$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/1D74CCE2BB6D11EEB670B00CC4F9AE02.roa File: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (raw, json) Hash identifier: drim/D+h+Xt+p+pnKr4+ojkoccz6AyP57BUNn870PPc= Subject key identifier: 41:E2:19:03:00:79:C7:F4:F9:44:35:AC:6C:D7:D1:64:CF:61:63:66 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 02 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/1D74CCE2BB6D11EEB670B00CC4F9AE02.roa Signing time: Thu 25 Jan 2024 10:33:02 +0000 ROA not before: Thu 25 Jan 2024 10:33:02 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152341 IP address blocks: 157.15.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Jan 25 10:33:02 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65b238dd-44c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e9:0e:97:19:01:36:5c:94:56:7a:e6:57:b5: 8f:02:26:94:35:62:cf:a9:f6:23:a5:1d:b6:1e:2a: 4a:d5:c4:c3:78:8f:45:fd:88:65:0e:79:b5:fe:dc: e0:2e:6a:71:16:d8:ff:db:02:6c:76:cd:e2:da:83: 1d:34:3a:c7:7d:40:a5:84:96:0c:ea:8a:4a:6b:57: 36:74:20:c7:af:2d:80:4f:ea:7c:ec:d3:25:9e:5d: 89:71:8a:5a:b0:c9:d2:f7:da:dc:9c:86:2e:10:91: c4:43:d4:8d:7e:4c:63:32:0f:f6:28:a9:6a:63:08: 8f:c3:31:80:2f:5d:2b:d7:14:1a:b0:ad:76:13:57: f5:a0:50:18:b3:13:e9:38:51:a9:a4:4e:e6:9a:42: 3c:11:5c:5d:89:88:2a:3a:6d:75:71:a2:68:49:0e: b7:d3:78:cc:d8:a7:cd:bb:1a:e8:ab:29:a4:b2:0e: f7:91:5e:61:b9:01:13:b8:10:54:bd:31:ef:7d:d6: 6c:fe:69:37:da:4f:26:67:50:57:c7:70:55:e2:51: be:ae:82:6d:46:1f:60:fd:ea:41:44:0a:b5:16:05: b6:95:fd:8d:25:d0:26:c4:f3:81:01:b2:b9:f8:fb: 32:ac:9d:85:b9:fe:20:62:7f:2b:80:f4:65:4b:5b: 10:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E2:19:03:00:79:C7:F4:F9:44:35:AC:6C:D7:D1:64:CF:61:63:66 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/1D74CCE2BB6D11EEB670B00CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.16.0/24 Signature Algorithm: sha256WithRSAEncryption 12:27:d9:3a:fe:e3:66:48:03:1b:f7:ec:e5:1d:7d:0e:b2:79: 54:ab:fe:10:68:e6:07:2c:e6:c8:79:48:3e:f5:45:ea:be:34: 1b:f7:c7:d8:4f:8a:63:de:95:01:ad:71:9f:b6:22:61:8c:df: 28:34:43:9a:4f:86:96:63:3f:5c:0c:8f:08:47:3c:5e:fa:2a: 3f:f9:3c:22:6a:fe:1d:44:cb:f4:8a:1e:03:5d:f5:97:8e:80: 68:22:0a:2a:df:56:33:8f:c1:08:c4:39:0c:2e:a7:7c:ce:e6: 9a:c4:45:a6:4c:61:d0:f1:ce:ee:ad:6d:50:2a:ac:84:10:b2: 73:c4:be:5e:3e:a3:36:c1:19:ed:ba:f6:ed:b4:79:ef:82:af: cd:10:ed:3e:d7:5e:b7:94:b5:66:3b:7c:a7:7d:62:c3:e7:d3: c7:47:1f:ae:d5:58:9a:33:52:29:ed:4e:1c:66:7f:fa:7d:98: e9:90:bb:0d:c7:c4:3b:b1:8c:f5:82:db:30:63:cc:1f:16:e1: 99:33:1e:b6:e1:32:84:2c:69:14:41:bf:29:7b:c9:32:84:7d: b9:09:3b:8d:31:04:5e:34:c5:a2:3c:e2:cf:94:6c:22:11:fa: ad:b6:30:6a:5a:c7:fd:cc:17:30:99:a2:63:c7:aa:4f:5c:10: 3c:e7:da:ed -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkYyNzExMC8GA1UEBRMoMkFEM0Q4OEI1RThFMEIwNTE0MUEzQkM5MkY4NUU0Mjcz QTA1NjJBMTAeFw0yNDAxMjUxMDMzMDJaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjIzOGRkLTQ0YzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCf6Q6XGQE2XJRWeuZXtY8CJpQ1Ys+p9iOlHbYeKkrVxMN4j0X9iGUOebX+3OAu anEW2P/bAmx2zeLagx00Osd9QKWElgzqikprVzZ0IMevLYBP6nzs0yWeXYlxilqw ydL32tychi4QkcRD1I1+TGMyD/YoqWpjCI/DMYAvXSvXFBqwrXYTV/WgUBizE+k4 UamkTuaaQjwRXF2JiCo6bXVxomhJDrfTeMzYp827GuirKaSyDveRXmG5ARO4EFS9 Me991mz+aTfaTyZnUFfHcFXiUb6ugm1GH2D96kFECrUWBbaV/Y0l0CbE84EBsrn4 +zKsnYW5/iBifyuA9GVLWxDPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQeIZAwB5 x/T5RDWsbNfRZM9hY2YwHwYDVR0jBBgwFoAUKtPYi16OCwUUGjvJL4XkJzoFYqEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyRjI3LzdBQ0RGOUFBQkI2 QzExRUVBNjgwQUU2REM0RjlBRTAyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3RQWWkxNk9Dd1VVR2p2Skw0WGtKem9GWXFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi8xRDc0Q0NFMkJC NkQxMUVFQjY3MEIwMENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0PEDANBgkqhkiG9w0BAQsFAAOCAQEAEifZOv7jZkgDG/fs 5R19DrJ5VKv+EGjmByzmyHlIPvVF6r40G/fH2E+KY96VAa1xn7YiYYzfKDRDmk+G lmM/XAyPCEc8XvoqP/k8Imr+HUTL9IoeA131l46AaCIKKt9WM4/BCMQ5DC6nfM7m msRFpkxh0PHO7q1tUCqshBCyc8S+Xj6jNsEZ7br27bR574KvzRDtPtdet5S1Zjt8 p31iw+fTx0cfrtVYmjNSKe1OHGZ/+n2Y6ZC7DcfEO7GM9YLbMGPMHxbhmTMetuEy hCxpFEG/KXvJMoR9uQk7jTEEXjTFojziz5RsIhH6rbYwalrH/cwXMJmiY8eqT1wQ POfa7Q== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:14 2024 by rpki-client on console-fra.rpki-client.org