$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/AB3CCD50E79011EEA3DFB922C4F9AE02.roa File: AB3CCD50E79011EEA3DFB922C4F9AE02.roa (raw, json) Hash identifier: yZ6MBJhoD6w3VG8OJH7ZW6bW41xKAcxHLnAOqa1PvDs= Subject key identifier: 86:06:7C:ED:5A:65:03:E6:58:0E:8D:02:14:68:A3:E5:23:42:66:D8 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 02 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/AB3CCD50E79011EEA3DFB922C4F9AE02.roa Signing time: Thu 21 Mar 2024 14:38:23 +0000 ROA not before: Thu 21 Mar 2024 14:38:23 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152459 IP address blocks: 157.15.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Mar 21 14:38:23 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fc465f-949d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:37:4e:3d:15:56:25:36:96:e5:7b:16:c9:99: 1e:df:8f:da:50:5a:bf:c6:d2:30:fc:e6:5c:6d:80: 04:76:b7:51:1f:1b:96:ae:08:bd:34:9a:90:d8:b3: da:f1:48:00:32:4a:91:d3:ee:ba:07:8a:bb:2f:25: 87:04:4c:19:6e:c2:b4:4f:ee:2b:37:38:2d:55:a9: 60:b8:37:9a:f6:1d:b3:d0:ec:26:19:6e:c0:4c:e6: 20:01:98:b9:6d:70:81:b0:11:22:1d:21:29:cc:f6: 16:27:eb:b9:f3:09:0d:90:c6:bb:5d:2f:ae:7b:c8: 9e:dc:a1:3e:a2:ff:e3:72:a5:e7:58:77:ad:0a:4c: 55:d3:b1:73:04:a5:47:a9:c0:49:e7:6b:e8:5e:65: f2:14:00:5a:9f:d3:73:a0:75:a8:1b:da:11:e3:26: 92:30:08:e6:b3:25:d8:b2:57:a8:c1:a9:df:ac:f4: 8c:81:7c:06:db:07:74:00:77:cb:4e:58:e3:ef:98: bd:de:98:a0:73:9a:d0:0b:8b:5d:3a:56:7f:53:74: 18:c3:8d:f1:78:7d:cb:48:95:4e:bb:f1:06:3a:98: cb:59:ff:29:37:8a:65:7d:fa:be:5d:74:34:33:e0: 2b:f9:b6:6a:4b:59:f7:e2:c7:dc:46:7d:87:7e:08: c1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:06:7C:ED:5A:65:03:E6:58:0E:8D:02:14:68:A3:E5:23:42:66:D8 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/AB3CCD50E79011EEA3DFB922C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.142.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:d0:be:c1:bd:e0:ce:e7:8d:bd:71:ce:59:05:13:cb:3c:be: f2:92:92:bc:78:fc:05:9c:b4:6a:02:33:a1:70:90:32:b9:77: 4d:2c:a2:7f:39:8d:fc:b4:a0:e8:37:97:6d:d2:2e:27:95:cd: 50:7f:a1:c2:8d:66:26:78:31:b0:87:17:19:87:e7:19:27:66: 3d:30:7b:43:ad:ea:ef:32:de:6d:6f:62:1c:6e:d2:16:5b:c2: 87:20:c9:d4:6a:8c:2d:ce:f0:41:72:50:e2:87:71:30:8c:a3: 6b:dc:3f:9d:a2:a8:23:5f:70:a1:30:96:ae:4a:cb:4c:13:4b: fa:76:e5:ea:cf:c3:16:89:6e:d5:09:53:dd:3b:41:9f:be:63: 94:88:c2:a0:26:14:87:a5:59:67:d9:b9:de:cf:25:3d:6f:e8: a5:d0:ba:db:ad:da:e5:39:0c:10:21:f6:05:ee:92:ed:ac:4d: e9:64:3b:58:ba:86:5d:2c:bd:2c:6f:77:b4:a4:c4:d0:d9:86: f2:aa:ca:52:76:ff:d2:e0:b5:e1:fd:d3:ef:c1:d0:89:00:4a: 0f:84:b9:6a:e9:27:44:c0:62:32:de:24:6f:2f:91:ca:5d:f2: 8a:fc:4f:a6:43:a8:e5:e9:75:b4:c2:7c:9e:30:78:8e:88:53: de:6c:46:1b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NUI2RDExMC8GA1UEBRMoMkRGOUExRTM3NUExN0I4RUE1NjAyN0I0NUE4QkQ2NkY5 Njc0N0Q4NjAeFw0yNDAzMjExNDM4MjNaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmM0NjVmLTk0OWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEN049FVYlNpblexbJmR7fj9pQWr/G0jD85lxtgAR2t1EfG5auCL00mpDYs9rx SAAySpHT7roHirsvJYcETBluwrRP7is3OC1VqWC4N5r2HbPQ7CYZbsBM5iABmLlt cIGwESIdISnM9hYn67nzCQ2QxrtdL657yJ7coT6i/+NypedYd60KTFXTsXMEpUep wEnna+heZfIUAFqf03Ogdagb2hHjJpIwCOazJdiyV6jBqd+s9IyBfAbbB3QAd8tO WOPvmL3emKBzmtALi106Vn9TdBjDjfF4fctIlU678QY6mMtZ/yk3imV9+r5ddDQz 4Cv5tmpLWffix9xGfYd+CMG7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhgZ87Vpl A+ZYDo0CFGij5SNCZtgwHwYDVR0jBBgwFoAULfmh43Whe46lYCe0WovWb5Z0fYYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1QjZELzE4MUI4MjIwRTc4 RTExRUU5ODMxRUI3RUM0RjlBRTAyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZ WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTGZtaDQzV2hlNDZsWUNlMFdvdldiNVowZllZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9BQjNDQ0Q1MEU3 OTAxMUVFQTNERkI5MjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PjjANBgkqhkiG9w0BAQsFAAOCAQEAb9C+wb3gzueNvXHO WQUTyzy+8pKSvHj8BZy0agIzoXCQMrl3TSyifzmN/LSg6DeXbdIuJ5XNUH+hwo1m JngxsIcXGYfnGSdmPTB7Q63q7zLebW9iHG7SFlvChyDJ1GqMLc7wQXJQ4odxMIyj a9w/naKoI19woTCWrkrLTBNL+nbl6s/DFolu1QlT3TtBn75jlIjCoCYUh6VZZ9m5 3s8lPW/opdC6263a5TkMECH2Be6S7axN6WQ7WLqGXSy9LG93tKTE0NmG8qrKUnb/ 0uC14f3T78HQiQBKD4S5auknRMBiMt4kby+Ryl3yivxPpkOo5el1tMJ8njB4johT 3mxGGw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:29 2024 by rpki-client on console-fra.rpki-client.org