$ rpki-client -vvf rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/FB29FEA06C1F11EFA8C5694EC4F9AE02.roa File: FB29FEA06C1F11EFA8C5694EC4F9AE02.roa (raw, json) Hash identifier: UvG+rrdQc4qonfWzAVMV6XBgR9R1iSghae9lnt9yKqA= Subject key identifier: A1:08:FD:FC:E4:BF:41:D4:CC:32:93:6D:DF:0C:F6:E8:8C:13:FE:0D Certificate issuer: /CN=A919AD11/serialNumber=A554DF3D47027FFAF7CB8A166F3E0A10E3177867 Certificate serial: 24 Authority key identifier: A5:54:DF:3D:47:02:7F:FA:F7:CB:8A:16:6F:3E:0A:10:E3:17:78:67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/FB29FEA06C1F11EFA8C5694EC4F9AE02.roa Signing time: Fri 06 Sep 2024 07:16:49 +0000 ROA not before: Fri 06 Sep 2024 07:16:49 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153050 IP address blocks: 160.25.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.crl rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AD11/serialNumber=A554DF3D47027FFAF7CB8A166F3E0A10E3177867 Validity Not Before: Sep 6 07:16:49 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66daac60-afba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b7:08:dc:7c:9b:7f:54:86:f2:71:b2:42:b0: f2:bf:44:e9:e1:f8:12:54:f1:08:28:ca:ed:87:1b: cf:b8:55:92:ac:52:d6:9f:b5:c4:6e:a1:bb:29:61: 51:8f:fa:33:54:29:80:d6:2e:f4:07:37:c8:40:65: 40:73:a9:f2:a4:3a:69:9c:1d:c6:3b:34:84:bf:38: 5b:2b:63:af:28:47:27:0f:cc:ff:6f:28:c1:a1:68: cd:58:19:d5:70:18:c6:fa:5e:cb:eb:47:eb:e7:9f: 0b:80:ee:c6:f9:7f:da:88:44:36:3c:93:55:24:4a: 8b:2f:cd:7d:10:90:66:f6:8c:07:08:d0:83:e4:3d: b2:a7:b1:24:9c:c2:fa:51:6c:45:a2:74:3d:e6:4e: e9:09:02:f2:e9:34:12:62:e7:e3:b0:78:30:4a:14: 42:9f:dd:b9:4c:bd:a3:aa:5c:54:9e:54:29:f9:f8: f6:1b:f6:52:8a:12:de:4c:44:3f:f6:9e:0b:c1:06: 21:07:86:00:1c:0f:00:73:90:e6:89:b1:92:d5:f0: a5:e0:59:f2:75:97:6c:b7:eb:d9:94:e7:5f:d2:02: f7:20:71:85:87:c4:48:8a:b3:1a:25:84:44:5a:42: a6:62:95:9c:c4:15:61:a8:3b:41:24:7a:4e:0e:f9: 50:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:08:FD:FC:E4:BF:41:D4:CC:32:93:6D:DF:0C:F6:E8:8C:13:FE:0D X509v3 Authority Key Identifier: keyid:A5:54:DF:3D:47:02:7F:FA:F7:CB:8A:16:6F:3E:0A:10:E3:17:78:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/FB29FEA06C1F11EFA8C5694EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.33.0/24 Signature Algorithm: sha256WithRSAEncryption b7:61:33:a8:03:74:1c:ad:ba:de:83:55:1e:2a:6f:a8:fb:c3: d2:6b:41:3b:c7:61:d8:46:b5:4f:d6:67:5f:e7:27:1b:8c:83: 6b:a1:a4:52:3e:29:e9:40:d9:a4:da:6b:dc:d6:3b:c8:db:1a: 8b:ed:85:21:4b:db:61:44:db:07:71:d3:10:ca:28:9e:8b:01: a9:0f:ce:47:63:e0:56:a2:d2:a8:08:95:f6:c5:6b:1e:40:2a: 5a:ad:93:3b:ab:c2:3e:7b:0d:f2:f4:16:8a:bc:d2:7b:53:b0: 89:f3:b0:98:a2:0e:48:06:37:bf:d2:dd:3b:f5:fc:ae:a0:cf: a4:8b:58:46:10:cb:11:66:44:8b:ab:28:ac:de:0a:55:26:e6: 73:c7:6a:c5:09:0a:f0:1f:63:c8:0a:93:fc:e4:43:b0:02:b9: 2e:fd:02:55:bd:58:83:73:45:87:e1:29:16:32:66:e9:c7:38: 59:54:a1:5a:d6:59:cf:99:b0:0b:32:88:ef:9d:a3:c9:c4:43: cd:74:81:a7:aa:56:3a:d3:9a:f4:60:11:27:f1:f2:45:24:7e: 3c:c5:4b:b8:1d:c0:5a:bc:91:ae:f5:32:ad:4f:a2:30:fa:67: 03:15:77:e2:3a:f1:39:b5:30:93:3c:d9:1f:32:3b:ac:d2:62: fa:64:d4:37 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QUQxMTExMC8GA1UEBRMoQTU1NERGM0Q0NzAyN0ZGQUY3Q0I4QTE2NkYzRTBBMTBF MzE3Nzg2NzAeFw0yNDA5MDYwNzE2NDlaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGFhYzYwLWFmYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLtwjcfJt/VIbycbJCsPK/ROnh+BJU8Qgoyu2HG8+4VZKsUtaftcRuobspYVGP +jNUKYDWLvQHN8hAZUBzqfKkOmmcHcY7NIS/OFsrY68oRycPzP9vKMGhaM1YGdVw GMb6XsvrR+vnnwuA7sb5f9qIRDY8k1UkSosvzX0QkGb2jAcI0IPkPbKnsSScwvpR bEWidD3mTukJAvLpNBJi5+OweDBKFEKf3blMvaOqXFSeVCn5+PYb9lKKEt5MRD/2 ngvBBiEHhgAcDwBzkOaJsZLV8KXgWfJ1l2y369mU51/SAvcgcYWHxEiKsxolhERa QqZilZzEFWGoO0Ekek4O+VDxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUoQj9/OS/ QdTMMpNt3wz26IwT/g0wHwYDVR0jBBgwFoAUpVTfPUcCf/r3y4oWbz4KEOMXeGcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBRDExL0ZDNTAzODQ4M0E4 OTExRUY5ODE3QjI2QUM0RjlBRTAyL3BWVGZQVWNDZl9yM3k0b1diejRLRU9NWGVH Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcFZUZlBVY0NmX3IzeTRvV2J6NEtFT01YZUdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUQxMS9GQzUwMzg0ODNBODkxMUVGOTgxN0IyNkFDNEY5QUUwMi9GQjI5RkVBMDZD MUYxMUVGQThDNTY5NEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAZITANBgkqhkiG9w0BAQsFAAOCAQEAt2EzqAN0HK263oNV HipvqPvD0mtBO8dh2Ea1T9ZnX+cnG4yDa6GkUj4p6UDZpNpr3NY7yNsai+2FIUvb YUTbB3HTEMoonosBqQ/OR2PgVqLSqAiV9sVrHkAqWq2TO6vCPnsN8vQWirzSe1Ow ifOwmKIOSAY3v9LdO/X8rqDPpItYRhDLEWZEi6sorN4KVSbmc8dqxQkK8B9jyAqT /ORDsAK5Lv0CVb1Yg3NFh+EpFjJm6cc4WVShWtZZz5mwCzKI752jycRDzXSBp6pW OtOa9GARJ/HyRSR+PMVLuB3AWryRrvUyrU+iMPpnAxV34jrxObUwkzzZHzI7rNJi +mTUNw== -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:57 2024 by rpki-client on console-ams.rpki-client.org