$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/538A5850477811EFA2D3515DC4F9AE02.roa File: 538A5850477811EFA2D3515DC4F9AE02.roa (raw, json) Hash identifier: jLGHcr/kgxQh321UzRBsMC+C7BTdSD5YmN+RfGnViHU= Subject key identifier: 02:A5:F1:5A:C3:87:59:37:7D:0D:CA:DB:8A:64:14:D0:F2:66:66:75 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 02A0 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/538A5850477811EFA2D3515DC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:17 +0000 ROA not before: Thu 05 Sep 2024 03:31:17 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152947 IP address blocks: 160.25.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 672 (0x2a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:17 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92605-0e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6d:10:65:9d:af:8a:42:de:cd:f1:f4:86:50: 06:98:c9:da:95:92:d5:e5:d3:2f:30:81:13:55:8f: db:4f:62:a4:da:7e:a9:39:f3:59:04:22:ee:db:b9: 79:ab:80:1f:85:be:93:0e:7e:37:86:e2:01:07:e4: c8:9c:20:70:5f:a1:28:1d:bd:c0:72:20:f2:14:53: 4b:6e:8e:e4:78:3b:3e:98:3b:82:e0:da:65:77:59: 21:70:80:8f:f2:f5:b8:2d:46:58:bc:9f:d7:2d:b7: 08:72:f0:d9:94:ce:ad:9d:1c:8b:f1:39:b5:3f:24: 6b:2b:26:b0:1b:f5:b3:99:d5:60:ab:94:27:33:a5: 87:7c:3f:61:d1:ad:66:00:74:b5:6d:72:76:2c:7a: 97:04:0d:61:39:c9:77:3f:bb:4c:7d:9a:75:75:f4: c9:70:bc:ca:b9:7d:b2:9c:e2:23:cb:8a:8a:01:7a: 49:ab:24:26:c2:6d:21:56:88:dd:0b:55:23:d0:32: f5:47:78:f5:f0:f4:55:a4:b1:e3:6b:43:09:f9:9a: 92:5a:43:c9:08:57:9a:4f:0b:ea:7b:d5:6c:b2:4d: 63:de:c8:8d:92:16:23:2a:24:92:e6:3e:ca:04:b5: a4:42:ad:80:2a:53:aa:5d:53:de:05:7f:ee:24:ed: 19:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A5:F1:5A:C3:87:59:37:7D:0D:CA:DB:8A:64:14:D0:F2:66:66:75 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/538A5850477811EFA2D3515DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.148.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:a7:3f:ab:e7:cc:52:b7:5e:26:41:11:8b:4d:40:fa:61:d6: a3:7e:96:58:88:d9:74:9a:83:c8:63:40:20:d7:01:fc:a6:e1: b7:ab:e3:c8:5e:a2:a7:2e:9d:79:d2:d5:5e:6f:0b:3e:7d:4b: 76:5b:f3:90:d1:be:b7:48:a0:7c:6a:32:1e:f8:03:7a:44:b3: bc:f3:c3:a6:9f:14:d6:72:2c:9a:62:6e:96:1c:0c:0e:c0:d6: b1:e5:78:d8:e2:54:17:f6:09:c1:42:14:aa:c5:cd:47:1d:a3: 9d:ac:82:eb:44:e6:79:0e:4c:cd:26:67:3e:9b:71:41:46:14: 62:e4:54:5a:eb:01:c1:af:26:63:8d:98:b7:8d:6f:e1:8b:20: 2d:e9:fa:4f:a4:25:fb:50:d3:11:ca:d9:08:fe:d4:9d:90:d9: 62:98:0a:78:57:71:86:79:9f:cd:e4:0c:75:91:2d:cf:82:c2: d6:00:f0:40:71:a3:80:7f:d4:be:a7:53:93:9c:88:6d:1c:57: 2b:36:61:5a:ca:6e:22:7a:d5:7d:86:d3:f0:d7:04:da:f3:18: dc:ae:03:47:7a:47:77:cc:b2:48:aa:3b:fd:bb:d8:8e:92:20: 84:35:6e:5f:c2:50:71:9d:f6:54:2e:3e:80:8a:54:8d:70:68: 63:28:8a:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTE3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYwNS0wZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt20QZZ2vikLezfH0hlAGmMnalZLV5dMvMIETVY/bT2Kk2n6pOfNZBCLu27l5 q4Afhb6TDn43huIBB+TInCBwX6EoHb3AciDyFFNLbo7keDs+mDuC4Npld1khcICP 8vW4LUZYvJ/XLbcIcvDZlM6tnRyL8Tm1PyRrKyawG/WzmdVgq5QnM6WHfD9h0a1m AHS1bXJ2LHqXBA1hOcl3P7tMfZp1dfTJcLzKuX2ynOIjy4qKAXpJqyQmwm0hVojd C1Uj0DL1R3j18PRVpLHja0MJ+ZqSWkPJCFeaTwvqe9Vssk1j3siNkhYjKiSS5j7K BLWkQq2AKlOqXVPeBX/uJO0ZXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAKl8VrD h1k3fQ3K24pkFNDyZmZ1MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNTM4QTU4NTA0 Nzc4MTFFRkEyRDM1MTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGZQwDQYJKoZIhvcNAQELBQADggEBADynP6vnzFK3XiZB EYtNQPph1qN+lliI2XSag8hjQCDXAfym4ber48heoqcunXnS1V5vCz59S3Zb85DR vrdIoHxqMh74A3pEs7zzw6afFNZyLJpibpYcDA7A1rHleNjiVBf2CcFCFKrFzUcd o52sgutE5nkOTM0mZz6bcUFGFGLkVFrrAcGvJmONmLeNb+GLIC3p+k+kJftQ0xHK 2Qj+1J2Q2WKYCnhXcYZ5n83kDHWRLc+CwtYA8EBxo4B/1L6nU5OciG0cVys2YVrK biJ61X2G0/DXBNrzGNyuA0d6R3fMskiqO/272I6SIIQ1bl/CUHGd9lQuPoCKVI1w aGMoiuc= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:02 2024 by rpki-client on console-fra.rpki-client.org