$ rpki-client -vvf rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/1F5F5920B85F11EE9B53995FC4F9AE02.roa File: 1F5F5920B85F11EE9B53995FC4F9AE02.roa (raw, json) Hash identifier: hNCRC9+DFNhTvM3v/BstmJffMNQ5AXXkJyzRo3ph1EY= Subject key identifier: DA:DA:12:D4:98:07:70:9D:2C:E8:DF:EC:2B:59:B6:EC:67:BF:1F:C2 Certificate issuer: /CN=A91388E0/serialNumber=25242E131997835BFC9B180405C797C6289447E7 Certificate serial: 07 Authority key identifier: 25:24:2E:13:19:97:83:5B:FC:9B:18:04:05:C7:97:C6:28:94:47:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSQuExmXg1v8mxgEBceXxiiUR-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/1F5F5920B85F11EE9B53995FC4F9AE02.roa Signing time: Sun 21 Jan 2024 13:16:15 +0000 ROA not before: Sun 21 Jan 2024 13:16:15 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152336 IP address blocks: 157.10.244.0/23 maxlen: 23 157.10.244.0/24 maxlen: 24 157.10.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.crl rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSQuExmXg1v8mxgEBceXxiiUR-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91388E0/serialNumber=25242E131997835BFC9B180405C797C6289447E7 Validity Not Before: Jan 21 13:16:15 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ad191f-8e23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:67:24:32:f1:97:3b:44:ec:e6:6a:38:90:74: 41:65:f3:2b:4f:74:81:b3:fb:c6:61:f6:10:cc:1e: af:b4:cd:5c:05:96:7d:4d:76:4d:97:85:ec:30:77: 27:4d:55:c5:8b:9f:f3:da:83:60:b4:c2:0b:8d:cd: f9:cd:55:61:b2:2a:95:ef:f7:fb:d4:a7:ba:e1:34: 5f:1e:47:d4:4b:e5:ec:97:48:5d:d4:84:5a:23:a9: d4:3c:76:22:30:c5:25:31:ea:c6:a5:bc:f7:aa:b9: 6d:99:a2:4e:28:00:c3:5b:04:f6:48:71:89:c8:67: 71:05:5e:a7:5c:5e:2a:4a:74:20:b8:83:4f:9d:93: 84:ab:08:12:82:0e:92:32:e7:12:f9:f7:b7:af:17: 2f:f4:d0:79:61:55:fe:37:3f:20:1b:fe:35:74:77: 02:68:fd:27:0c:55:d9:f2:34:34:4a:70:b5:99:62: 58:8c:75:da:1b:3d:dd:07:13:ca:32:79:9a:6c:83: 16:33:b6:19:86:1d:98:3c:0c:6a:18:08:f0:15:a3: a6:f8:4a:d7:9d:13:31:42:46:e2:d6:c0:34:2e:cc: 7d:14:d6:6a:3b:75:43:31:74:cb:60:98:af:69:3f: 9c:2b:40:dc:2f:ae:92:17:16:ca:97:c3:2b:53:6e: 12:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DA:12:D4:98:07:70:9D:2C:E8:DF:EC:2B:59:B6:EC:67:BF:1F:C2 X509v3 Authority Key Identifier: keyid:25:24:2E:13:19:97:83:5B:FC:9B:18:04:05:C7:97:C6:28:94:47:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSQuExmXg1v8mxgEBceXxiiUR-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/1F5F5920B85F11EE9B53995FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.244.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:d8:9b:73:97:62:21:78:f9:3f:32:6a:ba:9e:ba:f9:da:97: 63:95:a9:78:44:3e:41:0b:75:5a:da:11:70:f5:40:0b:84:0e: f6:2e:05:8c:57:0b:1c:56:15:2b:fc:d5:63:c8:5f:4b:18:91: e8:d5:e9:83:4c:cf:5b:c6:2c:2b:3d:ee:1e:92:40:9e:9e:43: df:ed:b6:32:a6:02:d7:2e:cb:d2:8c:45:99:13:a0:7a:1a:59: 05:bc:37:bd:ee:c9:e5:db:1f:57:fc:48:ab:c8:08:10:9d:8a: 04:dd:71:d8:25:a2:ae:f9:79:63:c5:47:a2:1a:e3:f0:3e:75: 3a:1c:d7:03:17:60:9b:98:d2:df:07:a6:62:1e:e0:7b:05:b5: 00:37:13:8a:88:59:f6:a6:84:0f:86:df:8c:0a:cb:78:7b:1e: 3f:e2:30:3f:32:90:2b:90:fd:0f:50:6d:c4:de:26:d6:0a:63: 2e:6e:0a:bb:17:5a:0c:08:93:91:d4:31:1f:1a:a3:90:62:2d: 49:5e:35:d7:1e:97:6a:4a:af:a0:c0:7e:b6:e0:fc:b5:d1:96: 7e:69:5c:41:78:f9:62:8b:d2:47:97:d3:c4:01:e0:6b:41:c3: 92:94:6c:7a:db:68:cc:0c:c8:b3:c6:19:29:7d:eb:5d:a5:62: 7d:49:b6:a2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODhFMDExMC8GA1UEBRMoMjUyNDJFMTMxOTk3ODM1QkZDOUIxODA0MDVDNzk3QzYy ODk0NDdFNzAeFw0yNDAxMjExMzE2MTVaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YWQxOTFmLThlMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoZyQy8Zc7ROzmajiQdEFl8ytPdIGz+8Zh9hDMHq+0zVwFln1Ndk2XhewwdydN VcWLn/Pag2C0wguNzfnNVWGyKpXv9/vUp7rhNF8eR9RL5eyXSF3UhFojqdQ8diIw xSUx6salvPequW2Zok4oAMNbBPZIcYnIZ3EFXqdcXipKdCC4g0+dk4SrCBKCDpIy 5xL597evFy/00HlhVf43PyAb/jV0dwJo/ScMVdnyNDRKcLWZYliMddobPd0HE8oy eZpsgxYzthmGHZg8DGoYCPAVo6b4StedEzFCRuLWwDQuzH0U1mo7dUMxdMtgmK9p P5wrQNwvrpIXFsqXwytTbhLzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2toS1JgH cJ0s6N/sK1m27Ge/H8IwHwYDVR0jBBgwFoAUJSQuExmXg1v8mxgEBceXxiiUR+cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4OEUwLzRDQkIxQjMyQjg1 MjExRUU4QUNBQTk2QUM0RjlBRTAyL0pTUXVFeG1YZzF2OG14Z0VCY2VYeGlpVVIt Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSlNRdUV4bVhnMXY4bXhnRUJjZVh4aWlVUi1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODhFMC80Q0JCMUIzMkI4NTIxMUVFOEFDQUE5NkFDNEY5QUUwMi8xRjVGNTkyMEI4 NUYxMUVFOUI1Mzk5NUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0K9DANBgkqhkiG9w0BAQsFAAOCAQEAHdibc5diIXj5PzJq up66+dqXY5WpeEQ+QQt1WtoRcPVAC4QO9i4FjFcLHFYVK/zVY8hfSxiR6NXpg0zP W8YsKz3uHpJAnp5D3+22MqYC1y7L0oxFmROgehpZBbw3ve7J5dsfV/xIq8gIEJ2K BN1x2CWirvl5Y8VHohrj8D51OhzXAxdgm5jS3wemYh7gewW1ADcTiohZ9qaED4bf jArLeHseP+IwPzKQK5D9D1BtxN4m1gpjLm4KuxdaDAiTkdQxHxqjkGItSV411x6X akqvoMB+tuD8tdGWfmlcQXj5YovSR5fTxAHga0HDkpRsettozAzIs8YZKX3rXaVi fUm2og== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:46 2024 by rpki-client on console-fra.rpki-client.org