$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/684E9B283DCF11EF92960323C4F9AE02.roa File: 684E9B283DCF11EF92960323C4F9AE02.roa (raw, json) Hash identifier: Xxh25yGE2y4eAXX8CPlJ0rfVz3kCR3CGvNHDTfM2j6I= Subject key identifier: 96:67:CF:EB:56:15:91:82:3F:86:41:99:A7:82:36:53:B5:83:44:BB Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 029D Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/684E9B283DCF11EF92960323C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:14 +0000 ROA not before: Thu 05 Sep 2024 03:31:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152937 IP address blocks: 160.25.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Sep 5 03:31:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92602-1852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:46:b5:8f:60:01:db:16:ec:ec:f6:62:9e:01: 70:c1:a2:8e:3e:b3:c4:70:f7:6d:3a:8e:3f:6b:cd: 37:14:e3:02:59:3d:58:af:04:b0:be:66:78:10:38: 4c:95:b2:86:20:1b:c6:77:18:5f:e1:fd:8f:52:0b: 26:c0:a7:b8:dd:e5:01:d3:84:42:e5:99:b4:ff:05: 37:9c:9e:e5:e5:93:90:52:5b:a5:6c:dc:24:23:fd: ed:3e:bf:6a:7f:e5:19:88:b2:95:1a:57:07:33:d1: b9:57:42:23:f4:02:97:c8:ee:9f:2a:44:46:9f:64: f5:fe:e5:6f:ff:ea:d1:b6:c6:ae:5b:78:5e:6a:41: 47:97:10:29:59:0d:69:61:55:0c:77:de:cd:2e:fc: a7:49:19:70:cd:01:da:15:3e:39:31:4f:bb:3a:b3: 7a:f8:be:1e:ce:94:68:b5:84:74:ce:88:5c:50:2b: 13:de:a4:5b:48:80:c3:3b:1f:55:e5:ba:e3:43:e9: 10:09:8a:de:a6:78:d1:70:70:60:82:f4:8c:da:9f: 2d:d9:3d:69:d1:bd:09:f5:f8:3c:a2:c0:90:7b:89: d3:68:b9:fd:b8:dc:88:8d:eb:1d:67:ee:41:0a:52: e2:12:aa:88:01:69:34:ac:ff:cf:0e:ce:db:49:02: fe:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:67:CF:EB:56:15:91:82:3F:86:41:99:A7:82:36:53:B5:83:44:BB X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/684E9B283DCF11EF92960323C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.72.0/23 Signature Algorithm: sha256WithRSAEncryption 13:75:c2:ca:6f:33:9a:af:a8:3c:70:0e:f7:c1:5c:d2:cc:d1: 02:bd:37:92:03:82:3a:03:34:12:34:13:55:7b:e0:59:3d:0c: 9a:d2:35:44:e2:56:1b:77:4c:5b:87:73:c5:14:fd:37:a2:18: d5:c7:d0:a0:a6:3f:b2:b5:59:8e:50:73:57:f1:d5:77:bd:92: 93:3f:a3:cc:65:80:fe:27:48:e7:b2:99:23:86:12:3f:9c:68: 57:96:ed:36:3c:57:14:86:f1:ad:9a:86:88:59:24:d2:32:63: 64:0f:35:d1:9b:4e:2f:c5:9a:7a:e7:a4:e9:99:85:53:8d:02: 36:62:12:89:17:66:8f:ee:c4:7d:a1:f1:8a:40:61:f4:c4:2c: b3:ec:89:eb:16:c2:ae:07:6f:63:94:6e:83:01:15:ef:6a:32: 11:5e:97:59:bd:74:be:bd:2c:81:59:92:62:b9:df:47:3a:58: 88:b8:bb:3f:2d:ee:57:bb:9d:d4:e3:19:63:91:87:4a:c5:33: ee:f6:e7:a9:c7:7a:f4:d0:1f:f4:3b:ea:00:c8:9b:71:b2:2d: c9:28:82:1a:5a:11:a9:fb:0e:16:00:c1:af:69:d4:fd:78:20: f2:3e:bb:93:e6:7e:48:7b:c0:f1:e1:ef:a9:6b:75:a4:a8:e8: 39:24:44:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwOTA1MDMzMTE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYwMi0xODUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0a1j2AB2xbs7PZingFwwaKOPrPEcPdtOo4/a803FOMCWT1YrwSwvmZ4EDhM lbKGIBvGdxhf4f2PUgsmwKe43eUB04RC5Zm0/wU3nJ7l5ZOQUlulbNwkI/3tPr9q f+UZiLKVGlcHM9G5V0Ij9AKXyO6fKkRGn2T1/uVv/+rRtsauW3heakFHlxApWQ1p YVUMd97NLvynSRlwzQHaFT45MU+7OrN6+L4ezpRotYR0zohcUCsT3qRbSIDDOx9V 5brjQ+kQCYrepnjRcHBggvSM2p8t2T1p0b0J9fg8osCQe4nTaLn9uNyIjesdZ+5B ClLiEqqIAWk0rP/PDs7bSQL+1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJZnz+tW FZGCP4ZBmaeCNlO1g0S7MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNjg0RTlCMjgz RENGMTFFRjkyOTYwMzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGUgwDQYJKoZIhvcNAQELBQADggEBABN1wspvM5qvqDxw DvfBXNLM0QK9N5IDgjoDNBI0E1V74Fk9DJrSNUTiVht3TFuHc8UU/TeiGNXH0KCm P7K1WY5Qc1fx1Xe9kpM/o8xlgP4nSOeymSOGEj+caFeW7TY8VxSG8a2ahohZJNIy Y2QPNdGbTi/FmnrnpOmZhVONAjZiEokXZo/uxH2h8YpAYfTELLPsiesWwq4Hb2OU boMBFe9qMhFel1m9dL69LIFZkmK530c6WIi4uz8t7le7ndTjGWORh0rFM+7256nH evTQH/Q76gDIm3GyLckoghpaEan7DhYAwa9p1P14IPI+u5Pmfkh7wPHh76lrdaSo 6DkkRG0= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org