$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa File: 45FFCD9AD6E511EE9E963F62C4F9AE02.roa (raw, json) Hash identifier: 1iG+TPkfC8JLHX4LR1c2plRJjd8VpwGYHHElxjZbQTc= Subject key identifier: 36:B0:8E:87:D4:BC:CE:77:F0:36:59:A5:7F:B5:87:2F:4E:18:3E:F0 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 7A Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa Signing time: Thu 29 Feb 2024 09:31:10 +0000 ROA not before: Thu 29 Feb 2024 09:31:10 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135905 IP address blocks: 157.20.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Feb 29 09:31:10 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65e04ede-b6b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:10:0f:f1:ef:fa:ee:19:94:34:4e:c1:e7: f8:23:78:ad:50:9f:af:80:1b:a2:0a:6d:2a:75:6c: ef:a2:82:98:67:70:00:ea:f6:3e:6e:06:79:a0:35: 7b:89:23:a9:41:b0:a2:5f:01:44:91:91:94:38:b4: 97:2d:a4:19:fc:3d:fb:37:43:47:e3:d9:a4:5a:fa: b2:09:b6:73:a1:37:ca:1a:49:db:ad:4e:42:f6:18: f7:6c:07:fe:da:03:58:52:bb:24:c1:5d:97:25:b5: 05:12:9a:3a:e5:7d:d6:ae:0a:87:aa:e4:6f:01:08: 1b:a1:5d:0c:48:f2:ba:73:f4:99:29:da:27:9d:0b: 79:5f:65:d1:7d:5e:ac:76:1b:89:e9:4d:be:6b:7a: 5e:01:76:e0:00:13:95:e3:4f:e1:19:63:46:94:fe: 93:01:e7:8b:53:d7:37:c3:64:bb:de:5e:d9:8b:66: c3:dc:b0:84:f1:3b:7b:0a:b3:9f:f9:6e:b8:5f:c5: f3:24:6f:11:2d:1c:8b:fa:62:d0:6a:b3:39:e6:a3: 64:96:f8:d8:7b:38:26:2e:63:8a:d0:b6:08:7f:86: 3c:d2:76:4a:e8:ba:aa:f2:cd:e2:4c:46:f8:b6:6d: f0:1c:c2:aa:bb:82:e6:37:7e:7b:49:b1:93:85:50: a0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B0:8E:87:D4:BC:CE:77:F0:36:59:A5:7F:B5:87:2F:4E:18:3E:F0 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.88.0/23 Signature Algorithm: sha256WithRSAEncryption a0:be:7e:eb:c7:25:37:fd:a1:61:e5:71:5a:f0:37:ba:95:d8: fe:4e:4f:09:4a:4f:86:b0:69:45:30:2a:10:a5:8b:f5:a9:cb: df:59:b7:66:aa:8c:be:c7:f6:9a:5a:40:63:6b:09:82:99:08: 91:50:b1:86:9a:76:9f:f2:8b:81:77:28:3c:e9:bb:a1:b7:e4: 37:69:a4:06:6c:67:df:e3:db:f4:71:bc:ad:ef:31:f5:f4:10: 59:83:a3:81:b5:6d:82:9a:55:0f:92:d8:da:29:2b:72:02:13: 17:e6:e4:41:a1:a2:1e:74:57:16:d3:3c:8a:1f:5a:d2:6e:93: ac:e9:72:fc:02:2a:77:12:2e:93:fb:07:b0:69:ab:6d:0c:4c: f4:f1:8d:2e:9a:1e:43:5c:6a:70:58:91:02:f3:8d:58:b7:ad: 10:1f:bf:84:35:3d:08:ce:1c:49:8e:86:19:54:d6:7a:2b:6e: 3d:e5:37:5b:35:ce:f9:99:e9:ef:f9:4c:cb:c1:55:58:ec:a9: 7f:2d:01:fb:f7:72:ad:0f:49:6c:1d:e0:c7:6b:af:d7:51:cf: b9:4c:54:5d:72:ca:ee:12:01:41:44:c9:10:30:a4:66:50:4e: dc:95:23:19:2d:c5:81:c7:7c:be:a5:f1:9e:b5:0f:dd:4d:e7: 8d:ea:f3:eb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTYwQTExMC8GA1UEBRMoOEFDNzIxMjk4RjkyRTEwQTJFRTMwNTFBRkJDOTExNDI4 NEY4MEUxMjAeFw0yNDAyMjkwOTMxMTBaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTA0ZWRlLWI2YjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4HBAP8e/67hmUNE7B5/gjeK1Qn6+AG6IKbSp1bO+igphncADq9j5uBnmgNXuJ I6lBsKJfAUSRkZQ4tJctpBn8Pfs3Q0fj2aRa+rIJtnOhN8oaSdutTkL2GPdsB/7a A1hSuyTBXZcltQUSmjrlfdauCoeq5G8BCBuhXQxI8rpz9Jkp2iedC3lfZdF9Xqx2 G4npTb5rel4BduAAE5XjT+EZY0aU/pMB54tT1zfDZLveXtmLZsPcsITxO3sKs5/5 brhfxfMkbxEtHIv6YtBqsznmo2SW+Nh7OCYuY4rQtgh/hjzSdkrouqryzeJMRvi2 bfAcwqq7guY3fntJsZOFUKBDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNrCOh9S8 znfwNlmlf7WHL04YPvAwHwYDVR0jBBgwFoAUischKY+S4Qou4wUa+8kRQoT4DhIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1NjBBLzIwOTU4NjE4QTlE RjExRUVBMzU2QTQzRUM0RjlBRTAyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERo SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaXNjaEtZLVM0UW91NHdVYS04a1JRb1Q0RGhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS8yMDk1ODYxOEE5REYxMUVFQTM1NkE0M0VDNEY5QUUwMi80NUZGQ0Q5QUQ2 RTUxMUVFOUU5NjNGNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0UWDANBgkqhkiG9w0BAQsFAAOCAQEAoL5+68clN/2hYeVx WvA3upXY/k5PCUpPhrBpRTAqEKWL9anL31m3ZqqMvsf2mlpAY2sJgpkIkVCxhpp2 n/KLgXcoPOm7obfkN2mkBmxn3+Pb9HG8re8x9fQQWYOjgbVtgppVD5LY2ikrcgIT F+bkQaGiHnRXFtM8ih9a0m6TrOly/AIqdxIuk/sHsGmrbQxM9PGNLpoeQ1xqcFiR AvONWLetEB+/hDU9CM4cSY6GGVTWeituPeU3WzXO+Znp7/lMy8FVWOypfy0B+/dy rQ9JbB3gx2uv11HPuUxUXXLK7hIBQUTJEDCkZlBO3JUjGS3Fgcd8vqXxnrUP3U3n jerz6w== -----END CERTIFICATE-----Generated at Fri May 31 15:08:32 2024 by rpki-client on console-fra.rpki-client.org