$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/BCA395126C1811EFAFBE6B0FC4F9AE02.roa File: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (raw, json) Hash identifier: Mb/JnRkZoctaPV3WHu0XOAV8U5+c9ZbVehfTb/x4GMg= Subject key identifier: E8:78:C0:3C:0F:43:34:F5:C3:27:13:6D:23:09:2B:63:F5:86:2D:32 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 02 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/BCA395126C1811EFAFBE6B0FC4F9AE02.roa Signing time: Fri 06 Sep 2024 06:24:57 +0000 ROA not before: Fri 06 Sep 2024 06:24:57 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153049 IP address blocks: 160.25.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Sep 6 06:24:57 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66daa039-5097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e4:c1:5f:84:71:d5:50:1f:85:95:9f:98:09: 2c:f3:d0:c4:8f:c7:8a:49:38:cd:b9:9b:5d:4a:96: ec:96:c8:a9:5b:a2:bc:c0:f4:6b:89:d1:6b:88:0d: 02:5a:d1:80:b5:e0:d4:8e:b2:99:d7:82:56:84:54: 8f:81:cf:3b:80:49:f5:dc:8b:5a:ca:b3:95:e2:0c: 71:e4:a9:f3:dc:be:af:db:43:3c:4f:a7:48:c1:24: 9b:4a:0d:de:07:2e:7b:ce:ca:7d:ba:db:9c:83:85: 31:97:3d:44:0b:5b:ff:69:66:49:c6:36:55:e9:48: fc:5b:57:2a:1e:79:e1:91:b6:61:0e:11:a5:00:10: c7:5f:24:f6:e4:f7:7d:5c:6f:19:56:75:a4:a7:58: 4a:89:88:ad:b7:4d:10:7d:ab:be:9e:5c:11:8a:ca: f6:d9:21:3e:2b:1b:91:23:bb:ab:29:09:fb:e0:6f: af:7b:2b:fa:8c:ae:2c:68:6b:76:f1:00:b8:89:0c: b5:60:e0:0a:9f:e0:97:3e:eb:e2:95:88:e6:38:9f: ed:8b:24:c1:b6:3e:21:41:e7:1b:a3:a9:13:4f:f8: cd:f7:d6:f4:5b:9c:46:7f:43:07:53:fd:4d:cf:30: a3:00:63:d9:64:2f:93:83:40:30:5b:5e:67:21:1a: 60:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:78:C0:3C:0F:43:34:F5:C3:27:13:6D:23:09:2B:63:F5:86:2D:32 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/BCA395126C1811EFAFBE6B0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.66.0/23 Signature Algorithm: sha256WithRSAEncryption b6:7e:cb:13:0d:f6:86:7c:f2:1e:c6:3b:02:f1:32:69:09:1b: c5:88:f1:de:a5:8b:65:c5:23:dd:ed:b9:7d:77:aa:63:71:25: 44:37:31:4f:62:50:fd:8d:bf:c6:00:91:75:5a:82:17:98:e5: 34:12:50:dd:a7:28:29:7e:e8:b9:0d:6b:b7:7f:e4:b2:64:8b: 16:f6:05:ee:17:ab:f5:ae:a7:87:c9:bf:42:83:0e:b3:6e:fe: dd:f7:20:06:81:d8:c8:fa:e9:f2:9a:1a:aa:89:b1:c5:ba:2f: ce:eb:18:80:1c:df:3c:14:53:38:3a:d4:f3:76:42:29:df:28: da:e5:bb:67:9c:10:94:ed:41:6e:cf:26:2e:66:70:14:74:00: 53:df:b5:15:95:10:ec:2a:15:05:90:6f:f4:0c:3b:a7:93:18: 97:02:ee:1f:82:6b:04:e9:5a:4b:d0:0e:77:d3:52:e4:3e:04: 02:d9:53:06:3e:d8:05:0c:17:ab:0c:26:9e:c5:75:9a:95:c9: 01:71:39:50:34:eb:d6:f2:cf:0b:a2:47:46:fe:b2:18:3f:39: eb:43:1e:7d:af:75:ad:f2:45:c8:2e:45:47:c8:7f:26:a7:b4: 64:66:86:65:ef:2f:68:2b:79:7a:ed:fa:b8:ef:6f:09:0b:09: 0b:2b:18:89 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTJDNDExMC8GA1UEBRMoQ0ZDMDgwNERBQzRGRkY3QTIyQTQwNEUxMEU5ODY0QTcx MURFMTlDOTAeFw0yNDA5MDYwNjI0NTdaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGFhMDM5LTUwOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ5MFfhHHVUB+FlZ+YCSzz0MSPx4pJOM25m11KluyWyKlborzA9GuJ0WuIDQJa 0YC14NSOspnXglaEVI+BzzuASfXci1rKs5XiDHHkqfPcvq/bQzxPp0jBJJtKDd4H LnvOyn2625yDhTGXPUQLW/9pZknGNlXpSPxbVyoeeeGRtmEOEaUAEMdfJPbk931c bxlWdaSnWEqJiK23TRB9q76eXBGKyvbZIT4rG5Eju6spCfvgb697K/qMrixoa3bx ALiJDLVg4Aqf4Jc+6+KViOY4n+2LJMG2PiFB5xujqRNP+M331vRbnEZ/QwdT/U3P MKMAY9lkL5ODQDBbXmchGmBzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6HjAPA9D NPXDJxNtIwkrY/WGLTIwHwYDVR0jBBgwFoAUz8CATaxP/3oipAThDphkpxHeGckw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMkM0L0YzMTlFREMyNkMx NzExRUZCREJGRDUwQkM0RjlBRTAyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdj ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvejhDQVRheFBfM29pcEFUaERwaGtweEhlR2NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi9CQ0EzOTUxMjZD MTgxMUVGQUZCRTZCMEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAZQjANBgkqhkiG9w0BAQsFAAOCAQEAtn7LEw32hnzyHsY7 AvEyaQkbxYjx3qWLZcUj3e25fXeqY3ElRDcxT2JQ/Y2/xgCRdVqCF5jlNBJQ3aco KX7ouQ1rt3/ksmSLFvYF7her9a6nh8m/QoMOs27+3fcgBoHYyPrp8poaqomxxbov zusYgBzfPBRTODrU83ZCKd8o2uW7Z5wQlO1Bbs8mLmZwFHQAU9+1FZUQ7CoVBZBv 9Aw7p5MYlwLuH4JrBOlaS9AOd9NS5D4EAtlTBj7YBQwXqwwmnsV1mpXJAXE5UDTr 1vLPC6JHRv6yGD8560Mefa91rfJFyC5FR8h/Jqe0ZGaGZe8vaCt5eu36uO9vCQsJ CysYiQ== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:23 2024 by rpki-client on console-fra.rpki-client.org