$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/41E0B402AE1F11EE96A5C977C4F9AE02.roa File: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (raw, json) Hash identifier: Kfpmzio926KrwrXS9ARoXX7rw2DWUze5A4CZAJAWeqM= Subject key identifier: 27:85:6D:EE:75:59:15:2C:A9:A7:81:5F:19:AB:72:A9:0F:B7:4C:AF Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: 04 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/41E0B402AE1F11EE96A5C977C4F9AE02.roa Signing time: Mon 08 Jan 2024 16:34:04 +0000 ROA not before: Mon 08 Jan 2024 16:34:04 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152306 IP address blocks: 157.10.84.0/23 maxlen: 23 157.10.84.0/24 maxlen: 24 157.10.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: Jan 8 16:34:04 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=659c23fb-4aa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:91:d1:06:b1:5f:41:09:fb:1f:d1:d9:da:73: 56:d1:b5:61:1d:ad:32:b1:6b:40:18:40:6b:3a:7b: 6c:3d:4c:88:9a:27:bc:b0:30:72:d6:4c:74:41:63: 12:13:b0:14:bd:46:3b:a2:7d:95:c0:de:12:3e:c5: e9:8f:62:32:7c:90:b5:53:34:6c:64:37:a4:8d:7f: ac:b3:10:59:76:aa:46:96:ed:7e:c3:1a:44:89:b7: 29:15:f3:9f:a7:21:ac:ee:e3:d8:f3:eb:19:b5:d7: cc:c2:b1:46:6b:ee:86:88:cf:c3:94:8a:77:cc:80: 3d:ea:d4:53:0c:1a:e4:3e:37:cd:43:56:dc:d3:e0: 44:f4:50:7a:3f:3f:0b:4d:d6:2b:41:7e:58:34:f9: 4c:6e:89:2e:7a:c4:02:45:c8:ad:a9:19:81:30:82: ff:a0:73:51:be:dc:47:4e:f4:75:b2:d6:88:be:14: 12:1b:fe:f2:5e:6b:f0:d2:ee:44:54:29:e2:39:ab: 41:39:ec:40:8f:0c:41:8d:47:fb:9c:21:98:dd:d8: 00:0e:90:1a:28:98:91:0c:87:9e:ea:1f:56:eb:26: 02:3e:19:84:9d:e5:b3:7e:de:42:5e:8d:af:f1:80: 52:c7:33:65:f5:26:e2:ab:36:86:ff:60:64:cd:cc: f3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:85:6D:EE:75:59:15:2C:A9:A7:81:5F:19:AB:72:A9:0F:B7:4C:AF X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/41E0B402AE1F11EE96A5C977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.84.0/23 Signature Algorithm: sha256WithRSAEncryption 26:d5:8f:8a:cd:f9:80:ad:fe:02:e4:3a:5d:69:c9:2d:d8:4c: f2:37:0f:98:cc:88:85:ad:7c:73:61:26:60:11:3d:24:93:49: ef:80:fa:5a:2e:fa:ba:65:c1:fd:b3:8d:b2:c6:f0:db:56:99: 6f:f2:ac:c9:44:f7:b8:c8:ac:67:ba:99:19:e5:db:c5:96:31: a5:1d:60:52:cf:e0:6d:a6:30:45:74:c1:7a:51:a8:4b:09:24: 66:0d:98:e7:83:d8:be:63:18:46:35:fc:00:49:92:88:b9:e6: 6f:43:ae:8b:e2:c5:89:25:ad:74:18:cc:35:15:5f:67:1d:c4: ff:53:e9:7a:20:59:40:62:63:c4:52:1c:e5:91:03:b4:dd:af: a6:4f:4b:f4:d3:46:b5:2c:e5:12:29:5f:6c:e4:4d:ac:55:4c: 5c:0e:a0:b8:23:25:59:67:f4:c4:71:92:6d:d2:35:7b:1d:01: 6b:31:ba:f8:f8:e6:b8:94:27:0b:e7:7f:79:e5:ad:82:15:7f: 8e:65:8d:11:f7:77:59:3c:20:26:8e:2f:dd:c2:78:38:29:e9: 71:20:67:b1:0f:ed:a7:d2:67:06:1a:dc:f8:03:d4:87:54:26: bc:cb:f9:03:19:0c:6e:12:6b:9e:b9:65:06:b9:83:02:1c:12: da:4c:00:9e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUQzMDExMC8GA1UEBRMoM0UwQ0RGODgyQUVFOEM3MjIxRDU4OEEzQzUyNjAxOEUx RDY0Qzk2ODAeFw0yNDAxMDgxNjM0MDRaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OWMyM2ZiLTRhYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgkdEGsV9BCfsf0dnac1bRtWEdrTKxa0AYQGs6e2w9TIiaJ7ywMHLWTHRBYxIT sBS9RjuifZXA3hI+xemPYjJ8kLVTNGxkN6SNf6yzEFl2qkaW7X7DGkSJtykV85+n Iazu49jz6xm118zCsUZr7oaIz8OUinfMgD3q1FMMGuQ+N81DVtzT4ET0UHo/PwtN 1itBflg0+UxuiS56xAJFyK2pGYEwgv+gc1G+3EdO9HWy1oi+FBIb/vJea/DS7kRU KeI5q0E57ECPDEGNR/ucIZjd2AAOkBoomJEMh57qH1brJgI+GYSd5bN+3kJeja/x gFLHM2X1JuKrNob/YGTNzPNfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJ4Vt7nVZ FSypp4FfGatyqQ+3TK8wHwYDVR0jBBgwFoAUPgzfiCrujHIh1YijxSYBjh1kyWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRDMwL0JFODBDNkE2QUUx RTExRUVBN0VBMEE3N0M0RjlBRTAyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUGd6ZmlDcnVqSEloMVlpanhTWUJqaDFreVdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9CRTgwQzZBNkFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi80MUUwQjQwMkFF MUYxMUVFOTZBNUM5NzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KVDANBgkqhkiG9w0BAQsFAAOCAQEAJtWPis35gK3+AuQ6 XWnJLdhM8jcPmMyIha18c2EmYBE9JJNJ74D6Wi76umXB/bONssbw21aZb/KsyUT3 uMisZ7qZGeXbxZYxpR1gUs/gbaYwRXTBelGoSwkkZg2Y54PYvmMYRjX8AEmSiLnm b0Oui+LFiSWtdBjMNRVfZx3E/1PpeiBZQGJjxFIc5ZEDtN2vpk9L9NNGtSzlEilf bORNrFVMXA6guCMlWWf0xHGSbdI1ex0BazG6+PjmuJQnC+d/eeWtghV/jmWNEfd3 WTwgJo4v3cJ4OCnpcSBnsQ/tp9JnBhrc+APUh1QmvMv5AxkMbhJrnrllBrmDAhwS 2kwAng== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:32 2024 by rpki-client on console-ams.rpki-client.org