$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/D677E18AB9AF11EE97EEDB49C4F9AE02.roa File: D677E18AB9AF11EE97EEDB49C4F9AE02.roa (raw, json) Hash identifier: bbMHV8oCUwtDEkC22H+H7bKfD+4ySH6t4g6oHROy/Tg= Subject key identifier: 2B:72:8E:C8:B0:32:A4:B5:7A:11:7E:FC:CF:00:72:A7:09:58:D7:3F Certificate issuer: /CN=A91CFD5A/serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Certificate serial: 05 Authority key identifier: 33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/D677E18AB9AF11EE97EEDB49C4F9AE02.roa Signing time: Tue 23 Jan 2024 07:23:58 +0000 ROA not before: Tue 23 Jan 2024 07:23:58 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152342 IP address blocks: 157.15.22.0/23 maxlen: 23 157.15.22.0/24 maxlen: 24 157.15.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A/serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Validity Not Before: Jan 23 07:23:58 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65af698e-2306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2c:bf:99:f7:c7:af:ab:be:91:51:57:54:9b: fa:07:62:1a:f2:13:1a:8c:a0:62:2b:ac:66:7f:fc: 70:e7:6b:b1:da:81:8f:50:08:20:71:28:2e:c7:a3: ee:65:f6:1c:f2:ec:88:97:dc:b8:ba:47:9e:de:78: 2e:4c:d3:b1:02:03:17:08:ad:00:ed:dc:5c:f5:d3: 8c:80:23:53:d5:05:bd:33:0f:a6:e3:55:dc:10:cf: 10:5b:ad:b3:e2:6d:dd:7e:57:3e:67:7e:5a:67:d6: ed:15:58:76:6b:d8:d3:5f:d0:b0:ff:10:13:be:2f: 92:5d:92:79:72:9b:98:c9:83:ae:ca:6b:1c:27:e3: 59:50:f2:fe:91:89:4a:57:d2:85:a2:68:4e:d7:1f: 97:de:a2:38:a3:c2:c9:b1:39:d6:78:20:a2:a8:b2: 20:82:ac:68:90:5e:93:a5:1f:ad:aa:c1:cb:e3:3e: a4:1c:46:22:2f:dd:36:88:4a:ae:5b:bf:7f:b9:14: 28:d8:84:97:86:ce:57:8a:c3:33:49:65:fb:a1:b6: 37:64:94:72:3b:63:fd:35:dc:ed:0f:ff:aa:6d:1c: e7:a7:7b:f0:6a:d6:04:ac:90:48:4e:94:e3:da:13: a7:f9:d0:81:e1:6f:f5:c6:c9:77:97:a7:97:5e:1d: c3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:72:8E:C8:B0:32:A4:B5:7A:11:7E:FC:CF:00:72:A7:09:58:D7:3F X509v3 Authority Key Identifier: keyid:33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/D677E18AB9AF11EE97EEDB49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.22.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:85:79:8e:5b:5c:d1:03:26:72:74:0e:85:e4:c1:d8:18:26: b3:33:f0:06:f7:a2:0e:6f:83:8e:85:ab:c9:49:f4:c7:cc:e8: cd:22:91:d5:ab:85:92:55:db:16:85:90:a5:56:45:f2:f2:b6: f1:3c:8b:39:6d:db:1e:42:0b:6d:a6:08:9e:91:f8:63:f8:19: 51:88:77:50:24:ef:34:af:0e:e1:df:35:17:e4:a9:d8:cf:3c: c8:51:e2:6b:d4:2d:fe:eb:ea:5b:4c:d8:ff:f3:3e:45:25:07: cd:2c:5c:67:60:89:da:94:97:07:b1:57:22:a8:cc:13:a5:9a: 3a:35:a4:4e:52:49:a1:51:f3:aa:b3:54:c0:9b:c3:60:5c:10: f8:2a:fb:5d:e0:a0:02:80:1f:e7:26:84:eb:d0:eb:01:41:79: 44:39:fc:e5:85:a2:4f:d8:2d:fa:d9:52:8e:04:c3:73:01:d0: 55:86:71:b4:78:33:ce:55:77:a0:af:07:3e:12:a1:b9:5a:b6: 33:4e:14:1c:a9:6c:17:ad:f3:ec:33:0e:81:d9:81:31:96:73: ea:b0:30:cf:39:b5:ae:9e:fa:fd:50:43:19:f1:5c:0e:84:8c: 17:b6:b2:a5:41:f1:02:49:2a:97:07:a7:86:e0:0b:82:2f:05: 9f:c8:a7:7e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkQ1QTExMC8GA1UEBRMoMzNFNTQyNUQwMzY4RjgyRkY4NUI5Qjg0N0Y0MTIzOEFE NThENEU1MDAeFw0yNDAxMjMwNzIzNThaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YWY2OThlLTIzMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyLL+Z98evq76RUVdUm/oHYhryExqMoGIrrGZ//HDna7HagY9QCCBxKC7Ho+5l 9hzy7IiX3Li6R57eeC5M07ECAxcIrQDt3Fz104yAI1PVBb0zD6bjVdwQzxBbrbPi bd1+Vz5nflpn1u0VWHZr2NNf0LD/EBO+L5Jdknlym5jJg67Kaxwn41lQ8v6RiUpX 0oWiaE7XH5feojijwsmxOdZ4IKKosiCCrGiQXpOlH62qwcvjPqQcRiIv3TaISq5b v3+5FCjYhJeGzleKwzNJZfuhtjdklHI7Y/013O0P/6ptHOene/Bq1gSskEhOlOPa E6f50IHhb/XGyXeXp5deHcPbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUK3KOyLAy pLV6EX78zwBypwlY1z8wHwYDVR0jBBgwFoAUM+VCXQNo+C/4W5uEf0EjitWNTlAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRDVBLzVGQjdEQzA4QjlB QTExRUVCMERDRDgzNEM0RjlBRTAyL00tVkNYUU5vLUNfNFc1dUVmMEVqaXRXTlRs QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTS1WQ1hRTm8tQ180VzV1RWYwRWppdFdOVGxBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS81RkI3REMwOEI5QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9ENjc3RTE4QUI5 QUYxMUVFOTdFRURCNDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PFjANBgkqhkiG9w0BAQsFAAOCAQEAmoV5jltc0QMmcnQO heTB2BgmszPwBveiDm+DjoWryUn0x8zozSKR1auFklXbFoWQpVZF8vK28TyLOW3b HkILbaYInpH4Y/gZUYh3UCTvNK8O4d81F+Sp2M88yFHia9Qt/uvqW0zY//M+RSUH zSxcZ2CJ2pSXB7FXIqjME6WaOjWkTlJJoVHzqrNUwJvDYFwQ+Cr7XeCgAoAf5yaE 69DrAUF5RDn85YWiT9gt+tlSjgTDcwHQVYZxtHgzzlV3oK8HPhKhuVq2M04UHKls F63z7DMOgdmBMZZz6rAwzzm1rp76/VBDGfFcDoSMF7aypUHxAkkqlwenhuALgi8F n8infg== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:58 2024 by rpki-client on console-fra.rpki-client.org