$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/859BA8EECDAC11EE9AB36F18C4F9AE02.roa File: 859BA8EECDAC11EE9AB36F18C4F9AE02.roa (raw, json) Hash identifier: 0v2TnpmxyumfaVdNd5PWBzt9E5sY5/dt3hfLp8BVYLU= Subject key identifier: 95:12:4B:F1:23:3D:AE:13:A4:B0:F3:CA:A0:4D:3A:4B:6B:44:68:09 Certificate issuer: /CN=A91EC8F7/serialNumber=DED7612DCD160A56C61784025C4B290442CF35BE Certificate serial: 21 Authority key identifier: DE:D7:61:2D:CD:16:0A:56:C6:17:84:02:5C:4B:29:04:42:CF:35:BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3tdhLc0WClbGF4QCXEspBELPNb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/859BA8EECDAC11EE9AB36F18C4F9AE02.roa Signing time: Sat 17 Feb 2024 15:52:15 +0000 ROA not before: Sat 17 Feb 2024 15:52:15 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 139335 IP address blocks: 157.10.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/3tdhLc0WClbGF4QCXEspBELPNb4.crl rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/3tdhLc0WClbGF4QCXEspBELPNb4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3tdhLc0WClbGF4QCXEspBELPNb4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8F7/serialNumber=DED7612DCD160A56C61784025C4B290442CF35BE Validity Not Before: Feb 17 15:52:15 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d0d62f-cedd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:00:db:3f:6b:c1:2d:fd:18:50:66:2a:4d:af: f9:fc:09:4c:cf:88:1b:20:9f:be:a7:ba:1a:58:c7: 4a:33:57:35:59:3f:db:cf:fa:58:57:07:a1:9a:30: 92:27:c2:33:62:e9:82:13:d9:7a:4e:e5:73:dd:36: 42:c1:d0:b3:85:2f:ef:d7:d7:bd:29:8e:73:22:ff: 35:bc:a8:3b:9f:e3:a7:59:4b:93:37:ba:27:86:cd: 5c:d5:52:80:0b:0d:f7:0b:53:7d:8e:eb:c6:04:f6: 12:34:ac:34:ab:9a:0b:23:9c:42:88:01:3a:a1:c5: 44:05:e6:03:e2:0e:c2:cb:30:b8:32:e0:2e:ae:18: 0e:10:01:8e:7e:33:d1:2e:2a:85:aa:c5:8a:82:e7: e9:7a:10:b8:91:4e:f5:ba:24:14:36:37:41:fc:e3: 3d:57:3c:54:cd:1e:62:14:08:81:cb:39:37:b6:54: 72:3b:e6:c2:6d:10:0e:c9:c1:89:f9:a7:83:0c:c3: 23:01:4a:bc:43:ad:a3:20:f5:d8:39:0f:31:07:5c: d4:61:1e:2c:65:d6:97:8c:50:de:28:02:5f:77:07: 82:9c:dd:52:9f:16:b3:f3:2b:6e:5c:49:a6:a2:92: 74:de:ed:b5:b4:9a:78:59:a6:33:2f:78:e6:a4:42: 04:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:12:4B:F1:23:3D:AE:13:A4:B0:F3:CA:A0:4D:3A:4B:6B:44:68:09 X509v3 Authority Key Identifier: keyid:DE:D7:61:2D:CD:16:0A:56:C6:17:84:02:5C:4B:29:04:42:CF:35:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/3tdhLc0WClbGF4QCXEspBELPNb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3tdhLc0WClbGF4QCXEspBELPNb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/859BA8EECDAC11EE9AB36F18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.176.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:6b:54:92:f3:c8:e2:23:1b:26:db:23:52:a0:bc:d3:55:7b: 0d:69:c0:a9:d4:7b:27:67:42:ef:9d:f3:c4:43:a4:df:72:21: 36:0d:ef:33:5a:0c:c1:6b:78:91:b5:b0:12:05:4b:1b:66:05: d2:e4:ca:dc:75:09:06:fc:43:80:89:72:82:78:01:17:17:72: 9f:c2:f3:ef:5e:a9:27:a0:b9:c2:b7:c2:18:4a:ff:54:1e:0f: 55:7b:07:7f:05:c4:70:35:7b:ea:79:67:2e:2c:4c:99:d9:5d: 16:23:dd:b4:02:be:63:8a:60:1d:34:ce:d5:c6:46:8b:59:a9: 58:b4:df:b6:5c:70:e5:02:be:40:7f:c0:b4:b5:72:e4:76:ca: 5e:72:42:d6:dd:1c:ff:df:5b:37:39:bf:13:47:3b:29:78:42: 9b:10:4b:32:b7:06:8a:79:40:d9:7f:70:48:9c:1b:67:47:f1: 2b:f7:25:2a:3e:15:32:62:84:2f:2d:39:b4:fc:89:e1:64:2d: d3:39:e3:91:ed:82:e3:6b:d9:43:c3:74:51:05:97:5e:43:2d: 29:88:f4:24:83:f5:bb:c5:d8:f0:3a:f2:07:41:a0:37:b8:de: 32:6f:de:88:36:7f:c8:c8:63:08:98:a9:19:91:31:f1:ee:a4: 9b:c1:e0:e2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QzhGNzExMC8GA1UEBRMoREVENzYxMkRDRDE2MEE1NkM2MTc4NDAyNUM0QjI5MDQ0 MkNGMzVCRTAeFw0yNDAyMTcxNTUyMTVaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDBkNjJmLWNlZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpANs/a8Et/RhQZipNr/n8CUzPiBsgn76nuhpYx0ozVzVZP9vP+lhXB6GaMJIn wjNi6YIT2XpO5XPdNkLB0LOFL+/X170pjnMi/zW8qDuf46dZS5M3uieGzVzVUoAL DfcLU32O68YE9hI0rDSrmgsjnEKIATqhxUQF5gPiDsLLMLgy4C6uGA4QAY5+M9Eu KoWqxYqC5+l6ELiRTvW6JBQ2N0H84z1XPFTNHmIUCIHLOTe2VHI75sJtEA7JwYn5 p4MMwyMBSrxDraMg9dg5DzEHXNRhHixl1peMUN4oAl93B4Kc3VKfFrPzK25cSaai knTe7bW0mnhZpjMveOakQgT7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlRJL8SM9 rhOksPPKoE06S2tEaAkwHwYDVR0jBBgwFoAU3tdhLc0WClbGF4QCXEspBELPNb4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVDOEY3Lzc3ODZFNTdFQjJB NTExRUU5MERFQTIyMEM0RjlBRTAyLzN0ZGhMYzBXQ2xiR0Y0UUNYRXNwQkVMUE5i NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3RkaExjMFdDbGJHRjRRQ1hFc3BCRUxQTmI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzhGNy83Nzg2RTU3RUIyQTUxMUVFOTBERUEyMjBDNEY5QUUwMi84NTlCQThFRUNE QUMxMUVFOUFCMzZGMThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0KsDANBgkqhkiG9w0BAQsFAAOCAQEAXmtUkvPI4iMbJtsj UqC801V7DWnAqdR7J2dC753zxEOk33IhNg3vM1oMwWt4kbWwEgVLG2YF0uTK3HUJ BvxDgIlygngBFxdyn8Lz716pJ6C5wrfCGEr/VB4PVXsHfwXEcDV76nlnLixMmdld FiPdtAK+Y4pgHTTO1cZGi1mpWLTftlxw5QK+QH/AtLVy5HbKXnJC1t0c/99bNzm/ E0c7KXhCmxBLMrcGinlA2X9wSJwbZ0fxK/clKj4VMmKELy05tPyJ4WQt0znjke2C 42vZQ8N0UQWXXkMtKYj0JIP1u8XY8DryB0GgN7jeMm/eiDZ/yMhjCJipGZEx8e6k m8Hg4g== -----END CERTIFICATE-----Generated at Thu Jun 13 08:42:09 2024 by rpki-client on console-fra.rpki-client.org