$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/388D7E38797D11EF8CA64711C4F9AE02.roa File: 388D7E38797D11EF8CA64711C4F9AE02.roa (raw, json) Hash identifier: psVpSVTIe8+AZiKNpgFs07aLN6Bb1+TjrtoRE57p52A= Subject key identifier: 5C:9C:58:46:02:FA:59:9B:AB:4B:5A:0C:84:1F:7E:78:86:AD:FA:D1 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: 08 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/388D7E38797D11EF8CA64711C4F9AE02.roa Signing time: Mon 23 Sep 2024 07:27:01 +0000 ROA not before: Mon 23 Sep 2024 07:27:01 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 153316 IP address blocks: 160.187.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 08:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD Validity Not Before: Sep 23 07:27:01 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f11844-f30b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c1:6e:0b:99:4a:ca:5f:1c:70:0f:11:06:2a: 7e:53:81:76:dd:3b:a2:96:86:34:94:eb:b1:b3:29: 3e:66:52:7e:5f:62:22:c6:ee:42:bd:dd:0e:bf:77: 67:65:79:2e:54:4e:6e:68:0a:73:86:ec:ee:36:4c: 49:ff:eb:36:c4:6a:69:b1:68:08:ab:0c:95:d9:fa: d3:3a:df:ba:d2:90:f5:0c:69:63:e6:4b:85:29:a3: f8:26:9a:dd:bc:25:2a:db:44:c1:86:82:e7:12:c0: 3c:70:cc:c9:76:44:40:4e:6a:e5:12:63:2d:9f:37: 73:fe:df:76:c9:f9:6a:c4:22:b8:e0:9c:64:fe:9f: ea:86:7d:c1:29:6a:ab:f6:84:71:20:b6:1c:1a:7f: 25:5d:57:e7:3f:2b:e8:a9:2f:21:a7:0e:30:63:fc: 40:cf:3b:4c:46:10:30:a3:9b:3c:e1:13:10:c0:66: 35:52:98:12:b4:45:53:20:c9:51:86:a7:04:e9:d4: 9b:f4:a4:c3:3f:4c:9b:08:80:9b:33:f0:90:ad:81: 59:20:f1:e1:e1:b4:a4:c6:2b:d3:c7:f9:10:9b:cb: 75:9a:93:f5:d9:6f:34:6f:99:1f:72:6a:61:b2:35: d5:13:b4:e4:f3:64:3a:48:52:bf:b3:b9:53:31:c4: 9c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:9C:58:46:02:FA:59:9B:AB:4B:5A:0C:84:1F:7E:78:86:AD:FA:D1 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/388D7E38797D11EF8CA64711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.25.0/24 Signature Algorithm: sha256WithRSAEncryption bf:df:cd:60:fc:ff:94:dc:2a:ae:81:c2:3b:d1:65:e5:94:a1: 9b:90:91:8c:90:fb:f9:19:a6:2d:fc:9f:21:8c:b1:8a:13:4c: 22:21:50:33:db:76:15:92:db:e3:d9:fd:48:79:be:85:3e:fe: c8:28:1b:5d:ce:73:32:d5:f6:ac:a8:95:22:a0:8d:25:a2:41: 8b:2a:3f:cc:be:91:22:a6:f2:7c:c7:d2:0f:b4:6e:af:f9:0f: 69:2e:07:da:c5:61:5a:9b:57:55:cb:7e:73:41:43:4b:33:b2: 96:d0:bc:70:94:74:84:4f:e2:c0:2f:76:53:57:90:75:e9:38: 7b:f0:7b:88:23:d8:2a:22:68:f7:9f:8f:48:84:48:c0:5d:a6: 44:b7:59:fc:04:07:57:03:5a:4d:79:61:ba:d6:35:cc:2a:32: 49:fa:fa:8d:91:15:cf:c0:81:97:0f:12:82:51:0a:8f:53:cd: 39:a1:9d:bf:a7:4c:b8:81:2d:43:99:5a:20:ee:10:75:df:73: 96:1d:cf:86:c7:a5:2c:1a:0d:a3:7d:af:6a:a6:c7:a0:0a:19: 5d:a0:1a:51:b0:ab:91:dd:29:21:36:c1:3e:26:f8:f0:2d:05: 93:6e:9c:99:0f:37:76:f2:29:6d:46:9e:e8:66:22:d2:f2:91: 9a:02:a6:a3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NEFDRDExMC8GA1UEBRMoODY5MDREMkQwMkRCOEEwNTlCRUQ5MzhGMkY4RUFFRjND NDIwNkZEMDAeFw0yNDA5MjMwNzI3MDFaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjExODQ0LWYzMGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZwW4LmUrKXxxwDxEGKn5TgXbdO6KWhjSU67GzKT5mUn5fYiLG7kK93Q6/d2dl eS5UTm5oCnOG7O42TEn/6zbEammxaAirDJXZ+tM637rSkPUMaWPmS4Upo/gmmt28 JSrbRMGGgucSwDxwzMl2REBOauUSYy2fN3P+33bJ+WrEIrjgnGT+n+qGfcEpaqv2 hHEgthwafyVdV+c/K+ipLyGnDjBj/EDPO0xGEDCjmzzhExDAZjVSmBK0RVMgyVGG pwTp1Jv0pMM/TJsIgJsz8JCtgVkg8eHhtKTGK9PH+RCby3Wak/XZbzRvmR9yamGy NdUTtOTzZDpIUr+zuVMxxJwbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUXJxYRgL6 WZurS1oMhB9+eIat+tEwHwYDVR0jBBgwFoAUhpBNLQLbigWb7ZOPL46u88Qgb9Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0QUNELzFGNTM1NjlFNzU2 RTExRUY5Q0E0NkU1MUM0RjlBRTAyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHBCTkxRTGJpZ1diN1pPUEw0NnU4OFFnYjlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEFDRC8xRjUzNTY5RTc1NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi8zODhEN0UzODc5 N0QxMUVGOENBNjQ3MTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7GTANBgkqhkiG9w0BAQsFAAOCAQEAv9/NYPz/lNwqroHC O9Fl5ZShm5CRjJD7+RmmLfyfIYyxihNMIiFQM9t2FZLb49n9SHm+hT7+yCgbXc5z MtX2rKiVIqCNJaJBiyo/zL6RIqbyfMfSD7Rur/kPaS4H2sVhWptXVct+c0FDSzOy ltC8cJR0hE/iwC92U1eQdek4e/B7iCPYKiJo95+PSIRIwF2mRLdZ/AQHVwNaTXlh utY1zCoySfr6jZEVz8CBlw8SglEKj1PNOaGdv6dMuIEtQ5laIO4Qdd9zlh3Phsel LBoNo32vaqbHoAoZXaAaUbCrkd0pITbBPib48C0Fk26cmQ83dvIpbUae6GYi0vKR mgKmow== -----END CERTIFICATE-----Generated at Wed Feb 19 20:52:02 2025 by rpki-client