$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa File: 2042987C6C4411EF9B263275C4F9AE02.roa (raw, json) Hash identifier: bKtFSMRmBEl0oKGrwWVZYxuAEvHDipNsFv7Plkp3FeU= Subject key identifier: 09:A9:E5:F6:C8:1C:5F:16:69:85:BF:70:CF:4B:38:C1:69:46:90:89 Certificate issuer: /CN=A9194AE2/serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Certificate serial: 27 Authority key identifier: 84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa Signing time: Fri 06 Sep 2024 11:35:55 +0000 ROA not before: Fri 06 Sep 2024 11:35:55 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152931 IP address blocks: 160.25.2.0/23 maxlen: 23 160.25.2.0/24 maxlen: 24 160.25.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AE2/serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Validity Not Before: Sep 6 11:35:55 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66dae91b-9f51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8e:31:6d:e7:26:52:98:41:1d:3b:7b:25:d0: 1a:a0:4b:3f:52:9a:35:9d:cc:f1:53:05:16:db:2c: 7a:36:e7:ed:b3:18:ff:db:51:87:2a:89:47:d6:ca: 3e:9b:a2:5e:50:73:53:76:5a:cb:b4:e0:9c:b9:68: 0e:ca:07:c8:c8:24:67:0d:67:64:cb:f5:bc:16:d9: 1f:76:47:85:e1:37:f7:12:2b:2f:2b:da:a8:c8:5d: 3e:fc:20:bd:e0:f5:e3:88:fc:94:c1:c5:57:04:ee: 5d:da:c3:a4:5e:ca:be:02:13:84:3b:45:e1:92:e4: 5d:be:b7:85:16:bc:c9:c1:76:52:10:8b:6c:76:b9: af:87:ac:3e:32:23:cc:83:17:5a:0f:6c:5e:d3:df: a8:6d:93:05:40:28:de:37:90:23:b8:28:95:68:f0: f5:8d:96:55:41:1c:a3:b5:91:df:12:81:83:58:f5: 22:4f:96:00:3a:cc:df:24:e8:ce:9d:9b:33:da:b7: a7:85:ca:7d:4c:39:37:a2:06:68:18:93:53:88:71: 87:a9:42:89:b2:50:65:5c:00:7e:7c:9e:ad:d0:3b: c9:2b:f5:55:bf:a1:f5:ec:bb:a7:be:12:cb:16:9a: 64:6b:01:d7:64:83:53:02:67:c0:f0:d6:81:37:1a: 55:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A9:E5:F6:C8:1C:5F:16:69:85:BF:70:CF:4B:38:C1:69:46:90:89 X509v3 Authority Key Identifier: keyid:84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.2.0/23 Signature Algorithm: sha256WithRSAEncryption 41:46:c9:b4:65:2a:11:d7:25:c3:d7:88:f4:80:28:74:a9:4a: d4:89:c4:d7:eb:db:d7:24:79:0d:3f:d5:76:f1:ec:1d:f5:f3: 96:68:d4:66:64:cc:e0:93:3a:35:e8:0d:7c:60:35:87:4c:09: 72:15:67:70:60:a2:7e:82:a3:4c:95:c7:84:39:90:af:6f:10: 99:3c:3b:3d:ec:fd:72:95:9c:18:87:ee:1e:7b:5a:b3:3e:a9: 10:f2:d0:0d:9e:60:50:93:d2:e6:38:d6:28:56:99:68:25:fa: 7c:b5:c6:ba:2b:e1:7c:2b:e8:17:00:18:6a:10:f7:22:3d:bc: ec:9a:de:06:94:13:e0:26:55:7e:43:1a:7f:97:57:18:dd:83: 43:0b:28:57:5c:d3:cf:b9:be:de:11:f5:00:1b:4e:5c:3d:e9: bb:fc:ab:da:18:73:4a:b0:59:cb:a2:25:bb:c1:c3:bc:16:eb: 15:2f:e7:b1:c2:bd:de:b8:8d:ce:6e:10:06:c9:ec:6d:f2:bf: 52:00:5c:b9:a4:55:38:42:32:56:be:72:7a:78:35:e2:97:4a: 27:51:58:f6:e8:f1:e5:fb:83:c9:78:87:cc:44:3f:44:c2:d9: 1b:5c:5c:54:f7:4b:67:42:a6:71:d4:09:16:30:71:8c:af:0a: 82:62:09:34 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NEFFMjExMC8GA1UEBRMoODQ1RDg4RTBBMjE1MTQ1RjM2N0Q5MzA0QkYzRjcxQUVF OEVCNEMyRDAeFw0yNDA5MDYxMTM1NTVaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGFlOTFiLTlmNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKjjFt5yZSmEEdO3sl0BqgSz9SmjWdzPFTBRbbLHo25+2zGP/bUYcqiUfWyj6b ol5Qc1N2Wsu04Jy5aA7KB8jIJGcNZ2TL9bwW2R92R4XhN/cSKy8r2qjIXT78IL3g 9eOI/JTBxVcE7l3aw6Reyr4CE4Q7ReGS5F2+t4UWvMnBdlIQi2x2ua+HrD4yI8yD F1oPbF7T36htkwVAKN43kCO4KJVo8PWNllVBHKO1kd8SgYNY9SJPlgA6zN8k6M6d mzPat6eFyn1MOTeiBmgYk1OIcYepQomyUGVcAH58nq3QO8kr9VW/ofXsu6e+EssW mmRrAddkg1MCZ8Dw1oE3GlUjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCanl9sgc XxZphb9wz0s4wWlGkIkwHwYDVR0jBBgwFoAUhF2I4KIVFF82fZMEvz9xrujrTC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0QUUyLzI2QTZGNDRDM0JB QzExRUY5RDdFQTg3MUM0RjlBRTAyL2hGMkk0S0lWRkY4MmZaTUV2ejl4cnVqclRD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaEYySTRLSVZGRjgyZlpNRXZ6OXhydWpyVEMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEFFMi8yNkE2RjQ0QzNCQUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi8yMDQyOTg3QzZD NDQxMUVGOUIyNjMyNzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAZAjANBgkqhkiG9w0BAQsFAAOCAQEAQUbJtGUqEdclw9eI 9IAodKlK1InE1+vb1yR5DT/VdvHsHfXzlmjUZmTM4JM6NegNfGA1h0wJchVncGCi foKjTJXHhDmQr28QmTw7Pez9cpWcGIfuHntasz6pEPLQDZ5gUJPS5jjWKFaZaCX6 fLXGuivhfCvoFwAYahD3Ij287JreBpQT4CZVfkMaf5dXGN2DQwsoV1zTz7m+3hH1 ABtOXD3pu/yr2hhzSrBZy6Ilu8HDvBbrFS/nscK93riNzm4QBsnsbfK/UgBcuaRV OEIyVr5yeng14pdKJ1FY9ujx5fuDyXiHzEQ/RMLZG1xcVPdLZ0KmcdQJFjBxjK8K gmIJNA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:46 2024 by rpki-client on console-fra.rpki-client.org