$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/6C363C0CF85911EE9EAE731BC4F9AE02.roa File: 6C363C0CF85911EE9EAE731BC4F9AE02.roa (raw, json) Hash identifier: g3Rp9bNDQ9dW3bx4n0B6sKyw1hJKpt4SQCTG4hBG/Mw= Subject key identifier: 71:D3:1D:7F:E5:C0:B5:5F:EC:A3:F6:8B:FF:28:20:24:4A:67:9C:00 Certificate issuer: /CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Certificate serial: 28 Authority key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/6C363C0CF85911EE9EAE731BC4F9AE02.roa Signing time: Thu 11 Apr 2024 23:15:45 +0000 ROA not before: Thu 11 Apr 2024 23:15:45 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150746 IP address blocks: 157.15.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Validity Not Before: Apr 11 23:15:45 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66186f20-3749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d6:85:2f:ad:7e:9a:4b:43:69:e4:02:a5:81: 50:ce:f3:fb:b9:cc:e9:5f:f1:dc:9a:cf:77:60:76: bd:e9:e4:ec:79:ba:58:2a:f9:8a:ae:44:01:1e:21: 02:d6:1a:a2:a7:62:df:4f:3e:e4:5b:67:a0:69:e3: 8f:70:d8:a0:6d:8b:55:5a:91:b6:c3:2d:21:2f:d5: 1b:69:75:1f:31:64:38:e4:1e:bc:9d:c5:51:4a:a4: 93:98:35:ec:12:ac:76:b5:cb:8c:63:f7:d2:df:ed: e8:7b:6f:6f:9f:09:f7:52:c6:77:24:07:33:f7:b8: 3b:f9:90:aa:cd:a2:66:ac:b9:5d:4c:78:08:22:9b: 70:fe:f0:1e:45:21:21:47:8b:0b:06:ab:ff:04:57: 28:0a:46:a5:cf:9f:7d:cc:1a:ea:e4:fe:b4:9e:e8: 5d:74:c8:45:9c:0c:47:c5:aa:e9:c9:6d:f6:9e:cd: 02:57:81:64:91:ab:03:87:6c:61:ed:55:97:ae:a7: 3f:24:0e:36:d1:cc:43:b9:15:d2:cb:f4:2f:75:11: 64:2a:65:30:bc:f2:d7:0b:f5:3c:0e:48:c7:79:42: d8:24:3d:22:ad:a7:8b:6c:a4:c3:a2:e9:20:92:4d: 7d:91:02:e5:1d:51:3b:a7:27:60:65:15:a5:1b:9a: 3a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D3:1D:7F:E5:C0:B5:5F:EC:A3:F6:8B:FF:28:20:24:4A:67:9C:00 X509v3 Authority Key Identifier: keyid:D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/6C363C0CF85911EE9EAE731BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.138.0/24 Signature Algorithm: sha256WithRSAEncryption 36:c2:fb:7a:bf:f6:50:e6:39:e0:70:4a:5b:4d:5a:98:be:9e: 09:30:1d:0d:98:ce:4c:f6:1b:5f:c1:e3:df:dc:92:e1:df:2a: 89:54:e0:a8:66:ca:63:3f:6f:55:a6:83:b8:94:19:a6:3e:81: 66:de:27:15:09:b8:00:90:2e:9c:a8:c1:ed:0d:66:1b:ad:d0: b6:d4:aa:d4:74:0d:52:1c:fe:01:d2:6f:75:72:67:2c:7b:ff: 99:a8:31:f4:fe:f8:e2:d8:a2:17:80:62:4a:b5:ac:45:f3:38: e0:b0:ed:ee:7f:6f:64:8d:b0:99:d4:ff:db:76:ec:03:b2:59: 6d:bc:3e:33:19:3a:96:cd:2a:df:3d:a2:30:9d:1c:62:59:e5: 8a:76:11:52:08:01:f7:e1:c8:0e:05:f7:e0:73:42:43:9d:a0: d3:64:54:9c:b6:c9:ee:eb:ba:40:46:bf:09:94:39:23:32:e4: 83:8f:97:61:c1:68:bf:4f:23:8b:3a:1e:d5:68:66:f2:d6:f7: 95:06:c8:3e:a8:a6:be:f8:a2:07:ef:3e:bf:c3:73:00:51:3d: d0:00:b8:cd:ca:21:ac:12:8e:5d:26:ab:cc:a2:04:91:f2:0d: d3:6f:d2:ac:82:f5:d3:c0:b5:15:6d:fb:fe:d6:7c:f4:cc:96: 64:5e:71:6f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODlBMjExMC8GA1UEBRMoRDhGQzc5NUI2M0NDNDI1NzNGRDVEQjQ0RjBBODM4NkM4 RDY0M0I4NDAeFw0yNDA0MTEyMzE1NDVaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTg2ZjIwLTM3NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG1oUvrX6aS0Np5AKlgVDO8/u5zOlf8dyaz3dgdr3p5Ox5ulgq+YquRAEeIQLW GqKnYt9PPuRbZ6Bp449w2KBti1VakbbDLSEv1RtpdR8xZDjkHrydxVFKpJOYNewS rHa1y4xj99Lf7eh7b2+fCfdSxnckBzP3uDv5kKrNomasuV1MeAgim3D+8B5FISFH iwsGq/8EVygKRqXPn33MGurk/rSe6F10yEWcDEfFqunJbfaezQJXgWSRqwOHbGHt VZeupz8kDjbRzEO5FdLL9C91EWQqZTC88tcL9TwOSMd5QtgkPSKtp4tspMOi6SCS TX2RAuUdUTunJ2BlFaUbmjrfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcdMdf+XA tV/so/aL/yggJEpnnAAwHwYDVR0jBBgwFoAU2Px5W2PMQlc/1dtE8Kg4bI1kO4Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OUEyL0IzOTZGM0MwQzU0 MTExRUVBQkMyQzM4NUM0RjlBRTAyLzJQeDVXMlBNUWxjXzFkdEU4S2c0Ykkxa080 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlB4NVcyUE1RbGNfMWR0RThLZzRiSTFrTzRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CMzk2RjNDMEM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi82QzM2M0MwQ0Y4 NTkxMUVFOUVBRTczMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0PijANBgkqhkiG9w0BAQsFAAOCAQEANsL7er/2UOY54HBK W01amL6eCTAdDZjOTPYbX8Hj39yS4d8qiVTgqGbKYz9vVaaDuJQZpj6BZt4nFQm4 AJAunKjB7Q1mG63QttSq1HQNUhz+AdJvdXJnLHv/magx9P744tiiF4BiSrWsRfM4 4LDt7n9vZI2wmdT/23bsA7JZbbw+Mxk6ls0q3z2iMJ0cYlnlinYRUggB9+HIDgX3 4HNCQ52g02RUnLbJ7uu6QEa/CZQ5IzLkg4+XYcFov08jizoe1Whm8tb3lQbIPqim vviiB+8+v8NzAFE90AC4zcohrBKOXSarzKIEkfIN02/SrIL108C1FW37/tZ89MyW ZF5xbw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:36 2024 by rpki-client on console-ams.rpki-client.org