$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa File: 385E3308639D11EFB668775FC4F9AE02.roa (raw, json) Hash identifier: LXvvIFvrSNuKdk49zG4/lilXd1uzEXFwF73jkXgbGks= Subject key identifier: 44:A3:9B:E3:76:53:31:0E:4F:08:10:D8:2A:B8:92:7C:1A:34:02:73 Certificate issuer: /CN=A91CA735/serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Certificate serial: 02 Authority key identifier: BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa Signing time: Mon 26 Aug 2024 11:20:38 +0000 ROA not before: Mon 26 Aug 2024 11:20:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135102 IP address blocks: 160.25.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735/serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Validity Not Before: Aug 26 11:20:38 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66cc6506-fed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:36:bb:f2:1d:a6:dd:16:e6:97:59:64:29:40: 41:ab:b9:fa:41:cb:4e:13:10:5a:5b:2a:ba:39:c8: 55:bd:df:93:ab:9f:63:20:f4:3e:8f:e9:f1:73:09: a4:37:eb:03:c9:57:97:9b:17:8d:1d:3e:68:7c:b3: 0d:85:14:53:dd:ed:e2:4e:f6:6f:86:41:27:31:38: 93:2a:78:d9:15:9e:43:56:55:c8:2c:8d:30:f4:32: f5:35:cd:c9:b4:05:10:50:9b:90:f3:e6:01:a3:e8: ab:13:0a:c1:c0:1d:f5:d8:a1:32:75:14:58:f1:38: 6f:82:6c:b6:d6:f5:49:53:64:27:5e:e1:e3:49:5b: 5a:a3:46:d0:23:4e:56:7c:24:1f:50:f0:98:63:fc: c1:b7:89:9c:7f:f2:12:9a:ee:22:8f:4f:02:0c:22: ff:69:ac:e3:2b:93:08:4a:c6:3e:20:ab:fd:a3:32: 2c:5e:ef:29:7e:88:fb:8f:08:53:29:37:d1:e4:b5: 08:da:9d:f1:83:c2:0f:31:99:96:1c:06:cf:7c:1b: d0:83:f9:68:bb:0b:b6:b3:fb:2c:ea:6a:0e:29:19: 7d:43:c6:8c:a5:d5:ea:08:ed:4d:55:fe:15:83:e2: 1f:03:85:ef:f0:c0:b8:5c:aa:e2:c3:8d:2f:ae:70: 6d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:A3:9B:E3:76:53:31:0E:4F:08:10:D8:2A:B8:92:7C:1A:34:02:73 X509v3 Authority Key Identifier: keyid:BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.254.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:fe:5e:a5:7c:a9:79:cd:29:95:a0:8a:2b:80:90:5f:f4:9f: ab:68:df:4a:cf:89:db:f8:e0:7d:5c:b8:20:5d:d3:6a:e9:01: 5b:10:ac:5e:7e:aa:9c:c5:ef:29:31:63:83:14:8b:af:e6:6e: a6:b7:d0:c6:11:a9:7a:a8:a6:3a:1f:42:47:6e:db:e0:3a:54: f7:9c:fa:f8:33:fd:21:29:37:07:ba:5b:c3:85:8f:bd:68:74: 5a:e4:df:6d:9a:84:f6:ff:7a:ef:6c:5b:4c:b1:66:bd:98:e4: 9d:ad:87:e8:78:c1:d4:ce:f2:d5:c8:98:3e:3f:9b:0c:75:c7: 54:79:0d:13:bd:fd:0a:06:8c:6e:b1:35:a2:01:6f:7f:c7:18: 94:52:dd:79:d2:2f:05:82:3c:27:5e:93:03:8d:23:a5:57:aa: 67:b0:d3:ee:2c:61:e1:36:d7:58:f3:03:e2:4d:33:a7:97:75: 30:49:88:a2:fc:95:8e:62:ad:00:17:66:a7:06:f6:77:26:51: 14:2f:c6:32:c1:43:49:37:f6:a5:34:39:f6:84:a7:a1:3c:22: 68:58:19:18:ea:96:37:0a:d4:30:e1:7e:4b:3f:51:db:76:b5: 4f:f6:14:6b:70:64:d0:d2:65:66:f1:d0:e5:77:ed:0a:c1:d4: cc:d8:a9:a4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTczNTExMC8GA1UEBRMoQkIzQkQ1RDdFMTk5MjREODYyQjZBNDFCRjM0QzdGREJC QkU5MUM2RDAeFw0yNDA4MjYxMTIwMzhaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2M2NTA2LWZlZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwNrvyHabdFuaXWWQpQEGrufpBy04TEFpbKro5yFW935Orn2Mg9D6P6fFzCaQ3 6wPJV5ebF40dPmh8sw2FFFPd7eJO9m+GQScxOJMqeNkVnkNWVcgsjTD0MvU1zcm0 BRBQm5Dz5gGj6KsTCsHAHfXYoTJ1FFjxOG+CbLbW9UlTZCde4eNJW1qjRtAjTlZ8 JB9Q8Jhj/MG3iZx/8hKa7iKPTwIMIv9prOMrkwhKxj4gq/2jMixe7yl+iPuPCFMp N9HktQjanfGDwg8xmZYcBs98G9CD+Wi7C7az+yzqag4pGX1Dxoyl1eoI7U1V/hWD 4h8Dhe/wwLhcquLDjS+ucG0JAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURKOb43ZT MQ5PCBDYKriSfBo0AnMwHwYDVR0jBBgwFoAUuzvV1+GZJNhitqQb80x/27vpHG0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBNzM1L0M3RjQ0MUM2NjM5 QjExRUY5QjREMkE1REM0RjlBRTAyL3V6dlYxLUdaSk5oaXRxUWI4MHhfMjd2cEhH MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdXp2VjEtR1pKTmhpdHFRYjgweF8yN3ZwSEcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9DN0Y0NDFDNjYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi8zODVFMzMwODYz OUQxMUVGQjY2ODc3NUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAZ/jANBgkqhkiG9w0BAQsFAAOCAQEAnf5epXypec0plaCK K4CQX/Sfq2jfSs+J2/jgfVy4IF3TaukBWxCsXn6qnMXvKTFjgxSLr+ZuprfQxhGp eqimOh9CR27b4DpU95z6+DP9ISk3B7pbw4WPvWh0WuTfbZqE9v9672xbTLFmvZjk na2H6HjB1M7y1ciYPj+bDHXHVHkNE739CgaMbrE1ogFvf8cYlFLdedIvBYI8J16T A40jpVeqZ7DT7ixh4TbXWPMD4k0zp5d1MEmIovyVjmKtABdmpwb2dyZRFC/GMsFD STf2pTQ59oSnoTwiaFgZGOqWNwrUMOF+Sz9R23a1T/YUa3Bk0NJlZvHQ5XftCsHU zNippA== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:25 2024 by rpki-client on console-fra.rpki-client.org