$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/B852EAA6C2A611EEB2AC4B6BC4F9AE02.roa File: B852EAA6C2A611EEB2AC4B6BC4F9AE02.roa (raw, json) Hash identifier: G78kkQMQwJwIO1vnO9r2EC+O4Tv2Ybnavk65VnjZqR8= Subject key identifier: B6:EF:12:14:03:DF:BB:38:25:5F:6B:4E:28:72:8A:20:89:46:F0:9C Certificate issuer: /CN=A91EC8F7/serialNumber=DED7612DCD160A56C61784025C4B290442CF35BE Certificate serial: 15 Authority key identifier: DE:D7:61:2D:CD:16:0A:56:C6:17:84:02:5C:4B:29:04:42:CF:35:BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3tdhLc0WClbGF4QCXEspBELPNb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/B852EAA6C2A611EEB2AC4B6BC4F9AE02.roa Signing time: Sat 03 Feb 2024 15:13:46 +0000 ROA not before: Sat 03 Feb 2024 15:13:46 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152324 IP address blocks: 157.10.176.0/23 maxlen: 23 157.10.176.0/24 maxlen: 24 157.10.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/3tdhLc0WClbGF4QCXEspBELPNb4.crl rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/3tdhLc0WClbGF4QCXEspBELPNb4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3tdhLc0WClbGF4QCXEspBELPNb4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8F7/serialNumber=DED7612DCD160A56C61784025C4B290442CF35BE Validity Not Before: Feb 3 15:13:46 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65be582a-1fac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:73:e6:99:80:70:e0:8f:f0:f2:61:8c:70:67: 5b:8d:4c:f3:70:6d:a0:fb:ed:b1:98:22:c2:2b:43: d8:f7:9a:f7:d8:68:34:94:99:7a:ad:91:bf:c5:44: 6d:5f:0a:5d:e0:9f:e8:90:5a:6a:74:77:19:1d:90: a6:89:44:3d:6c:a2:56:78:80:b3:43:68:f7:11:59: 74:dc:9f:e5:92:ea:0b:d5:e7:f2:fc:29:af:57:d8: 88:7a:52:95:3a:43:be:51:9d:b5:5e:7c:f6:f0:ba: 25:8e:34:1a:0f:1c:6a:bb:5b:2e:d1:3c:54:1d:6b: 09:5e:37:ae:41:e8:61:be:2c:a4:b4:09:b4:3c:58: 85:5b:43:96:29:f0:a8:ef:ea:02:d4:49:e5:6a:3e: 17:9a:22:14:51:eb:f0:48:82:e6:ad:ed:ce:c1:f9: 94:cb:50:91:36:21:5b:76:f4:8d:5e:c8:4c:33:17: 38:44:ec:b2:2c:d1:1e:3d:ef:9e:0f:fe:bb:d9:31: c8:dc:a4:8c:94:77:ed:dc:99:a8:12:80:4a:5f:4c: 3e:5f:52:8d:5c:0c:98:2d:5d:a5:a9:a5:26:94:7b: 91:7d:d6:8f:73:ff:60:ba:cd:c5:df:d6:eb:60:db: e4:e1:e3:52:22:66:06:7a:c8:8f:b2:13:ea:eb:3d: cc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:EF:12:14:03:DF:BB:38:25:5F:6B:4E:28:72:8A:20:89:46:F0:9C X509v3 Authority Key Identifier: keyid:DE:D7:61:2D:CD:16:0A:56:C6:17:84:02:5C:4B:29:04:42:CF:35:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/3tdhLc0WClbGF4QCXEspBELPNb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3tdhLc0WClbGF4QCXEspBELPNb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/B852EAA6C2A611EEB2AC4B6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.176.0/23 Signature Algorithm: sha256WithRSAEncryption ad:44:70:af:40:69:54:cb:e4:e1:be:b4:ec:c6:a7:d2:94:1a: 31:26:de:db:e0:51:b9:82:2e:50:06:02:8b:2c:0a:d0:e7:d0: 82:77:01:e4:e1:a3:27:f8:33:a4:40:73:ac:c1:80:40:da:97: 3b:56:f3:70:64:de:fe:2b:62:1c:d7:9d:08:61:ca:e6:94:99: e0:bf:a1:ec:66:1a:b6:9f:f0:cc:47:32:0a:c7:a4:da:b8:a7: 03:4f:39:41:dc:2f:4a:c0:6f:a2:fd:13:61:fa:fa:13:45:1f: 70:2a:ed:78:ed:e8:58:98:18:19:11:9b:3d:c9:97:2c:5f:65: c5:70:71:f9:0a:a6:ea:cd:4d:e4:74:17:41:42:db:8b:ba:b0: 9a:0b:b2:6f:52:32:59:d0:c6:7e:24:3d:68:79:87:84:ea:fe: ef:5b:ef:99:9b:e2:a1:9c:98:4b:56:07:e7:3e:3b:45:11:07: 1b:85:0a:34:ca:33:ff:c2:39:6b:71:0c:bd:3c:2c:5d:41:a6: 70:7e:86:ce:eb:b7:47:cd:ee:3a:f8:fa:01:ce:a4:cc:c4:a3: c2:b5:76:e9:9a:83:46:1c:33:e0:f5:aa:fc:0e:cc:f1:17:92: 5e:47:a7:00:03:a6:d0:8d:be:e6:c0:4c:7e:c6:f8:07:77:96: 65:f0:86:db -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QzhGNzExMC8GA1UEBRMoREVENzYxMkRDRDE2MEE1NkM2MTc4NDAyNUM0QjI5MDQ0 MkNGMzVCRTAeFw0yNDAyMDMxNTEzNDZaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YmU1ODJhLTFmYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKc+aZgHDgj/DyYYxwZ1uNTPNwbaD77bGYIsIrQ9j3mvfYaDSUmXqtkb/FRG1f Cl3gn+iQWmp0dxkdkKaJRD1solZ4gLNDaPcRWXTcn+WS6gvV5/L8Ka9X2Ih6UpU6 Q75RnbVefPbwuiWONBoPHGq7Wy7RPFQdawleN65B6GG+LKS0CbQ8WIVbQ5Yp8Kjv 6gLUSeVqPheaIhRR6/BIguat7c7B+ZTLUJE2IVt29I1eyEwzFzhE7LIs0R49754P /rvZMcjcpIyUd+3cmagSgEpfTD5fUo1cDJgtXaWppSaUe5F91o9z/2C6zcXf1utg 2+Th41IiZgZ6yI+yE+rrPcyjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUtu8SFAPf uzglX2tOKHKKIIlG8JwwHwYDVR0jBBgwFoAU3tdhLc0WClbGF4QCXEspBELPNb4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVDOEY3Lzc3ODZFNTdFQjJB NTExRUU5MERFQTIyMEM0RjlBRTAyLzN0ZGhMYzBXQ2xiR0Y0UUNYRXNwQkVMUE5i NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3RkaExjMFdDbGJHRjRRQ1hFc3BCRUxQTmI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzhGNy83Nzg2RTU3RUIyQTUxMUVFOTBERUEyMjBDNEY5QUUwMi9CODUyRUFBNkMy QTYxMUVFQjJBQzRCNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KsDANBgkqhkiG9w0BAQsFAAOCAQEArURwr0BpVMvk4b60 7Man0pQaMSbe2+BRuYIuUAYCiywK0OfQgncB5OGjJ/gzpEBzrMGAQNqXO1bzcGTe /itiHNedCGHK5pSZ4L+h7GYatp/wzEcyCsek2rinA085QdwvSsBvov0TYfr6E0Uf cCrteO3oWJgYGRGbPcmXLF9lxXBx+Qqm6s1N5HQXQULbi7qwmguyb1IyWdDGfiQ9 aHmHhOr+71vvmZvioZyYS1YH5z47RREHG4UKNMoz/8I5a3EMvTwsXUGmcH6Gzuu3 R83uOvj6Ac6kzMSjwrV26ZqDRhwz4PWq/A7M8ReSXkenAAOm0I2+5sBMfsb4B3eW ZfCG2w== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:35 2024 by rpki-client on console-ams.rpki-client.org