$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa File: E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa (raw, json) Hash identifier: h90BBjk+wVdlnYl+Atga4udJJhr99T+PLr3O9ucXhDY= Subject key identifier: 55:A9:CB:51:E1:1F:51:88:85:F1:22:05:12:7D:DA:4D:65:BC:79:BD Certificate issuer: /CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Certificate serial: 07 Authority key identifier: 0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa Signing time: Wed 20 Mar 2024 08:23:37 +0000 ROA not before: Wed 20 Mar 2024 08:23:37 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152458 IP address blocks: 157.15.140.0/23 maxlen: 23 157.15.140.0/24 maxlen: 24 157.15.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Validity Not Before: Mar 20 08:23:37 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65fa9d09-f6e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:47:1e:ff:a4:9b:f6:2b:cd:45:23:7f:fb:a7: 22:e1:b6:6d:70:ce:aa:2c:31:3a:b6:d2:ae:ca:65: 01:bd:a3:0a:29:df:d7:c4:eb:78:a6:d1:7b:f7:31: 1b:9a:f0:a4:41:95:79:55:9c:a2:45:76:07:3c:26: ff:29:ee:cb:6b:50:32:66:60:c2:01:f8:e6:8f:98: 2a:d0:c1:c8:eb:bf:2b:f9:83:3e:61:c5:05:25:49: de:91:49:88:23:ba:2b:15:c5:07:0f:e5:30:92:81: c0:26:33:1d:f4:a3:88:ba:69:78:b4:b3:83:26:a6: 99:41:f0:12:2a:81:1e:d3:31:f6:b2:25:c4:33:14: d4:17:8c:8b:19:ac:5a:82:16:6a:0b:ef:1d:d4:11: 2d:02:c1:31:35:22:0a:0e:e2:44:cc:01:43:da:27: 28:2d:2a:10:f0:46:a1:6e:af:39:d0:25:c3:1a:b3: 63:11:6f:d8:07:37:57:25:ef:c7:a6:e1:d7:50:e2: ac:0f:e7:18:9e:e8:3d:9e:b6:9a:c3:f7:83:a4:c8: 90:ed:d8:2a:af:db:96:b5:76:74:ba:eb:17:90:a1: 5d:46:d9:53:2a:99:a1:83:bf:36:63:af:b7:55:cb: 0e:f4:a1:2f:06:fa:c9:c4:bf:9f:fc:15:05:1a:9a: f3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A9:CB:51:E1:1F:51:88:85:F1:22:05:12:7D:DA:4D:65:BC:79:BD X509v3 Authority Key Identifier: keyid:0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.140.0/23 Signature Algorithm: sha256WithRSAEncryption 73:11:8d:9c:ee:45:16:89:c7:1d:8b:9a:a9:f2:5f:21:78:a9: 83:fb:5d:c7:0c:86:64:92:e0:c3:99:27:1b:b3:94:d7:f0:4e: 3d:92:5a:54:5a:92:53:63:59:a2:d6:ae:43:0d:15:bf:90:ba: 4c:b2:eb:f1:09:37:07:60:2b:6a:c5:33:5b:e1:57:e4:a1:bc: 16:14:68:f1:92:ed:48:24:16:21:23:11:f9:7a:1d:67:a7:db: 6d:d5:05:84:f4:c8:08:1b:28:6b:d2:23:94:25:94:a7:93:4e: 97:79:e6:f6:d1:76:19:aa:b0:24:f0:9d:2d:ed:ec:f3:32:bc: 4c:92:36:22:df:60:c2:02:cb:49:26:58:06:e3:9e:a1:79:70: 5c:03:8b:2a:1a:f4:d7:9a:d5:2f:33:f6:58:c9:ed:13:25:67: 78:d9:a7:92:1a:96:43:c0:09:e1:ec:79:31:53:3c:b3:7b:47: aa:8f:88:f4:d3:04:7d:19:54:9a:a3:cd:14:01:c9:59:9d:2d: df:30:e8:45:4a:58:dc:75:d9:f8:4b:90:d0:59:e4:b6:db:f7: ca:96:35:96:02:c9:d0:43:1f:1b:22:52:15:e9:a8:5e:14:05: 91:dc:fd:63:de:1e:f2:dd:d0:a0:a2:a8:aa:f3:9d:7a:e4:ca: 13:88:50:df -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MjZCMzExMC8GA1UEBRMoMEJEQUI2MDg2MTdGM0MzMTgzQzQ3MEY0RTYxOUIyNzk1 Rjc1QzM4OTAeFw0yNDAzMjAwODIzMzdaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmE5ZDA5LWY2ZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDRx7/pJv2K81FI3/7pyLhtm1wzqosMTq20q7KZQG9owop39fE63im0Xv3MRua 8KRBlXlVnKJFdgc8Jv8p7strUDJmYMIB+OaPmCrQwcjrvyv5gz5hxQUlSd6RSYgj uisVxQcP5TCSgcAmMx30o4i6aXi0s4MmpplB8BIqgR7TMfayJcQzFNQXjIsZrFqC FmoL7x3UES0CwTE1IgoO4kTMAUPaJygtKhDwRqFurznQJcMas2MRb9gHN1cl78em 4ddQ4qwP5xie6D2etprD94OkyJDt2Cqv25a1dnS66xeQoV1G2VMqmaGDvzZjr7dV yw70oS8G+snEv5/8FQUamvOvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVanLUeEf UYiF8SIFEn3aTWW8eb0wHwYDVR0jBBgwFoAUC9q2CGF/PDGDxHD05hmyeV91w4kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyNkIzL0M1NTQyM0FBRTY5 MTExRUVCRjA1ODkzMkM0RjlBRTAyL0M5cTJDR0ZfUERHRHhIRDA1aG15ZVY5MXc0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQzlxMkNHRl9QREdEeEhEMDVobXllVjkxdzRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DNTU0MjNBQUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9FM0FCQUE3QUU2 OTIxMUVFQjM0RDRCNkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PjDANBgkqhkiG9w0BAQsFAAOCAQEAcxGNnO5FFonHHYua qfJfIXipg/tdxwyGZJLgw5knG7OU1/BOPZJaVFqSU2NZotauQw0Vv5C6TLLr8Qk3 B2ArasUzW+FX5KG8FhRo8ZLtSCQWISMR+XodZ6fbbdUFhPTICBsoa9IjlCWUp5NO l3nm9tF2GaqwJPCdLe3s8zK8TJI2It9gwgLLSSZYBuOeoXlwXAOLKhr015rVLzP2 WMntEyVneNmnkhqWQ8AJ4ex5MVM8s3tHqo+I9NMEfRlUmqPNFAHJWZ0t3zDoRUpY 3HXZ+EuQ0Fnkttv3ypY1lgLJ0EMfGyJSFemoXhQFkdz9Y94e8t3QoKKoqvOdeuTK E4hQ3w== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:10 2024 by rpki-client on console-ams.rpki-client.org