$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/129AD14466B311EF8C2A846AC4F9AE02.roa File: 129AD14466B311EF8C2A846AC4F9AE02.roa (raw, json) Hash identifier: 0mj1y8LRDJ1Lu7H12VQ3HBkkceFM+xIS3TtpDjoQjF8= Subject key identifier: D8:79:CC:6F:C3:EE:7B:DA:A1:51:5B:C8:25:14:D2:FB:BF:93:1D:C3 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0288 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/129AD14466B311EF8C2A846AC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:30:54 +0000 ROA not before: Thu 05 Sep 2024 03:30:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149147 IP address blocks: 160.25.146.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 648 (0x288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:30:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d925ee-9b02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1b:b6:4e:d3:e3:86:97:2a:f6:c0:7c:6b:db: f1:3b:c0:42:74:90:27:99:79:d5:96:6f:c7:76:31: 7f:57:5e:01:a7:fc:68:80:95:37:61:5c:fa:96:2d: be:bc:c4:ea:4c:42:64:33:8c:95:be:98:6d:a3:8d: cb:75:10:aa:fc:a2:f4:e6:36:60:c4:bb:ec:ea:f0: bb:5e:3b:1b:3c:e2:16:8c:64:71:7e:6b:a2:74:31: 8b:1f:c0:8b:86:a9:33:7d:2d:da:35:60:e8:f4:1a: d0:11:5e:5d:4a:df:e2:05:de:3d:ae:8d:d7:7a:bf: 47:42:a7:73:99:f1:80:7a:aa:a6:39:8f:ca:43:2f: 02:f4:fe:1a:6e:ee:95:1f:89:bb:99:62:07:f7:a1: 37:41:05:2d:dc:ad:19:a1:a8:d3:00:67:03:e2:60: 5f:92:a4:36:f5:5d:56:78:f8:45:00:8f:0c:7e:31: 5d:2b:0b:93:63:2d:2b:c5:06:a8:ec:57:b1:30:73: d9:4f:58:eb:8b:7a:8a:9f:42:0c:28:21:90:17:49: b4:5a:6c:10:0e:66:e4:82:50:48:6a:c1:1a:da:48: d3:31:01:c8:d3:11:38:ee:7a:30:dc:bd:82:58:ed: 9d:54:24:52:8b:24:1e:e1:b2:fa:fe:75:03:71:88: 92:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:79:CC:6F:C3:EE:7B:DA:A1:51:5B:C8:25:14:D2:FB:BF:93:1D:C3 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/129AD14466B311EF8C2A846AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.146.0/23 Signature Algorithm: sha256WithRSAEncryption 07:75:7b:fd:3b:ee:69:e0:d4:bd:51:08:4f:19:81:39:4d:72: 91:90:e3:e7:d9:fd:08:a1:07:c2:ed:30:f4:25:06:68:3b:e6: 51:a9:ba:bd:6b:32:92:8a:00:8e:a8:e9:28:a9:53:9d:c1:d5: 3c:99:0e:fb:b9:08:fd:e6:47:5c:1a:ba:68:39:37:d3:ea:ce: 54:98:c3:38:3d:bd:53:1a:7a:a4:e7:4b:b1:f9:b9:fe:d9:94: 37:5c:54:5b:2e:54:f8:7f:d4:98:b2:e7:a4:cb:f7:8d:24:41: c9:29:24:3e:55:46:6d:3c:d8:dd:47:fa:58:95:c3:1c:d4:2b: ca:45:18:78:88:ab:7b:89:06:b8:e4:7c:14:9d:0a:66:9a:95: 97:55:c9:0b:16:9f:e8:20:12:7c:94:88:2b:f9:41:0e:d1:f4: dd:7d:33:5c:df:6a:f8:a5:fb:aa:11:42:fa:9d:6c:91:de:46: ae:89:b8:9f:de:f8:46:a5:50:60:63:f8:df:0f:f1:a0:03:5a: 30:f7:56:eb:37:13:c5:8c:9b:91:93:65:18:24:a1:97:a8:64: 47:35:4b:35:e2:13:a8:e8:d6:cb:4c:d9:8b:c9:58:ab:2d:95: e7:bb:6f:4a:8c:c2:51:11:b7:ad:79:93:f5:f3:02:5a:51:a0: 19:3e:25:b7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMDU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjVlZS05YjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBu2TtPjhpcq9sB8a9vxO8BCdJAnmXnVlm/HdjF/V14Bp/xogJU3YVz6li2+ vMTqTEJkM4yVvphto43LdRCq/KL05jZgxLvs6vC7XjsbPOIWjGRxfmuidDGLH8CL hqkzfS3aNWDo9BrQEV5dSt/iBd49ro3Xer9HQqdzmfGAeqqmOY/KQy8C9P4abu6V H4m7mWIH96E3QQUt3K0ZoajTAGcD4mBfkqQ29V1WePhFAI8MfjFdKwuTYy0rxQao 7FexMHPZT1jri3qKn0IMKCGQF0m0WmwQDmbkglBIasEa2kjTMQHI0xE47now3L2C WO2dVCRSiyQe4bL6/nUDcYiSRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNh5zG/D 7nvaoVFbyCUU0vu/kx3DMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMTI5QUQxNDQ2 NkIzMTFFRjhDMkE4NDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGZIwDQYJKoZIhvcNAQELBQADggEBAAd1e/077mng1L1R CE8ZgTlNcpGQ4+fZ/QihB8LtMPQlBmg75lGpur1rMpKKAI6o6SipU53B1TyZDvu5 CP3mR1waumg5N9PqzlSYwzg9vVMaeqTnS7H5uf7ZlDdcVFsuVPh/1Jiy56TL940k QckpJD5VRm082N1H+liVwxzUK8pFGHiIq3uJBrjkfBSdCmaalZdVyQsWn+ggEnyU iCv5QQ7R9N19M1zfavil+6oRQvqdbJHeRq6JuJ/e+EalUGBj+N8P8aADWjD3Vus3 E8WMm5GTZRgkoZeoZEc1SzXiE6jo1stM2YvJWKstlee7b0qMwlERt615k/XzAlpR oBk+Jbc= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org