$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/0F0A0C72EBB411EE9D86095BC4F9AE02.roa File: 0F0A0C72EBB411EE9D86095BC4F9AE02.roa (raw, json) Hash identifier: SQ0tWzqj2x2vx8fy9K7AJ1cebETDa6gFcypKPROA2yk= Subject key identifier: 82:17:F1:BF:D1:AC:E1:55:47:A0:1C:7B:CE:CB:D3:40:31:DD:D7:C4 Certificate issuer: /CN=A9153490/serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Certificate serial: 18 Authority key identifier: 47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/0F0A0C72EBB411EE9D86095BC4F9AE02.roa Signing time: Tue 26 Mar 2024 21:01:47 +0000 ROA not before: Tue 26 Mar 2024 21:01:47 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139623 IP address blocks: 157.15.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153490/serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Validity Not Before: Mar 26 21:01:47 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660337bb-a4e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:11:ca:4d:e2:fa:d6:4e:71:c4:d5:c6:85:b4: 03:73:2a:53:60:f5:78:9a:87:1a:4d:84:a3:3e:4c: d5:b5:e4:18:a6:0c:b0:74:3e:00:89:e9:cf:d4:40: f9:eb:65:63:eb:2d:d5:dd:ad:da:6d:7c:02:bc:92: 9c:ce:e5:15:3f:c7:32:55:4b:16:60:49:3a:c6:47: c4:c1:21:0f:7c:e7:0a:de:b8:0f:44:42:e4:4e:f6: ba:c6:ee:a4:2e:fe:d1:44:ee:27:08:b8:4f:15:c3: bf:3e:e4:89:bb:e9:11:24:fd:93:87:83:7e:15:23: 5e:98:9e:1b:1c:63:aa:35:ae:24:69:ba:23:16:0e: 8f:b3:a9:d6:7b:ea:e2:39:5a:84:81:5f:85:ea:78: 48:b2:fb:94:6b:ba:35:73:d3:78:19:00:f7:2c:60: ea:26:db:34:73:6d:f2:5b:3c:8c:bb:a1:88:a1:40: 84:a4:2e:63:b3:84:c3:62:19:da:4a:03:95:a8:d7: a3:29:e5:39:37:1a:bf:3e:ed:26:b5:37:e8:d9:5b: c4:a3:ae:23:83:0e:62:a8:3c:4a:22:57:46:d5:ef: 4f:1c:3b:d1:7b:53:61:fd:e2:63:49:00:d1:f6:51: c0:c8:37:ff:29:54:a3:73:ca:f6:74:f4:d8:19:b2: 1e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:17:F1:BF:D1:AC:E1:55:47:A0:1C:7B:CE:CB:D3:40:31:DD:D7:C4 X509v3 Authority Key Identifier: keyid:47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/0F0A0C72EBB411EE9D86095BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.218.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:cc:c6:bb:14:2d:a9:33:b9:37:4d:df:39:e1:77:0e:c4:1f: 4e:0e:5f:9e:5f:dc:c0:f0:dd:3f:e6:5f:25:8c:f9:d0:fb:22: 61:fc:45:b0:bd:12:73:4e:e4:23:e4:46:54:a2:10:cf:f3:e8: cb:20:1d:a8:bb:ea:c6:d6:c5:99:d1:a7:47:9b:5a:ca:6d:6b: 0f:49:45:52:c7:8e:1c:6e:20:a0:04:d9:1f:b8:9e:34:14:3e: b9:b0:7a:f8:a2:31:94:b3:fd:ad:90:e0:cb:9a:78:24:6b:15: e2:2b:09:18:b5:a6:b7:2f:40:b7:15:ca:23:73:8f:1b:29:ab: 65:67:b5:29:77:16:b1:25:52:1c:8f:24:9f:79:08:33:07:e3: 45:79:70:9b:71:67:c5:5a:a5:b9:8f:e5:f5:04:68:c3:ff:86: 2f:b7:c4:0f:eb:9f:1f:cb:d4:d9:ef:b8:42:42:95:e0:34:91: 56:b8:cd:97:da:dc:47:d9:f0:55:3c:60:ce:3c:5e:58:98:a6: 0a:c9:6a:d1:53:72:35:ec:6f:8a:01:85:f2:c8:78:b6:e9:f6: 4a:d1:d5:77:44:48:5a:a8:1b:a7:ac:01:25:b5:ab:e0:70:b2: ce:77:45:3c:14:f5:a1:e7:2b:c6:05:f3:08:6c:65:a5:a3:3d: b0:70:a4:90 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzQ5MDExMC8GA1UEBRMoNDdGNTBDOTU4QkY5Q0Y1NDVDNjAxQURFQjA0RjhBMDVF MTAxRDlBNTAeFw0yNDAzMjYyMTAxNDdaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDMzN2JiLWE0ZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaEcpN4vrWTnHE1caFtANzKlNg9XiahxpNhKM+TNW15BimDLB0PgCJ6c/UQPnr ZWPrLdXdrdptfAK8kpzO5RU/xzJVSxZgSTrGR8TBIQ985wreuA9EQuRO9rrG7qQu /tFE7icIuE8Vw78+5Im76REk/ZOHg34VI16YnhscY6o1riRpuiMWDo+zqdZ76uI5 WoSBX4XqeEiy+5RrujVz03gZAPcsYOom2zRzbfJbPIy7oYihQISkLmOzhMNiGdpK A5Wo16Mp5Tk3Gr8+7Sa1N+jZW8SjriODDmKoPEoiV0bV708cO9F7U2H94mNJANH2 UcDIN/8pVKNzyvZ09NgZsh6HAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUghfxv9Gs 4VVHoBx7zsvTQDHd18QwHwYDVR0jBBgwFoAUR/UMlYv5z1RcYBresE+KBeEB2aUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNDkwLzhGNTI0ODhFRDA1 NDExRUVBRjc5OUYxNkM0RjlBRTAyL1JfVU1sWXY1ejFSY1lCcmVzRS1LQmVFQjJh VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUl9VTWxZdjV6MVJjWUJyZXNFLUtCZUVCMmFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQ5MC84RjUyNDg4RUQwNTQxMUVFQUY3OTlGMTZDNEY5QUUwMi8wRjBBMEM3MkVC QjQxMUVFOUQ4NjA5NUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0P2jANBgkqhkiG9w0BAQsFAAOCAQEAi8zGuxQtqTO5N03f OeF3DsQfTg5fnl/cwPDdP+ZfJYz50PsiYfxFsL0Sc07kI+RGVKIQz/PoyyAdqLvq xtbFmdGnR5taym1rD0lFUseOHG4goATZH7ieNBQ+ubB6+KIxlLP9rZDgy5p4JGsV 4isJGLWmty9AtxXKI3OPGymrZWe1KXcWsSVSHI8kn3kIMwfjRXlwm3FnxVqluY/l 9QRow/+GL7fED+ufH8vU2e+4QkKV4DSRVrjNl9rcR9nwVTxgzjxeWJimCslq0VNy NexvigGF8sh4tun2StHVd0RIWqgbp6wBJbWr4HCyzndFPBT1oecrxgXzCGxlpaM9 sHCkkA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:13 2024 by rpki-client on console-ams.rpki-client.org