$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/36CFD1EE4AD011EF9B941D17C4F9AE02.roa File: 36CFD1EE4AD011EF9B941D17C4F9AE02.roa (raw, json) Hash identifier: EOPx00rRZjGS/73Br0xTrWoW0kA4+3+SpewBHZe+BK0= Subject key identifier: 17:8A:6F:7E:67:BE:C9:72:7D:11:DE:7B:15:95:9E:45:8B:46:FD:6B Certificate issuer: /CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Certificate serial: 02 Authority key identifier: C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/36CFD1EE4AD011EF9B941D17C4F9AE02.roa Signing time: Thu 25 Jul 2024 21:52:41 +0000 ROA not before: Thu 25 Jul 2024 21:52:41 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153173 IP address blocks: 160.25.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Validity Not Before: Jul 25 21:52:41 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66a2c928-1d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:66:96:81:2d:e8:e5:85:dc:86:9b:48:dd:64: 38:e9:22:f4:43:ca:74:e9:54:ad:f9:1c:eb:f5:0b: 1d:e3:a6:2b:5e:4a:7c:40:c0:5b:ed:4a:3d:f0:11: 53:a6:ba:99:42:2c:d3:bf:ee:68:28:7d:b6:10:1d: 62:92:80:cb:53:c1:a2:35:db:47:c5:3e:a1:51:90: 96:8b:a1:7c:c6:a9:e0:f3:65:c6:83:2f:ec:4a:59: b5:05:cd:b1:15:87:8b:50:79:33:b0:b8:27:3a:a9: b8:ef:f2:b6:70:73:f5:32:59:9c:0c:53:ca:c1:e9: 1b:31:93:66:27:dc:83:7f:05:dc:f4:c0:c5:5a:21: 46:6a:09:57:67:d5:3f:a7:9e:bd:aa:60:3e:79:a7: 8a:d0:8b:3d:a9:9c:b5:ed:f3:ae:70:8f:4c:b0:95: 00:cb:53:ad:10:73:43:fa:cc:d5:61:08:13:65:00: 08:a6:4a:40:20:95:f0:09:db:27:f7:38:f0:23:de: f8:bb:15:0f:b1:0c:69:8a:f7:66:a3:08:e3:cc:c5: 0f:3c:16:8a:44:cb:7a:7b:af:bf:e4:fb:0f:77:fe: 9a:44:2d:7b:29:a8:00:fb:f8:f4:4a:bf:5f:03:c5: 7e:db:f0:1b:23:40:37:83:bc:78:b0:93:6a:20:de: 51:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:8A:6F:7E:67:BE:C9:72:7D:11:DE:7B:15:95:9E:45:8B:46:FD:6B X509v3 Authority Key Identifier: keyid:C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/36CFD1EE4AD011EF9B941D17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.213.0/24 Signature Algorithm: sha256WithRSAEncryption 08:44:20:d6:6b:b3:08:56:42:81:d0:41:b2:b0:c8:5b:c7:28: 7a:4d:9d:f4:dd:92:c1:66:a1:ab:0a:7e:09:4c:3a:72:b4:6c: 62:88:80:89:4c:48:7e:35:f4:47:66:d5:d5:45:37:29:02:0b: c4:7b:fa:61:98:41:c9:84:f4:10:28:39:4a:9d:29:cc:a8:c4: 92:41:96:35:e3:9f:b3:4d:73:39:4d:e4:71:24:88:25:4f:60: 32:94:0b:4a:7d:d8:f7:43:d0:f4:f9:29:7a:5c:fd:ab:d6:6f: 9d:c7:01:40:d2:b9:88:b4:8f:2a:d7:cd:d7:d9:6b:49:0d:43: db:f5:08:09:81:6b:f7:e4:4e:ef:eb:4e:fe:4f:2d:39:f7:0e: 3d:37:fa:ba:7c:10:38:4a:da:36:ff:37:91:ab:0f:8d:ae:5a: 3c:83:49:3c:82:5b:68:98:5a:d3:2b:c3:af:f5:45:d4:61:69: ca:7d:45:7b:34:ab:ce:58:73:a2:03:b3:b0:cb:20:94:a4:28: c5:58:8d:a6:5c:7e:5a:d8:98:b5:30:3f:fc:6b:db:eb:3f:10: f5:de:3c:22:be:7c:d1:96:4e:22:0c:33:19:fc:99:95:fd:af: a1:cb:da:b9:2f:05:f5:08:ff:48:bf:23:b0:72:8e:55:28:84: 63:d9:90:ea -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDFGOTExMC8GA1UEBRMoQzI3QUUxRDE2NDcyOUY0M0Q5RTBGQTY0QkU1MUQwQjZB RTA5RUI5OTAeFw0yNDA3MjUyMTUyNDFaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTJjOTI4LTFkNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYZpaBLejlhdyGm0jdZDjpIvRDynTpVK35HOv1Cx3jpiteSnxAwFvtSj3wEVOm uplCLNO/7mgofbYQHWKSgMtTwaI120fFPqFRkJaLoXzGqeDzZcaDL+xKWbUFzbEV h4tQeTOwuCc6qbjv8rZwc/UyWZwMU8rB6Rsxk2Yn3IN/Bdz0wMVaIUZqCVdn1T+n nr2qYD55p4rQiz2pnLXt865wj0ywlQDLU60Qc0P6zNVhCBNlAAimSkAglfAJ2yf3 OPAj3vi7FQ+xDGmK92ajCOPMxQ88FopEy3p7r7/k+w93/ppELXspqAD7+PRKv18D xX7b8BsjQDeDvHiwk2og3lG3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUF4pvfme+ yXJ9Ed57FZWeRYtG/WswHwYDVR0jBBgwFoAUwnrh0WRyn0PZ4PpkvlHQtq4J65kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMUY5LzQwMkVEMjcyNEFD RjExRUZCODIxOEUxNUM0RjlBRTAyL3ducmgwV1J5bjBQWjRQcGt2bEhRdHE0SjY1 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd25yaDBXUnluMFBaNFBwa3ZsSFF0cTRKNjVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDFGOS80MDJFRDI3MjRBQ0YxMUVGQjgyMThFMTVDNEY5QUUwMi8zNkNGRDFFRTRB RDAxMUVGOUI5NDFEMTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAZ1TANBgkqhkiG9w0BAQsFAAOCAQEACEQg1muzCFZCgdBB srDIW8coek2d9N2SwWahqwp+CUw6crRsYoiAiUxIfjX0R2bV1UU3KQILxHv6YZhB yYT0ECg5Sp0pzKjEkkGWNeOfs01zOU3kcSSIJU9gMpQLSn3Y90PQ9Pkpelz9q9Zv nccBQNK5iLSPKtfN19lrSQ1D2/UICYFr9+RO7+tO/k8tOfcOPTf6unwQOEraNv83 kasPja5aPINJPIJbaJha0yvDr/VF1GFpyn1FezSrzlhzogOzsMsglKQoxViNplx+ WtiYtTA//Gvb6z8Q9d48Ir580ZZOIgwzGfyZlf2vocvauS8F9Qj/SL8jsHKOVSiE Y9mQ6g== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org