NDVEQjgzNUE5RTI4 Qzc5NEIwMTAeFw0yNDA5MTIwMjM1NTRaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTI1MzhhLThkMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9JD/3kgnqSjaO1rDkjfwLGKDphLYa9WzVX96rL2I+9oanmwPb/+Yzv+yaRL1a SzvCGDIec3kyR0/1Qor9gnujL0RXYEhV7Djf4zB55sFfhCLeU8wzD2k4d7HWYYsr wlp62Kg5tv5ny/2ZapVPq461NI2OfHnhyw0DyPw6fPrUGZVMgpDfcRGG+5i3n0Fk t+zTs0lAgBug971xrvrBFgmoNtq/VqY8iy4HR3R6cah6Ad4l1Sp3IUNVyaKuQHPt IYszJ6gZ16f4UHiAN5DNEL7jEbTLLJaUhFMCNa7lhM53W9Fal/v70WHy3oVKM8v/ RvyvyUdLZhRKUENCLM9uqobxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSanNECS8 BgcQTyUff4cNWsB+6L8wHwYDVR0jBBgwFoAUlqY1AntkplTYCJRduDWp4ox5SwEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0MzkxL0Y3MjA5QzMyNzBB RDExRUZBODQ4QjA2OEM0RjlBRTAyL2xxWTFBbnRrcGxUWUNKUmR1RFdwNG94NVN3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbHFZMUFudGtwbFRZQ0pSZHVEV3A0b3g1U3dFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS9GNzIwOUMzMjcwQUQxMUVGQTg0OEIwNjhDNEY5QUUwMi9CQkE4Rjk3Qzcw QUYxMUVGOUM5QjJDMEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAZYDANBgkqhkiG9w0BAQsFAAOCAQEAQMZw+EDH0OK9n44p cdbhqbVC3DSr2DO9YKQeZhghmtenA6TE+BkENPa/eW9M1ukUJoQP1wptoLREs/X/ J4REz7w3ULLbD66TFw4nXkynBbkvteJz54XiXCTNbHxmiaw3bebsRHlaA91VA9Px 5ZzJGYzXZyM0VLl0NJacSuf5KJMphFgCMZGXcwVzTKc2m9vrWPVRjT3NAoijyuHa hsPH5YA4LQ6uPWLQMiGHpFGtLXzimxA17adhlLeh0SuFJMD1n48Q91ZpiX95Uw2o HDCX3xPZZGdm08BxSnFTUqGgWHbfStLLAx2i2dpuL9yu+w1j9AOgtPmPOLzwtZnD 9BFBvg== -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:49 2024 by rpki-client on console-ams.rpki-client.org