$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/F2E15D04EB2011EEA69D7D3CC4F9AE02.roa File: F2E15D04EB2011EEA69D7D3CC4F9AE02.roa (raw, json) Hash identifier: miXibqoerWuKGoPKLds6grN1XvfnTFLYmDiQektnfTI= Subject key identifier: B0:BC:DB:1C:33:D6:0F:E9:39:CD:1A:43:5C:B4:51:19:4D:69:2F:EF Certificate issuer: /CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Certificate serial: 27 Authority key identifier: C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/F2E15D04EB2011EEA69D7D3CC4F9AE02.roa Signing time: Tue 26 Mar 2024 03:28:44 +0000 ROA not before: Tue 26 Mar 2024 03:28:44 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152462 IP address blocks: 157.15.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Validity Not Before: Mar 26 03:28:44 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=660240ec-113b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0f:b3:ec:e3:eb:f7:b3:c0:95:3d:53:74:5b: 5d:5e:97:75:35:30:d3:b5:57:06:ca:5d:c5:c3:74: cb:ec:e7:fa:31:ce:f3:9a:8d:e3:a5:52:d9:a9:db: 18:f0:e2:f4:44:1c:de:ed:dd:3f:d4:e3:12:b9:df: 0d:ec:23:eb:df:79:86:b0:1c:10:95:71:f6:a8:07: 67:50:d8:85:58:11:2f:e5:54:3d:a1:93:a0:9a:e7: 7b:2a:25:d7:21:f1:55:e2:30:30:5d:6c:4f:1a:6c: 4f:20:86:53:8e:5a:1b:56:68:26:bd:b4:32:c0:09: ee:5a:36:b0:60:94:fb:ab:32:4c:b5:4f:74:32:ac: 7c:0d:a6:92:6c:3d:fc:e4:a4:94:24:27:7e:63:d7: ed:7f:13:67:fd:3d:3a:a1:1e:43:de:8f:8e:ee:81: 6b:f1:98:1f:2d:41:26:42:7c:5a:9a:b8:33:ba:90: 2d:07:1f:2b:25:81:fe:0e:d6:56:87:d8:5e:16:b4: 8a:76:26:37:9f:aa:01:18:a3:7e:62:44:d2:81:fc: 70:46:17:99:63:d6:33:99:1a:f6:89:e3:c9:55:c0: ce:dc:e6:fa:97:98:02:6a:cf:34:4d:f5:3f:52:b9: 39:41:98:26:ae:a8:df:d9:6b:2f:dc:62:0b:42:97: 07:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:BC:DB:1C:33:D6:0F:E9:39:CD:1A:43:5C:B4:51:19:4D:69:2F:EF X509v3 Authority Key Identifier: keyid:C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/F2E15D04EB2011EEA69D7D3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.134.0/24 Signature Algorithm: sha256WithRSAEncryption 06:de:19:88:75:c8:79:b8:75:e3:0c:bf:54:09:24:89:50:8d: 18:ee:ff:31:b7:ee:a3:37:aa:5a:ce:23:e6:f7:eb:da:ff:a7: 05:a6:fb:8b:d1:95:81:3b:6d:ba:74:95:da:6a:80:35:c9:85: a1:8b:f3:67:9d:f9:3d:86:84:c0:29:94:1f:34:bb:b8:f2:ff: 6e:00:a7:5e:77:d8:97:61:36:bd:b4:2e:83:f3:50:78:8c:92: ae:65:3a:fa:27:c5:a5:dd:e4:66:1b:51:cb:04:1e:c8:16:28: 95:64:ab:46:f1:7c:37:c3:f9:42:3f:c6:2e:b4:6a:8a:23:47: 71:b9:8e:c1:95:9a:37:05:6a:a1:61:fc:e4:e1:e2:68:c4:9e: 41:29:a8:84:bb:20:84:28:d5:cf:48:6a:35:e8:3f:30:c7:ba: 7d:30:1b:48:99:88:4d:bf:26:58:63:be:00:09:72:eb:81:47: 1b:82:8e:59:c4:de:92:d8:1e:5c:6b:1e:f0:99:24:12:a5:e9: a7:60:77:99:59:31:ab:79:57:79:a9:62:87:8e:20:d8:95:a2: 2a:60:5a:5b:10:cf:b7:8e:3d:d3:aa:8f:c3:58:cf:be:87:4f: 14:a3:5b:2e:72:6f:1d:5a:14:2c:b8:25:4b:ce:f8:69:6b:76: 59:7d:2d:ed -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTY3RjExMC8GA1UEBRMoQzczMzhERjFCNzY4QzA1MDc0Q0RBRUQwRkRCMUE0QzE0 QURGQjhCNTAeFw0yNDAzMjYwMzI4NDRaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDI0MGVjLTExM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjD7Ps4+v3s8CVPVN0W11el3U1MNO1VwbKXcXDdMvs5/oxzvOajeOlUtmp2xjw 4vREHN7t3T/U4xK53w3sI+vfeYawHBCVcfaoB2dQ2IVYES/lVD2hk6Ca53sqJdch 8VXiMDBdbE8abE8ghlOOWhtWaCa9tDLACe5aNrBglPurMky1T3QyrHwNppJsPfzk pJQkJ35j1+1/E2f9PTqhHkPej47ugWvxmB8tQSZCfFqauDO6kC0HHyslgf4O1laH 2F4WtIp2JjefqgEYo35iRNKB/HBGF5lj1jOZGvaJ48lVwM7c5vqXmAJqzzRN9T9S uTlBmCauqN/Zay/cYgtClwd1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsLzbHDPW D+k5zRpDXLRRGU1pL+8wHwYDVR0jBBgwFoAUxzON8bdowFB0za7Q/bGkwUrfuLUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNjdGLzRBQUI3QkNBQzQ3 RDExRUU5RkM3QzgwRkM0RjlBRTAyL3h6T044YmRvd0ZCMHphN1FfYkdrd1VyZnVM VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveHpPTjhiZG93RkIwemE3UV9iR2t3VXJmdUxVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTY3Ri80QUFCN0JDQUM0N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi9GMkUxNUQwNEVC MjAxMUVFQTY5RDdEM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0PhjANBgkqhkiG9w0BAQsFAAOCAQEABt4ZiHXIebh14wy/ VAkkiVCNGO7/MbfuozeqWs4j5vfr2v+nBab7i9GVgTttunSV2mqANcmFoYvzZ535 PYaEwCmUHzS7uPL/bgCnXnfYl2E2vbQug/NQeIySrmU6+ifFpd3kZhtRywQeyBYo lWSrRvF8N8P5Qj/GLrRqiiNHcbmOwZWaNwVqoWH85OHiaMSeQSmohLsghCjVz0hq Neg/MMe6fTAbSJmITb8mWGO+AAly64FHG4KOWcTektgeXGse8JkkEqXpp2B3mVkx q3lXealih44g2JWiKmBaWxDPt44906qPw1jPvodPFKNbLnJvHVoULLglS874aWt2 WX0t7Q== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:31 2024 by rpki-client on console-fra.rpki-client.org