$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/20A6C35C37AF11EF844EC638C4F9AE02.roa File: 20A6C35C37AF11EF844EC638C4F9AE02.roa (raw, json) Hash identifier: SBjUcQwgq8eYibunzuM6B0MYbh92vDqaJjZbumGPIz4= Subject key identifier: E5:E8:D9:60:F1:8C:C5:5C:DB:DB:15:10:1D:6C:E8:A7:3F:7A:FF:42 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: 02 Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/20A6C35C37AF11EF844EC638C4F9AE02.roa Signing time: Mon 01 Jul 2024 13:37:58 +0000 ROA not before: Mon 01 Jul 2024 13:37:58 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137570 IP address blocks: 160.25.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Jul 1 13:37:58 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6682b136-56a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5d:f9:c3:42:09:43:9c:e5:a6:38:c1:1e:9a: e3:d3:d5:53:10:d0:0c:18:eb:fc:87:93:9d:20:64: 00:73:aa:13:14:b3:bb:c5:6f:7c:ff:81:1b:51:02: 53:45:22:6a:a7:8c:a8:93:c5:e9:ec:aa:73:21:ed: d8:c1:ec:00:a7:c2:49:7b:53:5d:88:c6:93:e9:7b: 19:06:3e:d7:28:f6:e2:03:f4:8f:ec:c0:87:39:d2: b1:22:d5:3b:45:71:e5:91:23:9a:ff:c1:e4:81:34: b4:7a:2b:6e:46:1a:cb:74:7d:c6:5b:21:db:1c:f6: 0e:ca:44:e8:49:09:27:41:a4:5d:1b:d7:16:10:a4: fe:18:31:c0:b0:a6:14:0a:b0:b7:1e:82:27:bd:b6: ce:49:4b:0f:b6:d9:43:3f:9f:6e:81:9e:55:1c:a5: f7:23:8a:e3:2a:15:2d:f4:ab:e3:03:37:67:1e:86: 7f:9b:93:6b:e8:61:c4:82:9b:df:c5:54:44:58:17: 06:e1:cf:46:35:d4:60:d5:35:af:bb:43:08:86:e3: ba:d6:24:45:5c:7e:b3:77:52:42:31:06:aa:44:a7: 1e:f7:4b:71:b9:17:32:6d:e6:4f:9b:26:22:50:d3: a1:8b:a6:1c:96:0c:33:6d:c4:68:c0:cc:74:68:cd: d9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E8:D9:60:F1:8C:C5:5C:DB:DB:15:10:1D:6C:E8:A7:3F:7A:FF:42 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/20A6C35C37AF11EF844EC638C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.42.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:0e:56:79:49:0d:2d:7e:46:13:cf:0c:3d:63:47:bb:a4:39: 73:bb:f8:ef:0a:09:da:06:25:04:75:da:07:fa:f2:35:37:ef: a2:06:6a:58:a0:ed:43:90:ab:6c:8f:6c:b3:39:fd:22:68:7d: c8:08:fb:c5:19:37:dd:c3:2e:f3:ec:97:4c:25:07:0a:6e:54: 7c:6e:6d:08:9e:1a:91:d9:9f:63:fa:e5:26:d4:f3:84:7b:00: 2a:af:27:19:59:e1:82:10:b4:a0:7e:76:24:52:ac:ac:32:86: 75:2d:ae:23:31:54:87:ec:0f:6e:86:25:6a:48:be:fe:ae:61: 6e:e0:85:96:2d:32:c7:a4:3b:70:74:bb:91:25:d9:0b:42:13: de:fc:2c:95:05:50:8f:a6:84:79:49:b4:87:95:05:45:c4:af: 19:8c:f1:80:70:1c:05:be:7e:89:e0:4a:0d:e4:95:84:4d:b8: 80:25:7b:d9:ad:88:fb:74:e0:6a:6b:41:3a:ea:8a:8b:45:68: ae:00:a8:58:ef:1c:59:4e:44:8d:d3:44:06:52:8d:a4:dd:d3: 4d:59:11:7a:06:69:e1:46:38:3b:2d:a2:ca:49:3c:b7:a5:5c: fe:6f:7a:de:c0:fb:c2:81:31:72:09:97:07:75:b6:4e:2f:09: 7c:a5:68:bc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Qjk1QTExMC8GA1UEBRMoRjI0QzQ0MzIxMEY3NDFDQkU1OUQwMTRFQkE2RUU5NzJC NUNEREFFNzAeFw0yNDA3MDExMzM3NThaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODJiMTM2LTU2YTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLXfnDQglDnOWmOMEemuPT1VMQ0AwY6/yHk50gZABzqhMUs7vFb3z/gRtRAlNF ImqnjKiTxensqnMh7djB7ACnwkl7U12IxpPpexkGPtco9uID9I/swIc50rEi1TtF ceWRI5r/weSBNLR6K25GGst0fcZbIdsc9g7KROhJCSdBpF0b1xYQpP4YMcCwphQK sLcegie9ts5JSw+22UM/n26BnlUcpfcjiuMqFS30q+MDN2cehn+bk2voYcSCm9/F VERYFwbhz0Y11GDVNa+7QwiG47rWJEVcfrN3UkIxBqpEpx73S3G5FzJt5k+bJiJQ 06GLphyWDDNtxGjAzHRozdntAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5ejZYPGM xVzb2xUQHWzopz96/0IwHwYDVR0jBBgwFoAU8kxEMhD3QcvlnQFOum7pcrXN2ucw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCOTVBLzUxMkM3MDVFMzdB RTExRUY4QTQ1OEUzN0M0RjlBRTAyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOGt4RU1oRDNRY3ZsblFGT3VtN3BjclhOMnVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81MTJDNzA1RTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi8yMEE2QzM1QzM3 QUYxMUVGODQ0RUM2MzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAZKjANBgkqhkiG9w0BAQsFAAOCAQEAjA5WeUkNLX5GE88M PWNHu6Q5c7v47woJ2gYlBHXaB/ryNTfvogZqWKDtQ5CrbI9sszn9Imh9yAj7xRk3 3cMu8+yXTCUHCm5UfG5tCJ4akdmfY/rlJtTzhHsAKq8nGVnhghC0oH52JFKsrDKG dS2uIzFUh+wPboYlaki+/q5hbuCFli0yx6Q7cHS7kSXZC0IT3vwslQVQj6aEeUm0 h5UFRcSvGYzxgHAcBb5+ieBKDeSVhE24gCV72a2I+3TgamtBOuqKi0VorgCoWO8c WU5EjdNEBlKNpN3TTVkRegZp4UY4Oy2iykk8t6Vc/m963sD7woExcgmXB3W2Ti8J fKVovA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:26 2024 by rpki-client on console-fra.rpki-client.org