$ rpki-client -vvf rpki.apnic.net/member_repository/A912BA82/F26014E8CE5A11EE8C3BD03AC4F9AE02/32F8A3CCEB3311EEA2DF8C7DC4F9AE02.roa File: 32F8A3CCEB3311EEA2DF8C7DC4F9AE02.roa (raw, json) Hash identifier: Zf2aGirHutcUGM8OKVSuTfZK9xWSl0wXe0Qvn8CL4Y4= Subject key identifier: 47:5C:EE:50:32:E0:02:71:02:0D:C7:5A:79:9A:1D:AC:84:85:00:22 Certificate issuer: /CN=A912BA82/serialNumber=BBDA2A52B5048F1A8AABBF5C24172601277CB2F3 Certificate serial: 16 Authority key identifier: BB:DA:2A:52:B5:04:8F:1A:8A:AB:BF:5C:24:17:26:01:27:7C:B2:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u9oqUrUEjxqKq79cJBcmASd8svM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BA82/F26014E8CE5A11EE8C3BD03AC4F9AE02/32F8A3CCEB3311EEA2DF8C7DC4F9AE02.roa Signing time: Tue 26 Mar 2024 05:39:23 +0000 ROA not before: Tue 26 Mar 2024 05:39:23 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152332 IP address blocks: 157.10.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BA82/F26014E8CE5A11EE8C3BD03AC4F9AE02/u9oqUrUEjxqKq79cJBcmASd8svM.crl rsync://rpki.apnic.net/member_repository/A912BA82/F26014E8CE5A11EE8C3BD03AC4F9AE02/u9oqUrUEjxqKq79cJBcmASd8svM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u9oqUrUEjxqKq79cJBcmASd8svM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BA82/serialNumber=BBDA2A52B5048F1A8AABBF5C24172601277CB2F3 Validity Not Before: Mar 26 05:39:23 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66025f8a-8a50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:04:46:3b:ea:60:4f:31:e2:2c:7d:f4:de:49: c8:4d:7a:6a:85:5f:76:93:60:bd:ae:47:18:06:1e: d7:e7:e8:75:3c:2f:68:1f:bc:50:f5:59:44:4e:ec: 10:41:02:b2:0f:ea:89:c4:62:bc:f9:80:86:fd:cb: 63:e7:41:a9:aa:d5:b5:5b:3d:f2:89:30:95:cf:6d: 68:0b:31:de:23:17:dd:d1:c6:b5:72:d2:2e:43:70: 2e:c3:42:c6:1b:ca:31:64:33:8b:41:d9:af:ff:3a: 24:1d:77:29:3f:ed:3c:59:d3:cb:e9:20:15:a2:93: 7b:51:84:97:1b:90:20:9b:39:34:a1:52:e0:ff:ee: 1f:4b:48:e6:57:c6:ff:70:dd:4e:13:e2:86:04:5b: 6e:7f:72:ed:77:57:86:6e:fd:01:f0:b9:d8:62:f0: 70:d0:6a:a3:3f:d2:ab:48:67:f2:4f:1b:f5:0c:ec: b8:f1:f9:ad:d3:1a:96:96:0f:df:4b:9b:70:c8:ef: 22:e7:b0:fc:7a:5a:67:c3:bb:28:b3:d7:e3:f5:ed: c2:5e:9f:8d:04:83:b7:4e:f8:c9:96:bd:bc:0f:a5: 87:43:a3:d5:4b:85:b0:09:26:69:5f:a5:b3:c4:4c: 6e:66:22:f7:2e:46:b1:d7:10:54:53:b3:fc:dd:f0: f3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5C:EE:50:32:E0:02:71:02:0D:C7:5A:79:9A:1D:AC:84:85:00:22 X509v3 Authority Key Identifier: keyid:BB:DA:2A:52:B5:04:8F:1A:8A:AB:BF:5C:24:17:26:01:27:7C:B2:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BA82/F26014E8CE5A11EE8C3BD03AC4F9AE02/u9oqUrUEjxqKq79cJBcmASd8svM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u9oqUrUEjxqKq79cJBcmASd8svM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BA82/F26014E8CE5A11EE8C3BD03AC4F9AE02/32F8A3CCEB3311EEA2DF8C7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.214.0/23 Signature Algorithm: sha256WithRSAEncryption 01:6a:dd:57:20:79:a7:8e:d5:33:9c:0b:ee:2d:54:e6:9b:71: dc:52:be:3b:8a:bd:2c:da:70:24:6d:92:e6:19:46:b8:2e:70: 88:eb:97:51:42:c2:bd:55:ac:f8:51:c6:9d:47:d6:c3:01:16: a5:dd:e2:fd:96:2e:1a:bb:7a:95:72:67:ef:f5:0d:b0:3f:6f: 1e:5f:4b:cf:4a:ed:b2:6c:0e:75:b2:8d:db:bb:49:b4:35:e6: 09:26:68:14:bc:50:e2:39:6a:6b:88:33:99:a1:b7:58:ae:2f: d3:d4:c2:de:a3:5a:b2:80:db:74:62:6f:e4:da:fa:d3:fd:7b: 55:d6:c9:52:60:e3:bb:47:8a:cb:3b:e3:96:3c:fe:57:58:4f: c5:cc:c3:d1:cb:83:9c:d1:d8:f6:54:f4:e7:e4:44:bf:b6:94: e2:d4:64:b4:3a:cd:1c:0e:81:18:58:64:5c:48:a2:64:cd:bc: 46:fb:48:9f:ef:a9:d1:e3:d7:09:06:33:ae:79:c9:6d:69:3e: 53:e4:33:69:fa:bb:e1:20:b8:7b:29:09:20:5d:37:f7:bd:2e: 90:3d:3d:8f:07:5c:e5:ec:66:7e:c2:f1:27:74:b8:f5:b4:b6: 81:90:a3:38:ed:33:1b:56:88:1a:f3:a6:13:fc:f4:84:7a:b5: 5b:50:ce:15 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QkE4MjExMC8GA1UEBRMoQkJEQTJBNTJCNTA0OEYxQThBQUJCRjVDMjQxNzI2MDEy NzdDQjJGMzAeFw0yNDAzMjYwNTM5MjNaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDI1ZjhhLThhNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoBEY76mBPMeIsffTeSchNemqFX3aTYL2uRxgGHtfn6HU8L2gfvFD1WURO7BBB ArIP6onEYrz5gIb9y2PnQamq1bVbPfKJMJXPbWgLMd4jF93RxrVy0i5DcC7DQsYb yjFkM4tB2a//OiQddyk/7TxZ08vpIBWik3tRhJcbkCCbOTShUuD/7h9LSOZXxv9w 3U4T4oYEW25/cu13V4Zu/QHwudhi8HDQaqM/0qtIZ/JPG/UM7Ljx+a3TGpaWD99L m3DI7yLnsPx6WmfDuyiz1+P17cJen40Eg7dO+MmWvbwPpYdDo9VLhbAJJmlfpbPE TG5mIvcuRrHXEFRTs/zd8PM9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUR1zuUDLg AnECDcdaeZodrISFACIwHwYDVR0jBBgwFoAUu9oqUrUEjxqKq79cJBcmASd8svMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCQTgyL0YyNjAxNEU4Q0U1 QTExRUU4QzNCRDAzQUM0RjlBRTAyL3U5b3FVclVFanhxS3E3OWNKQmNtQVNkOHN2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdTlvcVVyVUVqeHFLcTc5Y0pCY21BU2Q4c3ZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkE4Mi9GMjYwMTRFOENFNUExMUVFOEMzQkQwM0FDNEY5QUUwMi8zMkY4QTNDQ0VC MzMxMUVFQTJERjhDN0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0K1jANBgkqhkiG9w0BAQsFAAOCAQEAAWrdVyB5p47VM5wL 7i1U5ptx3FK+O4q9LNpwJG2S5hlGuC5wiOuXUULCvVWs+FHGnUfWwwEWpd3i/ZYu Grt6lXJn7/UNsD9vHl9Lz0rtsmwOdbKN27tJtDXmCSZoFLxQ4jlqa4gzmaG3WK4v 09TC3qNasoDbdGJv5Nr60/17VdbJUmDju0eKyzvjljz+V1hPxczD0cuDnNHY9lT0 5+REv7aU4tRktDrNHA6BGFhkXEiiZM28RvtIn++p0ePXCQYzrnnJbWk+U+Qzafq7 4SC4eykJIF03970ukD09jwdc5exmfsLxJ3S49bS2gZCjOO0zG1aIGvOmE/z0hHq1 W1DOFQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:13 2024 by rpki-client on console-fra.rpki-client.org