$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/6985399AAE1611EFA961AF3BC4F9AE02.roa File: 6985399AAE1611EFA961AF3BC4F9AE02.roa (raw, json) Hash identifier: lnyyticOGuyZg0qOUEP4hpuMJDv16N3pVgnLiGQHhes= Subject key identifier: 3F:16:C1:9B:A2:84:6A:EA:FC:E7:60:BC:E0:06:E9:56:3F:C3:5B:CD Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1C03 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/6985399AAE1611EFA961AF3BC4F9AE02.roa Signing time: Fri 29 Nov 2024 05:54:35 +0000 ROA not before: Fri 29 Nov 2024 05:54:35 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134858 IP address blocks: 160.187.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7171 (0x1c03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Nov 29 05:54:35 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6749571b-7ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:00:50:05:86:64:20:d5:17:4c:82:0c:bb:0b: 2c:98:97:75:6d:51:35:7c:a0:92:91:27:7a:e6:48: 76:be:82:0f:1a:b7:b8:3e:00:06:7d:60:cb:6d:7e: c4:6c:99:67:d4:94:f3:29:10:ce:07:af:11:f4:b3: ad:f4:4c:6f:7b:ba:fa:3e:e5:32:25:57:71:b6:c1: 19:21:83:13:ab:15:aa:28:b9:ce:3a:cc:c6:02:a9: 1f:a0:b6:75:95:45:b7:50:33:43:c7:d9:7b:b7:1e: 3b:70:fc:52:fc:97:1d:df:66:8e:39:a8:22:3a:17: 8b:f7:b2:a9:82:f1:7a:7b:0f:10:65:30:e8:ed:13: fa:eb:e2:2f:c2:cc:4d:c3:41:63:c1:24:62:45:6a: 61:d9:28:ec:a5:28:c1:8c:61:80:56:28:68:5f:2c: 76:28:2a:f9:d4:9d:36:b6:82:b1:a6:b3:7f:4e:31: 51:53:c5:bc:58:f8:7f:b8:01:db:7c:2c:fd:a5:4b: 9c:c5:23:d4:ea:fd:02:82:27:2f:3f:e8:09:e6:0f: e9:28:a8:b3:e3:e8:75:98:13:d4:18:06:fb:6e:e3: ae:c8:94:a5:c2:23:b0:fb:66:b4:c2:65:7c:45:d2: 97:37:f4:fa:17:63:44:9f:3b:74:d6:d9:bd:4a:63: 2e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:16:C1:9B:A2:84:6A:EA:FC:E7:60:BC:E0:06:E9:56:3F:C3:5B:CD X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/6985399AAE1611EFA961AF3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.179.0/24 Signature Algorithm: sha256WithRSAEncryption c8:74:1d:56:14:42:03:92:ad:74:6d:44:65:51:cf:19:ba:78: 36:ad:89:b2:1e:7e:6e:e2:c9:6a:4f:14:ee:a2:80:4c:58:22: 01:75:d1:9c:27:06:07:4e:fa:fb:fc:d8:d9:05:93:87:d8:59: a1:ad:0a:1d:8a:0c:d7:1a:04:21:99:d8:ef:7a:5b:0b:b3:73: f5:af:c8:63:24:93:15:5e:dc:a8:14:a6:b7:d6:68:e7:ae:62: ba:20:cc:e4:5c:29:97:0e:52:5c:09:02:13:fa:11:64:da:97: 9e:43:f4:55:fd:5c:db:10:44:b0:26:47:6f:06:e1:e9:f7:f5: 5d:5e:0a:e1:bb:d5:e6:00:23:b4:51:42:5c:da:6e:95:3a:2f: a8:d1:fb:0c:33:fc:60:3a:c0:c3:b9:cf:e6:bd:df:63:e1:b7: a1:21:59:4b:e0:d6:4e:83:3f:e5:54:34:5f:17:37:85:fb:b0: b8:08:df:1e:ca:b2:d7:b5:ae:48:af:1c:a8:de:14:a2:ce:ac: 21:02:ad:03:e1:33:06:da:55:d1:43:04:24:61:fb:41:1c:97: b4:77:24:43:56:b3:03:c0:fe:54:16:96:4f:bc:a5:f9:30:42: 37:94:48:77:a9:14:b9:f8:08:27:68:41:bc:a0:a8:b5:80:e3: 71:56:f9:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQxMTI5MDU1NDM1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ5NTcxYi03YWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwBQBYZkINUXTIIMuwssmJd1bVE1fKCSkSd65kh2voIPGre4PgAGfWDLbX7E bJln1JTzKRDOB68R9LOt9Exve7r6PuUyJVdxtsEZIYMTqxWqKLnOOszGAqkfoLZ1 lUW3UDNDx9l7tx47cPxS/Jcd32aOOagiOheL97KpgvF6ew8QZTDo7RP66+IvwsxN w0FjwSRiRWph2SjspSjBjGGAVihoXyx2KCr51J02toKxprN/TjFRU8W8WPh/uAHb fCz9pUucxSPU6v0CgicvP+gJ5g/pKKiz4+h1mBPUGAb7buOuyJSlwiOw+2a0wmV8 RdKXN/T6F2NEnzt01tm9SmMurwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD8WwZui hGrq/OdgvOAG6VY/w1vNMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjk4NTM5OUFB RTE2MTFFRkE5NjFBRjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgu7MwDQYJKoZIhvcNAQELBQADggEBAMh0HVYUQgOSrXRt RGVRzxm6eDatibIefm7iyWpPFO6igExYIgF10ZwnBgdO+vv82NkFk4fYWaGtCh2K DNcaBCGZ2O96Wwuzc/WvyGMkkxVe3KgUprfWaOeuYrogzORcKZcOUlwJAhP6EWTa l55D9FX9XNsQRLAmR28G4en39V1eCuG71eYAI7RRQlzabpU6L6jR+wwz/GA6wMO5 z+a932Pht6EhWUvg1k6DP+VUNF8XN4X7sLgI3x7Kste1rkivHKjeFKLOrCECrQPh MwbaVdFDBCRh+0Ecl7R3JENWswPA/lQWlk+8pfkwQjeUSHepFLn4CCdoQbygqLWA 43FW+dE= -----END CERTIFICATE-----Generated at Sat Apr 26 13:02:27 2025 by rpki-client