$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/34CE9860345211EF9EC11678C4F9AE02.roa File: 34CE9860345211EF9EC11678C4F9AE02.roa (raw, json) Hash identifier: bl4N07xcW+RCzjzZp3tZd6yLv9xVSrS706i2Vbz2Ofo= Subject key identifier: D0:6F:19:F5:5D:6D:BC:6D:3C:35:14:48:51:34:AB:CA:4E:FA:1C:FE Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1A74 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/34CE9860345211EF9EC11678C4F9AE02.roa Signing time: Thu 27 Jun 2024 06:55:15 +0000 ROA not before: Thu 27 Jun 2024 06:55:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152537 IP address blocks: 160.25.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6772 (0x1a74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jun 27 06:55:15 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=667d0cd3-da10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d1:50:23:aa:a9:59:8f:89:61:8c:61:3f:62: 54:e8:28:20:ed:f8:f8:d2:3b:b6:7c:bb:56:35:38: b0:d0:5e:49:e5:f2:20:52:0e:5e:58:37:2c:d0:6f: 92:1b:0f:90:d6:85:ed:8e:9d:a8:26:82:27:66:52: 1f:46:a6:b1:3d:d5:9e:82:ea:67:c8:e9:b8:98:04: 87:0d:cb:64:9e:6e:2e:d1:7d:6f:a0:56:d3:cf:fd: a0:0e:36:d6:b5:b0:38:3d:56:32:fe:96:11:35:f4: 2c:43:8b:4a:7c:d7:c1:92:2b:2c:94:8e:24:cb:f8: 2e:04:a2:e5:af:b4:4b:1c:87:86:d2:43:c6:57:8d: e0:37:4e:72:19:f9:cc:85:a7:0a:82:e7:eb:0a:f1: 6d:39:d5:ea:7a:6e:ec:82:16:7e:2e:49:58:58:63: c8:6e:d6:e7:61:30:c5:39:c1:48:62:04:6f:05:98: 74:22:0f:23:f6:99:7c:91:79:08:db:65:19:27:1c: 3a:bf:b7:b9:91:b2:a6:9b:3f:c0:d2:5e:4a:2e:26: 39:60:a9:63:78:ce:99:5f:16:0a:dc:58:c0:36:6c: b5:85:0c:b3:0d:2a:ef:0a:bd:fd:44:fc:fb:4d:63: 59:a7:05:8b:ef:6a:97:b0:fd:4b:69:79:f5:50:78: 7a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:6F:19:F5:5D:6D:BC:6D:3C:35:14:48:51:34:AB:CA:4E:FA:1C:FE X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/34CE9860345211EF9EC11678C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.0.0/23 Signature Algorithm: sha256WithRSAEncryption c8:0c:67:80:13:d5:42:44:c2:d6:f4:16:e5:b9:c7:2f:d8:61: 0c:93:6c:c7:54:b6:69:20:91:0a:7a:65:7a:a6:71:da:46:89: c1:8e:4e:f3:e5:76:93:39:c9:5d:9c:ac:6b:7c:10:1a:08:bc: f5:7e:f2:13:59:b6:3e:b8:51:8e:2c:34:4d:87:0d:33:f7:d3: a8:2a:f6:b3:6b:0c:45:be:94:f3:30:51:7d:59:ee:a7:21:26: 5b:4d:3e:28:c6:e5:61:c8:19:8e:db:56:3a:bf:f8:73:c9:9b: 48:ad:a6:0b:93:de:4e:66:b9:7c:11:ea:2b:d4:ff:c8:00:29: fd:13:cb:f9:63:45:89:39:00:3f:d5:c7:07:90:59:50:04:40: 0a:29:c5:62:b6:a1:ca:b4:30:83:58:e6:0d:ea:5e:58:c3:48: 3e:36:26:57:c9:9a:5c:a6:d0:b9:f8:1b:e8:1d:5b:37:44:13: 6a:02:01:c7:6d:9b:42:65:d9:01:1b:0f:f9:8f:e3:38:54:ff: 48:6a:44:42:69:ca:9f:68:c0:74:ca:81:e7:e7:d8:17:a4:b8: 2d:01:cd:fd:40:eb:a3:c0:4a:6a:c7:02:4b:31:1f:11:19:30: a3:f5:fc:72:8f:4a:91:fe:dd:56:25:08:fa:53:c9:45:eb:67: 20:25:ce:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNjI3MDY1NTE1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdkMGNkMy1kYTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dFQI6qpWY+JYYxhP2JU6Cgg7fj40ju2fLtWNTiw0F5J5fIgUg5eWDcs0G+S Gw+Q1oXtjp2oJoInZlIfRqaxPdWegupnyOm4mASHDctknm4u0X1voFbTz/2gDjbW tbA4PVYy/pYRNfQsQ4tKfNfBkisslI4ky/guBKLlr7RLHIeG0kPGV43gN05yGfnM hacKgufrCvFtOdXqem7sghZ+LklYWGPIbtbnYTDFOcFIYgRvBZh0Ig8j9pl8kXkI 22UZJxw6v7e5kbKmmz/A0l5KLiY5YKljeM6ZXxYK3FjANmy1hQyzDSrvCr39RPz7 TWNZpwWL72qXsP1LaXn1UHh6ywIDAQABo4IClTCCApEwHQYDVR0OBBYEFNBvGfVd bbxtPDUUSFE0q8pO+hz+MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzRDRTk4NjAz NDUyMTFFRjlFQzExNjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGQAwDQYJKoZIhvcNAQELBQADggEBAMgMZ4AT1UJEwtb0 FuW5xy/YYQyTbMdUtmkgkQp6ZXqmcdpGicGOTvPldpM5yV2crGt8EBoIvPV+8hNZ tj64UY4sNE2HDTP306gq9rNrDEW+lPMwUX1Z7qchJltNPijG5WHIGY7bVjq/+HPJ m0itpguT3k5muXwR6ivU/8gAKf0Ty/ljRYk5AD/VxweQWVAEQAopxWK2ocq0MINY 5g3qXljDSD42JlfJmlym0Ln4G+gdWzdEE2oCAcdtm0Jl2QEbD/mP4zhU/0hqREJp yp9owHTKgefn2BekuC0Bzf1A66PASmrHAksxHxEZMKP1/HKPSpH+3VYlCPpTyUXr ZyAlzkQ= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org