$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/30C3ECA444B811EF8C81962AC4F9AE02.roa File: 30C3ECA444B811EF8C81962AC4F9AE02.roa (raw, json) Hash identifier: YRkHlOrrGzxXTEGbxmwj8yAFxeMrCPHch9CuERcM2OI= Subject key identifier: 58:AE:CB:6D:BE:F1:81:BD:0F:4C:FB:EF:11:42:68:41:8F:59:D5:52 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 03 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/30C3ECA444B811EF8C81962AC4F9AE02.roa Signing time: Thu 18 Jul 2024 03:45:36 +0000 ROA not before: Thu 18 Jul 2024 03:45:36 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151734 IP address blocks: 160.25.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Jul 18 03:45:36 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66988fdf-62d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0b:50:db:e6:28:6e:c7:ea:d0:e6:12:7d:a4: 58:f2:81:44:99:c9:e5:cf:0b:03:04:ab:04:fb:31: ff:42:ca:15:d7:74:fb:65:7e:0a:de:5f:22:43:eb: d1:ee:9d:e6:e1:a5:7c:8b:e3:58:ec:ec:a1:6b:17: a2:88:1a:14:2f:6c:49:b5:63:76:63:25:05:be:16: 3e:0e:cb:37:ff:50:76:1a:51:e4:37:c8:24:6e:dc: 8d:98:ae:9a:87:a7:94:10:96:9c:f0:b1:81:81:e8: 19:30:a6:c1:d1:94:dc:46:e3:01:da:d1:5c:3d:ed: 2a:7f:79:a1:c9:ba:60:63:c7:1f:a3:55:76:6b:24: 49:23:b9:48:0b:71:47:a8:0f:83:97:84:04:c0:7d: 9b:56:80:b2:4f:5b:c5:05:17:85:ca:6e:0d:33:6f: d8:c6:05:ec:09:fe:a4:74:ea:ba:62:7a:f6:98:b3: 1b:85:4f:87:b7:5d:ad:d3:34:a6:d5:83:ea:22:3c: 6a:fa:96:02:5d:4e:5a:b8:47:48:0e:a8:83:60:e0: d8:42:c5:46:12:12:6e:e6:52:b6:18:a3:9d:6c:16: 74:b8:b7:98:91:4f:1a:a5:17:9a:8e:f1:b8:39:ec: 97:10:fb:ba:06:5a:43:fa:bc:81:8f:2e:0e:e2:9d: 87:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:AE:CB:6D:BE:F1:81:BD:0F:4C:FB:EF:11:42:68:41:8F:59:D5:52 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/30C3ECA444B811EF8C81962AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.224.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:ff:33:d2:0a:d3:f2:5d:29:ec:89:79:e4:36:70:36:c2:19: 6c:c0:d1:6e:7a:0b:77:1a:27:9b:1e:57:23:bb:40:8a:f1:0f: 26:2a:be:55:2a:e8:36:de:43:70:83:98:8e:36:b4:d9:dc:ee: 45:24:91:f0:54:f3:6b:70:a3:e3:fb:22:66:5b:6d:91:f0:8a: cc:b8:9f:88:1d:3c:aa:cc:66:f4:35:b2:75:f9:3a:c2:46:b5: ac:33:26:2b:c9:8a:ff:dc:81:2b:3c:17:be:7c:28:4c:8f:69: 05:07:e7:e5:8f:60:32:8c:31:ac:bc:16:bc:1c:36:bd:5d:fb: f6:e4:9f:7f:1e:44:49:d9:68:3d:c1:50:7e:6e:21:43:71:0b: af:de:03:5a:2c:c2:bb:0c:6b:99:d0:d3:c8:c4:46:9c:3d:1f: 83:09:94:57:c5:21:6b:31:c3:b3:2e:61:ec:ac:bb:22:01:98: 83:1e:f7:f0:05:7a:6e:3a:0b:5e:66:23:03:89:72:e7:5b:8e: 71:21:df:22:91:f2:bc:6f:98:23:ad:fa:46:e0:ae:95:e3:79: 83:ff:eb:18:bc:1c:2e:82:14:62:ed:da:be:44:b3:d8:28:11: b4:3d:60:4c:21:71:f3:b6:b7:ac:b4:5f:a1:09:4f:b3:72:05: b4:43:b6:f3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MDg1NTExMC8GA1UEBRMoRDMyQTVBREMwNTQyQzJFODE3QzIwMkJFNkI3MjgxRTg2 OUQxNzg5NzAeFw0yNDA3MTgwMzQ1MzZaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTg4ZmRmLTYyZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXC1Db5ihux+rQ5hJ9pFjygUSZyeXPCwMEqwT7Mf9CyhXXdPtlfgreXyJD69Hu nebhpXyL41js7KFrF6KIGhQvbEm1Y3ZjJQW+Fj4Oyzf/UHYaUeQ3yCRu3I2YrpqH p5QQlpzwsYGB6BkwpsHRlNxG4wHa0Vw97Sp/eaHJumBjxx+jVXZrJEkjuUgLcUeo D4OXhATAfZtWgLJPW8UFF4XKbg0zb9jGBewJ/qR06rpievaYsxuFT4e3Xa3TNKbV g+oiPGr6lgJdTlq4R0gOqINg4NhCxUYSEm7mUrYYo51sFnS4t5iRTxqlF5qO8bg5 7JcQ+7oGWkP6vIGPLg7inYeFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWK7Lbb7x gb0PTPvvEUJoQY9Z1VIwHwYDVR0jBBgwFoAU0ypa3AVCwugXwgK+a3KB6GnReJcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwODU1LzUwNENGRkUyNDQ5 NjExRUY4RTg0RTYzREM0RjlBRTAyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVK Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMHlwYTNBVkN3dWdYd2dLLWEzS0I2R25SZUpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8zMEMzRUNBNDQ0 QjgxMUVGOEM4MTk2MkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAZ4DANBgkqhkiG9w0BAQsFAAOCAQEASv8z0grT8l0p7Il5 5DZwNsIZbMDRbnoLdxonmx5XI7tAivEPJiq+VSroNt5DcIOYjja02dzuRSSR8FTz a3Cj4/siZlttkfCKzLifiB08qsxm9DWydfk6wka1rDMmK8mK/9yBKzwXvnwoTI9p BQfn5Y9gMowxrLwWvBw2vV379uSffx5ESdloPcFQfm4hQ3ELr94DWizCuwxrmdDT yMRGnD0fgwmUV8UhazHDsy5h7Ky7IgGYgx738AV6bjoLXmYjA4ly51uOcSHfIpHy vG+YI636RuCuleN5g//rGLwcLoIUYu3avkSz2CgRtD1gTCFx87a3rLRfoQlPs3IF tEO28w== -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org