$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/0C708FB4C67E11EE87B34958C4F9AE02.roa File: 0C708FB4C67E11EE87B34958C4F9AE02.roa (raw, json) Hash identifier: jp89TTV8B+141e9uQTYuaE2J8FxHwbPZjEdj0Ee+U6M= Subject key identifier: 1A:0D:33:FE:97:FE:BE:69:68:EA:96:F3:5D:2E:D7:9C:89:E6:8A:02 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 02 Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/0C708FB4C67E11EE87B34958C4F9AE02.roa Signing time: Thu 08 Feb 2024 12:31:57 +0000 ROA not before: Thu 08 Feb 2024 12:31:57 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152456 IP address blocks: 157.15.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Feb 8 12:31:57 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c4c9bd-0a76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:31:45:83:ee:79:a8:d8:1d:3a:bd:12:2e:0c: 42:44:e7:60:09:c9:03:b6:af:62:67:a2:a7:3c:d5: a2:29:a0:86:3f:d5:11:76:c3:0a:5b:c6:94:00:99: fe:d6:97:53:60:02:64:9a:46:7f:68:e1:ef:6e:fd: e6:fc:3a:93:78:2a:e2:92:61:61:62:ff:54:f1:df: d1:40:f0:88:69:fd:7d:e7:c6:4a:a8:5d:28:f3:1a: c4:ec:f9:c4:70:da:f1:41:71:a7:93:f2:02:b5:4f: 4f:7f:b8:a0:cd:11:79:a3:a5:4c:2a:d1:64:c0:f8: 4f:f8:e6:23:43:74:47:c4:a6:18:46:7d:06:5a:ca: 34:cc:d1:6b:2b:0a:ae:d4:d4:6c:d9:b6:f5:7d:6d: 4f:0a:a8:64:b7:75:bb:38:e6:ef:2b:60:26:a0:a1: e6:f8:e8:ee:7e:ee:de:6e:5a:f1:2c:8d:73:9c:fa: 2b:d4:fa:c7:0a:08:aa:69:bc:0f:19:99:68:8c:48: 62:2c:1a:e8:6f:2b:aa:6f:1f:f3:0b:f9:f9:18:f6: 84:b5:f3:43:9b:ea:0a:33:49:c5:dd:10:80:f7:47: 3e:31:b5:23:11:5d:0a:33:60:c4:90:fc:62:cc:36: 8c:56:ff:ab:cf:7d:65:fc:75:a2:a0:0f:8b:c1:17: 80:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:0D:33:FE:97:FE:BE:69:68:EA:96:F3:5D:2E:D7:9C:89:E6:8A:02 X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/0C708FB4C67E11EE87B34958C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.136.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:f6:24:7c:44:a4:a9:7b:68:82:57:d2:33:28:e9:8c:23:0f: bc:cc:ba:9f:65:61:36:74:ee:06:3b:1b:5a:82:4e:74:c4:8c: 65:b1:ed:de:78:63:b1:f1:75:80:f7:70:08:9b:4c:d2:ea:f7: 30:79:0a:ce:2e:6d:1e:19:f5:f4:c0:02:f6:75:22:f2:b0:0c: c7:80:5e:a4:fd:c9:df:ae:2d:68:da:ee:c8:a4:2b:dc:b4:0a: c1:18:4b:b1:73:b2:ee:33:02:50:6a:e4:fb:94:09:a5:45:95: db:83:a6:69:fe:1a:75:15:d1:8c:8b:44:ed:91:ef:3e:d4:e8: 57:8d:06:43:42:52:61:53:73:16:42:bd:62:de:b2:6a:78:d2: 8d:65:7e:f2:3e:4a:f8:d3:4c:cf:d8:1e:ee:06:cf:80:de:01: c2:12:43:28:da:52:f7:78:0e:d2:82:5c:af:83:9a:e3:cf:30: 92:75:99:d3:41:36:b1:68:95:da:8e:f8:f4:b1:cb:a5:1d:b4: ef:0b:9f:e8:4f:c0:19:17:9c:ac:b3:e0:cb:0d:60:77:41:93: 34:26:a1:16:f7:28:32:c3:ed:95:57:5c:70:5e:a5:2c:8a:c2: 48:4b:47:b3:3e:81:3b:aa:aa:f0:07:bd:bb:18:99:73:54:c2: 38:1d:72:49 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjRFMTExMC8GA1UEBRMoNzBFODg1NTdCMEMwODJDOUIwNkVDRjU5QjhGMjhBNzcw M0E2MzgwMTAeFw0yNDAyMDgxMjMxNTdaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzRjOWJkLTBhNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZMUWD7nmo2B06vRIuDEJE52AJyQO2r2Jnoqc81aIpoIY/1RF2wwpbxpQAmf7W l1NgAmSaRn9o4e9u/eb8OpN4KuKSYWFi/1Tx39FA8Ihp/X3nxkqoXSjzGsTs+cRw 2vFBcaeT8gK1T09/uKDNEXmjpUwq0WTA+E/45iNDdEfEphhGfQZayjTM0WsrCq7U 1GzZtvV9bU8KqGS3dbs45u8rYCagoeb46O5+7t5uWvEsjXOc+ivU+scKCKppvA8Z mWiMSGIsGuhvK6pvH/ML+fkY9oS180Ob6gozScXdEID3Rz4xtSMRXQozYMSQ/GLM NoxW/6vPfWX8daKgD4vBF4BzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGg0z/pf+ vmlo6pbzXS7XnInmigIwHwYDVR0jBBgwFoAUcOiFV7DAgsmwbs9ZuPKKdwOmOAEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NEUxLzYyMzFBMDJFQzY3 RDExRUU4NzAyN0IzQUM0RjlBRTAyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9B RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY09pRlY3REFnc213YnM5WnVQS0tkd09tT0FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi8wQzcwOEZCNEM2 N0UxMUVFODdCMzQ5NThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PiDANBgkqhkiG9w0BAQsFAAOCAQEAj/YkfESkqXtoglfS MyjpjCMPvMy6n2VhNnTuBjsbWoJOdMSMZbHt3nhjsfF1gPdwCJtM0ur3MHkKzi5t Hhn19MAC9nUi8rAMx4BepP3J364taNruyKQr3LQKwRhLsXOy7jMCUGrk+5QJpUWV 24Omaf4adRXRjItE7ZHvPtToV40GQ0JSYVNzFkK9Yt6yanjSjWV+8j5K+NNMz9ge 7gbPgN4BwhJDKNpS93gO0oJcr4Oa488wknWZ00E2sWiV2o749LHLpR207wuf6E/A GRecrLPgyw1gd0GTNCahFvcoMsPtlVdccF6lLIrCSEtHsz6BO6qq8Ae9uxiZc1TC OB1ySQ== -----END CERTIFICATE-----Generated at Thu Jun 13 10:58:44 2024 by rpki-client on console-ams.rpki-client.org