$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/85859ECE427711EF9D064713C4F9AE02.roa File: 85859ECE427711EF9D064713C4F9AE02.roa (raw, json) Hash identifier: zMcsdeFnsmm9BY7TbNUmuViZr6KEuvsVtIowjBYq2kI= Subject key identifier: A3:08:C3:EA:B2:45:9A:14:27:10:FF:77:24:89:2D:5C:5B:E8:B1:B9 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1AA8 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/85859ECE427711EF9D064713C4F9AE02.roa Signing time: Mon 15 Jul 2024 06:57:38 +0000 ROA not before: Mon 15 Jul 2024 06:57:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137083 IP address blocks: 160.25.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6824 (0x1aa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jul 15 06:57:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6694c862-7371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5d:0d:8d:7d:1a:6c:e7:02:d5:43:ad:3a:3e: 84:b6:35:cc:60:52:b3:81:98:e7:b2:ad:96:9a:87: cf:18:53:1c:7d:6e:5d:e3:be:29:7e:25:97:fc:04: 58:40:84:b8:d6:6e:2a:95:ee:22:98:de:18:c5:11: b4:bf:0b:38:e2:93:5d:af:b9:1c:a0:b3:95:8c:31: a0:5f:84:ed:7b:4c:5a:7b:24:0c:5a:13:97:fb:38: b4:25:91:09:6d:1d:fa:fd:e2:9d:55:35:b4:54:67: 5b:d4:74:b0:ec:a7:15:16:da:ee:a2:42:0c:2f:3c: 96:20:a4:48:27:e7:e6:1a:47:2d:c4:3c:aa:81:d9: 48:74:c0:43:04:77:25:f4:55:64:cc:cb:b4:5c:61: a2:89:12:96:a8:c3:03:93:19:00:c0:98:92:7e:5b: b6:08:c2:76:53:c8:ed:ca:7f:ff:9d:7a:e9:1d:0e: 6f:79:ca:d1:fd:27:37:f8:a4:55:2d:60:71:c7:14: 54:30:39:cb:65:6c:ff:d7:ba:54:64:0e:b7:48:01: 73:92:de:32:ac:d0:33:16:f9:67:69:9b:11:6c:fd: ae:4f:20:81:e7:29:36:e4:8b:99:32:f0:56:0d:74: a6:5c:26:c7:32:15:bd:fe:5c:f9:5b:b8:93:b0:52: a9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:08:C3:EA:B2:45:9A:14:27:10:FF:77:24:89:2D:5C:5B:E8:B1:B9 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/85859ECE427711EF9D064713C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.180.0/23 Signature Algorithm: sha256WithRSAEncryption 74:3e:3f:1c:04:91:cb:7d:be:00:d9:a8:61:03:42:01:e6:3a: 38:f0:c3:7f:f7:f0:48:13:35:83:35:31:04:b4:b7:8a:ad:1a: 42:81:87:ab:36:8b:22:24:f6:01:4a:d1:9a:cb:78:4d:2d:79: 13:56:30:cc:26:7d:bb:5d:bc:92:57:65:dc:39:64:73:47:ec: 48:b0:8d:38:b7:27:ed:d6:a2:e1:58:b1:f5:26:5c:84:b9:38: 54:04:eb:af:c2:af:9b:fa:af:e3:23:f7:7f:5b:44:59:74:30: c3:6b:ca:82:9a:67:da:50:4e:f8:3d:64:b2:a3:44:df:bd:ac: c8:96:be:50:e4:78:bb:e9:5d:57:e9:20:82:b8:06:8b:80:bc: a6:08:cb:61:48:af:f5:e8:7a:5c:05:be:3e:fa:ba:ec:dc:de: e2:ff:98:f3:bb:2a:35:9d:f9:35:c9:44:5f:ab:41:b0:68:6a: 38:8f:88:e2:66:97:c9:1b:b7:87:ea:5a:df:55:49:b9:ea:63: 94:12:91:2a:6b:16:f2:22:99:47:e5:ed:56:e9:ef:2a:9d:a6: 11:32:11:49:cb:ad:4f:fd:08:06:08:ec:64:31:f3:07:4e:74: 8b:e1:56:32:bf:85:ae:b2:6d:6c:40:fa:56:7e:5b:18:d1:c9: b2:14:83:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQwNzE1MDY1NzM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk0Yzg2Mi03MzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoF0NjX0abOcC1UOtOj6EtjXMYFKzgZjnsq2WmofPGFMcfW5d474pfiWX/ARY QIS41m4qle4imN4YxRG0vws44pNdr7kcoLOVjDGgX4Tte0xaeyQMWhOX+zi0JZEJ bR36/eKdVTW0VGdb1HSw7KcVFtruokIMLzyWIKRIJ+fmGkctxDyqgdlIdMBDBHcl 9FVkzMu0XGGiiRKWqMMDkxkAwJiSflu2CMJ2U8jtyn//nXrpHQ5vecrR/Sc3+KRV LWBxxxRUMDnLZWz/17pUZA63SAFzkt4yrNAzFvlnaZsRbP2uTyCB5yk25IuZMvBW DXSmXCbHMhW9/lz5W7iTsFKp7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKMIw+qy RZoUJxD/dySJLVxb6LG5MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODU4NTlFQ0U0 Mjc3MTFFRjlEMDY0NzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGbQwDQYJKoZIhvcNAQELBQADggEBAHQ+PxwEkct9vgDZ qGEDQgHmOjjww3/38EgTNYM1MQS0t4qtGkKBh6s2iyIk9gFK0ZrLeE0teRNWMMwm fbtdvJJXZdw5ZHNH7EiwjTi3J+3WouFYsfUmXIS5OFQE66/Cr5v6r+Mj939bRFl0 MMNryoKaZ9pQTvg9ZLKjRN+9rMiWvlDkeLvpXVfpIIK4BouAvKYIy2FIr/XoelwF vj76uuzc3uL/mPO7KjWd+TXJRF+rQbBoajiPiOJml8kbt4fqWt9VSbnqY5QSkSpr FvIimUfl7Vbp7yqdphEyEUnLrU/9CAYI7GQx8wdOdIvhVjK/ha6ybWxA+lZ+WxjR ybIUg2g= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org