$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/37A0A50E44B211EFA3EEED58C4F9AE02.roa File: 37A0A50E44B211EFA3EEED58C4F9AE02.roa (raw, json) Hash identifier: IRgTxl/xWx8gbDYTSE/3et1WT5neYWUfrRxuqvOpXrs= Subject key identifier: 34:9D:C2:40:66:FC:10:65:F7:14:E6:EE:71:4C:0A:56:56:8F:2E:16 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 02A2 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/37A0A50E44B211EFA3EEED58C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:19 +0000 ROA not before: Thu 05 Sep 2024 03:31:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152949 IP address blocks: 160.25.164.0/24 maxlen: 24 160.25.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:19 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92607-41b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:23:6b:6c:ac:ef:53:eb:8e:c7:c2:b9:7d:e2: 3c:b1:38:ed:1f:bb:b3:e3:ea:92:80:d9:d7:a9:85: 53:f9:73:c2:22:d3:b7:03:9b:8c:d8:64:ad:3a:a3: 2c:fd:5b:ec:8c:5f:49:35:64:4b:d8:eb:b2:cc:b0: 8b:fd:97:e2:72:9f:17:5b:ae:2f:68:11:22:be:d8: e2:49:39:96:a0:88:e8:d0:13:30:3f:ee:a7:e6:8f: b4:68:58:d1:65:d7:22:2f:af:8a:18:0f:68:5c:c3: 90:84:0f:f3:03:1f:26:52:b0:09:8c:75:fd:20:b1: 51:8f:18:e5:8d:eb:aa:a8:58:50:da:54:32:41:98: 03:de:07:ba:7a:b8:4f:de:2c:bf:a3:ea:26:b2:42: 4b:a6:81:72:88:84:17:db:53:33:da:bf:1b:5f:90: b2:eb:88:6a:bd:1f:93:71:19:42:7c:05:29:8e:82: ba:d2:4f:88:77:bb:eb:6f:db:51:4b:1d:49:e7:eb: b8:52:7d:f6:9a:f8:bf:fc:b7:62:d6:26:f4:3c:3d: 1f:fd:06:1f:ab:c7:9f:b6:81:c2:b5:93:b4:87:4d: 9c:0c:26:5d:49:d5:29:75:d4:0b:2d:6a:cf:0b:4e: 44:49:2e:0f:92:06:2f:2e:42:07:72:ad:72:d3:17: 36:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:9D:C2:40:66:FC:10:65:F7:14:E6:EE:71:4C:0A:56:56:8F:2E:16 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/37A0A50E44B211EFA3EEED58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.164.0/23 Signature Algorithm: sha256WithRSAEncryption 48:3d:41:4e:4b:43:f0:32:28:ef:40:e2:e8:96:75:9d:91:3a: 8d:bf:5c:10:a6:0a:98:b6:2a:6b:fb:a4:ba:db:a6:bc:7e:35: 98:85:70:38:83:40:71:4a:96:56:69:e4:ab:24:11:9f:24:d3: 50:1d:77:b1:a0:4c:dc:8e:97:c5:9f:6c:05:d4:2e:ac:69:39: d7:a1:c9:32:98:ff:ed:51:f7:13:c0:67:46:a2:e7:d6:30:26: 67:8a:27:16:ba:6d:66:ab:42:c1:87:ef:6f:23:5f:34:c8:58: 2b:f6:0f:ca:cc:92:72:e4:5e:dc:de:9f:b3:9a:7a:9a:5c:48: 31:35:64:4d:c8:5b:d3:4e:c5:c0:5d:94:63:a3:bd:ae:86:b6: 4a:e1:e4:89:0e:5d:7b:e1:94:d9:5d:f5:80:e2:83:df:bb:3e: 77:41:fe:6d:23:40:71:3a:51:d4:1c:84:6a:8e:93:89:1a:75: 8b:55:3d:60:40:77:85:e9:d8:3f:7c:b6:7a:1d:f7:fe:45:69: 77:a2:f0:65:e3:2f:9e:b4:d7:19:ec:4f:d7:ee:55:30:bb:8d: c5:3f:9a:c2:2c:44:c1:67:63:7d:67:33:bb:28:6b:5b:24:af: 6c:75:cd:d9:e7:51:f1:93:66:c4:75:48:a9:d0:08:ec:bf:5e: b6:3d:57:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTE5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYwNy00MWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCNrbKzvU+uOx8K5feI8sTjtH7uz4+qSgNnXqYVT+XPCItO3A5uM2GStOqMs /VvsjF9JNWRL2OuyzLCL/Zficp8XW64vaBEivtjiSTmWoIjo0BMwP+6n5o+0aFjR ZdciL6+KGA9oXMOQhA/zAx8mUrAJjHX9ILFRjxjljeuqqFhQ2lQyQZgD3ge6erhP 3iy/o+omskJLpoFyiIQX21Mz2r8bX5Cy64hqvR+TcRlCfAUpjoK60k+Id7vrb9tR Sx1J5+u4Un32mvi//Ldi1ib0PD0f/QYfq8eftoHCtZO0h02cDCZdSdUpddQLLWrP C05ESS4PkgYvLkIHcq1y0xc2TwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDSdwkBm /BBl9xTm7nFMClZWjy4WMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMzdBMEE1MEU0 NEIyMTFFRkEzRUVFRDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGaQwDQYJKoZIhvcNAQELBQADggEBAEg9QU5LQ/AyKO9A 4uiWdZ2ROo2/XBCmCpi2Kmv7pLrbprx+NZiFcDiDQHFKllZp5KskEZ8k01Add7Gg TNyOl8WfbAXULqxpOdehyTKY/+1R9xPAZ0ai59YwJmeKJxa6bWarQsGH728jXzTI WCv2D8rMknLkXtzen7OaeppcSDE1ZE3IW9NOxcBdlGOjva6Gtkrh5IkOXXvhlNld 9YDig9+7PndB/m0jQHE6UdQchGqOk4kadYtVPWBAd4Xp2D98tnod9/5FaXei8GXj L5601xnsT9fuVTC7jcU/msIsRMFnY31nM7soa1skr2x1zdnnUfGTZsR1SKnQCOy/ XrY9V7w= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org